gin_jammer
2015-07-15, 01:26
A Lenovo Thinkpad very recently out of the box after refurbishment by Joy Systems Inc. ran beautifully for about 2 weeks, and then about 2 weeks ago started slowing down. At this point, it sometimes opens IE minimized, and is extremely sluggish running Windows Explorer or MS Office Aps.
The laptop has an Intel Core 2 Duo CPU P8400 running at 2.26 GHz, and 2 GB of RAM, running Win 7 Home Premium with Service Pack 1.
Requested FRST.txt follows:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-07-2015
Ran by EdG_ThinkPad (administrator) on EDG_THINKPAD-PC on 14-07-2015 17:14:20
Running from C:\Users\EdG_ThinkPad\Desktop
Loaded Profiles: EdG_ThinkPad (Available Profiles: EdG_ThinkPad)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(Lenovo) C:\Windows\System32\ibmpmsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\winrshost.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_18_0_0_209_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3730344 2015-06-30] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\...\MountPoints2: {49e1ed48-ab1a-11e4-9b34-806e6f6e6963} - D:\setup.EXE /AUTORUN
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2015-06-19]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toast.net/START
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-06] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-06] (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 65.32.5.111 65.32.5.112
Tcpip\..\Interfaces\{93295DC2-B60B-4D03-9BFE-D7BA3DEB4753}: [DhcpNameServer] 192.168.5.2
Tcpip\..\Interfaces\{9DEA1BD2-A389-44FA-A75C-C981940AA043}: [DhcpNameServer] 65.32.5.111 65.32.5.112
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3518376 2015-06-30] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [314304 2015-06-30] (AVG Technologies CZ, s.r.o.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [231856 2015-06-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [213984 2015-05-12] (AVG Technologies CZ, s.r.o.)
S3 e1express; C:\Windows\System32\DRIVERS\e1e6232.sys [219352 2009-06-05] (Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-14 17:14 - 2015-07-14 17:18 - 00007798 _____ C:\Users\EdG_ThinkPad\Desktop\FRST.txt
2015-07-14 17:12 - 2015-07-14 17:14 - 00000000 ____D C:\FRST
2015-07-14 17:09 - 2015-07-14 17:10 - 01636864 _____ (Farbar) C:\Users\EdG_ThinkPad\Desktop\FRST.exe
2015-07-14 17:05 - 2015-07-14 17:05 - 00000207 _____ C:\Windows\tweaking.com-regbackup-EDG_THINKPAD-PC-Windows-7-Home-Premium-(32-bit).dat
2015-07-14 17:02 - 2015-07-14 17:02 - 00000000 ____D C:\RegBackup
2015-07-14 17:00 - 2015-07-14 17:00 - 00002188 _____ C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2015-07-14 17:00 - 2015-07-14 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2015-07-14 17:00 - 2015-07-14 17:00 - 00000000 ____D C:\Program Files\Tweaking.com
2015-07-14 16:57 - 2015-07-14 16:57 - 04720448 _____ C:\Users\EdG_ThinkPad\Desktop\tweaking.com_registry_backup_setup.exe
2015-07-12 09:38 - 2015-07-14 16:32 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-08 21:04 - 2015-07-08 21:04 - 00000000 ___HD C:\ProgramData\{D9E629DC-CB1C-4A97-9900-81922B4EFFD4}
2015-07-06 08:15 - 2015-07-06 08:15 - 00000000 ____D C:\ProgramData\Sun
2015-07-06 08:15 - 2015-07-06 08:15 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-06 08:14 - 2015-07-06 08:15 - 00000000 ____D C:\ProgramData\Oracle
2015-07-06 08:14 - 2015-07-06 08:14 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-06 08:14 - 2015-07-06 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-06 08:14 - 2015-07-06 08:14 - 00000000 ____D C:\Program Files\Java
2015-07-04 11:04 - 2015-07-04 11:04 - 00000000 ____D C:\Users\EdG_ThinkPad\Desktop\Autoruns
2015-07-04 11:02 - 2015-07-04 11:02 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-06-26 09:49 - 2015-06-26 09:49 - 00231856 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys
2015-06-25 21:04 - 2015-06-25 21:04 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Macromedia
2015-06-25 21:03 - 2015-07-14 15:03 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-06-25 21:03 - 2015-07-14 15:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-06-25 21:03 - 2015-06-25 21:03 - 00000000 ____D C:\Windows\system32\Macromed
2015-06-24 15:25 - 2015-06-24 15:25 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\GWX
2015-06-23 20:54 - 2015-06-23 20:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-06-23 20:54 - 2015-06-23 20:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-06-23 20:53 - 2015-06-23 20:53 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Avg
2015-06-23 06:49 - 2015-07-14 15:53 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Retirement
2015-06-20 07:22 - 2015-07-12 10:29 - 00000000 ___SD C:\Windows\system32\GWX
2015-06-20 07:19 - 2014-06-26 21:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-06-19 19:11 - 2015-06-19 19:11 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-06-19 19:11 - 2015-06-19 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-06-19 19:10 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2015-06-19 19:04 - 2015-07-09 13:35 - 00004486 _____ C:\Windows\wininit.ini
2015-06-19 13:50 - 2015-06-19 19:18 - 00000000 ____D C:\ProgramData\Adobe
2015-06-19 13:50 - 2015-06-19 13:50 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-06-19 13:50 - 2015-06-19 13:50 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-06-19 13:50 - 2015-06-19 13:50 - 00000000 ____D C:\Program Files\Adobe
2015-06-19 13:49 - 2015-07-12 09:38 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Adobe
2015-06-19 13:32 - 2015-06-19 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-06-19 13:31 - 2015-06-19 13:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-06-19 13:21 - 2015-07-14 15:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Financial_Current
2015-06-19 13:21 - 2015-06-23 06:46 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\HRBlock
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Philosophy
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Nets and mending
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\NAimless
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\My Webs
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Monica
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Medical Expenses & Insurance
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Homeowners Ins
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Garmin
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Fed Income Tax
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\CyberLink
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Correspondence 2015
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Correspondence 2014
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Correspondence 2013
2015-06-19 13:21 - 2015-05-21 13:29 - 00023040 _____ C:\Users\EdG_ThinkPad\Documents\Puzzle.xls
2015-06-19 13:21 - 2015-03-24 08:13 - 00024064 _____ C:\Users\EdG_ThinkPad\Documents\Monica packingl list #2.xls
2015-06-19 13:21 - 2015-03-16 14:16 - 00024576 _____ C:\Users\EdG_ThinkPad\Documents\Monica packingl list.xls
2015-06-19 13:21 - 2015-01-31 17:31 - 00035328 _____ C:\Users\EdG_ThinkPad\Documents\2015 SUPER BOWLa.xls
2015-06-19 13:21 - 2015-01-27 17:17 - 00035328 _____ C:\Users\EdG_ThinkPad\Documents\2015 SUPER BOWL.xls
