Go Back   Cyber Tech Help Support Forums > Software > Malware Removal

Notices

Malware Removal Discussion about Trojans, viruses, hoaxes, firewalls, spyware, and general Security issues. If you suspect your PC is infected with a virus, trojan or spyware app please include any supporting documentation or logs

Closed Topic
 
Topic Tools
  #1  
Old September 6th, 2017, 10:52 AM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
How to stop hacker (using UAC)

Hey,
I've factory reset laptop now 4 times (last keeping all data on exHDD). Discovered that he/new data buyer was again in machine (thx to 2step Verification) & has again usurped UAC as 'Administrators' (I don't use groups, 1 person - me, is Administrator) after 1 1/2 years since my Android was stolen.
I've reset IP, changed passwords, stopped sync across devices etc. all to no avail. HJT Adspy doesn't pick up hidden data-stream, Combofix, Antihacker, Bitdefender, find nothing. Spybot at least advises me of another 'user'.This little pakistani man needs be stopped gaining access then I can ask how to reset UAC to default. The Android I believe had IEMI changed & is invisible, he's used Mac & Motorola initially but last access via iPhone. How is it possible to carry over what he needs, without my system disavowing the unknown electronic & denying access?
Help me understand please how he gains access? How can I terminate & block any attempt? How can I lock down UAC? I'll ask again later for help to get him out but definitely am through doing Factory Resets because of him. Thx
  #2  
Old September 6th, 2017, 07:41 PM
olgun52's Avatar
olgun52 olgun52 is offline
Malware Removal Team
 
Join Date: Feb 2014
O/S: Windows 10 Pro
Location: Europa
Posts: 2,066
Hello Sonic Feathers and Welcome to the CyberTechHelp Forums. .
I will be helping you fixing your problems.

Please take note of some guidelines for this fix:

1- My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Keep your sentences short. Thanks for your understanding.
2- Perform everything in the correct order. Sometimes one step requires the previous one.
3- Please open as administrator the computer. How is open as administrator the computer?
4- Disable your AntiVirus and AntiSpyware applications, as they will interfere with our tools and the removal. If you are unsure how to do this, please refer to get help here
How to disable your security applications.
5- To make sure you have an accurate view of files there, make sure you can View Hidden Files. Also uncheck "Hide Extensions for Known File Types"
6- Back up all your private data / important files on another (external) drive before using our tools (if possible).
7- Please subscribe to this thread if you have not done so already, and please don't do any other scans on your own and don't install or remove software.
8- Lastly, keep in mind that we are volunteers, so you do not have to pay for malware removal.

Thanks

************************************************** *******************************************
Let's check.

I Would like you to do the following

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
Have a nice day.

  #3  
Old September 7th, 2017, 12:39 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Hello, Thanks for your kind & well worded reply. I will get onto it tonight after work. Many thanks. After reading properly & following instructions, will come back to you as to result. Enjoy your day.
  #4  
Old September 8th, 2017, 07:12 PM
olgun52's Avatar
olgun52 olgun52 is offline
Malware Removal Team
 
Join Date: Feb 2014
O/S: Windows 10 Pro
Location: Europa
Posts: 2,066
Thanks,i am here
  #5  
Old September 9th, 2017, 03:47 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Hi, That was so decent of you to offer your help, many thanks.
I have finally got chance to begin following your advice now & am to go through it step by step. This was just to give a heads-up, I am beginning....
Be in touch soon, as I go through it to ask further or to let you know that it is completed.
Sonic
  #6  
Old September 9th, 2017, 05:32 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Hi Olgun, here is the data you asked I send. As I have many of the programs & folders on HDD waiting to be restored to the computer, I thought it best to run a Scan with (saved as: FRST 2.txt) & without (saved as: FRST 1.txt) the HDD connected. Sorry if it makes added work, this was not my intention to do, only to provide as much detail in order that you can help fully. Not that you clean my machine with the advise given then I plug in HDD & mess it all up again. I say a very big thank you to you Olgun & trust that your efforts are noted & the the favour is restored to you in some way.
Sonic
Ps. It was too long so I am going to post 4 replies. Forgive if incorrect. Wish I could have just been allowed to attach them, it would have saved the multiple posts.



Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-08-2017
Ran by Darryl (09-09-2017 17:46:54)
Running from C:\Users\Darryl\Desktop
Microsoft Windows 7 Home Basic Service Pack 1 (X86) (2017-07-14 08:09:26)
Boot Mode: Normal
================================================== ========


==================== Accounts: =============================

Administrator (S-1-5-21-917511795-3256536166-560280740-500 - Administrator - Disabled)
Darryl (S-1-5-21-917511795-3256536166-560280740-1000 - Administrator - Enabled) => C:\Users\Darryl
Guest (S-1-5-21-917511795-3256536166-560280740-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antispyware (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Disabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 10 ActiveX (HKLM\...\{FFB768E4-E427-4553-BC36-A11F5E62A94D}) (Version: 10.1.53.64 - Adobe Systems Incorporated)
Adobe Reader 9.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
BatteryLifeExtender (HKLM\...\{E308B555-8434-4AF8-B66F-729897C75F93}) (Version: 1.0.6 - Samsung)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 22.0.8.114 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 22.0.8.118 - Bitdefender)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.55 - Broadcom Corporation)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3911 - CyberLink Corp.)
Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.2 - Samsung Electronics Co., Ltd.)
Easy Network Manager (HKLM\...\{8732818E-CA78-4ACB-B077-22311BF4C0E4}) (Version: 4.4.7 - Samsung)
Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 2.1.0.15 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM\...\{607DA1C8-34EC-4D7A-AD83-F8E5C70736DF}) (Version: 4.0.0.4 - Samsung)
ETDWare PS/2-X86 8.0.7.0_WHQL (HKLM\...\Elantech) (Version: 8.0.7.0 - ELAN Microelectronic Corp.)
Google Chrome (HKLM\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HSPA USB Modem (HKLM\...\HSPA USB Modem) (Version: 1.0.0.1 - HSPA USB Modem)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2302 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.3.1001 - Intel Corporation)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
K-Lite Codec Pack 12.2.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.2.5 - KLCP)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.24.27.3 - Marvell)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband HL Service (HKLM\...\Mobile Broadband HL Service) (Version: 22.001.25.00.03 - Huawei Technologies Co.,Ltd)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MTN Online (HKLM\...\MTN Online_is1) (Version: - TCT Mobile Limited)
OpenOffice 4.1.3 (HKLM\...\{EEA30AEB-8BA7-465B-85D4-098BB99733E7}) (Version: 4.13.9783 - Apache Software Foundation)
paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57723}) (Version: 4.0.17 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6176 - Realtek Semiconductor Corp.)
Samsung AnyWeb Print (HKLM\...\{1DF9729D-2A51-4CA1-B4CE-2B432D7ABA7C}) (Version: 1.0 - Samsung Electronics Co., Ltd.) Hidden
Samsung AnyWeb Print (HKLM\...\{318DBE01-1E6B-4243-84B0-210391FE789A}) (Version: 1.1.19.0 - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 5 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.0.6 - Samsung)
Samsung Support Center (HKLM\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.24 - Samsung)
Samsung Universal Print Driver (HKLM\...\Samsung Universal Print Driver) (Version: 2.01.06.00:16 - Samsung Electronics Co., Ltd.)
Samsung Update Plus (HKLM\...\{142D8CA7-2C6F-45A7-83E3-099AAFD99133}) (Version: 3.0.0.17 - Samsung Electronics Co., Ltd.)
Skype™ 7.39 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.81460 - TeamViewer)
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6200 - Broadcom Corporation)
Xvid Plus Codec Pack (HKLM\...\Xvid Plus Codec Pack) (Version: 1.00 - Xvid Plus Codec Pack)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{30A2652A-DDF7-45e7-ACA6-3EAB26FC8A4E}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{41662FC2-0D57-4aff-AB27-AD2E12E7C273}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{448BB771-CFE2-47C4-BCDF-1FBF378E202C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7B342DC4-139A-4a46-8A93-DB0827CCEE9C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\ooofilt.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7FA8AE11-B3E3-4D88-AABF-255526CD1CE8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{82154420-0FBF-11d4-8313-005004526AB4}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\propertyhdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{D0484DE6-AAEE-468a-991F-8D4B0737B57A}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{D2D59CD1-0A6A-4D36-AE20-47817077D57C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{E5A0B632-DFBA-4549-9346-E414DA06E6F8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{EE5D1EA4-D445-4289-B2FC-55FC93693917}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{F616B81F-7BB8-4F22-B8A5-47428D59F8AD}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
ContextMenuHandlers1: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers4: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers5: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2011-02-11] (Intel Corporation)
ContextMenuHandlers6: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02626086-B4DC-4B5F-A57A-E67C95226B3B} - System32\Tasks\EasySpeedUpManager => C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManage r2.exe [2010-08-05] (Samsung Electronics)
Task: {0506265F-CCE6-4722-86A0-3EB2217B40C3} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2011-02-07] (SAMSUNG Electronics)
Task: {3276D76B-0957-4260-B5FA-981D96F9B17B} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2010-08-09] (Samsung Electronics Co., Ltd.)
Task: {6B2B613C-02AF-49C9-B3CF-13C98432B417} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-08-27] (Samsung Electronics)
Task: {6EC0F541-9061-4D48-BC4E-B7CE6F94EFBF} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExten der.exe [2010-08-12] (Samsung Electronics. Co. Ltd.)
Task: {7DB02692-2037-4B2C-9220-05A7B1448AB8} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-06-21] (Bitdefender)
Task: {AE2EF44D-5E1A-445C-BE28-EE49DD6B727F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {B30CFFD6-C26F-494D-BD5E-1B88135D6667} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.e xe [2010-07-20] (SAMSUNG Electronics co., LTD.)
Task: {B5CB4607-8B4C-4A45-8D4A-475764C3454F} - System32\Tasks\{429FD52C-A832-4207-8A7E-20E682FD8515} => C:\windows\system32\pcalua.exe -a G:\setup.exe -d G:\
Task: {CFCFCB43-8880-49B7-9683-4DD6AE0F8056} - System32\Tasks\advSRS5 => C:\Program Files\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2010-07-27] (SEC)
Task: {DB0B9A2A-1D5A-4BFD-8EA1-703BEB197FD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-14] (Google Inc.)
Task: {DF6907F2-A9D6-4E5B-837A-1829D5A652CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-14] (Google Inc.)
Task: {E1808027-8070-4E55-99F2-128F1F02B1D1} - System32\Tasks\{CC1C8BBB-550A-4CA1-953C-5D21EA5C48EF} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.38.0.101/en/abandoninstall?source=lightinstaller&page=tsInstal l

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-07-15 23:53 - 2013-09-03 14:29 - 000105448 _____ () C:\Program Files\Bitdefender\Bitdefender Security\bdmetrics.dll
2017-07-15 23:54 - 2017-02-07 12:42 - 000859344 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpbr.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 000466568 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpdsp.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 002660936 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpph.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 001303008 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttprbl.mdl
2011-04-06 04:32 - 2008-06-05 01:53 - 000026624 _____ () C:\windows\System32\spd__l.dll
2017-07-31 19:40 - 2015-12-15 15:02 - 000574464 _____ () C:\Program Files\MTN Online\ApplicationController.exe
2017-07-31 19:40 - 2016-02-01 11:11 - 000011362 _____ () C:\Program Files\MTN Online\mingwm10.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 000043008 _____ () C:\Program Files\MTN Online\libgcc_s_dw2-1.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 002537472 _____ () C:\Program Files\MTN Online\QtCore4.dll
2017-07-31 19:40 - 2015-12-15 14:58 - 001054208 _____ () C:\Program Files\MTN Online\Common.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 009814016 _____ () C:\Program Files\MTN Online\QtGui4.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 001140224 _____ () C:\Program Files\MTN Online\QtNetwork4.dll
2017-08-22 21:12 - 2013-12-06 11:01 - 000045056 _____ () C:\Program Files\HSPA USB Modem\Driver\DevMon.exe
2011-04-06 04:30 - 2006-08-12 05:48 - 000049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll
2011-04-06 04:33 - 2010-05-07 16:22 - 001636864 _____ () C:\Program Files\Samsung\Samsung Recovery Solution 5\Resdll.dll
2011-04-06 04:33 - 2010-06-08 05:15 - 000618496 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2017-09-04 16:01 - 2017-08-23 09:31 - 002881368 _____ () C:\Program Files\Google\Chrome\Application\60.0.3112.113\libg lesv2.dll
2017-09-04 16:01 - 2017-08-23 09:31 - 000086360 _____ () C:\Program Files\Google\Chrome\Application\60.0.3112.113\libe gl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2017-09-09 17:22 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-917511795-3256536166-560280740-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Themes\TranscodedWallpaper.jpg
DNS Servers: 168.210.2.2 - 196.14.239.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B807B4BA-1DC9-44A5-8946-253559FA7C16}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{1A7B83C8-FAA8-4462-BB18-27F84A9956A0}] => (Allow) C:\Windows\System32\SUPDSvc.exe
FirewallRules: [{A65094D5-6822-498D-A50A-62CDE3A085D2}] => (Allow) C:\Windows\System32\SUPDSvc.exe
FirewallRules: [{FB4CB921-5CB8-40F4-8A39-49E0FD3E0431}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSv cHost.exe
FirewallRules: [{65064C98-EE7E-4BAA-94E0-09E071C61E2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{48AB47C9-A327-4CE2-9B48-BF5C1A7AE14B}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{ED15DF0A-1C3D-498B-9990-ED691B1582BB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1F3C1B82-E6D1-4FAE-99B8-9934565F7034}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0FC94F48-919C-4F44-B5CE-4FAEDE068F63}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{55580A67-06D4-477A-8E78-E14641BAC04D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{36455591-EF8F-4136-80BA-CB9A3A692E4C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{19E4B086-339C-441B-AFB1-F8E7195ADCED}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{16F6BCFE-B6EF-40F0-993A-6703936D0B21}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

19-08-2017 13:53:35 Revo Uninstaller's restore point - HSPA USB Modem
19-08-2017 16:05:54 Windows Update
20-08-2017 20:40:34 Windows Update
22-08-2017 20:32:03 Revo Uninstaller's restore point - HSPA USB Modem
31-08-2017 18:59:38 Scheduled Checkpoint
04-09-2017 19:54:25 Windetect d/l
04-09-2017 23:28:13 Windetect Std check
06-09-2017 23:48:04 Revo Uninstaller's restore point - Plumbytes Anti-Malware 2017

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/09/2017 04:35:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KSt artMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:35:11 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\Samsung Support Center\Drv\drv2x64\KStartMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:32:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\samsung\easy display manager\RunGfxUI64.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:32:50 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\hspa usb modem\driver\win64\DPInst.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:23:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Faulting module name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Exception code: 0xc0000005
Fault offset: 0x00017a12
Faulting process id: 0x8b8
Faulting application start time: 0x01d329771b9fcdec
Faulting application path: C:\ProgramData\MobileBrServ\mbbservice.exe
Faulting module path: C:\ProgramData\MobileBrServ\mbbservice.exe
Report Id: 62a422e1-956a-11e7-98d2-90a4de6a0dc0

Error: (09/08/2017 07:59:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Faulting module name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Exception code: 0xc0000005
Fault offset: 0x00017a12
Faulting process id: 0x8ac
Faulting application start time: 0x01d328cc306e94ec
Faulting application path: C:\ProgramData\MobileBrServ\mbbservice.exe
Faulting module path: C:\ProgramData\MobileBrServ\mbbservice.exe
Report Id: 77c1293d-94bf-11e7-8a6e-90a4de6a0dc0

Error: (09/08/2017 12:49:42 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KSt artMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:47:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\Samsung Support Center\Drv\drv2x64\KStartMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:35:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\samsung\easy display manager\RunGfxUI64.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:34:27 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\hspa usb modem\driver\win64\DPInst.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture=" amd64",publicKeyToken="6595b64144ccf1df",type="win 32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (09/09/2017 04:26:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 600000 milliseconds: Restart the service.

Error: (09/09/2017 04:25:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/09/2017 04:23:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atc

Error: (09/09/2017 04:23:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobile Broadband HL Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (09/09/2017 04:23:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Broadband HL Service service to connect.

Error: (09/09/2017 04:22:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostics Tracking Service service terminated with the following error:
General access denied error

Error: (09/08/2017 07:59:49 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atc

Error: (09/08/2017 07:59:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobile Broadband HL Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (09/08/2017 07:59:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Broadband HL Service service to connect.

Error: (09/08/2017 07:59:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostics Tracking Service service terminated with the following error:
General access denied error


==================== Memory info ===========================

Processor: Celeron(R) Dual-Core CPU T3500 @ 2.10GHz
Percentage of memory in use: 62%
Total physical RAM: 2008.61 MB
Available physical RAM: 760.11 MB
Total Virtual: 2446.61 MB
Available Virtual: 586.59 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:114 GB) (Free:78.82 GB) NTFS
Drive d: () (Fixed) (Total:168.77 GB) (Free:124.42 GB) NTFS

==================== MBR & Partition Table ==================

================================================== ======
Disk: 0 (Size: 298.1 GB) (Disk ID: 29AB717C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=168.8 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=15.2 GB) - (Type=27)

==================== End of Addition.txt ============================
  #7  
Old September 9th, 2017, 05:37 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Olgun, here is Addition 1.txt:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-08-2017
Ran by Darryl (09-09-2017 17:46:54)
Running from C:\Users\Darryl\Desktop
Microsoft Windows 7 Home Basic Service Pack 1 (X86) (2017-07-14 08:09:26)
Boot Mode: Normal
================================================== ========


==================== Accounts: =============================

Administrator (S-1-5-21-917511795-3256536166-560280740-500 - Administrator - Disabled)
Darryl (S-1-5-21-917511795-3256536166-560280740-1000 - Administrator - Enabled) => C:\Users\Darryl
Guest (S-1-5-21-917511795-3256536166-560280740-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antispyware (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Disabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 10 ActiveX (HKLM\...\{FFB768E4-E427-4553-BC36-A11F5E62A94D}) (Version: 10.1.53.64 - Adobe Systems Incorporated)
Adobe Reader 9.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
BatteryLifeExtender (HKLM\...\{E308B555-8434-4AF8-B66F-729897C75F93}) (Version: 1.0.6 - Samsung)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 22.0.8.114 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 22.0.8.118 - Bitdefender)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.55 - Broadcom Corporation)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3911 - CyberLink Corp.)
Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.2 - Samsung Electronics Co., Ltd.)
Easy Network Manager (HKLM\...\{8732818E-CA78-4ACB-B077-22311BF4C0E4}) (Version: 4.4.7 - Samsung)
Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 2.1.0.15 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM\...\{607DA1C8-34EC-4D7A-AD83-F8E5C70736DF}) (Version: 4.0.0.4 - Samsung)
ETDWare PS/2-X86 8.0.7.0_WHQL (HKLM\...\Elantech) (Version: 8.0.7.0 - ELAN Microelectronic Corp.)
Google Chrome (HKLM\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HSPA USB Modem (HKLM\...\HSPA USB Modem) (Version: 1.0.0.1 - HSPA USB Modem)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2302 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.3.1001 - Intel Corporation)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
K-Lite Codec Pack 12.2.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.2.5 - KLCP)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.24.27.3 - Marvell)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband HL Service (HKLM\...\Mobile Broadband HL Service) (Version: 22.001.25.00.03 - Huawei Technologies Co.,Ltd)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MTN Online (HKLM\...\MTN Online_is1) (Version: - TCT Mobile Limited)
OpenOffice 4.1.3 (HKLM\...\{EEA30AEB-8BA7-465B-85D4-098BB99733E7}) (Version: 4.13.9783 - Apache Software Foundation)
paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57723}) (Version: 4.0.17 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6176 - Realtek Semiconductor Corp.)
Samsung AnyWeb Print (HKLM\...\{1DF9729D-2A51-4CA1-B4CE-2B432D7ABA7C}) (Version: 1.0 - Samsung Electronics Co., Ltd.) Hidden
Samsung AnyWeb Print (HKLM\...\{318DBE01-1E6B-4243-84B0-210391FE789A}) (Version: 1.1.19.0 - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 5 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.0.6 - Samsung)
Samsung Support Center (HKLM\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.24 - Samsung)
Samsung Universal Print Driver (HKLM\...\Samsung Universal Print Driver) (Version: 2.01.06.00:16 - Samsung Electronics Co., Ltd.)
Samsung Update Plus (HKLM\...\{142D8CA7-2C6F-45A7-83E3-099AAFD99133}) (Version: 3.0.0.17 - Samsung Electronics Co., Ltd.)
Skype™ 7.39 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.81460 - TeamViewer)
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6200 - Broadcom Corporation)
Xvid Plus Codec Pack (HKLM\...\Xvid Plus Codec Pack) (Version: 1.00 - Xvid Plus Codec Pack)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{30A2652A-DDF7-45e7-ACA6-3EAB26FC8A4E}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{41662FC2-0D57-4aff-AB27-AD2E12E7C273}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{448BB771-CFE2-47C4-BCDF-1FBF378E202C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7B342DC4-139A-4a46-8A93-DB0827CCEE9C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\ooofilt.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7FA8AE11-B3E3-4D88-AABF-255526CD1CE8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{82154420-0FBF-11d4-8313-005004526AB4}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\propertyhdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{D0484DE6-AAEE-468a-991F-8D4B0737B57A}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{D2D59CD1-0A6A-4D36-AE20-47817077D57C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{E5A0B632-DFBA-4549-9346-E414DA06E6F8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{EE5D1EA4-D445-4289-B2FC-55FC93693917}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{F616B81F-7BB8-4F22-B8A5-47428D59F8AD}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
ContextMenuHandlers1: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers4: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers5: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2011-02-11] (Intel Corporation)
ContextMenuHandlers6: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02626086-B4DC-4B5F-A57A-E67C95226B3B} - System32\Tasks\EasySpeedUpManager => C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManage r2.exe [2010-08-05] (Samsung Electronics)
Task: {0506265F-CCE6-4722-86A0-3EB2217B40C3} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2011-02-07] (SAMSUNG Electronics)
Task: {3276D76B-0957-4260-B5FA-981D96F9B17B} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2010-08-09] (Samsung Electronics Co., Ltd.)
Task: {6B2B613C-02AF-49C9-B3CF-13C98432B417} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-08-27] (Samsung Electronics)
Task: {6EC0F541-9061-4D48-BC4E-B7CE6F94EFBF} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExten der.exe [2010-08-12] (Samsung Electronics. Co. Ltd.)
Task: {7DB02692-2037-4B2C-9220-05A7B1448AB8} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-06-21] (Bitdefender)
Task: {AE2EF44D-5E1A-445C-BE28-EE49DD6B727F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {B30CFFD6-C26F-494D-BD5E-1B88135D6667} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.e xe [2010-07-20] (SAMSUNG Electronics co., LTD.)
Task: {B5CB4607-8B4C-4A45-8D4A-475764C3454F} - System32\Tasks\{429FD52C-A832-4207-8A7E-20E682FD8515} => C:\windows\system32\pcalua.exe -a G:\setup.exe -d G:\
Task: {CFCFCB43-8880-49B7-9683-4DD6AE0F8056} - System32\Tasks\advSRS5 => C:\Program Files\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2010-07-27] (SEC)
Task: {DB0B9A2A-1D5A-4BFD-8EA1-703BEB197FD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-14] (Google Inc.)
Task: {DF6907F2-A9D6-4E5B-837A-1829D5A652CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-14] (Google Inc.)
Task: {E1808027-8070-4E55-99F2-128F1F02B1D1} - System32\Tasks\{CC1C8BBB-550A-4CA1-953C-5D21EA5C48EF} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.38.0.101/en/abandoninstall?source=lightinstaller&page=tsInstal l