2015-06-19 13:21 - 2014-12-12 12:32 - 00046080 _____ C:\Users\EdG_ThinkPad\Documents\2014 Christmas Gift List.xls
2015-06-19 13:21 - 2014-12-10 17:17 - 00003392 _____ C:\Users\EdG_ThinkPad\Documents\CHS 1963 Classmate Letter-4.txt
2015-06-19 13:21 - 2014-12-10 17:15 - 00011193 _____ C:\Users\EdG_ThinkPad\Documents\CHS 1963 Classmate Letter.odt
2015-06-19 13:21 - 2014-08-29 15:49 - 00324096 _____ C:\Users\EdG_ThinkPad\Documents\Caffeine Content of Drinks.xls
2015-06-19 13:21 - 2014-08-29 13:59 - 00029184 _____ C:\Users\EdG_ThinkPad\Documents\US Flag stars.xls
2015-06-19 13:21 - 2014-08-01 07:32 - 00001377 _____ C:\Users\EdG_ThinkPad\Documents\President Obama goes to a primary school to talk to the kids.txt
2015-06-19 13:21 - 2014-05-03 15:21 - 00003369 _____ C:\Users\EdG_ThinkPad\Documents\The most famous parts of the human body have been.txt
2015-06-19 13:21 - 2014-03-05 19:33 - 00001214 _____ C:\Users\EdG_ThinkPad\Documents\A few minutes before the church services started in this rural TEXAS town.txt
2015-06-19 13:21 - 2014-03-03 17:10 - 00000778 _____ C:\Users\EdG_ThinkPad\Documents\A husband had just finished reading a new book entitled.txt
2015-06-19 13:21 - 2014-01-28 11:24 - 00018432 _____ C:\Users\EdG_ThinkPad\Documents\UBS20140127.xls
2015-06-19 13:21 - 2013-12-14 16:24 - 00046592 _____ C:\Users\EdG_ThinkPad\Documents\2013 Christmas Gift List.xls
2015-06-19 13:21 - 2013-12-05 16:55 - 00037888 _____ C:\Users\EdG_ThinkPad\Documents\Calendar 2014.xls
2015-06-19 13:21 - 2013-09-04 18:23 - 00026112 _____ C:\Users\EdG_ThinkPad\Documents\September trip schedule.xls
2015-06-19 13:21 - 2012-12-24 19:59 - 00046592 _____ C:\Users\EdG_ThinkPad\Documents\2012 Christmas Gift List.xls
2015-06-19 13:21 - 2012-11-07 07:53 - 00035328 _____ C:\Users\EdG_ThinkPad\Documents\Facebook quotes - 2012.xls
2015-06-19 13:21 - 2012-07-07 17:02 - 00059392 _____ C:\Users\EdG_ThinkPad\Documents\Feeding the Government.pps
2015-06-19 13:21 - 2012-05-07 21:30 - 00024576 _____ C:\Users\EdG_ThinkPad\Documents\Poker chips.xls
2015-06-19 13:21 - 2011-12-17 18:29 - 00056832 _____ C:\Users\EdG_ThinkPad\Documents\2011 Christmas Gift List.xls
2015-06-19 13:21 - 2011-04-26 22:15 - 00025088 _____ C:\Users\EdG_ThinkPad\Documents\Kitchen drawer refurb.xls
2015-06-19 13:20 - 2015-06-19 13:20 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Writing
2015-06-19 07:19 - 2015-07-10 07:39 - 00000000 ____D C:\Users\EdG_ThinkPad\Desktop\Unused Icons
2015-06-19 07:12 - 2015-06-19 07:12 - 00000376 _____ C:\Windows\ODBC.INI
2015-06-19 07:12 - 2015-06-19 07:12 - 00000035 _____ C:\Windows\vbaddin.ini
2015-06-19 07:11 - 2015-06-19 07:11 - 00002673 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Outlook.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002657 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002655 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002625 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002623 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Access.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002611 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft FrontPage.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002609 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Open Office Document.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\New Office Document.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\Program Files\Microsoft FrontPage
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\Program Files\Common Files\Designer
2015-06-19 07:10 - 2015-06-19 07:10 - 00000000 ____D C:\Windows\Msagent
2015-06-19 07:09 - 2015-06-19 07:09 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft Web Folders
2015-06-19 07:09 - 2015-06-19 07:09 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-19 07:03 - 2015-05-22 23:00 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-19 07:03 - 2012-02-11 01:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-06-19 07:03 - 2011-03-11 01:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-06-19 07:03 - 2011-03-11 01:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-06-19 07:03 - 2011-03-11 01:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-06-19 07:03 - 2011-03-11 01:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-06-19 07:03 - 2011-03-11 01:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-06-19 07:03 - 2011-03-11 01:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-06-19 07:03 - 2011-03-11 01:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-06-19 07:03 - 2011-03-11 00:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-06-19 07:02 - 2014-06-23 22:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-06-19 07:02 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-06-19 07:02 - 2011-02-25 01:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-06-19 06:50 - 2015-06-19 06:50 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-19 06:50 - 2015-06-19 06:50 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-18 20:54 - 2015-05-01 09:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-18 20:51 - 2015-01-08 19:44 - 00419936 _____ C:\Windows\system32\locale.nls
2015-06-18 20:47 - 2015-06-18 20:46 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts.20150618-204709.backup
2015-06-18 20:46 - 2009-06-10 17:39 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.20150618-204629.backup
2015-06-18 20:28 - 2015-07-02 08:52 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-06-18 20:28 - 2015-07-02 08:51 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-06-18 19:33 - 2015-02-02 23:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-06-18 19:26 - 2015-06-18 19:26 - 00000000 ____D C:\Program Files\Microsoft.NET
2015-06-18 19:26 - 2015-04-19 22:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-06-18 19:26 - 2015-04-19 22:56 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-06-18 19:25 - 2015-02-03 22:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-06-18 19:15 - 2015-06-18 19:15 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-06-18 19:04 - 2015-06-30 15:44 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Adobe
2015-06-18 15:29 - 2015-06-19 14:59 - 00062768 _____ C:\Users\EdG_ThinkPad\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-18 09:54 - 2012-07-25 23:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-06-18 09:54 - 2012-07-25 23:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-06-18 09:54 - 2012-07-25 23:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-06-18 09:54 - 2012-07-25 23:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-06-18 09:54 - 2012-07-25 23:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-06-18 09:54 - 2012-07-25 22:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-06-18 09:54 - 2012-07-25 22:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-06-18 09:54 - 2012-06-02 10:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-06-18 09:52 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-06-18 09:52 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-06-18 09:52 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-06-18 09:52 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-06-18 09:51 - 2012-03-01 01:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-06-18 09:51 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-06-18 09:30 - 2015-06-18 09:33 - 00000000 ____D C:\Windows\system32\MRT
2015-06-18 09:30 - 2015-05-27 00:03 - 136900096 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-18 09:21 - 2015-06-18 09:21 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-18 09:21 - 2015-06-18 09:21 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-06-18 09:21 - 2015-06-18 09:21 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-18 09:21 - 2015-06-18 09:21 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-06-18 09:21 - 2015-06-18 09:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-18 09:20 - 2015-06-18 09:20 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-06-18 09:20 - 2015-06-18 09:20 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-06-18 09:18 - 2015-06-18 09:18 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-06-18 09:17 - 2015-06-18 09:17 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-06-18 09:16 - 2015-06-18 09:23 - 00014117 _____ C:\Windows\IE11_main.log
2015-06-18 09:11 - 2015-01-28 23:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-06-18 09:11 - 2015-01-08 22:48 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-06-18 09:11 - 2015-01-08 22:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-06-18 09:11 - 2015-01-08 22:48 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-06-18 09:11 - 2011-07-08 22:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-06-18 09:11 - 2011-04-26 22:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-06-18 09:11 - 2011-04-26 22:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-06-18 09:10 - 2014-11-10 22:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-06-18 09:10 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-06-18 09:10 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-06-18 09:10 - 2013-07-03 00:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-06-18 09:10 - 2013-07-02 23:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-06-18 09:10 - 2013-07-02 23:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-06-18 09:10 - 2013-02-11 23:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-06-18 09:10 - 2011-06-16 00:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-06-18 09:09 - 2015-05-22 14:03 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-18 09:09 - 2015-05-22 13:58 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-18 09:09 - 2015-05-21 09:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-18 09:09 - 2015-01-27 19:36 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-06-18 09:09 - 2014-11-10 21:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-06-18 09:09 - 2014-09-04 01:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-06-18 09:09 - 2014-07-13 21:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-06-18 09:09 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-06-18 09:09 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-06-18 09:09 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-06-18 09:09 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-06-18 09:09 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-06-18 09:09 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-06-18 09:09 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-06-18 09:09 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-06-18 09:09 - 2013-01-24 00:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-06-18 09:09 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-06-18 09:09 - 2012-08-22 13:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-06-18 09:09 - 2012-08-21 16:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-06-18 09:09 - 2012-07-04 15:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-06-18 09:09 - 2011-08-17 00:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-06-18 09:09 - 2011-08-17 00:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-06-18 09:09 - 2011-04-28 22:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-06-18 09:09 - 2011-04-28 22:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-06-18 09:09 - 2011-04-28 22:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-06-18 09:09 - 2011-03-03 01:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-06-18 09:09 - 2011-03-03 01:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-06-18 09:09 - 2011-03-03 01:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-06-18 09:09 - 2011-02-18 01:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-06-18 09:08 - 2015-05-25 13:00 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-18 09:08 - 2014-10-03 21:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-06-18 09:08 - 2014-10-03 21:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-06-18 09:08 - 2014-08-11 21:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-06-18 09:08 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-06-18 09:08 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-06-18 09:08 - 2014-01-27 22:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-06-18 09:08 - 2013-08-27 20:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-06-18 09:08 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-06-18 09:08 - 2013-03-18 23:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-06-18 09:08 - 2011-12-30 01:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-06-18 09:08 - 2011-08-27 00:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-06-18 09:08 - 2011-05-24 06:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-06-18 09:08 - 2011-05-03 00:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-18 09:07 - 2015-04-10 23:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-06-18 09:07 - 2015-03-04 00:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-06-18 09:07 - 2015-03-04 00:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-06-18 09:07 - 2014-10-13 21:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-06-18 09:07 - 2014-06-15 21:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-06-18 09:07 - 2014-06-15 21:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-06-18 09:07 - 2014-06-15 21:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-06-18 09:07 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-18 09:00 - 2015-03-24 23:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-18 09:00 - 2015-03-24 23:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-18 09:00 - 2015-01-16 22:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-06-18 09:00 - 2014-07-16 21:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-06-18 09:00 - 2014-07-16 21:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-06-18 09:00 - 2014-07-16 21:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-06-18 09:00 - 2014-07-16 21:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-06-18 09:00 - 2014-07-16 21:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-06-18 09:00 - 2014-07-16 21:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-06-18 09:00 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-06-18 09:00 - 2012-04-26 00:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-06-18 09:00 - 2012-04-26 00:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-06-18 08:59 - 2015-05-25 14:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-06-18 08:59 - 2015-05-25 14:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-18 08:59 - 2015-05-25 14:07 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-18 