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-07-15 23:53 - 2013-09-03 14:29 - 000105448 _____ () C:\Program Files\Bitdefender\Bitdefender Security\bdmetrics.dll
2017-07-15 23:54 - 2017-02-07 12:42 - 000859344 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpbr.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 000466568 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpdsp.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 002660936 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpph.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 001303008 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttprbl.mdl
2011-04-06 04:32 - 2008-06-05 01:53 - 000026624 _____ () C:\windows\System32\spd__l.dll
2017-07-31 19:40 - 2015-12-15 15:02 - 000574464 _____ () C:\Program Files\MTN Online\ApplicationController.exe
2017-07-31 19:40 - 2016-02-01 11:11 - 000011362 _____ () C:\Program Files\MTN Online\mingwm10.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 000043008 _____ () C:\Program Files\MTN Online\libgcc_s_dw2-1.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 002537472 _____ () C:\Program Files\MTN Online\QtCore4.dll
2017-07-31 19:40 - 2015-12-15 14:58 - 001054208 _____ () C:\Program Files\MTN Online\Common.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 009814016 _____ () C:\Program Files\MTN Online\QtGui4.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 001140224 _____ () C:\Program Files\MTN Online\QtNetwork4.dll
2017-08-22 21:12 - 2013-12-06 11:01 - 000045056 _____ () C:\Program Files\HSPA USB Modem\Driver\DevMon.exe
2011-04-06 04:30 - 2006-08-12 05:48 - 000049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll
2011-04-06 04:33 - 2010-05-07 16:22 - 001636864 _____ () C:\Program Files\Samsung\Samsung Recovery Solution 5\Resdll.dll
2011-04-06 04:33 - 2010-06-08 05:15 - 000618496 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2017-09-04 16:01 - 2017-08-23 09:31 - 002881368 _____ () C:\Program Files\Google\Chrome\Application\60.0.3112.113\libg lesv2.dll
2017-09-04 16:01 - 2017-08-23 09:31 - 000086360 _____ () C:\Program Files\Google\Chrome\Application\60.0.3112.113\libe gl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2017-09-09 17:22 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-917511795-3256536166-560280740-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Themes\TranscodedWallpaper.jpg
DNS Servers: 168.210.2.2 - 196.14.239.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B807B4BA-1DC9-44A5-8946-253559FA7C16}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{1A7B83C8-FAA8-4462-BB18-27F84A9956A0}] => (Allow) C:\Windows\System32\SUPDSvc.exe
FirewallRules: [{A65094D5-6822-498D-A50A-62CDE3A085D2}] => (Allow) C:\Windows\System32\SUPDSvc.exe
FirewallRules: [{FB4CB921-5CB8-40F4-8A39-49E0FD3E0431}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSv cHost.exe
FirewallRules: [{65064C98-EE7E-4BAA-94E0-09E071C61E2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{48AB47C9-A327-4CE2-9B48-BF5C1A7AE14B}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{ED15DF0A-1C3D-498B-9990-ED691B1582BB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1F3C1B82-E6D1-4FAE-99B8-9934565F7034}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0FC94F48-919C-4F44-B5CE-4FAEDE068F63}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{55580A67-06D4-477A-8E78-E14641BAC04D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{36455591-EF8F-4136-80BA-CB9A3A692E4C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{19E4B086-339C-441B-AFB1-F8E7195ADCED}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{16F6BCFE-B6EF-40F0-993A-6703936D0B21}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

19-08-2017 13:53:35 Revo Uninstaller's restore point - HSPA USB Modem
19-08-2017 16:05:54 Windows Update
20-08-2017 20:40:34 Windows Update
22-08-2017 20:32:03 Revo Uninstaller's restore point - HSPA USB Modem
31-08-2017 18:59:38 Scheduled Checkpoint
04-09-2017 19:54:25 Windetect d/l
04-09-2017 23:28:13 Windetect Std check
06-09-2017 23:48:04 Revo Uninstaller's restore point - Plumbytes Anti-Malware 2017

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/09/2017 04:35:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KSt artMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:35:11 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\Samsung Support Center\Drv\drv2x64\KStartMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:32:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\samsung\easy display manager\RunGfxUI64.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:32:50 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\hspa usb modem\driver\win64\DPInst.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:23:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Faulting module name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Exception code: 0xc0000005
Fault offset: 0x00017a12
Faulting process id: 0x8b8
Faulting application start time: 0x01d329771b9fcdec
Faulting application path: C:\ProgramData\MobileBrServ\mbbservice.exe
Faulting module path: C:\ProgramData\MobileBrServ\mbbservice.exe
Report Id: 62a422e1-956a-11e7-98d2-90a4de6a0dc0

Error: (09/08/2017 07:59:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Faulting module name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Exception code: 0xc0000005
Fault offset: 0x00017a12
Faulting process id: 0x8ac
Faulting application start time: 0x01d328cc306e94ec
Faulting application path: C:\ProgramData\MobileBrServ\mbbservice.exe
Faulting module path: C:\ProgramData\MobileBrServ\mbbservice.exe
Report Id: 77c1293d-94bf-11e7-8a6e-90a4de6a0dc0

Error: (09/08/2017 12:49:42 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KSt artMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:47:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\Samsung Support Center\Drv\drv2x64\KStartMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:35:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\samsung\easy display manager\RunGfxUI64.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:34:27 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\hspa usb modem\driver\win64\DPInst.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (09/09/2017 04:26:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 600000 milliseconds: Restart the service.

Error: (09/09/2017 04:25:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/09/2017 04:23:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atc

Error: (09/09/2017 04:23:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobile Broadband HL Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (09/09/2017 04:23:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Broadband HL Service service to connect.

Error: (09/09/2017 04:22:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostics Tracking Service service terminated with the following error:
General access denied error

Error: (09/08/2017 07:59:49 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atc

Error: (09/08/2017 07:59:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobile Broadband HL Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (09/08/2017 07:59:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Broadband HL Service service to connect.

Error: (09/08/2017 07:59:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostics Tracking Service service terminated with the following error:
General access denied error


==================== Memory info ===========================

Processor: Celeron(R) Dual-Core CPU T3500 @ 2.10GHz
Percentage of memory in use: 62%
Total physical RAM: 2008.61 MB
Available physical RAM: 760.11 MB
Total Virtual: 2446.61 MB
Available Virtual: 586.59 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:114 GB) (Free:78.82 GB) NTFS
Drive d: () (Fixed) (Total:168.77 GB) (Free:124.42 GB) NTFS

==================== MBR & Partition Table ==================

================================================== ======
Disk: 0 (Size: 298.1 GB) (Disk ID: 29AB717C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=168.8 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=15.2 GB) - (Type=27)

==================== End of Addition.txt ============================
  #8  
Old September 9th, 2017, 05:42 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Olgun, here is FRST 2.txt (4x the permitted length ???? Will have to do in 1/4's x 4)

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-08-2017
Ran by Darryl (administrator) on WIZARDS-PC (09-09-2017 17:49:07)
Running from C:\Users\Darryl\Desktop
Loaded Profiles: Darryl (Available Profiles: Darryl)
Platform: Microsoft Windows 7 Home Basic Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\MTN Online\ApplicationController.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.ex e
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
() C:\Program Files\HSPA USB Modem\Driver\DevMon.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManage r.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics) C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\Presen tationFontCache.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [304608 2017-08-31] (Bitdefender)
HKLM\...\Run: [DevMon] => C:\Program Files\HSPA USB Modem\Driver\DevMon.exe [45056 2013-12-06] ()
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {607f1b2b-74b3-11e7-97a5-90a4de6a0dc0} - G:\autorun.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {6becfb10-876c-11e7-9b5a-90a4de6a0dc0} - F:\setup.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {6becfc34-876c-11e7-9b5a-90a4de6a0dc0} - F:\setup.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {77038b86-6a48-11e7-bf5e-90a4de6a0dc0} - G:\setup.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {8360031e-7f78-11e7-9ad5-90a4de6a0dc0} - F:\AutoRun.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {afdbea82-90f2-11e7-96d7-90a4de6a0dc0} - F:\setup.exe
HKU\S-1-5-21-917511795-3256536166-560280740-1000\...\MountPoints2: {e0d0c9a4-6990-11e7-9fa4-90a4de6a0dc0} - F:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [280576 2017-07-14] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder [2017-08-02] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 168.210.2.2 196.14.239.2 168.210.2.2 196.14.239.2
Tcpip\..\Interfaces\{86C1B4A6-2E7E-4EAC-B43D-5C24A8C91A30}: [DhcpNameServer] 168.210.2.2 196.14.239.2 168.210.2.2 196.14.239.2
Tcpip\..\Interfaces\{DD0E4987-FE7E-4B4E-BD96-BA9F8683CC36}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{F481106B-D2B0-446C-818C-5B39B3DF0A40}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-917511795-3256536166-560280740-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.loveme.com/pickoftheday.shtml
HKU\S-1-5-21-917511795-3256536166-560280740-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-917511795-3256536166-560280740-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2017-08-31] (Bitdefender)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-12] (Oracle Corporation)
BHO: W2PBrowser Class -> {AA609D72-8482-4076-8991-8CDAE5B93BCB} -> C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-08-23] ()
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-12] (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2017-08-31] (Bitdefender)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff [2017-07-14]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2017-07-14] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1 .dll [2017-08-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-12] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-03-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-14] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.loveme.com/mp/PickOfTheDay.shtml"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> global
CHR Profile: C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default [2017-09-09]
CHR Extension: (Google Slides) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhon fmgoek [2017-07-14]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aicjkkmjijnlncpkailhjcdfke chjbpl [2017-07-18]
CHR Extension: (Google Docs) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfi lokake [2017-07-14]
CHR Extension: (Google Drive) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigk jlhalf [2017-07-14]
CHR Extension: (YouTube) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldk acnbeo [2017-07-14]
CHR Extension: (Adblock Plus) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddi lifddb [2017-07-18]
CHR Extension: (Google Sheets) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpeb giejap [2017-07-14]
CHR Extension: (Bitdefender Wallet) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigca poeebl [2017-07-16]
CHR Extension: (Google Docs Offline) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2017-07-15]
CHR Extension: (Windscribe - Free VPN and Ad Block) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcna nddlhb [2017-08-04]
CHR Extension: (Ubuntu light-themes scrollbars) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\mikdfeaeaecoffpjoodiihgejn bfigln [2017-07-18]
CHR Extension: (Webutation) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfclfmabiojpommfcalfdgjjea ahnjbj [2017-07-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoe jaedia [2017-07-14]
CHR Extension: (Chrome Media Router) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm [2017-08-11]
CHR Profile: C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-09-08]
CHR Extension: (Google Slides) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-08]
CHR Extension: (Google Docs) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-08]
CHR Extension: (Google Drive) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-08]
CHR Extension: (YouTube) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-08]
CHR Extension: (Google Sheets) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-09-08]
CHR Extension: (Bitdefender Wallet) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2017-09-08]
CHR Extension: (Google Docs Offline) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-08]
CHR Extension: (Gmail) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-08]
CHR Extension: (Chrome Media Router) - C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-08]
CHR Profile: C:\Users\Darryl\AppData\Local\Google\Chrome\User Data\System Profile [2017-09-08]
CHR HKLM\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [1847960 2017-08-30] (Bitdefender)
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [87472 2017-06-27] (Bitdefender)
R2 FLAME II MTN MODEM Service; C:\Program Files\MTN Online\ApplicationController.exe [574464 2015-12-15] () [File not signed]
S2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] ()
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1269824 2017-06-21] (Bitdefender)
S3 Samsung UPD Service; C:\windows\System32\SUPDSvc.exe [131888 2010-08-09] (Samsung Electronics CO., LTD.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10803440 2017-07-26] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [175768 2017-08-31] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [1229856 2017-08-31] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 atc; C:\windows\System32\DRIVERS\atc.sys [740824 2017-06-07] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\windows\System32\DRIVERS\avc3.sys [1290472 2017-04-19] (BitDefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107168 2017-05-31] (BitDefender LLC)
R0 bdprivmon; C:\windows\System32\DRIVERS\bdprivmon.sys [43064 2017-05-11] (© Bitdefender SRL)
R1 BDVEDISK; C:\windows\System32\DRIVERS\bdvedisk.sys [83824 2015-12-04] (BitDefender)
R3 btwampfl; C:\windows\System32\drivers\btwampfl.sys [297000 2010-07-14] (Broadcom Corporation.)
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [94208 2010-08-10] (ELAN Microelectronics Corp.)
R0 gzflt; C:\windows\System32\DRIVERS\gzflt.sys [152784 2017-05-11] (BitDefender LLC)
S3 hwdatacard; C:\windows\System32\DRIVERS\ZDDriver.sys [106496 2010-01-14] (ZD Secret Incorporated)
R0 Ignis; C:\windows\System32\DRIVERS\ignis.sys [282712 2017-06-08] (Bitdefender)
S3 SCDModem; C:\windows\System32\DRIVERS\SCDModem.sys [22528 2016-02-01] (SCD-MBB Device)
S3 SCDSerials; C:\windows\System32\DRIVERS\SCDSerials.sys [22528 2016-02-01] (SCD-MBB Device)
S3 SCDUsbHub; C:\windows\System32\DRIVERS\SCDUsbHub.sys [15272 2016-02-01] (DriverCoding Incorporated.)
R3 teamviewervpn; C:\windows\System32\DRIVERS\teamviewervpn.sys [25088 2017-04-20] (TeamViewer GmbH)
R0 trufos; C:\windows\System32\DRIVERS\trufos.sys [376664 2017-04-11] (BitDefender S.R.L.)
R1 WinDetect; C:\windows\system32\Drivers\windetect.sys [16720 2017-02-26] (HeavenWard)

========================== Drivers MD5 =======================

C:\windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\windows\system32\drivers\afd.sys F582FC7976F1248AC5FBD6875C626B41
C:\windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\windows\system32\drivers\appid.sys 619005EB05113331F0081369C4488F9A
C:\windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\atc.sys F7E7D7B2C9A0C9F36A20EF637518D359
C:\windows\System32\DRIVERS\avc3.sys FD5BD88A850FECE0D2FFB384D016B0CD
C:\windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\bcmwl6.sys 9E209171C51B1D750F53777253B80E81
C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys 6421A76A7AA1C9EE60CAFD7C432F4510
C:\windows\System32\DRIVERS\bdprivmon.sys 6AAF1E936844721086009C83CE05B195
C:\windows\System32\DRIVERS\bdvedisk.sys 4ABE98479C0D30D36D1E5C15567F78D9
C:\windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\bowser.sys 28AF7D4427868B7CE4C00CAB1864C7F6
C:\windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\windows\system32\drivers\BthEnum.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\windows\system32\drivers\bthpan.sys F6AA1FE6ECB2C175E9BA14D30C739FD3
C:\windows\System32\Drivers\BTHport.sys 1153DE2E4F5941E10C399CB5592F78A1
C:\windows\System32\Drivers\BTHUSB.sys C81E9413A25A439F436B1D4B6A0CF9E9
C:\windows\System32\drivers\btwampfl.sys 525432CFD6D8C004860AF7ECD0A84234
C:\windows\System32\drivers\btwaudio.sys CF8799A563F734984D4E053CACEC1426
C:\windows\System32\drivers\btwavdt.sys 9ED9932043D599AEA04F6EA2D86964A1
C:\windows\System32\DRIVERS\btwl2cap.sys DE53089F0678CB5F0AFEB867ACB0FB05
C:\windows\System32\DRIVERS\btwrchid.sys 373D1BB0F7DC8F1931F9B7E0DE3E9A30
C:\windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\windows\System32\CLFS.sys 000B58009E5D0962C0A71D6477029A3F
C:\windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\windows\System32\Drivers\cng.sys 7F7D4B16389CEF932950F6B2604D2601
C:\windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\windows\System32\Drivers\dfsc.sys EA9DBD76CE9254C77BAAB4339DD4C4FB
C:\windows\System32\drivers\discache.sys ==> MD5 is legit
C:\windows\System32\drivers\disk.sys B7B470F163002A0D0E381EE45834BF6B
C:\windows\system32\drivers\drmkaud.sys A3F684B866A7D89AE396276CE7AFD416
C:\windows\System32\drivers\dxgkrnl.sys 897AE9430D037B056CF76A49CF588542
C:\windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ETD.sys 8F08AF5E6C08A48D44D7E430637AEC2E
C:\windows\system32\Drivers\exfat.sys 53E8732CC70CC0991839DF9FC8996E4A
C:\windows\system32\Drivers\fastfat.sys 24F422E5D7517FEBDA2324116F1A7BE6
C:\windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\gzflt.sys 86F0B00670C9A92150D78F5ABB3C735E
C:\windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\windows\system32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\windows\System32\drivers\HTTP.sys 2F50E2780F16E00369F1311B086C3E42
C:\windows\System32\DRIVERS\ZDDriver.sys 19F724C06078A6744C895B61F3AD4955
C:\windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\iaStor.sys EB3A2C773E202CED30595BBFAD24FEBF
C:\windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\windows\System32\DRIVERS\igdkmd32.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ignis.sys 39E281DCE35E293F18DB32DE0A4CC939
C:\windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\windows\System32\drivers\RTKVHDA.sys 67365B1B9DB54734E9090137C77FB46C
C:\windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\windows\System32\Drivers\ksecdd.sys 888EF30D8048546A3E80885838B67172
C:\windows\System32\Drivers\ksecpkg.sys F4774FD8CC540090B330658AD68A8C22
C:\windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\windows\System32\drivers\modem.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\windows\System32\drivers\mountmgr.sys 9664F55623B43FD85D5642A202976AEE
C:\windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\mrxdav.sys 06AC0310138E4B2C35AF7344D18BC686
C:\windows\System32\DRIVERS\mrxsmb.sys F99E3FCA0184ADBFF3DD323911BC9A96
C:\windows\System32\DRIVERS\mrxsmb10.sys 3BC83F9EBE675E40E3C62995A9A01F82
C:\windows\System32\DRIVERS\mrxsmb20.sys 11448B7D9A4848B6BA88849D03B87332
C:\windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\windows\System32\drivers\ndis.sys 9804FB2E46077F2977552347DFCA7E05
C:\windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\netbt.sys A00996C9BFEF29A93B9F21DBE1DC502D
C:\windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\windows\system32\Drivers\Ntfs.sys 28B64D3792D4F692E45ECB0C3F98C19B
C:\windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\windows\system32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\windows\System32\drivers\pci.sys ==> MD5 is legit
C:\windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\windows\System32\drivers\peauth.sys 0C941A3F148B4228867908F98F394461
C:\windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\windows\System32\drivers\rdpvideominiport.sys 65375DF758CA1872AB7EBBBA457FD5E6
C:\windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rfcomm.sys CB928D9E6DAF51879DD6BA8D02F01321
C:\windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\Rt86win7.sys 7DFD48E24479B68B258D8770121155A0
C:\windows\system32\Drivers\SABI.sys 6E5FBB7CBAEC47038B945D5E9B144A64
C:\windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\SCDModem.sys 1E0C2621C6EBB3AA7B87B340A3E2127A
C:\windows\System32\DRIVERS\SCDSerials.sys 28DE4E70013FECA323558A0F2DAF4B54
C:\windows\System32\DRIVERS\SCDUsbHub.sys 36646E2678E5F5577DE6CFA122122CDC
C:\windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\srv.sys EE337A0E80C2554D42487E29C4E41E24
C:\windows\System32\DRIVERS\srv2.sys 722EDCF256AFD35538E69A933A908CA2
C:\windows\System32\DRIVERS\srvnet.sys BDF998A504EED01787CCA371980EAEDE
C:\windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\windows\System32\drivers\tcpip.sys C25848DB4A86839A7EDD1077F62AD980
C:\windows\System32\DRIVERS\tcpip.sys C25848DB4A86839A7EDD1077F62AD980
C:\windows\System32\drivers\tcpipreg.sys A4BF8BE9D1F7D563C7868AC7B2561545
C:\windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\windows\System32\DRIVERS\tdx.sys 8F143F86FDD8CF4F7BD25973C5983F9D
C:\windows\System32\DRIVERS\teamviewervpn.sys 9101FFFCFCCD1A30E870A5B8A9091B10
C:\windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\trufos.sys F9668216E2E4FFD53AF1992DCA96B308
C:\windows\System32\DRIVERS\tssecsrv.sys B89F89A2308E9569A1022A50F78C5506
C:\windows\System32\drivers\tsusbflt.sys C6A5FBD4977305E1FA23E02C042DB463
C:\windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\usbccgp.sys 325A69967CC7B4BFB170F5636143A94A
C:\windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\windows\system32\drivers\usbehci.sys 5D57798CAE5A0DD0B8F61C52B8E7C3D1
C:\windows\system32\drivers\usbhub.sys 3835ECC1E928042F92D7AA1963D40523
C:\windows\system32\drivers\usbohci.sys 81E1E90305A4C7A13BADC5DFA22ABA37
C:\windows\system32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\USBSTOR.SYS 144DA53294922A84FFAA3D90B1453745
C:\windows\system32\drivers\usbuhci.sys B4A1789BE90403D9549EF9DBAD37A429
C:\windows\System32\Drivers\usbvideo.sys DE014425522610BEDCA3821BB8C0F1D5
C:\windows\System32\DRIVERS\usb8023x.sys AF77716205C97E902E6C5B78DECE2CCA
C:\windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\windows\System32\drivers\vga.sys ==> MD5 is legit
C:\windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\windows\System32\drivers\volmgrx.sys 21D83DD717E8D681364A5E44A5459717
C:\windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vwififlt.sys 632F1B4B573B19CE0C80DF8432D1F65D
C:\windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\windows\system32\Drivers\windetect.sys 3D4DCA5D2F0B3DE8D18C742A66743042
C:\windows\System32\DRIVERS\WinUsb.sys A67E5F9A400F3BD1BE3D80613B45F708
C:\windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF
C:\windows\System32\DRIVERS\yk62x86.sys 49D10B542DACFBB0E2EBF3E59F83EF21
  #9  
Old September 9th, 2017, 05:46 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
2 of 4:

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-09 17:49 - 2017-09-09 17:49 - 000033797 _____ C:\Users\Darryl\Desktop\FRST.txt
2017-09-09 17:47 - 2017-09-09 17:47 - 000039079 _____ C:\Users\Darryl\Desktop\Shortcut 1.txt
2017-09-09 17:46 - 2017-09-09 17:47 - 000193976 _____ C:\Users\Darryl\Desktop\FRST 1.txt
2017-09-09 17:46 - 2017-09-09 17:47 - 000028381 _____ C:\Users\Darryl\Desktop\Addition 1.txt
2017-09-09 17:31 - 2017-09-09 17:49 - 000000000 ____D C:\FRST
2017-09-09 17:28 - 2017-09-09 17:28 - 001792512 _____ (Farbar) C:\Users\Darryl\Desktop\FRST.exe
2017-09-08 22:21 - 2017-09-08 22:21 - 000000000 ____D C:\Users\Darryl\Downloads\hero Glow In Dark Font
2017-09-08 21:37 - 2017-09-08 21:37 - 000000000 ____D C:\Users\Darryl\Downloads\My_Fontspring_Fonts
2017-09-08 14:47 - 2017-09-08 14:47 - 000074827 _____ C:\Users\Darryl\Downloads\hero Glow In Dark Font.zip
2017-09-08 14:41 - 2017-09-08 14:41 - 000512864 _____ C:\Users\Darryl\Downloads\My_Fontspring_Fonts.zip
2017-09-08 12:45 - 2017-09-08 12:53 - 000000000 ____D C:\Users\Darryl\Desktop\Yulia 172970
2017-09-06 16:44 - 2017-09-06 16:51 - 000000000 ____D C:\Users\Darryl\AppData\Local\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}
2017-09-06 16:43 - 2017-09-06 23:55 - 000000000 ____D C:\Program Files\Plumbytes Software
2017-09-04 20:01 - 2017-09-04 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HeavenWard
2017-09-04 20:01 - 2017-09-04 20:01 - 000000000 ____D C:\Program Files\HeavenWard
2017-09-03 01:35 - 2017-09-03 01:35 - 000000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_ 09_00.Wdf
2017-09-01 21:26 - 2017-09-01 21:26 - 000073866 _____ C:\Users\Darryl\Downloads\Gloria Payment.pdf
2017-08-30 23:48 - 2017-09-06 20:15 - 000000000 ____D C:\Users\Darryl\AppData\Local\CrashDumps
2017-08-25 21:13 - 2017-08-25 21:13 - 000000000 ____D C:\Users\Darryl\Tracing
2017-08-22 21:12 - 2017-09-03 23:50 - 000000000 ____D C:\Program Files\HSPA USB Modem
2017-08-22 21:12 - 2017-08-22 21:12 - 000001053 _____ C:\Users\Darryl\Desktop\HSPA USB Modem.lnk
2017-08-22 21:12 - 2017-08-22 21:12 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\HSPA USB Modem
2017-08-22 21:12 - 2017-08-22 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HSPA USB Modem
2017-08-19 15:32 - 2017-08-01 17:16 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2017-08-19 15:32 - 2017-07-07 17:10 - 000973312 _____ (Microsoft Corporation) C:\windows\system32\DXPTaskRingtone.dll
2017-08-12 20:54 - 2017-08-12 20:55 - 000000000 ____D C:\ProgramData\MobileBrServ
2017-08-12 17:59 - 2017-07-29 16:50 - 000074752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2017-08-12 17:59 - 2017-07-21 16:26 - 000518144 _____ C:\windows\system32\msjetoledb40.dll
2017-08-12 17:59 - 2017-07-21 16:26 - 000409600 _____ (Microsoft Corporation) C:\windows\system32\msexch40.dll
2017-08-12 17:59 - 2017-07-21 16:26 - 000290816 _____ (Microsoft Corporation) C:\windows\system32\msjtes40.dll
2017-08-12 17:59 - 2017-07-21 16:26 - 000282624 _____ (Microsoft Corporation) C:\windows\system32\mstext40.dll
2017-08-12 17:59 - 2017-07-15 19:52 - 000346320 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 001549824 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 001400320 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 001363968 _____ (Microsoft Corporation) C:\windows\system32\Query.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000666624 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000382976 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000337408 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000197120 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000104448 _____ (Microsoft Corporation) C:\windows\system32\mssitlb.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000059392 _____ (Microsoft Corporation) C:\windows\system32\msscntrs.dll
2017-08-12 17:59 - 2017-07-14 17:10 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\mssprxy.dll
2017-08-12 17:59 - 2017-07-14 17:00 - 000427520 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2017-08-12 17:59 - 2017-07-14 17:00 - 000164352 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2017-08-12 17:59 - 2017-07-14 16:59 - 000086528 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2017-08-12 17:59 - 2017-07-14 16:59 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\msshooks.dll
2017-08-12 17:59 - 2017-07-14 16:50 - 000054272 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2017-08-12 17:59 - 2017-07-14 16:50 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2017-08-12 17:59 - 2017-07-14 05:01 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2017-08-12 17:59 - 2017-07-14 05:00 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2017-08-12 17:59 - 2017-07-14 04:54 - 020270080 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-08-12 17:59 - 2017-07-14 04:48 - 000499200 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2017-08-12 17:59 - 2017-07-14 04:48 - 000341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2017-08-12 17:59 - 2017-07-14 04:48 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2017-08-12 17:59 - 2017-07-14 04:48 - 000047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2017-08-12 17:59 - 2017-07-14 04:47 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2017-08-12 17:59 - 2017-07-14 04:44 - 002290176 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2017-08-12 17:59 - 2017-07-14 04:42 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2017-08-12 17:59 - 2017-07-14 04:41 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2017-08-12 17:59 - 2017-07-14 04:39 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2017-08-12 17:59 - 2017-07-14 04:38 - 000663552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2017-08-12 17:59 - 2017-07-14 04:38 - 000620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2017-08-12 17:59 - 2017-07-14 04:38 - 000115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2017-08-12 17:59 - 2017-07-14 04:38 - 000104960 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2017-08-12 17:59 - 2017-07-14 04:33 - 000667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2017-08-12 17:59 - 2017-07-14 04:30 - 000416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2017-08-12 17:59 - 2017-07-14 04:26 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2017-08-12 17:59 - 2017-07-14 04:25 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2017-08-12 17:59 - 2017-07-14 04:25 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2017-08-12 17:59 - 2017-07-14 04:23 - 000168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2017-08-12 17:59 - 2017-07-14 04:22 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2017-08-12 17:59 - 2017-07-14 04:21 - 000279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2017-08-12 17:59 - 2017-07-14 04:20 - 000130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2017-08-12 17:59 - 2017-07-14 04:17 - 004546048 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-08-12 17:59 - 2017-07-14 04:13 - 000230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2017-08-12 17:59 - 2017-07-14 04:12 - 000693248 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2017-08-12 17:59 - 2017-07-14 04:12 - 000689664 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2017-08-12 17:59 - 2017-07-14 04:11 - 002057216 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2017-08-12 17:59 - 2017-07-14 04:11 - 001155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2017-08-12 17:59 - 2017-07-14 04:09 - 013663744 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-08-12 17:59 - 2017-07-14 03:53 - 002767872 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2017-08-12 17:59 - 2017-07-14 03:50 - 001314816 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2017-08-12 17:59 - 2017-07-14 03:48 - 000710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2017-08-12 17:59 - 2017-07-08 17:19 - 000250600 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys
2017-08-12 17:59 - 2017-07-08 16:51 - 002402816 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2017-08-12 17:59 - 2017-07-07 17:15 - 004001000 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2017-08-12 17:59 - 2017-07-07 17:15 - 003945192 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2017-08-12 17:59 - 2017-07-07 17:15 - 000296680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volmgrx.sys
2017-08-12 17:59 - 2017-07-07 17:15 - 000137960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2017-08-12 17:59 - 2017-07-07 17:15 - 000067304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2017-08-12 17:59 - 2017-07-07 17:13 - 001310528 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000261120 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000254464 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000223232 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000141312 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000109568 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2017-08-12 17:59 - 2017-07-07 17:11 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 001062912 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000644096 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000554496 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2017-08-12 17:59 - 2017-07-07 17:10 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2017-08-12 17:59 - 2017-07-07 16:52 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2017-08-12 17:59 - 2017-07-07 16:52 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2017-08-12 17:59 - 2017-07-07 16:52 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2017-08-12 17:59 - 2017-07-07 16:52 - 000016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2017-08-12 17:59 - 2017-07-07 16:51 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2017-08-12 17:59 - 2017-07-07 16:50 - 000262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2017-08-12 17:59 - 2017-07-07 16:48 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2017-08-12 17:59 - 2017-07-07 16:48 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2017-08-12 17:59 - 2017-07-07 16:48 - 000098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2017-08-12 17:59 - 2017-07-07 16:47 - 000069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2017-08-12 17:59 - 2017-07-07 16:47 - 000036352 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2017-08-12 17:59 - 2017-07-07 16:47 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2017-08-12 17:59 - 2017-07-07 16:47 - 000015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 001311744 _____ (Microsoft Corporation) C:\windows\system32\msjet40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000866816 _____ (Microsoft Corporation) C:\windows\system32\mswdat10.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000641536 _____ (Microsoft Corporation) C:\windows\system32\mswstr10.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000616448 _____ (Microsoft Corporation) C:\windows\system32\msrepl40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000475648 _____ (Microsoft Corporation) C:\windows\system32\msxbde40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000375808 _____ (Microsoft Corporation) C:\windows\system32\mspbde40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\msrd3x40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000339968 _____ (Microsoft Corporation) C:\windows\system32\msexcl40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000310272 _____ (Microsoft Corporation) C:\windows\system32\msrd2x40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000240640 _____ (Microsoft Corporation) C:\windows\system32\msltus40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000144896 _____ (Microsoft Corporation) C:\windows\system32\msjint40.dll
2017-08-12 17:59 - 2017-07-01 15:05 - 000083968 _____ (Microsoft Corporation) C:\windows\system32\msjter40.dll
2017-08-12 15:31 - 2017-08-12 15:31 - 000000000 ____D C:\Program Files\Common Files\Java
2017-08-11 15:41 - 2017-08-11 15:41 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Sun
2017-08-11 15:41 - 2017-08-11 15:41 - 000000000 ____D C:\Users\Darryl\.oracle_jre_usage
2017-08-11 15:32 - 2017-08-12 15:59 - 000000000 ____D C:\ProgramData\Oracle
2017-08-11 15:32 - 2017-08-11 15:32 - 000000000 ____D C:\ProgramData\Sun
2017-08-11 15:30 - 2017-08-11 15:41 - 000269888 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2017-08-11 15:29 - 2017-08-12 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-11 15:29 - 2017-08-12 15:31 - 000000000 ____D C:\Program Files\Java
2017-08-11 15:29 - 2017-08-12 15:30 - 000095808 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2017-08-11 15:28 - 2017-08-11 15:28 - 000000000 ____D C:\Users\Darryl\AppData\LocalLow\Sun
2017-08-11 14:08 - 2017-08-11 14:08 - 000000000 ____D C:\Users\Darryl\AppData\LocalLow\Adobe
2017-08-10 12:50 - 2017-08-10 12:58 - 005966941 _____ C:\Users\Darryl\Downloads\dict-en-20170701.oxt
2017-08-07 17:53 - 2017-09-06 21:50 - 000000000 ____D C:\Users\Darryl\Downloads\Programs New
2017-08-07 13:42 - 2016-08-16 22:27 - 000259072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2017-08-07 13:42 - 2016-08-16 22:27 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2017-08-07 13:42 - 2016-08-16 22:26 - 000285696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2017-08-07 13:42 - 2016-08-16 22:26 - 000046592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2017-08-07 13:42 - 2016-08-16 22:26 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2017-08-07 13:42 - 2016-08-16 22:26 - 000020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2017-08-07 13:42 - 2016-08-16 22:26 - 000006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2017-08-07 13:40 - 2012-07-06 21:23 - 000393728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2017-08-05 16:26 - 2017-08-07 23:22 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2017-08-05 16:26 - 2017-08-07 23:22 - 000001136 _____ C:\Users\Public\Desktop\paint.net.lnk
2017-08-05 16:25 - 2017-08-07 23:22 - 000000000 ____D C:\Program Files\paint.net
2017-08-05 16:25 - 2017-08-05 16:29 - 000000000 ____D C:\Users\Darryl\AppData\Local\paint.net
2017-08-02 17:28 - 2017-08-02 17:29 - 005073240 _____ (Microsoft Corporation) C:\Users\Darryl\Downloads\vcredist_x86.exe
2017-08-02 16:25 - 2017-08-02 16:36 - 000000000 ____D C:\Users\Darryl\Downloads\msvcr100 DLL
2017-07-31 19:55 - 2017-07-31 19:55 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_SCDSerials _01005.Wdf
2017-07-31 19:55 - 2017-07-31 19:55 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_SCDModem_0 1005.Wdf
2017-07-31 19:54 - 2016-02-01 11:11 - 000022528 _____ (SCD-MBB Device) C:\windows\system32\Drivers\SCDSerials.sys
2017-07-31 19:54 - 2016-02-01 11:11 - 000022528 _____ (SCD-MBB Device) C:\windows\system32\Drivers\SCDModem.sys
2017-07-31 19:54 - 2016-02-01 11:11 - 000015272 _____ (DriverCoding Incorporated.) C:\windows\system32\Drivers\SCDUsbHub.sys
2017-07-31 19:41 - 2017-07-31 19:41 - 000001845 _____ C:\Users\Public\Desktop\MTN Online.lnk
2017-07-31 19:41 - 2017-07-31 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTN Online
2017-07-31 19:40 - 2017-07-31 19:54 - 000000000 ____D C:\Program Files\MTN Online
2017-07-31 19:40 - 2016-02-01 11:11 - 001419232 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01005.dll
2017-07-30 00:08 - 2017-07-30 00:08 - 000149848 _____ C:\windows\Minidump\073017-38360-01.dmp
2017-07-30 00:08 - 2017-07-30 00:08 - 000000000 ____D C:\windows\Minidump
2017-07-30 00:07 - 2017-07-30 00:07 - 227901611 _____ C:\windows\MEMORY.DMP
2017-07-27 00:24 - 2017-07-27 00:24 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\OpenOffice
2017-07-26 15:59 - 2017-07-26 15:59 - 000001142 _____ C:\Users\Darryl\Desktop\OpenOffice 4.1.3.lnk
2017-07-26 15:59 - 2017-07-26 15:59 - 000000000 ___SD C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\OpenOffice 4.1.3
2017-07-26 15:57 - 2017-07-26 15:58 - 000000000 ____D C:\Program Files\OpenOffice 4
2017-07-26 15:53 - 2017-07-26 15:54 - 000000000 ____D C:\Users\Darryl\Desktop\OpenOffice 4.1.3 (en-US) Installation Files
2017-07-20 23:44 - 2017-07-20 23:44 - 000000000 ____D C:\Users\Darryl\AppData\Local\CEF
2017-07-20 23:27 - 2017-07-20 23:27 - 004263936 _____ C:\Users\Darryl\Documents\EV Log 200717.evtx
2017-07-20 23:27 - 2017-07-20 23:27 - 000000000 ____D C:\Users\Darryl\Documents\LocaleMetaData
2017-07-20 23:09 - 2017-09-05 00:02 - 002230150 _____ C:\windows\ntbtlog.txt
2017-07-18 20:04 - 2017-07-18 20:04 - 000002055 _____ C:\Users\Darryl\Desktop\Skype.lnk
2017-07-18 18:29 - 2017-07-18 18:29 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Google
2017-07-17 23:38 - 2017-07-17 23:38 - 000000000 ____D C:\Users\Darryl\AppData\Local\TeamViewer
2017-07-16 21:55 - 2017-09-07 23:48 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\vlc
2017-07-16 21:40 - 2017-07-16 21:40 - 000000000 ____D C:\Program Files\Xvid Plus Codec Pack
2017-07-16 21:35 - 2017-07-16 21:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-07-16 21:35 - 2017-07-16 21:35 - 000000000 ____D C:\Program Files\K-Lite Codec Pack
2017-07-16 21:27 - 2017-07-16 21:27 - 000000984 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-07-16 21:27 - 2017-07-16 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-07-16 21:27 - 2017-07-16 21:27 - 000000000 ____D C:\Program Files\VideoLAN
2017-07-16 19:28 - 2017-09-08 21:35 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Skype
2017-07-16 19:28 - 2017-07-16 19:28 - 000000000 ___RD C:\Program Files\Skype
2017-07-16 19:28 - 2017-07-16 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-07-16 19:28 - 2017-07-16 19:28 - 000000000 ____D C:\Program Files\Common Files\Skype
2017-07-16 13:26 - 2017-07-16 13:26 - 000000000 ____D C:\ProgramData\Package Cache
2017-07-16 13:13 - 2017-09-05 00:04 - 000000000 ____D C:\Program Files\TeamViewer
2017-07-16 13:13 - 2017-07-30 23:16 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-07-16 13:13 - 2017-07-30 23:16 - 000000877 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2017-07-16 13:13 - 2017-07-18 00:58 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\TeamViewer
2017-07-16 13:13 - 2017-04-20 09:27 - 000025088 _____ (TeamViewer GmbH) C:\windows\system32\Drivers\teamviewervpn.sys
2017-07-16 12:54 - 2017-07-16 12:54 - 000000123 _____ C:\windows\wininit.ini
2017-07-16 12:11 - 2011-03-11 07:38 - 000332160 _____ (Intel Corporation) C:\windows\system32\Drivers\iaStorV.sys
2017-07-16 12:11 - 2011-03-11 07:38 - 000080256 _____ (Advanced Micro Devices) C:\windows\system32\Drivers\amdsata.sys
2017-07-16 12:11 - 2011-03-11 07:33 - 001699328 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2017-07-16 12:10 - 2011-03-11 07:39 - 000143744 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvstor.sys
2017-07-16 12:10 - 2011-03-11 07:39 - 000117120 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvraid.sys
2017-07-16 12:10 - 2011-03-11 07:38 - 000022400 _____ (Advanced Micro Devices) C:\windows\system32\Drivers\amdxata.sys
2017-07-16 12:10 - 2011-03-11 07:31 - 000074240 _____ (Microsoft Corporation) C:\windows\system32\fsutil.exe
2017-07-16 12:09 - 2011-04-28 05:15 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\BTHUSB.SYS
2017-07-16 11:07 - 2014-07-09 03:29 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2017-07-16 11:07 - 2014-07-09 03:29 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2017-07-16 11:07 - 2014-07-09 03:29 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2017-07-16 11:07 - 2014-07-09 03:29 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2017-07-16 11:07 - 2014-07-09 03:29 - 000005632 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2017-07-16 11:07 - 2012-02-11 07:37 - 000317440 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2017-07-16 11:05 - 2017-07-16 11:14 - 000000000 ____D C:\Users\Darryl\AppData\Local\Microsoft Games
2017-07-16 10:24 - 2017-07-16 10:24 - 000000000 ___SD C:\windows\system32\CompatTel
2017-07-16 10:24 - 2017-07-16 10:24 - 000000000 ____D C:\windows\system32\appraiser
2017-07-16 09:07 - 2017-06-13 00:29 - 001227264 _____ (Microsoft Corporation) C:\windows\system32\wdc.dll
2017-07-16 09:07 - 2017-06-13 00:29 - 000444928 _____ (Microsoft Corporation) C:\windows\system32\wvc.dll
2017-07-16 09:07 - 2017-06-13 00:29 - 000390144 _____ (Microsoft Corporation) C:\windows\system32\sysmon.ocx
2017-07-16 09:07 - 2017-06-13 00:28 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\pdhui.dll
2017-07-16 09:07 - 2017-06-13 00:06 - 000303616 _____ (Microsoft Corporation) C:\windows\system32\msinfo32.exe
2017-07-16 09:07 - 2017-06-13 00:06 - 000157184 _____ (Microsoft Corporation) C:\windows\system32\perfmon.exe
2017-07-16 09:07 - 2017-06-13 00:06 - 000103424 _____ (Microsoft Corporation) C:\windows\system32\resmon.exe
2017-07-16 09:07 - 2017-06-09 17:17 - 001213672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2017-07-16 09:07 - 2017-05-30 06:39 - 001309928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2017-07-16 09:07 - 2017-05-30 06:39 - 000240872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2017-07-16 09:07 - 2017-05-30 06:39 - 000187624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2017-07-16 09:07 - 2017-05-12 20:03 - 000629760 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2017-07-16 09:07 - 2017-05-12 18:25 - 001251328 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2017-07-16 09:07 - 2017-05-12 18:25 - 000909824 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2017-07-16 09:07 - 2017-05-10 17:12 - 012880896 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2017-07-16 09:07 - 2017-05-10 17:12 - 002953216 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2017-07-16 09:07 - 2017-05-10 17:12 - 000174080 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2017-07-16 09:07 - 2017-05-10 17:10 - 000073728 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2017-07-16 09:07 - 2017-05-10 17:01 - 002092032 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2017-07-16 09:07 - 2017-05-10 17:00 - 000573440 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2017-07-16 09:07 - 2017-05-10 17:00 - 000136192 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2017-07-16 09:07 - 2017-05-10 17:00 - 000093696 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2017-07-16 09:07 - 2017-05-10 17:00 - 000035840 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2017-07-16 09:07 - 2017-05-10 17:00 - 000035328 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2017-07-16 09:07 - 2017-05-10 17:00 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2017-07-16 09:07 - 2017-05-10 17:00 - 000011776 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2017-07-16 09:07 - 2017-05-09 17:11 - 000779776 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2017-07-16 09:07 - 2017-05-07 17:14 - 000078568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2017-07-16 09:07 - 2017-05-07 16:53 - 000010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000581632 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000171008 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 16:48 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 16:48 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 16:48 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-07-16 09:07 - 2017-04-17 16:48 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-07-16 09:07 - 2017-04-12 17:26 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2017-07-16 09:07 - 2017-04-05 17:00 - 000313856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2017-07-16 09:07 - 2017-04-05 17:00 - 000311808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2017-07-16 09:07 - 2017-04-05 17:00 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2017-07-16 09:07 - 2017-04-04 16:52 - 000338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2017-07-16 09:07 - 2017-03-30 16:58 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\rundll32.exe
2017-07-16 09:07 - 2017-03-10 18:20 - 001508352 _____ (Microsoft Corporation) C:\windows\system32\pla.dll
2017-07-16 09:07 - 2017-03-10 18:20 - 000237056 _____ (Microsoft Corporation) C:\windows\system32\pdh.dll
2017-07-16 09:07 - 2017-03-10 17:52 - 000007680 _____ (Microsoft Corporation) C:\windows\system32\plasrv.exe
2017-07-16 09:07 - 2017-03-07 18:17 - 000067584 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2017-07-16 09:07 - 2017-03-07 17:06 - 002746880 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2017-07-16 09:07 - 2017-03-07 17:06 - 000221184 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2017-07-16 09:07 - 2017-03-07 17:06 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000922432 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000066400 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000022368 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000019808 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000016224 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000015712 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000013664 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-07-16 09:07 - 2017-01-18 17:35 - 000011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-07-16 09:07 - 2017-01-11 19:43 - 001241088 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2017-07-16 09:07 - 2017-01-11 19:43 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2017-07-16 09:07 - 2016-11-10 18:19 - 000811520 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2017-07-16 09:07 - 2016-10-11 17:18 - 000829952 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2017-07-16 09:07 - 2016-10-11 17:18 - 000202240 _____ (Microsoft Corporation) C:\windows\system32\input.dll
2017-07-16 09:07 - 2016-10-11 15:33 - 000187392 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2017-07-16 09:07 - 2016-10-07 17:12 - 002291712 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2017-07-16 09:07 - 2016-10-07 17:12 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\olepro32.dll
2017-07-16 09:07 - 2016-09-15 16:51 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2017-07-16 09:07 - 2016-09-08 22:34 - 000208896 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2017-07-16 09:07 - 2016-09-08 22:34 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2017-07-16 09:07 - 2016-09-08 16:49 - 000117248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2017-07-16 09:07 - 2016-08-21 15:05 - 000935424 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2017-07-16 09:07 - 2016-08-12 18:21 - 000437248 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2017-07-16 09:07 - 2016-08-06 17:15 - 001178112 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2017-07-16 09:07 - 2016-08-06 17:15 - 000249344 _____ (Microsoft Corporation) C:\windows\system32\WSManMigrationPlugin.dll
2017-07-16 09:07 - 2016-08-06 17:15 - 000214016 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2017-07-16 09:07 - 2016-08-06 17:15 - 000146944 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2017-07-16 09:07 - 2016-08-06 17:15 - 000054272 _____ (Microsoft Corporation) C:\windows\system32\WsmRes.dll
2017-07-16 09:07 - 2016-08-06 16:53 - 000199168 _____ (Microsoft Corporation) C:\windows\system32\WSManHTTPConfig.exe
2017-07-16 09:07 - 2016-08-06 16:53 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\wsmprovhost.exe
2017-07-16 09:07 - 2016-08-06 16:53 - 000010240 _____ (Microsoft Corporation) C:\windows\system32\wsmplpxy.dll
2017-07-16 09:07 - 2016-06-14 17:17 - 000593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2017-07-16 09:07 - 2016-04-14 15:49 - 000603648 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2017-07-16 09:07 - 2014-12-11 19:47 - 000074240 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2017-07-16 09:06 - 2017-07-06 06:44 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthpan.sys
2017-07-16 09:06 - 2017-06-15 22:18 - 000514048 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2017-07-16 09:06 - 2017-06-10 17:39 - 000271360 _____ (Microsoft Corporation) C:\windows\system32\Wldap32.dll
2017-07-16 09:06 - 2017-06-06 17:12 - 001499648 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2017-07-16 09:06 - 2017-06-02 09:57 - 000497152 _____ (Microsoft Corporation) C:\windows\HelpPane.exe
2017-07-16 09:06 - 2017-05-21 06:06 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2017-07-16 09:06 - 2017-05-16 17:16 - 000730856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys

3 of 4 : To follow
  #10  
Old September 9th, 2017, 05:48 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
3 of 4:

2017-07-16 09:06 - 2017-05-16 17:16 - 000218856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-07-16 09:06 - 2017-05-16 17:12 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2017-07-16 09:06 - 2017-05-12 20:07 - 000308456 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2017-07-16 09:06 - 2017-05-12 20:03 - 000306688 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2017-07-16 09:06 - 2017-05-12 20:03 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2017-07-16 09:06 - 2017-05-12 20:03 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2017-07-16 09:06 - 2017-05-12 20:03 - 000010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2017-07-16 09:06 - 2017-05-12 19:43 - 000034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2017-07-16 09:06 - 2017-05-10 17:16 - 000091368 _____ (Microsoft Corporation) C:\windows\system32\MigAutoPlay.exe
2017-07-16 09:06 - 2017-04-28 00:50 - 003550208 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_47.dll
2017-07-16 09:06 - 2017-04-21 17:15 - 000805376 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 001417728 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000872448 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000377344 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000294400 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 17:12 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-07-16 09:06 - 2017-04-17 16:54 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2017-07-16 09:06 - 2017-04-17 16:51 - 000271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2017-07-16 09:06 - 2017-04-12 17:25 - 001176064 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2017-07-16 09:06 - 2017-04-12 17:25 - 000145920 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2017-07-16 09:06 - 2017-04-12 17:25 - 000106496 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2017-07-16 09:06 - 2017-03-10 17:51 - 000148992 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fastfat.sys
2017-07-16 09:06 - 2017-03-10 17:51 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\exfat.sys
2017-07-16 09:06 - 2017-03-04 03:14 - 001329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2017-07-16 09:06 - 2017-03-04 03:14 - 000077312 _____ (Microsoft Corporation) C:\windows\system32\mfmjpegdec.dll
2017-07-16 09:06 - 2017-02-09 18:14 - 000575488 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2017-07-16 09:06 - 2017-02-09 18:14 - 000481792 _____ (Microsoft Corporation) C:\windows\system32\mscms.dll
2017-07-16 09:06 - 2017-02-09 18:14 - 000215040 _____ (Microsoft Corporation) C:\windows\system32\icm32.dll
2017-07-16 09:06 - 2017-02-09 18:14 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2017-07-16 09:06 - 2017-02-09 17:51 - 000032768 _____ (Microsoft Corporation) C:\windows\system32\WcsPlugInService.dll
2017-07-16 09:06 - 2017-01-13 19:45 - 000741888 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2017-07-16 09:06 - 2017-01-13 19:45 - 000084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2017-07-16 09:06 - 2016-11-20 18:19 - 000084992 _____ (Microsoft Corporation) C:\windows\system32\hlink.dll
2017-07-16 09:06 - 2016-11-20 16:07 - 000373896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2017-07-16 09:06 - 2016-11-09 18:24 - 000105192 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2017-07-16 09:06 - 2016-11-09 18:17 - 002365440 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2017-07-16 09:06 - 2016-11-09 18:17 - 001806848 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2017-07-16 09:06 - 2016-11-09 18:17 - 000337408 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2017-07-16 09:06 - 2016-11-09 18:17 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2017-07-16 09:06 - 2016-11-09 18:17 - 000025088 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2017-07-16 09:06 - 2016-11-09 17:55 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2017-07-16 09:06 - 2016-10-11 17:18 - 001027584 _____ (Microsoft Corporation) C:\windows\system32\IMJP10.IME
2017-07-16 09:06 - 2016-10-11 17:18 - 000701440 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL
2017-07-16 09:06 - 2016-10-11 17:18 - 000430080 _____ (Microsoft Corporation) C:\windows\system32\imkr80.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000126976 _____ (Microsoft Corporation) C:\windows\system32\tintlgnt.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\quick.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\qintlgnt.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\phon.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\cintlgnt.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\chajei.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000090112 _____ (Microsoft Corporation) C:\windows\system32\pintlgnt.ime
2017-07-16 09:06 - 2016-10-11 17:18 - 000069120 _____ (Microsoft Corporation) C:\windows\system32\nlsbres.dll
2017-07-16 09:06 - 2016-10-11 16:51 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\bcdedit.exe
2017-07-16 09:06 - 2016-10-11 15:18 - 000419648 _____ C:\windows\system32\locale.nls
2017-07-16 09:06 - 2016-10-08 15:05 - 000534600 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2017-07-16 09:06 - 2016-10-05 16:50 - 000068608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2017-07-16 09:06 - 2016-09-12 22:49 - 000076800 _____ (Microsoft Corporation) C:\windows\system32\adsmsext.dll
2017-07-16 09:06 - 2016-09-08 16:49 - 000081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2017-07-16 09:06 - 2016-08-12 18:47 - 012574208 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2017-07-16 09:06 - 2016-08-12 18:47 - 011410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2017-07-16 09:06 - 2016-08-12 18:31 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2017-07-16 09:06 - 2016-08-12 18:31 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2017-07-16 09:06 - 2016-08-12 18:31 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 003209216 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 001005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000474624 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000442368 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000195072 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000080896 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2017-07-16 09:06 - 2016-06-14 17:21 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2017-07-16 09:06 - 2016-06-14 17:05 - 000100352 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2017-07-16 09:06 - 2016-06-14 17:05 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2017-07-16 09:06 - 2016-06-14 17:05 - 000023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2017-07-16 09:06 - 2016-06-14 16:55 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2017-07-16 09:06 - 2016-06-14 16:55 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2017-07-16 09:06 - 2016-06-14 16:54 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2017-07-16 09:06 - 2016-05-12 15:04 - 000249352 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2017-07-16 09:06 - 2016-04-09 06:20 - 001230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2017-07-16 09:05 - 2017-05-03 17:15 - 000081640 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2017-07-16 09:05 - 2017-05-03 17:10 - 000987648 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 001327616 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 000505856 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 000446464 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 000275456 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 000182784 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2017-07-16 09:05 - 2017-05-03 15:05 - 000104960 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2017-07-16 09:05 - 2017-03-23 04:06 - 001602048 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2017-07-16 09:05 - 2015-07-30 19:57 - 001987584 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2017-07-16 09:05 - 2015-07-16 21:12 - 006131200 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2017-07-16 09:05 - 2015-07-16 21:12 - 000856064 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2017-07-16 09:05 - 2015-07-16 21:12 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2017-07-16 09:05 - 2015-07-16 17:14 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2017-07-16 09:05 - 2013-11-26 10:16 - 003419136 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2017-07-16 09:04 - 2015-12-08 23:54 - 002285056 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2017-07-16 08:56 - 2015-02-04 04:54 - 000417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2017-07-16 00:36 - 2017-09-09 00:22 - 000033179 _____ C:\bdlog.txt
2017-07-16 00:01 - 2017-07-16 00:01 - 000057575 _____ C:\ProgramData\dm.1500155999.bdinstall.bin
2017-07-16 00:00 - 2017-07-16 00:00 - 000000000 ____D C:\ProgramData\Bitdefender Device Management
2017-07-15 23:56 - 2017-07-15 23:56 - 000000385 _____ C:\windows\system32\user_gensett.xml
2017-07-15 23:55 - 2017-07-15 23:55 - 001758436 _____ C:\ProgramData\cl.1500155237.bdinstall.bin
2017-07-15 23:55 - 2017-07-15 23:55 - 000074691 _____ C:\ProgramData\cl.kit.1500155180.bdinstall.bin
2017-07-15 23:54 - 2017-07-15 23:54 - 000002270 _____ C:\Users\Public\Desktop\Bitdefender.lnk
2017-07-15 23:54 - 2017-07-15 23:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2017-07-15 23:54 - 2017-07-15 23:54 - 000000000 ____D C:\ProgramData\BDLogging
2017-07-15 23:54 - 2017-07-15 23:54 - 000000000 ____D C:\ProgramData\Atc
2017-07-15 23:54 - 2007-04-11 11:11 - 000511328 _____ (Microsoft Corporation) C:\windows\capicom.dll
2017-07-15 23:53 - 2017-07-16 00:00 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Bitdefender
2017-07-15 23:53 - 2017-06-08 05:19 - 000282712 _____ (Bitdefender) C:\windows\system32\Drivers\ignis.sys
2017-07-15 23:53 - 2017-06-07 05:04 - 000740824 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\windows\system32\Drivers\atc.sys
2017-07-15 23:53 - 2017-05-11 05:16 - 000043064 _____ (© Bitdefender SRL) C:\windows\system32\Drivers\bdprivmon.sys
2017-07-15 23:53 - 2017-04-19 07:19 - 001290472 _____ (BitDefender) C:\windows\system32\Drivers\avc3.sys
2017-07-15 23:53 - 2015-12-04 19:27 - 000083824 _____ (BitDefender) C:\windows\system32\Drivers\bdvedisk.sys
2017-07-15 23:51 - 2017-08-31 11:03 - 000000000 ____D C:\ProgramData\Bitdefender
2017-07-15 23:51 - 2017-07-16 00:00 - 000000000 ____D C:\Program Files\Bitdefender
2017-07-15 23:51 - 2017-07-15 23:51 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\QuickScan
2017-07-15 23:51 - 2017-05-11 05:37 - 000152784 _____ (BitDefender LLC) C:\windows\system32\Drivers\gzflt.sys
2017-07-15 23:51 - 2017-04-11 04:19 - 000376664 _____ (BitDefender S.R.L.) C:\windows\system32\Drivers\trufos.sys
2017-07-15 23:47 - 2017-07-15 23:51 - 000000000 ____D C:\Program Files\Common Files\Bitdefender
2017-07-15 22:40 - 2017-09-09 17:23 - 000000000 ____D C:\Program Files\Bitdefender Agent
2017-07-15 22:40 - 2017-07-15 22:40 - 000026269 _____ C:\ProgramData\agent.1500151240.5692.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000018534 _____ C:\ProgramData\agent.1500151240.6004.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000001509 _____ C:\ProgramData\agent.1500151240.5952.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000001146 _____ C:\ProgramData\agent.1500151240.5696.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2017-07-15 21:10 - 2010-01-14 08:04 - 000106496 _____ (ZD Secret Incorporated) C:\windows\system32\Drivers\ZDDriver.sys
2017-07-15 19:45 - 2017-07-16 12:24 - 000000000 ____D C:\Users\Darryl\AppData\Local\Adobe
2017-07-15 17:41 - 2014-07-01 00:14 - 000008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2017-07-15 17:41 - 2014-06-06 08:16 - 000035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2017-07-15 17:41 - 2014-03-09 23:47 - 000619672 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2017-07-15 17:41 - 2014-03-09 23:47 - 000099480 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2017-07-15 17:37 - 2015-07-30 15:13 - 000103120 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNativ e_v0300.dll
2017-07-15 17:07 - 2012-08-23 16:44 - 000014848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2017-07-15 17:07 - 2012-08-23 13:12 - 000192000 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2017-07-15 17:01 - 2013-10-02 02:42 - 000049152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2017-07-15 17:01 - 2013-10-02 02:32 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyCon trol.exe
2017-07-15 17:01 - 2013-10-02 02:30 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExt ension.dll
2017-07-15 17:01 - 2013-10-02 02:14 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2017-07-15 17:01 - 2013-10-02 02:14 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2017-07-15 17:01 - 2013-10-02 01:45 - 000032256 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2017-07-15 17:01 - 2013-10-02 00:34 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2017-07-15 11:23 - 2012-07-26 05:21 - 000196608 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2017-07-15 11:23 - 2012-07-26 05:20 - 000613888 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2017-07-15 11:23 - 2012-07-26 05:20 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2017-07-15 11:23 - 2012-07-26 05:20 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2017-07-15 11:23 - 2012-07-26 05:20 - 000038912 _____ (Microsoft Corporation) C:\windows\system32\WUDFCoinstaller.dll
2017-07-15 11:23 - 2012-07-26 04:33 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2017-07-15 11:23 - 2012-07-26 04:32 - 000155136 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2017-07-15 11:23 - 2012-06-02 16:57 - 000000003 _____ C:\windows\system32\Drivers\MsftWdf_User_01_11_00_ Inbox_Critical.Wdf
2017-07-15 11:00 - 2017-07-15 11:00 - 000645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2017-07-15 11:00 - 2017-07-15 11:00 - 000233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2017-07-15 11:00 - 2017-07-15 11:00 - 000139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2017-07-15 11:00 - 2017-07-15 11:00 - 000116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2017-07-15 11:00 - 2017-07-15 11:00 - 000071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2017-07-15 11:00 - 2017-07-15 11:00 - 000069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2017-07-15 11:00 - 2017-07-15 11:00 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2017-07-15 11:00 - 2017-07-15 11:00 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2017-07-15 10:57 - 2017-07-15 10:57 - 001158144 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 001080832 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000364544 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000293376 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000249856 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000220160 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000207872 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000161792 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-07-15 10:57 - 2017-07-15 10:57 - 000002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-07-15 09:01 - 2015-01-09 04:48 - 000635904 _____ (Microsoft Corporation) C:\windows\system32\perftrack.dll
2017-07-15 09:01 - 2015-01-09 04:48 - 000076800 _____ (Microsoft Corporation) C:\windows\system32\wdi.dll
2017-07-15 09:01 - 2015-01-09 04:48 - 000027136 _____ (Microsoft Corporation) C:\windows\system32\powertracker.dll
2017-07-15 08:58 - 2016-07-22 16:51 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2017-07-15 08:58 - 2016-05-11 17:19 - 000363520 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2017-07-15 08:58 - 2013-07-03 05:36 - 000055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2017-07-15 08:58 - 2013-07-03 05:36 - 000025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2017-07-15 08:57 - 2016-05-12 17:18 - 000606720 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2017-07-15 08:57 - 2016-05-12 17:18 - 000351744 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2017-07-15 08:57 - 2016-05-12 17:18 - 000274944 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2017-07-15 08:57 - 2016-05-12 17:18 - 000079360 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2017-07-15 08:57 - 2016-05-12 17:18 - 000070144 _____ (Microsoft Corporation) C:\windows\system32\winipsec.dll
2017-07-15 08:57 - 2016-05-12 17:18 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2017-07-15 08:57 - 2016-02-03 19:59 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2017-07-15 08:57 - 2015-01-29 05:02 - 002311168 _____ (Microsoft Corporation) C:\windows\system32\wpdshext.dll
2017-07-15 08:57 - 2014-11-11 04:44 - 000186880 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2017-07-15 08:57 - 2013-10-04 03:58 - 000152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dl l
2017-07-15 08:57 - 2013-10-04 03:56 - 000168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2017-07-15 08:57 - 2013-02-12 05:32 - 000015872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023x.sys
2017-07-15 08:57 - 2013-02-12 05:32 - 000015872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023.sys
2017-07-15 08:57 - 2013-01-24 06:47 - 000196328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2017-07-15 08:57 - 2012-11-02 07:11 - 000376832 _____ (Microsoft Corporation) C:\windows\system32\dpnet.dll
2017-07-15 08:57 - 2012-07-04 21:45 - 000033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rndismpx.sys
2017-07-15 08:57 - 2012-07-04 21:45 - 000033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2017-07-15 08:56 - 2016-02-09 11:50 - 000021504 _____ (Microsoft Corporation) C:\windows\system32\seclogon.dll
2017-07-15 08:56 - 2015-11-11 20:39 - 001242624 _____ (Microsoft Corporation) C:\windows\system32\comsvcs.dll
2017-07-15 08:56 - 2015-11-11 20:39 - 000487936 _____ (Microsoft Corporation) C:\windows\system32\catsrvut.dll
2017-07-15 08:56 - 2015-10-13 06:50 - 000712640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2017-07-15 08:56 - 2015-07-09 19:42 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\notepad.exe
2017-07-15 08:56 - 2015-07-09 19:42 - 000179712 _____ (Microsoft Corporation) C:\windows\notepad.exe
2017-07-15 08:56 - 2013-10-30 04:19 - 000301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2017-07-15 08:56 - 2013-10-19 03:36 - 000159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2017-07-15 08:56 - 2012-03-01 07:46 - 000019824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fs_rec.sys
2017-07-15 08:56 - 2012-03-01 07:29 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\wmi.dll
2017-07-15 08:56 - 2011-06-16 06:33 - 000180224 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2017-07-15 08:56 - 2011-02-18 07:39 - 000031232 _____ (Microsoft Corporation) C:\windows\system32\prevhost.exe
2017-07-15 08:55 - 2016-03-16 20:28 - 000176128 _____ (Microsoft Corporation) C:\windows\system32\msorcl32.dll