08:59 - 2015-05-25 14:07 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-18 08:59 - 2015-05-25 14:04 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-18 08:59 - 2015-05-25 14:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-18 08:59 - 2015-05-25 13:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-18 08:59 - 2015-05-25 13:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-18 08:59 - 2015-05-25 13:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-18 08:59 - 2015-05-25 13:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-18 08:59 - 2015-05-25 12:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-18 08:59 - 2015-04-17 22:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-06-18 08:59 - 2015-03-04 00:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-06-18 08:59 - 2015-03-04 00:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-06-18 08:59 - 2015-03-04 00:10 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-06-18 08:59 - 2015-03-04 00:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-06-18 08:59 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-06-18 08:59 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-06-18 08:59 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-06-18 08:59 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-06-18 08:59 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-06-18 08:59 - 2012-10-03 12:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-06-18 08:59 - 2012-10-03 11:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-06-18 08:58 - 2015-05-08 23:14 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-18 08:58 - 2015-05-08 23:13 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-18 08:58 - 2015-05-08 23:13 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-18 08:58 - 2015-05-08 23:12 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-18 08:58 - 2015-05-08 23:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-18 08:58 - 2015-04-07 23:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-06-18 08:58 - 2015-04-07 23:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-06-18 08:58 - 2015-02-18 03:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-06-18 08:58 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-06-18 08:58 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-06-18 08:58 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-06-18 08:58 - 2011-05-04 00:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-06-18 08:58 - 2011-05-04 00:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-06-18 08:58 - 2011-05-04 00:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-06-18 08:58 - 2011-05-04 00:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-06-18 08:57 - 2015-04-29 14:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-18 08:57 - 2015-04-29 14:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-18 08:57 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-18 08:57 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-18 08:57 - 2015-04-29 14:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-18 08:57 - 2015-02-20 00:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-06-18 08:57 - 2015-02-20 00:13 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-06-18 08:57 - 2015-02-20 00:13 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-06-18 08:57 - 2015-02-20 00:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-06-18 08:57 - 2015-02-19 23:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-06-18 08:57 - 2015-02-13 01:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-06-18 08:57 - 2014-08-01 07:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-06-18 08:57 - 2014-06-18 18:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-06-18 08:57 - 2014-06-18 18:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-06-18 08:57 - 2014-06-18 18:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-06-18 08:57 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-06-18 08:57 - 2014-06-03 05:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-06-18 08:57 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-06-18 08:57 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-06-18 08:57 - 2014-04-04 22:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-06-18 08:57 - 2014-04-04 22:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-06-18 08:57 - 2014-02-03 22:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-06-18 08:57 - 2014-02-03 22:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-06-18 08:57 - 2014-02-03 22:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-06-18 08:57 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-06-18 08:57 - 2014-01-23 22:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-06-18 08:57 - 2013-11-26 07:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-06-18 08:57 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-06-18 08:57 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-06-18 08:57 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-06-18 08:57 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-06-18 08:57 - 2012-01-04 04:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-06-18 08:57 - 2011-11-17 01:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-06-18 08:57 - 2011-10-15 01:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-06-18 08:57 - 2011-03-11 01:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-06-18 08:57 - 2011-03-11 01:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-06-18 08:57 - 2010-12-23 01:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-06-18 08:57 - 2010-12-23 01:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-06-18 08:57 - 2010-12-23 01:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-06-18 08:56 - 2015-04-12 23:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-06-18 08:56 - 2015-03-05 00:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-06-18 08:56 - 2015-02-24 23:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-06-18 08:56 - 2015-02-02 23:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-06-18 08:56 - 2015-02-02 23:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-06-18 08:56 - 2015-02-02 23:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-06-18 08:56 - 2014-12-18 22:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-06-18 08:56 - 2014-12-11 13:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-06-18 08:56 - 2014-12-05 23:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-06-18 08:56 - 2014-11-25 23:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-06-18 08:56 - 2014-11-07 22:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-06-18 08:56 - 2014-10-29 21:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-06-18 08:56 - 2014-10-24 21:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-06-18 08:56 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-06-18 08:56 - 2014-05-30 02:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-06-18 08:56 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-06-18 08:56 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-06-18 08:56 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-06-18 08:56 - 2013-10-11 22:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-06-18 08:56 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-06-18 08:56 - 2013-10-03 21:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-06-18 08:56 - 2013-10-03 21:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-06-18 08:56 - 2013-08-04 21:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-06-18 08:56 - 2013-07-12 06:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-06-18 08:56 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-06-18 08:56 - 2012-10-03 12:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-06-18 08:56 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-06-18 08:56 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-06-18 08:56 - 2012-07-04 17:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-06-18 08:56 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-06-18 08:56 - 2012-05-14 00:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-06-18 08:56 - 2012-03-17 03:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-06-18 08:56 - 2011-12-16 03:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-06-18 08:56 - 2011-02-23 00:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-06-18 08:56 - 2011-02-12 01:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-06-18 08:55 - 2015-02-02 23:16 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-06-18 08:55 - 2015-02-02 23:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-06-18 08:55 - 2015-02-02 23:11 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-06-18 08:55 - 2015-02-02 23:10 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-06-18 08:55 - 2015-02-02 23:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-06-18 08:55 - 2015-02-02 23:00 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-06-18 08:55 - 2015-02-02 22:26 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-06-18 08:55 - 2015-01-30 19:56 - 00370488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-06-18 08:55 - 2014-12-18 21:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-06-18 08:55 - 2014-10-31 18:22 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-06-18 08:55 - 2014-10-13 21:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-06-18 08:55 - 2014-06-27 20:21 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-06-18 08:55 - 2014-06-27 20:21 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-06-18 08:55 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-06-18 08:55 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-06-18 08:55 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-06-18 08:55 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-06-18 08:55 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-06-18 08:55 - 2013-11-26 21:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-06-18 08:55 - 2013-06-25 18:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-06-18 08:55 - 2012-11-28 18:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-06-18 08:55 - 2012-11-28 18:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-06-18 08:55 - 2012-11-28 18:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-06-18 08:54 - 2015-04-24 13:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-18 08:54 - 2015-03-09 23:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-06-18 08:54 - 2015-03-09 23:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-06-18 08:54 - 2014-12-07 22:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-06-18 08:54 - 2014-10-02 21:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-06-18 08:54 - 2013-02-27 00:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-06-18 08:11 - 2015-06-18 08:11 - 00001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Thunderbird
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Mozilla
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Thunderbird
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\ProgramData\Mozilla
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-06-17 14:33 - 2015-07-14 09:10 - 01986999 _____ C:\Windows\WindowsUpdate.log
2015-06-17 11:10 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-06-17 11:10 - 2012-02-17 00:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-06-17 11:05 - 2015-06-17 11:05 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\AVG2015
2015-06-17 11:04 - 2015-07-12 08:53 - 00000000 ____D C:\ProgramData\AVG2015
2015-06-17 11:04 - 2015-07-05 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ___HD C:\$AVG
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\TuneUp Software
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ____D C:\Program Files\Common Files\AV
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ____D C:\Program Files\AVG
2015-06-17 11:01 - 2015-07-14 08:16 - 00000000 ____D C:\ProgramData\MFAData
2015-06-17 11:01 - 2015-06-18 20:03 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Avg2015
2015-06-17 11:01 - 2015-06-17 11:01 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\MFAData
2015-06-17 10:35 - 2015-06-19 08:07 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\VirtualStore
2015-06-17 10:35 - 2015-06-17 10:37 - 00001420 _____ C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-17 10:35 - 2015-06-17 10:35 - 00000000 __SHD C:\Recovery
2015-06-17 10:35 - 2015-06-17 10:35 - 00000000 ____D C:\Users\EdG_ThinkPad
2015-06-17 10:35 - 2010-11-20 16:57 - 00000020 ___SH C:\Users\EdG_ThinkPad\ntuser.ini
2015-06-17 10:35 - 2009-07-14 00:42 - 00000000 ___RD C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-17 10:35 - 2009-07-14 00:37 - 00000000 ___RD C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-06-16 15:54 - 2015-06-16 15:54 - 00207328 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-14 15:08 - 2009-07-14 00:34 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-14 15:08 - 2009-07-14 00:34 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-14 05:22 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-14 05:22 - 2009-07-14 00:39 - 00046383 _____ C:\Windows\setupact.log
2015-07-10 05:41 - 2010-11-20 17:48 - 00019686 _____ C:\Windows\PFRO.log
2015-07-04 11:03 - 2010-11-20 17:01 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-23 07:16 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\rescache
2015-06-20 09:30 - 2009-07-14 00:33 - 00278024 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-20 07:34 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-06-20 07:14 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\AppCompat
2015-06-19 07:12 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\Help
2015-06-19 07:11 - 2009-07-13 22:37 - 00000000 __RSD C:\Windows\Media
2015-06-19 07:11 - 2009-07-13 22:37 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-19 07:11 - 2009-07-13 22:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-19 07:10 - 2011-04-11 22:24 - 00000000 ____D C:\Windows\ShellNew
2015-06-19 07:09 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system
2015-06-19 06:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-06-18 20:47 - 2009-07-13 22:04 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts.20150702-085430.backup
2015-06-18 19:38 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\tracing
2015-06-18 18:56 - 2011-04-11 22:24 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-18 18:56 - 2009-07-14 00:52 - 00000000 ____D C:\Program Files\Windows Defender
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\zh-TW
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\zh-HK
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\zh-CN
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\tr-TR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\sv-SE
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\ru-RU
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\pt-PT
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\pt-BR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\pl-PL
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\nl-NL
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\nb-NO
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\ko-KR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\ja-JP
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\it-IT
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\hu-HU
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\fr-FR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\fi-FI
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\el-GR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\de-DE
2015-06-17 10:35 - 2014-01-16 20:00 - 00000000 ____D C:\Windows\Panther
2015-06-17 10:35 - 2010-11-20 16:57 - 00000000 ____D C:\Users\Administrator
2015-06-17 10:35 - 2009-07-14 00:52 - 00000000 ____D C:\Windows\system32\restore
2015-06-17 10:35 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\Recovery
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-03 10:16
==================== End of log ============================
Requested Addition.txt file follows:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-07-2015
Ran by EdG_ThinkPad at 2015-07-14 17:22:19
Running from C:\Users\EdG_ThinkPad\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2103494442-2559361938-690267513-500 - Administrator - Disabled)
EdG_ThinkPad (S-1-5-21-2103494442-2559361938-690267513-1000 - Administrator - Enabled) => C:\Users\EdG_ThinkPad
Guest (S-1-5-21-2103494442-2559361938-690267513-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC (HKLM\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6081 - AVG Technologies)
AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6081 - AVG Technologies) Hidden
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2000 Premium (HKLM\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Mozilla Thunderbird 38.0.1 (x86 en-US) (HKLM\...\Mozilla Thunderbird 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
RICOH R5U8xx Media Driver ver.3.64.02 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.64.02 - RICOH)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
ThinkPad Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.55 - )
Tweaking.com - Registry Backup (HKLM\...\Tweaking.com - Registry Backup) (Version: 2.2.0 - Tweaking.com)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2103494442-2559361938-690267513-1000_Classes\CLSID\{56CBD3CF-BF99-4DF5-851F-F5B9B57496A1}\InprocServer32 -> C:\ProgramData\{D9E629DC-CB1C-4A97-9900-81922B4EFFD4}\srhelper.dll (Microsoft Corporation) <==== ATTENTION
==================== Restore Points =========================
18-06-2015 19:15:21 Installed RICOH R5U8xx Media Driver ver.3.64.02
18-06-2015 19:24:20 Windows Update
18-06-2015 20:48:29 Windows Update
19-06-2015 07:06:04 Installed Microsoft Office 2000 Premium
20-06-2015 07:14:07 Windows Update
27-06-2015 09:25:06 Scheduled Checkpoint
04-07-2015 16:09:51 Scheduled Checkpoint
12-07-2015 10:28:33 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:04 - 2015-07-02 08:54 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 1000 more lines.
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {7D6AFA0B-902B-4565-8DDD-F1D1BDBAF6F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14] (Adobe Systems Incorporated)
Task: {9102C5FD-36A7-44E5-B92C-C4D3B357D39D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {9874A172-B2BD-49AF-B7E2-1121E49B4431} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {A5E5F1D6-CE36-4760-8B3D-F7C2AB6A0EFB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {E75BC9E8-6E42-4815-AA31-A1B3919FDE89} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (Whitelisted) ==============
2014-01-16 20:11 - 2013-01-15 00:47 - 00079648 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2015-06-19 19:10 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-06-19 19:10 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2015-06-19 19:10 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-06-19 19:10 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2015-06-19 19:10 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7866 more restricted sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 65.32.5.111 - 65.32.5.112
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C9F8DA4-32A2-49A9-851B-90E43F925155}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{6DC46584-E669-43EE-B136-D404FB5F0126}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{7B926BA1-C65E-46B5-9B34-E0CB70FB8698}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{89A2C7FF-3C3C-4AC6-A64B-1138A15C0739}] => (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{EAD8B732-11ED-44B7-B81F-9E8CB022106D}] => (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{5685E1C2-48AB-4C5F-A6B0-5D21F47FF8F8}] => (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{37649CB9-89CC-45C2-88D1-DC5CCAB7D75C}] => (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{08C04A07-52BC-4920-8AB3-7EDD83FC2E12}] => (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
FirewallRules: [{D6F48DDA-E597-4626-8F29-2B344719526E}] => (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/14/2015 04:46:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1fec
Start Time: 01d0be75df0f5199
Termination Time: 320
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (07/14/2015 04:30:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1b3c
Start Time: 01d0be7387d92eda
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (07/14/2015 05:24:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SDTray.exe, version: 2.4.40.129, time stamp: 0x535a51a2
Faulting module name: dhcpcsvc.DLL_unloaded, version: 0.0.0.0, time stamp: 0x4a5bd9b5
Exception code: 0xc0000005
Fault offset: 0x72001b2d
Faulting process id: 0xf5c
Faulting application start time: 0xSDTray.exe0
Faulting application path: SDTray.exe1
Faulting module path: SDTray.exe2
Report Id: SDTray.exe3
Error: (07/14/2015 05:22:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 05:54:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 09:06:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/12/2015 09:34:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/11/2015 08:55:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GWXUX.exe, version: 6.3.9600.17813, time stamp: 0x554a1601
Faulting module name: ntdll.dll, version: 6.1.7601.18869, time stamp: 0x55636303
Exception code: 0xc0000005
Fault offset: 0x00032214
Faulting process id: 0x1fc8
Faulting application start time: 0xGWXUX.exe0
Faulting application path: GWXUX.exe1
Faulting module path: GWXUX.exe2
Report Id: GWXUX.exe3
Error: (07/10/2015 05:42:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/09/2015 08:35:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1674
Start Time: 01d0ba9f03b19f38
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
System errors:
=============
Error: (07/14/2015 03:11:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.