2017-07-15 08:55 - 2016-03-16 20:28 - 000111616 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2017-07-15 08:55 - 2015-11-03 20:55 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2017-07-15 08:55 - 2015-06-03 22:20 - 000409272 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2017-07-15 08:55 - 2015-06-03 22:16 - 000470704 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2017-07-15 08:55 - 2013-05-13 05:08 - 000903168 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2017-07-15 08:55 - 2013-05-13 05:08 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\certenc.dll
2017-07-15 08:54 - 2016-06-25 21:53 - 000297472 _____ (Microsoft Corporation) C:\windows\system32\ntprint.dll
2017-07-15 08:54 - 2016-06-25 21:53 - 000126464 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2017-07-15 08:54 - 2016-06-25 21:42 - 000039424 _____ (Microsoft Corporation) C:\windows\system32\wpnpinst.exe
2017-07-15 08:54 - 2016-06-25 21:41 - 000061952 _____ (Microsoft Corporation) C:\windows\system32\ntprint.exe
2017-07-15 08:54 - 2016-06-25 21:41 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\inetppui.dll
2017-07-15 08:54 - 2016-03-09 20:40 - 000316416 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2017-07-15 08:54 - 2016-03-09 20:34 - 000216064 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2017-07-15 08:54 - 2016-02-04 20:41 - 000296448 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2017-07-15 08:54 - 2015-10-29 19:50 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\shimeng.dll
2017-07-15 08:54 - 2015-10-29 19:49 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\apphelp.dll
2017-07-15 08:54 - 2015-10-29 19:49 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\aelupsvc.dll
2017-07-15 08:54 - 2015-10-29 19:49 - 000020992 _____ (Microsoft Corporation) C:\windows\system32\sdbinst.exe
2017-07-15 08:54 - 2015-08-27 19:58 - 001391104 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2017-07-15 08:54 - 2015-08-27 19:51 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2017-07-15 08:54 - 2015-08-05 19:41 - 000751104 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2017-07-15 08:54 - 2015-07-15 19:55 - 001159168 _____ (Microsoft Corporation) C:\windows\system32\sysmain.dll
2017-07-15 08:54 - 2015-04-11 05:07 - 000054656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\stream.sys
2017-07-15 08:54 - 2015-03-04 06:10 - 000058880 _____ (Microsoft Corporation) C:\windows\system32\clfsw32.dll
2017-07-15 08:54 - 2014-09-04 07:04 - 000372736 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000538112 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000049664 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000048128 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000047616 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2017-07-15 08:54 - 2014-03-04 11:17 - 000035328 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2017-07-15 08:54 - 2014-01-28 04:07 - 000185344 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2017-07-15 08:54 - 2013-10-12 04:04 - 000121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2017-07-15 08:54 - 2013-10-12 04:03 - 000163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2017-07-15 08:54 - 2013-10-12 03:15 - 000141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2017-07-15 08:54 - 2013-10-12 03:15 - 000126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2017-07-15 08:54 - 2013-05-10 05:20 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2017-07-15 08:54 - 2013-03-19 05:33 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2017-07-15 08:54 - 2012-08-21 22:12 - 000245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2017-07-15 08:54 - 2011-12-30 07:27 - 000478720 _____ (Microsoft Corporation) C:\windows\system32\timedate.cpl
2017-07-15 08:54 - 2011-08-17 06:24 - 000465408 _____ (Microsoft Corporation) C:\windows\system32\psisdecd.dll
2017-07-15 08:54 - 2011-08-17 06:19 - 000075776 _____ (Microsoft Corporation) C:\windows\system32\psisrndr.ax
2017-07-15 08:54 - 2011-05-24 12:44 - 000293376 _____ (Microsoft Corporation) C:\windows\system32\umpnpmgr.dll
2017-07-15 08:54 - 2011-03-03 07:38 - 000270336 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2017-07-15 08:54 - 2011-03-03 07:38 - 000132608 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2017-07-15 08:54 - 2011-03-03 07:36 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\dnscacheugc.exe
2017-07-15 08:53 - 2011-08-27 06:26 - 000233472 _____ (Microsoft Corporation) C:\windows\system32\oleacc.dll
2017-07-14 12:57 - 2017-07-14 12:57 - 000049152 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2017-07-14 12:53 - 2017-07-14 12:53 - 001505280 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2017-07-14 12:45 - 2013-12-04 04:03 - 000428032 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2017-07-14 12:45 - 2013-12-04 04:03 - 000423936 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2017-07-14 12:45 - 2013-12-04 04:03 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2017-07-14 12:45 - 2013-12-04 04:03 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2017-07-14 12:45 - 2013-12-04 04:02 - 000390144 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2017-07-14 12:45 - 2013-12-04 03:54 - 000594944 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2017-07-14 12:45 - 2013-12-04 03:54 - 000572416 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2017-07-14 12:45 - 2013-12-04 03:54 - 000510976 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2017-07-14 12:45 - 2013-12-04 03:54 - 000508928 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2017-07-14 12:44 - 2015-11-14 00:50 - 000076800 _____ (Microsoft Corporation) C:\windows\system32\mapistub.dll
2017-07-14 12:44 - 2015-11-14 00:50 - 000076800 _____ (Microsoft Corporation) C:\windows\system32\mapi32.dll
2017-07-14 12:44 - 2015-11-14 00:49 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\fixmapi.exe
2017-07-14 12:44 - 2014-06-18 03:51 - 000646144 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2017-07-14 12:44 - 2012-10-03 18:42 - 000175104 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2017-07-14 12:44 - 2012-10-03 18:42 - 000156672 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2017-07-14 12:44 - 2012-10-03 18:42 - 000052224 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2017-07-14 12:44 - 2012-10-03 18:42 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2017-07-14 12:44 - 2012-10-03 18:40 - 000499712 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2017-07-14 12:44 - 2011-02-12 07:35 - 000191488 _____ (Microsoft Corporation) C:\windows\system32\FXSCOVER.exe
2017-07-14 12:42 - 2015-05-25 20:01 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll
2017-07-14 12:42 - 2015-05-25 20:00 - 000364544 _____ (Microsoft Corporation) C:\windows\system32\tracerpt.exe
2017-07-14 12:42 - 2015-05-25 20:00 - 000082944 _____ (Microsoft Corporation) C:\windows\system32\logman.exe
2017-07-14 12:42 - 2015-05-25 20:00 - 000040448 _____ (Microsoft Corporation) C:\windows\system32\typeperf.exe
2017-07-14 12:42 - 2015-05-25 20:00 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\relog.exe
2017-07-14 12:42 - 2015-05-25 20:00 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\diskperf.exe
2017-07-14 12:41 - 2015-08-05 19:40 - 000015872 _____ (Microsoft Corporation) C:\windows\system32\icaapi.dll
2017-07-14 12:41 - 2015-08-05 18:58 - 000031232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2017-07-14 12:41 - 2015-07-22 19:53 - 000635392 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2017-07-14 12:41 - 2015-07-15 04:55 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll
2017-07-14 12:40 - 2015-12-16 20:43 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2017-07-14 12:40 - 2015-12-16 20:43 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2017-07-14 12:40 - 2015-12-16 20:43 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2017-07-14 12:40 - 2014-07-17 03:40 - 000157696 _____ (Microsoft Corporation) C:\windows\system32\winsta.dll
2017-07-14 12:40 - 2014-07-17 03:39 - 000304128 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2017-07-14 12:40 - 2014-07-17 03:39 - 000130048 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2017-07-14 12:40 - 2014-07-17 03:03 - 000184320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2017-07-14 12:40 - 2012-04-26 06:45 - 000058880 _____ (Microsoft Corporation) C:\windows\system32\rdpwsx.dll
2017-07-14 12:40 - 2012-04-26 06:41 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\rdrmemptylst.exe
2017-07-14 12:39 - 2016-08-29 16:55 - 002972672 _____ (Microsoft Corporation) C:\windows\explorer.exe
2017-07-14 12:39 - 2016-07-07 16:57 - 000035840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2017-07-14 12:39 - 2015-07-09 19:42 - 001372160 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2017-07-14 12:39 - 2015-07-09 19:42 - 000067584 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2017-07-14 12:38 - 2014-08-01 13:35 - 000793600 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2017-07-14 12:38 - 2013-07-26 03:55 - 000180224 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2017-07-14 12:37 - 2015-04-13 05:19 - 000259072 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2017-07-14 12:37 - 2014-02-04 04:07 - 000234432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2017-07-14 12:37 - 2014-02-04 04:07 - 000149440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2017-07-14 12:37 - 2014-02-04 04:07 - 000027072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2017-07-14 12:37 - 2014-02-04 04:00 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2017-07-14 12:37 - 2012-12-07 14:26 - 000308736 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2017-07-14 12:37 - 2012-12-07 14:20 - 002576384 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2017-07-14 12:37 - 2012-12-07 12:46 - 000055296 _____ (Microsoft) C:\windows\system32\cero.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000051712 _____ (Microsoft) C:\windows\system32\esrb.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000046592 _____ (Microsoft) C:\windows\system32\fpb.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000045568 _____ (Microsoft) C:\windows\system32\oflc-nz.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000044544 _____ (Microsoft) C:\windows\system32\pegibbfc.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000043520 _____ (Microsoft) C:\windows\system32\csrr.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000040960 _____ (Microsoft) C:\windows\system32\cob-au.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000030720 _____ (Microsoft) C:\windows\system32\usk.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000023552 _____ (Microsoft) C:\windows\system32\oflc.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000021504 _____ (Microsoft) C:\windows\system32\grb.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000020480 _____ (Microsoft) C:\windows\system32\pegi-pt.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000020480 _____ (Microsoft) C:\windows\system32\pegi-fi.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000020480 _____ (Microsoft) C:\windows\system32\pegi.rs
2017-07-14 12:37 - 2012-12-07 12:46 - 000015360 _____ (Microsoft) C:\windows\system32\djctq.rs
2017-07-14 12:37 - 2012-07-04 23:16 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2017-07-14 12:37 - 2012-07-04 23:14 - 000102912 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2017-07-14 12:37 - 2012-07-04 23:14 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\browcli.dll
2017-07-14 12:36 - 2016-01-22 08:04 - 000642048 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2017-07-14 12:36 - 2016-01-22 08:04 - 000535040 _____ (Microsoft Corporation) C:\windows\system32\EncDec.dll
2017-07-14 12:36 - 2012-01-04 10:58 - 000442880 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2017-07-14 12:35 - 2016-02-05 20:44 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\fveapibase.dll
2017-07-14 12:35 - 2016-02-05 19:33 - 000015360 _____ (Microsoft Corporation) C:\windows\system32\tbs.dll
2017-07-14 12:35 - 2016-01-21 02:51 - 000057280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\disk.sys
2017-07-14 12:35 - 2015-12-08 23:53 - 000509952 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2017-07-14 12:35 - 2015-11-05 21:02 - 000014848 _____ (Microsoft Corporation) C:\windows\system32\wshrm.dll
2017-07-14 12:35 - 2015-11-05 11:48 - 000117760 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys
2017-07-14 12:35 - 2015-06-03 22:22 - 000355456 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2017-07-14 12:35 - 2015-04-18 04:56 - 000342016 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2017-07-14 12:35 - 2015-02-03 05:12 - 000171520 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2017-07-14 12:35 - 2014-12-19 04:43 - 000164864 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2017-07-14 12:35 - 2014-06-19 00:23 - 001131664 _____ (Microsoft Corporation) C:\windows\system32\dfshim.dll
2017-07-14 12:35 - 2014-06-19 00:23 - 000156824 _____ (Microsoft Corporation) C:\windows\system32\mscorier.dll
2017-07-14 12:35 - 2014-06-19 00:23 - 000081560 _____ (Microsoft Corporation) C:\windows\system32\mscories.dll
2017-07-14 12:35 - 2013-10-12 04:03 - 000656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2017-07-14 12:35 - 2013-10-12 04:01 - 000679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2017-07-14 12:35 - 2013-10-12 04:01 - 000216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2017-07-14 12:35 - 2013-07-12 12:08 - 000146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2017-07-14 12:35 - 2013-07-12 12:07 - 000086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2017-07-14 12:35 - 2011-12-16 09:52 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\msvcrt.dll
2017-07-14 12:35 - 2011-06-15 10:55 - 000319488 _____ (Microsoft Corporation) C:\windows\system32\odbcjt32.dll
2017-07-14 12:35 - 2011-06-15 10:55 - 000163840 _____ (Microsoft Corporation) C:\windows\system32\odbctrac.dll
2017-07-14 12:35 - 2011-06-15 10:55 - 000122880 _____ (Microsoft Corporation) C:\windows\system32\odbccp32.dll
2017-07-14 12:35 - 2011-06-15 10:55 - 000086016 _____ (Microsoft Corporation) C:\windows\system32\odbccu32.dll
2017-07-14 12:35 - 2011-06-15 10:55 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\odbccr32.dll
2017-07-14 12:35 - 2011-03-11 07:33 - 001164288 _____ (Microsoft Corporation) C:\windows\system32\mfc42u.dll
2017-07-14 12:35 - 2011-03-11 07:33 - 001137664 _____ (Microsoft Corporation) C:\windows\system32\mfc42.dll
2017-07-14 12:35 - 2010-12-23 07:54 - 000850944 _____ (Microsoft Corporation) C:\windows\system32\sbe.dll
2017-07-14 12:35 - 2010-12-23 07:50 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\mpg2splt.ax
2017-07-14 12:34 - 2016-05-11 17:19 - 000351744 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2017-07-14 12:34 - 2016-05-11 17:19 - 000231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2017-07-14 12:34 - 2016-05-11 17:19 - 000206336 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2017-07-14 12:34 - 2016-05-11 17:01 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2017-07-14 12:34 - 2016-05-11 16:52 - 000188928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2017-07-14 12:34 - 2015-12-08 23:54 - 001620992 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 001568768 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 001325056 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000902144 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000815616 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000740352 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2017-07-14 12:34 - 2015-12-08 23:54 - 000739328 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000665088 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000541184 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000358400 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL
2017-07-14 12:34 - 2015-12-08 23:54 - 000154112 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000970240 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2adec.dll
2017-07-14 12:34 - 2015-12-08 23:53 - 000829952 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000609280 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000415744 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000338944 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2017-07-14 12:34 - 2015-12-08 23:53 - 000241152 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000241152 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\qasf.dll
2017-07-14 12:34 - 2015-12-08 23:53 - 000193536 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2017-07-14 12:34 - 2015-12-08 23:53 - 000153600 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000079872 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2017-07-14 12:34 - 2015-12-08 23:53 - 000067584 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2017-07-14 12:34 - 2015-12-08 23:53 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2017-07-14 12:34 - 2015-12-08 23:53 - 000004608 _____ (Microsoft Corporation) C:\windows\system32\ksuser.dll
2017-07-14 12:34 - 2015-12-08 23:43 - 000081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2017-07-14 12:34 - 2015-12-08 23:11 - 000177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2017-07-14 12:34 - 2015-12-08 23:11 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmkaud.sys
2017-07-14 12:34 - 2015-04-24 19:56 - 000530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2017-07-14 12:34 - 2013-06-26 00:56 - 000527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2017-07-14 12:34 - 2012-11-29 01:02 - 000047720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2017-07-14 12:34 - 2012-11-29 01:02 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\Wdfres.dll
2017-07-14 12:34 - 2012-11-29 01:02 - 000000003 _____ C:\windows\system32\Drivers\MsftWdf_Kernel_01011_I nbox_Critical.Wdf
2017-07-14 12:34 - 2012-10-09 19:40 - 000193536 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2017-07-14 12:34 - 2012-10-09 19:40 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2017-07-14 12:34 - 2012-09-26 00:47 - 000078336 _____ (Microsoft Corporation) C:\windows\system32\synceng.dll
2017-07-14 12:34 - 2012-03-17 09:27 - 000056176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2017-07-14 12:33 - 2015-06-02 01:47 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\cewmdm.dll
2017-07-14 12:33 - 2014-12-08 04:46 - 000308224 _____ (Microsoft Corporation) C:\windows\system32\scesrv.dll
2017-07-14 12:33 - 2014-12-06 05:50 - 000242688 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2017-07-14 12:33 - 2014-10-30 03:45 - 000155136 _____ (Microsoft Corporation) C:\windows\system32\charmap.exe
2017-07-14 12:33 - 2014-10-25 03:32 - 000067584 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2017-07-14 12:33 - 2013-08-05 03:56 - 000133056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2017-07-14 12:24 - 2014-10-14 03:50 - 000523776 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2017-07-14 12:19 - 2012-02-17 07:34 - 000826880 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2017-07-14 12:19 - 2012-02-17 06:13 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdtcp.sys

4 of 4 : To follow
  #11  
Old September 9th, 2017, 05:52 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
4 of 4:

2017-07-14 11:50 - 2017-07-14 11:50 - 000000000 ____D C:\windows\system32\SPReview
2017-07-14 11:49 - 2017-07-14 11:49 - 000000000 ____D C:\windows\system32\EventProviders
2017-07-14 11:47 - 2010-11-20 14:36 - 001077248 _____ (Microsoft Corporation) C:\windows\system32\Narrator.exe
2017-07-14 11:47 - 2010-11-20 14:32 - 005066752 _____ (Microsoft Corporation) C:\windows\system32\AuthFWSnapin.dll
2017-07-14 11:47 - 2010-11-20 14:30 - 000245632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volsnap.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000160128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vhdmp.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000153984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000116096 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msdsm.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000085376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sbp2port.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000053120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volmgr.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000053120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\termdd.sys
2017-07-14 11:47 - 2010-11-20 14:30 - 000028032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msahci.sys
2017-07-14 11:47 - 2010-11-20 14:29 - 002217856 _____ (Microsoft Corporation) C:\windows\system32\bootres.dll
2017-07-14 11:47 - 2010-11-20 14:29 - 000520064 _____ (Microsoft Corporation) C:\windows\system32\mcupdate_GenuineIntel.dll
2017-07-14 11:47 - 2010-11-20 14:29 - 000274304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\acpi.sys
2017-07-14 11:47 - 2010-11-20 14:29 - 000194432 _____ (Microsoft Corporation) C:\windows\system32\halmacpi.dll
2017-07-14 11:47 - 2010-11-20 14:29 - 000194432 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2017-07-14 11:47 - 2010-11-20 14:29 - 000014208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hwpolicy.sys
2017-07-14 11:47 - 2010-11-20 14:23 - 000144768 _____ (Microsoft Corporation) C:\windows\system32\basecsp.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 002983424 _____ (Microsoft Corporation) C:\windows\system32\UIRibbon.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 002755072 _____ (Microsoft Corporation) C:\windows\system32\themeui.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 002146304 _____ (Microsoft Corporation) C:\windows\system32\SyncCenter.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001712640 _____ (Microsoft Corporation) C:\windows\system32\xpsservices.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001667584 _____ (Microsoft Corporation) C:\windows\system32\setupapi.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001624064 _____ (Microsoft Corporation) C:\windows\system32\WMPEncEn.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001326592 _____ (Microsoft Corporation) C:\windows\system32\wlanpref.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001128448 _____ (Microsoft Corporation) C:\windows\system32\vssapi.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001115136 _____ (Microsoft Corporation) C:\windows\system32\RacEngn.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001086976 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001063936 _____ (Microsoft Corporation) C:\windows\system32\werconcpl.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 001003008 _____ (Microsoft Corporation) C:\windows\system32\WMNetMgr.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000974336 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000933376 _____ (Microsoft Corporation) C:\windows\system32\Vault.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000907776 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000782336 _____ (Microsoft Corporation) C:\windows\system32\webservices.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000778240 _____ (Microsoft Corporation) C:\windows\system32\sqlsrv32.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000646144 _____ (Microsoft Corporation) C:\windows\system32\SearchFolder.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000505856 _____ (Microsoft Corporation) C:\windows\system32\taskschd.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000463360 _____ (Microsoft Corporation) C:\windows\system32\wiaservc.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000458752 _____ (Microsoft Corporation) C:\windows\system32\WSDApi.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000412160 _____ (Microsoft Corporation) C:\windows\system32\sppwinob.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000411648 _____ (Microsoft Corporation) C:\windows\system32\wlangpui.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000380416 _____ (Microsoft Corporation) C:\windows\system32\sxs.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000352256 _____ (Microsoft Corporation) C:\windows\system32\wmpeffects.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000351232 _____ (Microsoft Corporation) C:\windows\system32\wmicmiplugin.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000350208 _____ (Microsoft Corporation) C:\windows\system32\shlwapi.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000346624 _____ (Microsoft Corporation) C:\windows\system32\untfs.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000335872 _____ (Microsoft Corporation) C:\windows\system32\WinSATAPI.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000328192 _____ (Microsoft Corporation) C:\windows\system32\shsvcs.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000305152 _____ (Microsoft Corporation) C:\windows\system32\taskcomp.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000301568 _____ (Microsoft Corporation) C:\windows\system32\srchadmin.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000286208 _____ (Microsoft Corporation) C:\windows\system32\rasmans.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000276992 _____ (Microsoft Corporation) C:\windows\system32\wcncsvc.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000270848 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000253952 _____ (Microsoft Corporation) C:\windows\system32\spwizui.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\scansetting.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000242176 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000228352 _____ (Microsoft Corporation) C:\windows\system32\stobject.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\upnp.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000196096 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000194048 _____ (Microsoft Corporation) C:\windows\system32\winmm.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000181760 _____ (Microsoft Corporation) C:\windows\system32\tcpipcfg.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000172544 _____ (Microsoft Corporation) C:\windows\system32\spp.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000168960 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000134656 _____ (Microsoft Corporation) C:\windows\system32\WinSCard.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000119808 _____ (Microsoft Corporation) C:\windows\system32\umpo.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000082944 _____ (Microsoft Corporation) C:\windows\system32\thumbcache.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\userenv.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\TabSvc.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000072192 _____ (Microsoft Corporation) C:\windows\system32\regapi.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000051712 _____ (Microsoft Corporation) C:\windows\system32\wscapi.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\samcli.dll
2017-07-14 11:47 - 2010-11-20 14:21 - 000046080 _____ (Microsoft Corporation) C:\windows\system32\RpcRtRemote.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 002504192 _____ (Microsoft Corporation) C:\windows\system32\WMVCORE.DLL
2017-07-14 11:47 - 2010-11-20 14:20 - 002494464 _____ (Microsoft Corporation) C:\windows\system32\netshell.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 001750528 _____ (Microsoft Corporation) C:\windows\system32\pnidui.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000988160 _____ (Microsoft Corporation) C:\windows\system32\propsys.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000932352 _____ (Microsoft Corporation) C:\windows\system32\printui.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000801280 _____ (Microsoft Corporation) C:\windows\system32\NaturalLanguage6.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000585728 _____ (Microsoft Corporation) C:\windows\system32\qmgr.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000573440 _____ (Microsoft Corporation) C:\windows\system32\odbc32.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000563712 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000547840 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceApi.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000441856 _____ (Microsoft Corporation) C:\windows\system32\powercpl.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000406528 _____ (Microsoft Corporation) C:\windows\system32\netcfgx.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000330240 _____ (Microsoft Corporation) C:\windows\system32\QAGENTRT.DLL
2017-07-14 11:47 - 2010-11-20 14:20 - 000225792 _____ (Microsoft Corporation) C:\windows\system32\netdiagfx.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000199168 _____ (Microsoft Corporation) C:\windows\system32\onex.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000171520 _____ (Microsoft Corporation) C:\windows\system32\QAGENT.DLL
2017-07-14 11:47 - 2010-11-20 14:20 - 000167936 _____ (Microsoft Corporation) C:\windows\system32\QSHVHOST.DLL
2017-07-14 11:47 - 2010-11-20 14:20 - 000166400 _____ (Microsoft Corporation) C:\windows\system32\netiohlp.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000117248 _____ (Microsoft Corporation) C:\windows\system32\netid.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000116736 _____ (Microsoft Corporation) C:\windows\system32\prncache.dll
2017-07-14 11:47 - 2010-11-20 14:20 - 000078848 _____ (Microsoft Corporation) C:\windows\system32\nci.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 002151936 _____ (Microsoft Corporation) C:\windows\system32\mmcndmgr.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000954752 _____ (Microsoft Corporation) C:\windows\system32\mfc40.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000954288 _____ (Microsoft Corporation) C:\windows\system32\mfc40u.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000732160 _____ (Microsoft Corporation) C:\windows\system32\imapi2fs.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000566272 _____ (Microsoft Corporation) C:\windows\system32\MPSSVC.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000400896 _____ (Microsoft Corporation) C:\windows\system32\ipsmsnap.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000392192 _____ (Microsoft Corporation) C:\windows\system32\imapi2.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000213504 _____ (Microsoft Corporation) C:\windows\system32\MMDevAPI.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000206336 _____ (Microsoft Corporation) C:\windows\system32\framedynos.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000202752 _____ (Microsoft Corporation) C:\windows\system32\framedyn.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000196608 _____ (Microsoft Corporation) C:\windows\system32\mfreadwrite.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000194560 _____ (Microsoft Corporation) C:\windows\system32\ListSvc.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000167936 _____ (Microsoft Corporation) C:\windows\system32\msutb.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000155136 _____ (Microsoft Corporation) C:\windows\system32\hgprint.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\fde.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000103936 _____ (Microsoft Corporation) C:\windows\system32\IPHLPAPI.DLL
2017-07-14 11:47 - 2010-11-20 14:19 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\hbaapi.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000042496 _____ (Microsoft Corporation) C:\windows\system32\mimefilt.dll
2017-07-14 11:47 - 2010-11-20 14:19 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\msasn1.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 002522624 _____ (Microsoft Corporation) C:\windows\system32\dbgeng.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 001828352 _____ (Microsoft Corporation) C:\windows\system32\d3d9.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 001555456 _____ (Microsoft Corporation) C:\windows\system32\certmgr.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 001334272 _____ (Microsoft Corporation) C:\windows\system32\CertEnroll.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000863744 _____ (Microsoft Corporation) C:\windows\system32\diagperf.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000854016 _____ (Microsoft Corporation) C:\windows\system32\dbghelp.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000762880 _____ (Microsoft Corporation) C:\windows\system32\azroles.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000494592 _____ (Microsoft Corporation) C:\windows\system32\BFE.DLL
2017-07-14 11:47 - 2010-11-20 14:18 - 000485888 _____ (Microsoft Corporation) C:\windows\system32\comdlg32.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000399872 _____ (Microsoft Corporation) C:\windows\system32\DXP.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000323072 _____ (Microsoft Corporation) C:\windows\system32\drvstore.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000309760 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000254464 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000252928 _____ (Microsoft) C:\windows\system32\DShowRdpFilter.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000222208 _____ (Microsoft Corporation) C:\windows\system32\eapphost.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\dps.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000097280 _____ (Microsoft Corporation) C:\windows\system32\dwmredir.dll
2017-07-14 11:47 - 2010-11-20 14:18 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\dot3api.dll
2017-07-14 11:47 - 2010-11-20 14:17 - 003367424 _____ (Microsoft Corporation) C:\windows\system32\WinSAT.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 003179520 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 001203200 _____ (Microsoft Corporation) C:\windows\system32\wbengine.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 001131008 _____ (Microsoft Corporation) C:\windows\system32\sdclt.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 001025536 _____ (Microsoft Corporation) C:\windows\system32\VSSVC.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000802304 _____ (Microsoft Corporation) C:\windows\system32\WFS.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000523264 _____ (Microsoft Corporation) C:\windows\system32\FXSSVC.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000477696 _____ (Microsoft Corporation) C:\windows\system32\lpksetup.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000456192 _____ (Microsoft Corporation) C:\windows\system32\spinstall.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000453632 _____ (Microsoft Corporation) C:\windows\system32\vds.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000334336 _____ (Microsoft Corporation) C:\windows\system32\wisptis.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000302592 _____ (Microsoft Corporation) C:\windows\system32\cmd.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000280576 _____ (Microsoft Corporation) C:\windows\system32\spreview.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000267776 _____ (Microsoft Corporation) C:\windows\system32\lsm.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000220672 _____ (Microsoft Corporation) C:\windows\system32\mcbuilder.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000192000 _____ (Microsoft Corporation) C:\windows\system32\taskeng.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\schtasks.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\net1.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000103936 _____ (Microsoft Corporation) C:\windows\system32\setupcl.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000098816 _____ (Microsoft) C:\windows\system32\Robocopy.exe
2017-07-14 11:47 - 2010-11-20 14:17 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\proquota.exe
2017-07-14 11:47 - 2010-11-20 14:16 - 000905216 _____ (Microsoft Corporation) C:\windows\system32\mmsys.cpl
2017-07-14 11:47 - 2010-11-20 14:16 - 000776192 _____ (Microsoft Corporation) C:\windows\system32\calc.exe
2017-07-14 11:47 - 2010-11-20 14:16 - 000679424 _____ (Microsoft Corporation) C:\windows\system32\autoconv.exe
2017-07-14 11:47 - 2010-11-20 14:16 - 000668160 _____ (Microsoft Corporation) C:\windows\system32\autochk.exe
2017-07-14 11:47 - 2010-11-20 14:16 - 000658944 _____ (Microsoft Corporation) C:\windows\system32\autofmt.exe
2017-07-14 11:47 - 2010-11-20 14:16 - 000320000 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2017-07-14 11:47 - 2010-11-20 14:16 - 000204288 _____ (Microsoft Corporation) C:\windows\system32\MSNP.ax
2017-07-14 11:47 - 2010-11-20 14:16 - 000119808 _____ (Microsoft Corporation) C:\windows\system32\aitagent.exe
2017-07-14 11:47 - 2010-11-20 12:22 - 000213504 _____ (Microsoft Corporation) C:\windows\system32\rdpdd.dll
2017-07-14 11:47 - 2010-11-20 12:01 - 000164864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\1394ohci.sys
2017-07-14 11:47 - 2010-11-20 11:59 - 000035968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\winusb.sys
2017-07-14 11:47 - 2010-11-20 10:44 - 000242688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdbss.sys
2017-07-14 11:47 - 2010-11-20 10:42 - 000246784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\udfs.sys
2017-07-14 11:47 - 2010-11-05 04:20 - 000146852 _____ C:\windows\system32\systemsf.ebd
2017-07-14 11:47 - 2010-11-05 03:58 - 000297808 _____ (Microsoft Corporation) C:\windows\system32\mscoree.dll
2017-07-14 11:47 - 2010-11-05 03:58 - 000049488 _____ (Microsoft Corporation) C:\windows\system32\netfxperf.dll
2017-07-14 11:47 - 2010-11-05 03:53 - 000295264 _____ (Microsoft Corporation) C:\windows\system32\PresentationHost.exe
2017-07-14 11:47 - 2010-11-05 03:53 - 000099176 _____ (Microsoft Corporation) C:\windows\system32\PresentationHostProxy.dll
2017-07-14 11:46 - 2010-11-20 14:36 - 000107008 _____ (Microsoft Corporation) C:\windows\system32\NAPHLPR.DLL
2017-07-14 11:46 - 2010-11-20 14:36 - 000046080 _____ (Microsoft Corporation) C:\windows\system32\NAPCRYPT.DLL
2017-07-14 11:46 - 2010-11-20 14:30 - 000173440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdyboost.sys
2017-07-14 11:46 - 2010-11-20 14:30 - 000140160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scsiport.sys
2017-07-14 11:46 - 2010-11-20 14:30 - 000130432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mpio.sys
2017-07-14 11:46 - 2010-11-20 14:29 - 000137088 _____ (Microsoft Corporation) C:\windows\system32\halacpi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 002202624 _____ (Microsoft Corporation) C:\windows\system32\SensorsCpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 002157568 _____ (Microsoft Corporation) C:\windows\system32\themecpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000766464 _____ (Microsoft Corporation) C:\windows\system32\wpccpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000755200 _____ (Microsoft Corporation) C:\windows\system32\sud.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000750080 _____ (Microsoft Corporation) C:\windows\system32\sdcpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000697344 _____ (Microsoft Corporation) C:\windows\system32\SmiEngine.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000638976 _____ (Microsoft Corporation) C:\windows\system32\VAN.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000600064 _____ (Microsoft Corporation) C:\windows\system32\usercpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000577024 _____ (Microsoft Corporation) C:\windows\system32\wpd_ci.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000507392 _____ (Microsoft Corporation) C:\windows\system32\wmdrmdev.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000473600 _____ (Microsoft Corporation) C:\windows\system32\riched20.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000436736 _____ (Microsoft Corporation) C:\windows\system32\wmdrmnet.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000428544 _____ (Microsoft Corporation) C:\windows\system32\shwebsvc.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000428032 _____ (Microsoft Corporation) C:\windows\system32\wlanmsm.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000416768 _____ (Microsoft Corporation) C:\windows\system32\wiadefui.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000410624 _____ (Microsoft Corporation) C:\windows\system32\systemcpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000410112 _____ (Microsoft Corporation) C:\windows\system32\wlanui.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000406528 _____ (Microsoft Corporation) C:\windows\system32\wimgapi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000363008 _____ (Microsoft Corporation) C:\windows\system32\wbemcomn.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000352768 _____ (Microsoft Corporation) C:\windows\system32\termmgr.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000352768 _____ (Microsoft Corporation) C:\windows\system32\spwizeng.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000350720 _____ (Microsoft Corporation) C:\windows\system32\WPDSp.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000327680 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000318976 _____ (Microsoft Corporation) C:\windows\system32\raschap.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000316416 _____ (Microsoft Corporation) C:\windows\system32\sharemediacpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000309760 _____ (Microsoft Corporation) C:\windows\system32\sqlcese30.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000299520 _____ (Microsoft Corporation) C:\windows\system32\wmpdxm.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\srrstr.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000247808 _____ (Microsoft Corporation) C:\windows\system32\ReAgent.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000242176 _____ (Microsoft Corporation) C:\windows\system32\tapisrv.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000233472 _____ (Microsoft Corporation) C:\windows\system32\taskbarcpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000222208 _____ (Microsoft Corporation) C:\windows\system32\wavemsp.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000220160 _____ (Microsoft Corporation) C:\windows\system32\SndVolSSO.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000202240 _____ (Microsoft Corporation) C:\windows\system32\unattend.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000198144 _____ (Microsoft Corporation) C:\windows\system32\wpdwcn.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000198144 _____ (Microsoft Corporation) C:\windows\system32\sysclass.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000196608 _____ (Microsoft Corporation) C:\windows\system32\wwanconn.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000193536 _____ (Microsoft Corporation) C:\windows\system32\sppcomapi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000189952 _____ (Microsoft Corporation) C:\windows\system32\wdscore.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000189952 _____ (Microsoft Corporation) C:\windows\system32\sqmapi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000186368 _____ (Microsoft Corporation) C:\windows\system32\rdpencom.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000182272 _____ (Microsoft Corporation) C:\windows\system32\wmpsrcwp.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000176640 _____ (Microsoft Corporation) C:\windows\system32\rasppp.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000175616 _____ (Microsoft Corporation) C:\windows\system32\scecli.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000160256 _____ (Microsoft Corporation) C:\windows\system32\vdsbas.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000159232 _____ (Microsoft Corporation) C:\windows\system32\syncui.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000151040 _____ (Microsoft Corporation) C:\windows\system32\vdsutil.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000146944 _____ (Microsoft Corporation) C:\windows\system32\remotepg.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\twext.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\wmpps.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\recovery.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000135168 _____ (Microsoft Corporation) C:\windows\system32\XpsRasterService.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\sdrsvc.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\uxlib.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000115712 _____ (Microsoft Corporation) C:\windows\system32\sppnp.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000115712 _____ (Microsoft Corporation) C:\windows\system32\setupcln.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000111104 _____ (Microsoft Corporation) C:\windows\system32\shsetup.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000109568 _____ (Microsoft Corporation) C:\windows\system32\wiavideo.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000108032 _____ (Microsoft Corporation) C:\windows\system32\shacct.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000105984 _____ (Microsoft Corporation) C:\windows\system32\WPDShServiceObj.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000105472 _____ (Microsoft Corporation) C:\windows\system32\wmpshell.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\sppinst.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000090112 _____ (Microsoft Corporation) C:\windows\system32\srvcli.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000085504 _____ (Microsoft Corporation) C:\windows\system32\wpdbusenum.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000084480 _____ (Microsoft Corporation) C:\windows\system32\wkssvc.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000080896 _____ (Microsoft Corporation) C:\windows\system32\QUTIL.DLL
2017-07-14 11:46 - 2010-11-20 14:21 - 000078848 _____ (Microsoft Corporation) C:\windows\system32\UserAccountControlSettings.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000071168 _____ (Microsoft Corporation) C:\windows\system32\resutils.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000069632 _____ (Microsoft Corporation) C:\windows\system32\tlscsp.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000069632 _____ (Microsoft Corporation) C:\windows\system32\rastapi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000061952 _____ (Microsoft Corporation) C:\windows\system32\spbcd.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000059392 _____ (Microsoft Corporation) C:\windows\system32\unimdmat.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\vfwwdm32.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000053760 _____ (Microsoft Corporation) C:\windows\system32\sppuinotify.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000052224 _____ (Microsoft Corporation) C:\windows\system32\rdpd3d.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000051712 _____ (Microsoft Corporation) C:\windows\system32\wsnmp32.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000051200 _____ (Twain Working Group) C:\windows\twain_32.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\umb.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\wkscli.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000046592 _____ (Microsoft Corporation) C:\windows\system32\WavDest.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000040448 _____ (Microsoft Corporation) C:\windows\system32\wtsapi32.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\rtutils.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000036352 _____ (Microsoft Corporation) C:\windows\system32\wshbth.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000035840 _____ (Microsoft Corporation) C:\windows\system32\shimgvw.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000033280 _____ (Microsoft Corporation) C:\windows\system32\wiarpc.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\wdiasqmmodule.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\utildll.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\vpnikeapi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000021504 _____ (Microsoft Corporation) C:\windows\system32\wsdchngr.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000021504 _____ (Microsoft Corporation) C:\windows\system32\TRAPI.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000021504 _____ (Microsoft Corporation) C:\windows\system32\rdprefdrvapi.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000020992 _____ (Microsoft Corporation) C:\windows\system32\shgina.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000019968 _____ (Microsoft Corporation) C:\windows\system32\spopk.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000019456 _____ (Microsoft Corporation) C:\windows\system32\sisbkup.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\schedcli.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000014848 _____ (Microsoft Corporation) C:\windows\system32\syssetup.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\slwga.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\tsbyuv.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\wshirda.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000010752 _____ (Microsoft Corporation) C:\windows\system32\shunimpl.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\riched32.dll
2017-07-14 11:46 - 2010-11-20 14:21 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\rdpcfgex.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 002130944 _____ (Microsoft Corporation) C:\windows\system32\networkmap.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 001661440 _____ (Microsoft Corporation) C:\windows\system32\networkexplorer.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 001644032 _____ (Microsoft Corporation) C:\windows\system32\netcenter.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 001160192 _____ (Microsoft Corporation) C:\windows\system32\OpcServices.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 001111552 _____ (Microsoft Corporation) C:\windows\system32\onexui.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000859648 _____ (Microsoft Corporation) C:\windows\system32\OobeFldr.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000600576 _____ (Microsoft Corporation) C:\windows\system32\PerfCenterCPL.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000427520 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceStatus.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000395264 _____ (Microsoft Corporation) C:\windows\system32\prnfldr.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000346112 _____ (Microsoft Corporation) C:\windows\system32\nshipsec.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000324608 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000295424 _____ (Microsoft Corporation) C:\windows\system32\photowiz.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000283136 _____ (Microsoft Corporation) C:\windows\system32\qdv.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000218112 _____ (Microsoft Corporation) C:\windows\system32\OnLineIDCpl.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\qcap.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000183296 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceSyncProvider.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000175616 _____ (Microsoft Corporation) C:\windows\system32\netplwiz.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000174592 _____ (Microsoft Corporation) C:\windows\system32\ocsetapi.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000165376 _____ (Microsoft Corporation) C:\windows\system32\provsvc.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000161792 _____ (Microsoft Corporation) C:\windows\system32\netjoin.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000136192 _____ (Microsoft Corporation) C:\windows\system32\mydocs.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000121344 _____ (Microsoft Corporation) C:\windows\system32\sppc.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000120320 _____ (Microsoft Corporation) C:\windows\system32\prntvpt.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000099328 _____ (Microsoft Corporation) C:\windows\system32\QSVRMGMT.DLL
2017-07-14 11:46 - 2010-11-20 14:20 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\olethk32.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000071680 _____ (Microsoft Corporation) C:\windows\system32\QCLIPROV.DLL
2017-07-14 11:46 - 2010-11-20 14:20 - 000069120 _____ (Microsoft Corporation) C:\windows\system32\ntlanman.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000068096 _____ (Microsoft Corporation) C:\windows\system32\napdsnap.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\ncryptui.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\odbcconf.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000032768 _____ (Microsoft Corporation) C:\windows\system32\PrintIsolationProxy.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\profprov.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\netutils.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\perfts.dll
2017-07-14 11:46 - 2010-11-20 14:20 - 000011776 _____ (Microsoft Corporation) C:\windows\system32\nrpsrv.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 001066496 _____ (Microsoft Corporation) C:\windows\system32\msdtctm.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000856576 _____ (Microsoft Corporation) C:\windows\system32\FirewallControlPanel.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000828928 _____ (Microsoft Corporation) C:\windows\system32\fontext.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000592384 _____ (Microsoft Corporation) C:\windows\system32\msftedit.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000430080 _____ (Microsoft Corporation) C:\windows\system32\FXSTIFF.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000429056 _____ (Microsoft Corporation) C:\windows\system32\localsec.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000320512 _____ (Microsoft Corporation) C:\windows\system32\mtxclu.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000320512 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000312832 _____ (Microsoft Corporation) C:\windows\system32\hgcpl.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000271360 _____ (Microsoft Corporation) C:\windows\system32\iprtrmgr.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000268800 _____ (Microsoft Corporation) C:\windows\system32\mprddm.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000266752 _____ (Microsoft Corporation) C:\windows\system32\MediaMetadataHandler.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\MSAC3ENC.DLL
2017-07-14 11:46 - 2010-11-20 14:19 - 000209920 _____ (Microsoft Corporation) C:\windows\system32\mstask.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000176128 _____ (Microsoft Corporation) C:\windows\system32\MFPlay.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\iasrad.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000158720 _____ (Microsoft Corporation) C:\windows\system32\mprapi.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000158720 _____ (Microsoft Corporation) C:\windows\system32\itircl.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000148992 _____ (Microsoft Corporation) C:\windows\system32\ifsutil.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000127488 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000122880 _____ (Microsoft Corporation) C:\windows\system32\iasrecst.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000120320 _____ (Microsoft Corporation) C:\windows\system32\msvfw32.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000118272 _____ (Microsoft Corporation) C:\windows\system32\imm32.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000101888 _____ (Microsoft Corporation) C:\windows\system32\migisol.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000098304 _____ (Microsoft Corporation) C:\windows\system32\fphc.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000093696 _____ (Windows (R) Codename Longhorn DDK provider) C:\windows\system32\fms.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000084480 _____ (Microsoft Corporation) C:\windows\system32\mciavi32.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000082944 _____ (Radius Inc.) C:\windows\system32\iccvid.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000078848 _____ (Microsoft Corporation) C:\windows\system32\iasacct.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000071168 _____ (Microsoft Corporation) C:\windows\system32\KMSVC.DLL
2017-07-14 11:46 - 2010-11-20 14:19 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\fdeploy.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000052736 _____ (Microsoft Corporation) C:\windows\system32\inetmib1.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\iyuv_32.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\luainstall.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000039424 _____ (Microsoft Corporation) C:\windows\system32\FXSMON.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000036352 _____ (Microsoft Corporation) C:\windows\system32\mciqtz32.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\httpapi.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\msvidc32.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\msdmo.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\iscsium.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\msyuv.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\HotStartUserAgent.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000021504 _____ (Microsoft Corporation) C:\windows\system32\lsmproxy.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\muifontsetup.dll
2017-07-14 11:46 - 2010-11-20 14:19 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\msrle32.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 003727872 _____ (Microsoft Corporation) C:\windows\system32\accessibilitycpl.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 001400320 _____ (Microsoft Corporation) C:\windows\system32\DxpTaskSync.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 001188864 _____ (Microsoft Corporation) C:\windows\system32\DiagCpl.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 001040384 _____ (Microsoft Corporation) C:\windows\system32\Display.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000744448 _____ (Microsoft Corporation) C:\windows\system32\ActionCenter.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000740864 _____ (Microsoft Corporation) C:\windows\system32\batmeter.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000685056 _____ (Microsoft Corporation) C:\windows\system32\dsuiext.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000537600 _____ (Microsoft Corporation) C:\windows\system32\ActionCenterCPL.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000484864 _____ (Microsoft Corporation) C:\windows\system32\DeviceCenter.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000428032 _____ (Microsoft Corporation) C:\windows\system32\biocpl.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000333824 _____ (Microsoft Corporation) C:\windows\system32\dot3ui.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000314368 _____ (Microsoft Corporation) C:\windows\system32\azroleui.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\dpx.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\audiodev.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000242176 _____ (Microsoft Corporation) C:\windows\system32\eapp3hst.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000230912 _____ (Microsoft Corporation) C:\windows\system32\clusapi.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000220672 _____ (Microsoft Corporation) C:\windows\system32\defaultlocationcpl.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000214016 _____ (Microsoft Corporation) C:\windows\system32\dot3svc.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000211456 _____ (Microsoft Corporation) C:\windows\system32\DevicePairingFolder.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\dxdiagn.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000205312 _____ (Microsoft Corporation) C:\windows\system32\efscore.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000202752 _____ (Microsoft Corporation) C:\windows\system32\activeds.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000196608 _____ (Microsoft Corporation) C:\windows\system32\dskquoui.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000186880 _____ (Microsoft Corporation) C:\windows\system32\adsldp.dll