Error: (07/14/2015 10:25:15 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.
Error: (07/14/2015 08:10:28 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Microsoft Office:
=========================
Error: (07/14/2015 04:46:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.178401fec01d0be75df0f5199320C:\Program Files\Internet Explorer\iexplore.exe
Error: (07/14/2015 04:30:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.178401b3c01d0be7387d92eda0C:\Program Files\Internet Explorer\iexplore.exe
Error: (07/14/2015 05:24:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: SDTray.exe2.4.40.129535a51a2dhcpcsvc.DLL_unloaded0.0.0.04a5bd9b5c000000572001b2df5c01d0be16e6555737C:\Program Files\Spybot - Search & Destroy 2\SDTray.exedhcpcsvc.DLL2d79a924-2a0a-11e5-b935-00226817a818
Error: (07/14/2015 05:22:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 05:54:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 09:06:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/12/2015 09:34:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/11/2015 08:55:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.17813554a1601ntdll.dll6.1.7601.1886955636303c0000005000322141fc801d0bc3d79a48c90C:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dllba1d95a3-2830-11e5-ae31-00226817a818
Error: (07/10/2015 05:42:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/09/2015 08:35:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.17840167401d0ba9f03b19f380C:\Program Files\Internet Explorer\iexplore.exe
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz
Percentage of memory in use: 74%
Total physical RAM: 1944.03 MB
Available physical RAM: 493.09 MB
Total Virtual: 4832.54 MB
Available Virtual: 2393.07 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:294.72 GB) (Free:261.43 GB) NTFS
Drive d: (O9PRMCD01) (CDROM) (Total:0.49 GB) (Free:0 GB) CDFS
Drive e: (TOSHIBA) (Removable) (Total:7.44 GB) (Free:2.54 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 9C948886)
Partition 1: (Active) - (Size=3.4 GB) - (Type=27)
Partition 2: (Not Active) - (Size=294.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.4 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.4 GB) - (Type=0C)
==================== End of log ============================
Requested aswMBR.txt follows:
aswMBR version 1.0.1.2252 Copyright(c) 2014 AVAST Software
Run date: 2015-07-14 17:28:08
-----------------------------
17:28:08.032 OS Version: Windows 6.1.7601 Service Pack 1
17:28:08.032 Number of processors: 2 586 0x170A
17:28:08.032 ComputerName: EDG_THINKPAD-PC UserName: EdG_ThinkPad
17:29:01.243 Initialize success
17:29:02.023 VM: initialized successfully
17:29:02.023 VM: Intel CPU BiosDisabled
17:31:48.153 AVAST engine defs: 15071401
17:32:12.136 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:32:12.136 Disk 0 Vendor: ST320LT0 0005 Size: 305245MB BusType: 3
17:32:13.136 Disk 0 MBR read successfully
17:32:13.136 Disk 0 MBR scan
17:32:13.719 Disk 0 Windows 7 default MBR code
17:32:13.828 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 3450 MB offset 2048
17:32:13.984 Disk 0 default boot code
17:32:14.187 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 301793 MB offset 7067648
17:32:15.045 Disk 0 scanning sectors +625139712
17:32:17.494 Disk 0 scanning C:\Windows\system32\drivers
17:33:39.254 Service scanning
17:34:28.160 Modules scanning
17:34:28.176 Disk 0 trace - called modules:
17:34:28.192
17:34:32.528 AVAST engine scan C:\Windows
17:34:38.815 AVAST engine scan C:\Windows\system32
17:50:29.799 AVAST engine scan C:\Windows\system32\drivers
17:51:13.183 AVAST engine scan C:\Users\EdG_ThinkPad
18:01:35.328 Disk 0 MBR has been saved successfully to "C:\Users\EdG_ThinkPad\Desktop\MBR.dat"
18:01:35.375 The log file has been saved successfully to "C:\Users\EdG_ThinkPad\Desktop\aswMBR.txt"
====
Do you want MBR.dat file?
The laptop has an Intel Core 2 Duo CPU P8400 running at 2.26 GHz, and 2 GB of RAM, running Win 7 Home Premium with Service Pack 1.
Requested FRST.txt follows:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-07-2015
Ran by EdG_ThinkPad (administrator) on EDG_THINKPAD-PC on 14-07-2015 17:14:20
Running from C:\Users\EdG_ThinkPad\Desktop
Loaded Profiles: EdG_ThinkPad (Available Profiles: EdG_ThinkPad)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(Lenovo) C:\Windows\System32\ibmpmsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\winrshost.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_18_0_0_209_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3730344 2015-06-30] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\...\MountPoints2: {49e1ed48-ab1a-11e4-9b34-806e6f6e6963} - D:\setup.EXE /AUTORUN
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2015-06-19]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toast.net/START
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-06] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-06] (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 65.32.5.111 65.32.5.112
Tcpip\..\Interfaces\{93295DC2-B60B-4D03-9BFE-D7BA3DEB4753}: [DhcpNameServer] 192.168.5.2
Tcpip\..\Interfaces\{9DEA1BD2-A389-44FA-A75C-C981940AA043}: [DhcpNameServer] 65.32.5.111 65.32.5.112
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3518376 2015-06-30] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [314304 2015-06-30] (AVG Technologies CZ, s.r.o.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [231856 2015-06-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [213984 2015-05-12] (AVG Technologies CZ, s.r.o.)