Still would not fit 5 of 5 to follow....
  #12  
Old September 9th, 2017, 05:53 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
5 of 5 (at last. Sorry soo much mate):

2017-07-14 11:46 - 2010-11-20 14:18 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\ActionQueue.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000146944 _____ (Microsoft Corporation) C:\windows\system32\autoplay.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000145920 _____ (Microsoft Corporation) C:\windows\system32\cfgmgr32.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000133632 _____ (Microsoft Corporation) C:\windows\system32\bcdsrv.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000132608 _____ (Microsoft Corporation) C:\windows\system32\cabview.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000128512 _____ (Microsoft Corporation) C:\windows\system32\EhStorAPI.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\dot3msm.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000109056 _____ (Microsoft Corporation) C:\windows\system32\dnscmmc.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\eappgnui.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\avifil32.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\dot3cfg.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\cabinet.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\amstream.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000067584 _____ (Microsoft Corporation) C:\windows\system32\certprop.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\cca.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000065024 _____ (Microsoft Corporation) C:\windows\system32\CertPolEng.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000045568 _____ (Microsoft Corporation) C:\windows\system32\acppage.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\cscapi.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\dsauth.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\AzSqlExt.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000023040 _____ (Microsoft Corporation) C:\windows\system32\cscdll.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\elsTrans.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000019456 _____ (Microsoft Corporation) C:\windows\system32\bitsperf.dll
2017-07-14 11:46 - 2010-11-20 14:18 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\C_ISCII.DLL
2017-07-14 11:46 - 2010-11-20 14:18 - 000010752 _____ (Microsoft Corporation) C:\windows\system32\browseui.dll
2017-07-14 11:46 - 2010-11-20 14:17 - 000941568 _____ (Microsoft Corporation) C:\windows\system32\mblctr.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000586752 _____ (Microsoft Corporation) C:\windows\system32\dfrgui.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000327680 _____ (Microsoft Corporation) C:\windows\system32\wimserv.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\nltest.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\slui.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000314880 _____ (Microsoft Corporation) C:\windows\system32\wusa.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000314368 _____ (Microsoft Corporation) C:\windows\system32\SndVol.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000292864 _____ (Microsoft Corporation) C:\windows\system32\WindowsAnytimeUpgradeResults.e xe
2017-07-14 11:46 - 2010-11-20 14:17 - 000288256 _____ (Microsoft Corporation) C:\windows\system32\eudcedit.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000276480 _____ (Microsoft Corporation) C:\windows\system32\diskraid.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000270336 _____ (Microsoft Corporation) C:\windows\system32\sethc.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000257536 _____ (Microsoft Corporation) C:\windows\system32\WindowsAnytimeUpgrade.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000254976 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000233984 _____ (Microsoft Corporation) C:\windows\system32\msconfig.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000227328 _____ (Microsoft Corporation) C:\windows\system32\taskmgr.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000219648 _____ (Microsoft Corporation) C:\windows\system32\fsquirt.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\recdisc.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000209920 _____ (Microsoft Corporation) C:\windows\system32\PkgMgr.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000197632 _____ (Microsoft Corporation) C:\windows\system32\ocsetup.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000182784 _____ (Microsoft Corporation) C:\windows\system32\RelPost.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000144896 _____ (Microsoft Corporation) C:\windows\system32\iscsicli.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000133632 _____ (Microsoft Corporation) C:\windows\system32\diskpart.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000132608 _____ (Microsoft Corporation) C:\windows\system32\MdSched.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000113152 _____ (Microsoft Corporation) C:\windows\system32\setupugc.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\mobsync.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000098304 _____ (Microsoft Corporation) C:\windows\system32\nslookup.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000095232 _____ (Microsoft Corporation) C:\windows\system32\logagent.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000086528 _____ (Microsoft Corporation) C:\windows\system32\isoburn.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000084992 _____ (Microsoft Corporation) C:\windows\system32\cmstp.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000074240 _____ (Microsoft Corporation) C:\windows\system32\tabcal.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\MuiUnattend.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000066048 _____ (Microsoft Corporation) C:\windows\system32\w32tm.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000062976 _____ (Microsoft Corporation) C:\windows\system32\findstr.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000061952 _____ (Microsoft Corporation) C:\windows\system32\manage-bde.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000061952 _____ (Microsoft Corporation) C:\windows\system32\lpremove.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000061440 _____ (Microsoft Corporation) C:\windows\system32\PnPUnattend.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\djoin.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\repair-bde.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\MultiDigiMon.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\takeown.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\runonce.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000047616 _____ (Microsoft Corporation) C:\windows\system32\tzutil.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000042496 _____ (Microsoft Corporation) C:\windows\system32\ftp.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\unlodctr.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\userinit.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\netiougc.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\netcfg.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\ReAgentc.exe
2017-07-14 11:46 - 2010-11-20 14:17 - 000010752 _____ (Microsoft Corporation) C:\windows\system32\LogonUI.exe
2017-07-14 11:46 - 2010-11-20 14:16 - 000878592 _____ (Microsoft Corporation) C:\windows\system32\Bubbles.scr
2017-07-14 11:46 - 2010-11-20 14:16 - 000692736 _____ (Microsoft Corporation) C:\windows\system32\bthprops.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000649216 _____ (Microsoft Corporation) C:\windows\system32\appwiz.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000600576 _____ (Microsoft Corporation) C:\windows\system32\TabletPC.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000516096 _____ (Microsoft Corporation) C:\windows\system32\main.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000413696 _____ (Microsoft Corporation) C:\windows\system32\PhotoScreensaver.scr
2017-07-14 11:46 - 2010-11-20 14:16 - 000345088 _____ (Microsoft Corporation) C:\windows\system32\intl.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000326656 _____ (Microsoft Corporation) C:\windows\system32\sysdm.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000293888 _____ (Microsoft Corporation) C:\windows\system32\ssText3d.scr
2017-07-14 11:46 - 2010-11-20 14:16 - 000281088 _____ (Microsoft Corporation) C:\windows\system32\unimdm.tsp
2017-07-14 11:46 - 2010-11-20 14:16 - 000221184 _____ (Microsoft Corporation) C:\windows\system32\Mystify.scr
2017-07-14 11:46 - 2010-11-20 14:16 - 000220672 _____ (Microsoft Corporation) C:\windows\system32\Ribbons.scr
2017-07-14 11:46 - 2010-11-20 14:16 - 000186368 _____ (Microsoft Corporation) C:\windows\system32\bitsadmin.exe
2017-07-14 11:46 - 2010-11-20 14:16 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\wdmaud.drv
2017-07-14 11:46 - 2010-11-20 14:16 - 000153600 _____ (Microsoft Corporation) C:\windows\system32\VBICodec.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000146944 _____ (Microsoft Corporation) C:\windows\system32\bcdboot.exe
2017-07-14 11:46 - 2010-11-20 14:16 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\powercfg.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000128000 _____ (Microsoft Corporation) C:\windows\system32\desk.cpl
2017-07-14 11:46 - 2010-11-20 14:16 - 000107008 _____ (Microsoft Corporation) C:\windows\system32\Kswdmcap.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000084480 _____ (Microsoft Corporation) C:\windows\system32\kstvtune.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000072704 _____ (Microsoft Corporation) C:\windows\system32\Mpeg2Data.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000068608 _____ (Microsoft Corporation) C:\windows\system32\WSTPager.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000065024 _____ (Microsoft Corporation) C:\windows\bfsvc.exe
2017-07-14 11:46 - 2010-11-20 14:16 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\MSDvbNP.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ksxbar.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000045568 _____ (Microsoft Corporation) C:\windows\system32\g711codc.ax
2017-07-14 11:46 - 2010-11-20 14:16 - 000033792 _____ (Microsoft Corporation) C:\windows\system32\vbisurf.ax
2017-07-14 11:46 - 2010-11-20 14:07 - 001164800 _____ (Microsoft Corporation) C:\windows\system32\UIRibbonRes.dll
2017-07-14 11:46 - 2010-11-20 14:07 - 000007680 _____ (Microsoft Corporation) C:\windows\system32\spwizres.dll
2017-07-14 11:46 - 2010-11-20 14:05 - 000121856 _____ (Microsoft Corporation) C:\windows\system32\RDPENCDD.dll
2017-07-14 11:46 - 2010-11-20 14:05 - 000035328 _____ (Microsoft Corporation) C:\windows\system32\pifmgr.dll
2017-07-14 11:46 - 2010-11-20 14:00 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDSG.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\kbdlk41a.dll
2017-07-14 11:46 - 2010-11-20 14:00 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDCZ1.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDTUQ.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDTUF.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDSF.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDPO.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDNEPR.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDINBEN.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDGR1.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\KBDGKL.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDUS.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDUGHR1.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDTURME.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDTAJIK.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDMON.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDMAORI.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDLT1.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDINTEL.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDINTAM.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDINORI.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDINMAR.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDINKAN.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDINHIN.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDBULG.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\KBDBLR.DLL
2017-07-14 11:46 - 2010-11-20 14:00 - 000005632 _____ (Microsoft Corporation) C:\windows\system32\KBDGEO.DLL
2017-07-14 11:46 - 2010-11-20 13:57 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\dpnaddr.dll
2017-07-14 11:46 - 2010-11-20 13:56 - 000052736 _____ (Microsoft Corporation) C:\windows\system32\BlbEvents.dll
2017-07-14 11:46 - 2010-11-20 12:52 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbrpm.sys
2017-07-14 11:46 - 2010-11-20 12:22 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RDPCDD.sys
2017-07-14 11:46 - 2010-11-20 12:21 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\RDPREFDD.dll
2017-07-14 11:46 - 2010-11-20 12:21 - 000018432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdpipe.sys
2017-07-14 11:46 - 2010-11-20 12:07 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndiswan.sys
2017-07-14 11:46 - 2010-11-20 12:07 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wanarp.sys
2017-07-14 11:46 - 2010-11-20 12:07 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndproxy.sys
2017-07-14 11:46 - 2010-11-20 12:06 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tunnel.sys
2017-07-14 11:46 - 2010-11-20 12:06 - 000046080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndisuio.sys
2017-07-14 11:46 - 2010-11-20 12:00 - 000304128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\HdAudio.sys
2017-07-14 11:46 - 2010-11-20 12:00 - 000039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\umbus.sys
2017-07-14 11:46 - 2010-11-20 12:00 - 000025856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBCAMD2.sys
2017-07-14 11:46 - 2010-11-20 12:00 - 000025856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBCAMD.sys
2017-07-14 11:46 - 2010-11-20 11:59 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hdaudbus.sys
2017-07-14 11:46 - 2010-11-20 11:59 - 000024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidusb.sys
2017-07-14 11:46 - 2010-11-20 11:50 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ks.sys
2017-07-14 11:46 - 2010-11-20 11:50 - 000031232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\CompositeBus.sys
2017-07-14 11:46 - 2010-11-20 11:50 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\kbdhid.sys
2017-07-14 11:46 - 2010-11-20 11:50 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sffp_sd.sys
2017-07-14 11:46 - 2010-11-20 11:24 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scfilter.sys
2017-07-14 11:46 - 2010-11-20 11:19 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\IPMIDrv.sys
2017-07-14 11:46 - 2010-11-20 10:47 - 000010240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\acpipmi.sys
2017-07-14 11:46 - 2010-11-20 10:39 - 000021504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdi.sys
2017-07-14 11:46 - 2010-11-20 10:38 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cdrom.sys
2017-07-14 11:46 - 2010-11-20 07:23 - 000053600 _____ C:\windows\system32\dosx.exe
2017-07-14 11:46 - 2010-11-10 03:45 - 000010429 _____ C:\windows\system32\ScavengeSpace.xml
2017-07-14 11:46 - 2010-11-05 04:20 - 000105559 _____ C:\windows\system32\RacRules.xml
2017-07-14 11:46 - 2010-11-05 04:11 - 000312168 _____ (Microsoft Corporation) C:\windows\system32\MCEWMDRMNDBootstrap.dll
2017-07-14 10:53 - 2017-09-04 16:01 - 000002101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-07-14 10:53 - 2017-09-04 16:01 - 000002089 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-07-14 10:52 - 2017-07-15 16:50 - 000000000 ____D C:\Users\Darryl\AppData\Local\Google
2017-07-14 10:52 - 2017-07-14 10:53 - 000000000 ____D C:\Program Files\Google
2017-07-14 10:52 - 2017-07-14 10:52 - 000000000 ____D C:\Users\Darryl\AppData\Local\Deployment
2017-07-14 10:52 - 2017-07-14 10:52 - 000000000 ____D C:\Users\Darryl\AppData\Local\Apps\2.0
2017-07-14 10:48 - 2017-07-15 19:45 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Adobe
2017-07-14 10:41 - 2017-08-12 18:06 - 000000000 ____D C:\windows\system32\MRT
2017-07-14 10:41 - 2017-08-12 18:01 - 137505280 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-07-14 10:40 - 2017-07-14 10:40 - 000000000 ____D C:\windows\system32\x64
2017-07-14 10:39 - 2017-07-14 10:39 - 000000000 ____D C:\Program Files\MSXML 4.0
2017-07-14 10:38 - 2016-06-25 17:43 - 000301056 _____ (Microsoft Corporation) C:\windows\system32\EOSNotify.exe
2017-07-14 10:22 - 2017-09-09 16:23 - 000064824 _____ C:\Users\Darryl\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-14 10:20 - 2017-07-14 10:20 - 000000000 ____D C:\Users\Darryl\Documents\Bluetooth Exchange Folder
2017-07-14 10:15 - 2017-07-14 10:15 - 000001413 _____ C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\Internet Explorer.lnk
2017-07-14 10:14 - 2017-07-14 10:14 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows \Start Menu\Programs\CyberLink YouCam
2017-07-14 10:14 - 2017-07-14 10:14 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2017-07-14 10:14 - 2017-07-14 10:14 - 000000000 ____D C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\CyberLink YouCam
2017-07-14 10:14 - 2017-07-14 10:14 - 000000000 ____D C:\Program Files\CyberLink
2017-07-14 10:13 - 2017-07-14 10:13 - 000000000 ____D C:\Users\Darryl\AppData\Local\Broadcom
2017-07-14 10:13 - 2017-07-14 10:13 - 000000000 ____D C:\ProgramData\Temp
2017-07-14 10:13 - 2017-07-14 10:13 - 000000000 ____D C:\Program Files\Elantech
2017-07-14 10:11 - 2010-07-20 08:26 - 000111656 _____ (Broadcom Corporation.) C:\windows\system32\Drivers\btwavdt.sys
2017-07-14 10:11 - 2010-07-20 08:26 - 000088616 _____ (Broadcom Corporation.) C:\windows\system32\Drivers\btwaudio.sys
2017-07-14 10:11 - 2010-07-20 08:26 - 000018728 _____ (Broadcom Corporation.) C:\windows\system32\Drivers\btwrchid.sys
2017-07-14 10:11 - 2010-07-14 01:25 - 000297000 _____ (Broadcom Corporation.) C:\windows\system32\Drivers\btwampfl.sys
2017-07-14 10:11 - 2010-03-02 09:37 - 000033320 _____ (Broadcom Corporation.) C:\windows\system32\Drivers\btwl2cap.sys
2017-07-14 10:10 - 2017-07-14 10:10 - 000000000 ____D C:\Program Files\WIDCOMM
2017-07-14 10:09 - 2017-08-25 21:13 - 000000000 ____D C:\Users\Darryl
2017-07-14 10:09 - 2017-07-15 21:17 - 000000000 ____D C:\Users\Darryl\AppData\Local\VirtualStore
2017-07-14 10:09 - 2017-07-14 10:09 - 000000020 ___SH C:\Users\Darryl\ntuser.ini
2017-07-14 10:09 - 2017-07-14 10:09 - 000000000 _____ C:\windows\system32\Drivers\144D_SAMSUNG_N_V410_03 UC.mrk

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-09 17:43 - 2009-07-26 22:06 - 000781790 _____ C:\windows\system32\PerfStringBackup.INI
2017-09-09 17:43 - 2009-07-14 04:37 - 000000000 ____D C:\windows\inf
2017-09-09 16:59 - 2009-07-14 06:34 - 000014512 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-09 16:59 - 2009-07-14 06:34 - 000014512 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-09 16:26 - 2009-07-14 04:37 - 000000000 ____D C:\windows\system32\NDF
2017-09-09 16:22 - 2009-07-14 06:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2017-09-09 16:22 - 2009-07-14 06:33 - 000300080 _____ C:\windows\system32\FNTCACHE.DAT
2017-09-04 00:02 - 2009-07-14 04:37 - 000000000 ____D C:\windows\ModemLogs
2017-08-25 21:13 - 2011-04-06 04:27 - 000000000 ____D C:\ProgramData\Skype
2017-08-13 19:40 - 2009-07-14 04:37 - 000000000 ____D C:\windows\rescache

==================== Files in the root of some directories =======

2017-07-15 22:40 - 2017-07-15 22:40 - 000026269 _____ () C:\ProgramData\agent.1500151240.5692.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000001146 _____ () C:\ProgramData\agent.1500151240.5696.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000001509 _____ () C:\ProgramData\agent.1500151240.5952.bin
2017-07-15 22:40 - 2017-07-15 22:40 - 000018534 _____ () C:\ProgramData\agent.1500151240.6004.bin
2017-07-15 23:55 - 2017-07-15 23:55 - 001758436 _____ () C:\ProgramData\cl.1500155237.bdinstall.bin
2017-07-15 23:55 - 2017-07-15 23:55 - 000074691 _____ () C:\ProgramData\cl.kit.1500155180.bdinstall.bin
2017-07-16 00:01 - 2017-07-16 00:01 - 000057575 _____ () C:\ProgramData\dm.1500155999.bdinstall.bin

Some files in TEMP:
====================
2017-07-16 19:10 - 2012-11-09 13:50 - 000023040 _____ (Windows (R) 2000 DDK provider) C:\Users\Darryl\AppData\Local\Temp\DeviceSetup.exe
2017-08-19 14:08 - 2017-08-22 21:12 - 000023040 _____ (Windows (R) 2000 DDK provider) C:\Users\Darryl\AppData\Local\Temp\DeviceSetup32.e xe
2017-08-12 14:20 - 2017-08-12 14:20 - 000740416 _____ (Oracle Corporation) C:\Users\Darryl\AppData\Local\Temp\jre-8u144-windows-au.exe
2017-08-19 14:07 - 2017-08-22 21:12 - 003118041 _____ () C:\Users\Darryl\AppData\Local\Temp\runsetup.exe
2017-07-16 13:25 - 2017-07-16 13:26 - 014456872 _____ (Microsoft Corporation) C:\Users\Darryl\AppData\Local\Temp\vc_redist.x86.e xe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale en-US
inherit {globalsettings}
default {current}
resumeobject {eef897b7-6081-11e0-a77f-002454bb62d6}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \windows\system32\winload.exe
description Windows 7
locale en-US
inherit {bootloadersettings}
recoverysequence {eef897b9-6081-11e0-a77f-002454bb62d6}
recoveryenabled Yes
osdevice partition=C:
systemroot \windows
resumeobject {eef897b7-6081-11e0-a77f-002454bb62d6}
nx OptIn
numproc 2

Windows Boot Loader
-------------------
identifier {eef897b9-6081-11e0-a77f-002454bb62d6}
device ramdisk=[C:]\Recovery\eef897b9-6081-11e0-a77f-002454bb62d6\Winre.wim,{eef897ba-6081-11e0-a77f-002454bb62d6}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\eef897b9-6081-11e0-a77f-002454bb62d6\Winre.wim,{eef897ba-6081-11e0-a77f-002454bb62d6}
systemroot \windows
nx OptIn
winpe Yes

Resume from Hibernate
---------------------
identifier {eef897b7-6081-11e0-a77f-002454bb62d6}
device partition=C:
path \windows\system32\winresume.exe
description Windows Resume Application
locale en-US
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
pae No
debugoptionenabled No

Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-US
inherit {globalsettings}
badmemoryaccess Yes

EMS Settings
------------
identifier {emssettings}
bootems Yes

Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

RAM Defects
-----------
identifier {badmemory}

Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}

Device options
--------------
identifier {eef897ba-6081-11e0-a77f-002454bb62d6}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\eef897b9-6081-11e0-a77f-002454bb62d6\boot.sdi


LastRegBack: 2017-08-31 18:52

==================== End of FRST.txt ============================
  #13  
Old September 9th, 2017, 05:55 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Addition 2.txt ...

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-08-2017
Ran by Darryl (09-09-2017 17:49:35)
Running from C:\Users\Darryl\Desktop
Microsoft Windows 7 Home Basic Service Pack 1 (X86) (2017-07-14 08:09:26)
Boot Mode: Normal
================================================== ========


==================== Accounts: =============================

Administrator (S-1-5-21-917511795-3256536166-560280740-500 - Administrator - Disabled)
Darryl (S-1-5-21-917511795-3256536166-560280740-1000 - Administrator - Enabled) => C:\Users\Darryl
Guest (S-1-5-21-917511795-3256536166-560280740-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antispyware (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Disabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 10 ActiveX (HKLM\...\{FFB768E4-E427-4553-BC36-A11F5E62A94D}) (Version: 10.1.53.64 - Adobe Systems Incorporated)
Adobe Reader 9.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
BatteryLifeExtender (HKLM\...\{E308B555-8434-4AF8-B66F-729897C75F93}) (Version: 1.0.6 - Samsung)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 22.0.8.114 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 22.0.8.118 - Bitdefender)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.55 - Broadcom Corporation)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3911 - CyberLink Corp.)
Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.2 - Samsung Electronics Co., Ltd.)
Easy Network Manager (HKLM\...\{8732818E-CA78-4ACB-B077-22311BF4C0E4}) (Version: 4.4.7 - Samsung)
Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 2.1.0.15 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM\...\{607DA1C8-34EC-4D7A-AD83-F8E5C70736DF}) (Version: 4.0.0.4 - Samsung)
ETDWare PS/2-X86 8.0.7.0_WHQL (HKLM\...\Elantech) (Version: 8.0.7.0 - ELAN Microelectronic Corp.)
Google Chrome (HKLM\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HSPA USB Modem (HKLM\...\HSPA USB Modem) (Version: 1.0.0.1 - HSPA USB Modem)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2302 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.3.1001 - Intel Corporation)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
K-Lite Codec Pack 12.2.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.2.5 - KLCP)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.24.27.3 - Marvell)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband HL Service (HKLM\...\Mobile Broadband HL Service) (Version: 22.001.25.00.03 - Huawei Technologies Co.,Ltd)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MTN Online (HKLM\...\MTN Online_is1) (Version: - TCT Mobile Limited)
OpenOffice 4.1.3 (HKLM\...\{EEA30AEB-8BA7-465B-85D4-098BB99733E7}) (Version: 4.13.9783 - Apache Software Foundation)
paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57723}) (Version: 4.0.17 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6176 - Realtek Semiconductor Corp.)
Samsung AnyWeb Print (HKLM\...\{1DF9729D-2A51-4CA1-B4CE-2B432D7ABA7C}) (Version: 1.0 - Samsung Electronics Co., Ltd.) Hidden
Samsung AnyWeb Print (HKLM\...\{318DBE01-1E6B-4243-84B0-210391FE789A}) (Version: 1.1.19.0 - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 5 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.0.6 - Samsung)
Samsung Support Center (HKLM\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.24 - Samsung)
Samsung Universal Print Driver (HKLM\...\Samsung Universal Print Driver) (Version: 2.01.06.00:16 - Samsung Electronics Co., Ltd.)
Samsung Update Plus (HKLM\...\{142D8CA7-2C6F-45A7-83E3-099AAFD99133}) (Version: 3.0.0.17 - Samsung Electronics Co., Ltd.)
Skype™ 7.39 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.81460 - TeamViewer)
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6200 - Broadcom Corporation)
Xvid Plus Codec Pack (HKLM\...\Xvid Plus Codec Pack) (Version: 1.00 - Xvid Plus Codec Pack)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{30A2652A-DDF7-45e7-ACA6-3EAB26FC8A4E}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{41662FC2-0D57-4aff-AB27-AD2E12E7C273}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{448BB771-CFE2-47C4-BCDF-1FBF378E202C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7B342DC4-139A-4a46-8A93-DB0827CCEE9C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\ooofilt.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{7FA8AE11-B3E3-4D88-AABF-255526CD1CE8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{82154420-0FBF-11d4-8313-005004526AB4}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\propertyhdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{D0484DE6-AAEE-468a-991F-8D4B0737B57A}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{D2D59CD1-0A6A-4D36-AE20-47817077D57C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{E5A0B632-DFBA-4549-9346-E414DA06E6F8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{EE5D1EA4-D445-4289-B2FC-55FC93693917}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-917511795-3256536166-560280740-1000_Classes\CLSID\{F616B81F-7BB8-4F22-B8A5-47428D59F8AD}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
ContextMenuHandlers1: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers4: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers5: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2011-02-11] (Intel Corporation)
ContextMenuHandlers6: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender Security\bdfvsctx.dll [2017-08-30] (Bitdefender)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02626086-B4DC-4B5F-A57A-E67C95226B3B} - System32\Tasks\EasySpeedUpManager => C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManage r2.exe [2010-08-05] (Samsung Electronics)
Task: {0506265F-CCE6-4722-86A0-3EB2217B40C3} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2011-02-07] (SAMSUNG Electronics)
Task: {3276D76B-0957-4260-B5FA-981D96F9B17B} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2010-08-09] (Samsung Electronics Co., Ltd.)
Task: {6B2B613C-02AF-49C9-B3CF-13C98432B417} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-08-27] (Samsung Electronics)
Task: {6EC0F541-9061-4D48-BC4E-B7CE6F94EFBF} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExten der.exe [2010-08-12] (Samsung Electronics. Co. Ltd.)
Task: {7DB02692-2037-4B2C-9220-05A7B1448AB8} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-06-21] (Bitdefender)
Task: {AE2EF44D-5E1A-445C-BE28-EE49DD6B727F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {B30CFFD6-C26F-494D-BD5E-1B88135D6667} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.e xe [2010-07-20] (SAMSUNG Electronics co., LTD.)
Task: {B5CB4607-8B4C-4A45-8D4A-475764C3454F} - System32\Tasks\{429FD52C-A832-4207-8A7E-20E682FD8515} => C:\windows\system32\pcalua.exe -a G:\setup.exe -d G:\
Task: {CFCFCB43-8880-49B7-9683-4DD6AE0F8056} - System32\Tasks\advSRS5 => C:\Program Files\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2010-07-27] (SEC)
Task: {DB0B9A2A-1D5A-4BFD-8EA1-703BEB197FD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-14] (Google Inc.)
Task: {DF6907F2-A9D6-4E5B-837A-1829D5A652CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-14] (Google Inc.)
Task: {E1808027-8070-4E55-99F2-128F1F02B1D1} - System32\Tasks\{CC1C8BBB-550A-4CA1-953C-5D21EA5C48EF} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.38.0.101/en/abandoninstall?source=lightinstaller&page=tsInstal l

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-07-15 23:53 - 2013-09-03 14:29 - 000105448 _____ () C:\Program Files\Bitdefender\Bitdefender Security\bdmetrics.dll
2017-07-15 23:54 - 2017-02-07 12:42 - 000859344 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpbr.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 000466568 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpdsp.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 002660936 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpph.mdl
2017-07-15 23:54 - 2017-02-07 12:42 - 001303008 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttprbl.mdl
2011-04-06 04:32 - 2008-06-05 01:53 - 000026624 _____ () C:\windows\System32\spd__l.dll
2017-07-31 19:40 - 2015-12-15 15:02 - 000574464 _____ () C:\Program Files\MTN Online\ApplicationController.exe
2017-07-31 19:40 - 2016-02-01 11:11 - 000011362 _____ () C:\Program Files\MTN Online\mingwm10.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 000043008 _____ () C:\Program Files\MTN Online\libgcc_s_dw2-1.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 002537472 _____ () C:\Program Files\MTN Online\QtCore4.dll
2017-07-31 19:40 - 2015-12-15 14:58 - 001054208 _____ () C:\Program Files\MTN Online\Common.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 009814016 _____ () C:\Program Files\MTN Online\QtGui4.dll
2017-07-31 19:40 - 2016-02-01 11:11 - 001140224 _____ () C:\Program Files\MTN Online\QtNetwork4.dll
2017-08-22 21:12 - 2013-12-06 11:01 - 000045056 _____ () C:\Program Files\HSPA USB Modem\Driver\DevMon.exe
2011-04-06 04:30 - 2006-08-12 05:48 - 000049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll
2011-04-06 04:33 - 2010-05-07 16:22 - 001636864 _____ () C:\Program Files\Samsung\Samsung Recovery Solution 5\Resdll.dll
2011-04-06 04:33 - 2010-06-08 05:15 - 000618496 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2017-09-04 16:01 - 2017-08-23 09:31 - 002881368 _____ () C:\Program Files\Google\Chrome\Application\60.0.3112.113\libg lesv2.dll
2017-09-04 16:01 - 2017-08-23 09:31 - 000086360 _____ () C:\Program Files\Google\Chrome\Application\60.0.3112.113\libe gl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2017-09-09 17:22 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-917511795-3256536166-560280740-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Darryl\AppData\Roaming\Microsoft\Windows\ Themes\TranscodedWallpaper.jpg
DNS Servers: 168.210.2.2 - 196.14.239.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B807B4BA-1DC9-44A5-8946-253559FA7C16}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{1A7B83C8-FAA8-4462-BB18-27F84A9956A0}] => (Allow) C:\Windows\System32\SUPDSvc.exe
FirewallRules: [{A65094D5-6822-498D-A50A-62CDE3A085D2}] => (Allow) C:\Windows\System32\SUPDSvc.exe
FirewallRules: [{FB4CB921-5CB8-40F4-8A39-49E0FD3E0431}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSv cHost.exe
FirewallRules: [{65064C98-EE7E-4BAA-94E0-09E071C61E2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{48AB47C9-A327-4CE2-9B48-BF5C1A7AE14B}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{ED15DF0A-1C3D-498B-9990-ED691B1582BB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1F3C1B82-E6D1-4FAE-99B8-9934565F7034}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0FC94F48-919C-4F44-B5CE-4FAEDE068F63}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{55580A67-06D4-477A-8E78-E14641BAC04D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{36455591-EF8F-4136-80BA-CB9A3A692E4C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{19E4B086-339C-441B-AFB1-F8E7195ADCED}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{16F6BCFE-B6EF-40F0-993A-6703936D0B21}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

19-08-2017 13:53:35 Revo Uninstaller's restore point - HSPA USB Modem
19-08-2017 16:05:54 Windows Update
20-08-2017 20:40:34 Windows Update
22-08-2017 20:32:03 Revo Uninstaller's restore point - HSPA USB Modem
31-08-2017 18:59:38 Scheduled Checkpoint
04-09-2017 19:54:25 Windetect d/l
04-09-2017 23:28:13 Windetect Std check
06-09-2017 23:48:04 Revo Uninstaller's restore point - Plumbytes Anti-Malware 2017

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/09/2017 04:35:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KSt artMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:35:11 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\Samsung Support Center\Drv\drv2x64\KStartMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:32:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\samsung\easy display manager\RunGfxUI64.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:32:50 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\hspa usb modem\driver\win64\DPInst.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/09/2017 04:23:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Faulting module name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Exception code: 0xc0000005
Fault offset: 0x00017a12
Faulting process id: 0x8b8
Faulting application start time: 0x01d329771b9fcdec
Faulting application path: C:\ProgramData\MobileBrServ\mbbservice.exe
Faulting module path: C:\ProgramData\MobileBrServ\mbbservice.exe
Report Id: 62a422e1-956a-11e7-98d2-90a4de6a0dc0

Error: (09/08/2017 07:59:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Faulting module name: mbbservice.exe, version: 22.24.0.3, time stamp: 0x52ff0cc9
Exception code: 0xc0000005
Fault offset: 0x00017a12
Faulting process id: 0x8ac
Faulting application start time: 0x01d328cc306e94ec
Faulting application path: C:\ProgramData\MobileBrServ\mbbservice.exe
Faulting module path: C:\ProgramData\MobileBrServ\mbbservice.exe
Report Id: 77c1293d-94bf-11e7-8a6e-90a4de6a0dc0

Error: (09/08/2017 12:49:42 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KSt artMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:47:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Samsung\Samsung Support Center\Drv\drv2x64\KStartMem.exe.Manifest".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:35:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\samsung\easy display manager\RunGfxUI64.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/08/2017 12:34:27 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\hspa usb modem\driver\win64\DPInst.exe".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64 ",publicKeyToken="6595b64144ccf1df",type="win32",v ersion="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (09/09/2017 04:26:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 600000 milliseconds: Restart the service.

Error: (09/09/2017 04:25:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/09/2017 04:23:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atc

Error: (09/09/2017 04:23:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobile Broadband HL Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (09/09/2017 04:23:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Broadband HL Service service to connect.

Error: (09/09/2017 04:22:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostics Tracking Service service terminated with the following error:
General access denied error

Error: (09/08/2017 07:59:49 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atc

Error: (09/08/2017 07:59:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobile Broadband HL Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (09/08/2017 07:59:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Broadband HL Service service to connect.

Error: (09/08/2017 07:59:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Diagnostics Tracking Service service terminated with the following error:
General access denied error


==================== Memory info ===========================

Processor: Celeron(R) Dual-Core CPU T3500 @ 2.10GHz
Percentage of memory in use: 61%
Total physical RAM: 2008.61 MB
Available physical RAM: 776.96 MB
Total Virtual: 2446.61 MB
Available Virtual: 532.21 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:114 GB) (Free:78.82 GB) NTFS
Drive d: () (Fixed) (Total:168.77 GB) (Free:124.42 GB) NTFS
Drive h: (Elements) (Fixed) (Total:931.48 GB) (Free:147.47 GB) NTFS

==================== MBR & Partition Table ==================

================================================== ======
Disk: 0 (Size: 298.1 GB) (Disk ID: 29AB717C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=168.8 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=15.2 GB) - (Type=27)

================================================== ======
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 00023F15)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
  #14  
Old September 9th, 2017, 05:57 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Geez buddy, that is a lot of info - I am really sorry for sending soo much. It was embarrassing to see the volume. Big thanks!
  #15  
Old September 10th, 2017, 02:05 PM
Sonic Feathers Sonic Feathers is offline
Member
 
Join Date: Sep 2017
Posts: 53
Hello Olgun, I received a mail saying you'd answered, logged on but cant find any message from you. Is there one? Not that I am rushing you. Thanks
Closed Topic

Bookmarks

Topic Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Topics
Topic Topic Starter Forum Replies Last Post
hacker idr Malware Removal 2 April 14th, 2019 03:28 PM
R U a Hacker? Jintan Open Discussion 3 December 4th, 2011 12:28 AM
Could this be a hacker? please help. Terlain888 Applications 7 March 7th, 2007 06:42 AM
Hacker sirlarry07 Malware Removal 12 November 3rd, 2004 10:46 PM
Hacker Or Not? jadeelisha Malware Removal 9 March 2nd, 2004 09:28 PM


All times are GMT +1. The time now is 10:59 AM.