S3 e1express; C:\Windows\System32\DRIVERS\e1e6232.sys [219352 2009-06-05] (Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-14 17:14 - 2015-07-14 17:18 - 00007798 _____ C:\Users\EdG_ThinkPad\Desktop\FRST.txt
2015-07-14 17:12 - 2015-07-14 17:14 - 00000000 ____D C:\FRST
2015-07-14 17:09 - 2015-07-14 17:10 - 01636864 _____ (Farbar) C:\Users\EdG_ThinkPad\Desktop\FRST.exe
2015-07-14 17:05 - 2015-07-14 17:05 - 00000207 _____ C:\Windows\tweaking.com-regbackup-EDG_THINKPAD-PC-Windows-7-Home-Premium-(32-bit).dat
2015-07-14 17:02 - 2015-07-14 17:02 - 00000000 ____D C:\RegBackup
2015-07-14 17:00 - 2015-07-14 17:00 - 00002188 _____ C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2015-07-14 17:00 - 2015-07-14 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2015-07-14 17:00 - 2015-07-14 17:00 - 00000000 ____D C:\Program Files\Tweaking.com
2015-07-14 16:57 - 2015-07-14 16:57 - 04720448 _____ C:\Users\EdG_ThinkPad\Desktop\tweaking.com_registry_backup_setup.exe
2015-07-12 09:38 - 2015-07-14 16:32 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-08 21:04 - 2015-07-08 21:04 - 00000000 ___HD C:\ProgramData\{D9E629DC-CB1C-4A97-9900-81922B4EFFD4}
2015-07-06 08:15 - 2015-07-06 08:15 - 00000000 ____D C:\ProgramData\Sun
2015-07-06 08:15 - 2015-07-06 08:15 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-06 08:14 - 2015-07-06 08:15 - 00000000 ____D C:\ProgramData\Oracle
2015-07-06 08:14 - 2015-07-06 08:14 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-06 08:14 - 2015-07-06 08:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-06 08:14 - 2015-07-06 08:14 - 00000000 ____D C:\Program Files\Java
2015-07-04 11:04 - 2015-07-04 11:04 - 00000000 ____D C:\Users\EdG_ThinkPad\Desktop\Autoruns
2015-07-04 11:02 - 2015-07-04 11:02 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-06-26 09:49 - 2015-06-26 09:49 - 00231856 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys
2015-06-25 21:04 - 2015-06-25 21:04 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Macromedia
2015-06-25 21:03 - 2015-07-14 15:03 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-06-25 21:03 - 2015-07-14 15:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-06-25 21:03 - 2015-06-25 21:03 - 00000000 ____D C:\Windows\system32\Macromed
2015-06-24 15:25 - 2015-06-24 15:25 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\GWX
2015-06-23 20:54 - 2015-06-23 20:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-06-23 20:54 - 2015-06-23 20:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-06-23 20:53 - 2015-06-23 20:53 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Avg
2015-06-23 06:49 - 2015-07-14 15:53 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Retirement
2015-06-20 07:22 - 2015-07-12 10:29 - 00000000 ___SD C:\Windows\system32\GWX
2015-06-20 07:19 - 2014-06-26 21:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-06-19 19:11 - 2015-06-19 19:11 - 00002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-06-19 19:11 - 2015-06-19 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-06-19 19:10 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2015-06-19 19:04 - 2015-07-09 13:35 - 00004486 _____ C:\Windows\wininit.ini
2015-06-19 13:50 - 2015-06-19 19:18 - 00000000 ____D C:\ProgramData\Adobe
2015-06-19 13:50 - 2015-06-19 13:50 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-06-19 13:50 - 2015-06-19 13:50 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-06-19 13:50 - 2015-06-19 13:50 - 00000000 ____D C:\Program Files\Adobe
2015-06-19 13:49 - 2015-07-12 09:38 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Adobe
2015-06-19 13:32 - 2015-06-19 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-06-19 13:31 - 2015-06-19 13:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-06-19 13:21 - 2015-07-14 15:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Financial_Current
2015-06-19 13:21 - 2015-06-23 06:46 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\HRBlock
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Philosophy
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Nets and mending
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\NAimless
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\My Webs
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Monica
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Medical Expenses & Insurance
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Homeowners Ins
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Garmin
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Fed Income Tax
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\CyberLink
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Correspondence 2015
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Correspondence 2014
2015-06-19 13:21 - 2015-06-19 13:21 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Correspondence 2013
2015-06-19 13:21 - 2015-05-21 13:29 - 00023040 _____ C:\Users\EdG_ThinkPad\Documents\Puzzle.xls
2015-06-19 13:21 - 2015-03-24 08:13 - 00024064 _____ C:\Users\EdG_ThinkPad\Documents\Monica packingl list #2.xls
2015-06-19 13:21 - 2015-03-16 14:16 - 00024576 _____ C:\Users\EdG_ThinkPad\Documents\Monica packingl list.xls
2015-06-19 13:21 - 2015-01-31 17:31 - 00035328 _____ C:\Users\EdG_ThinkPad\Documents\2015 SUPER BOWLa.xls
2015-06-19 13:21 - 2015-01-27 17:17 - 00035328 _____ C:\Users\EdG_ThinkPad\Documents\2015 SUPER BOWL.xls
2015-06-19 13:21 - 2014-12-12 12:32 - 00046080 _____ C:\Users\EdG_ThinkPad\Documents\2014 Christmas Gift List.xls
2015-06-19 13:21 - 2014-12-10 17:17 - 00003392 _____ C:\Users\EdG_ThinkPad\Documents\CHS 1963 Classmate Letter-4.txt
2015-06-19 13:21 - 2014-12-10 17:15 - 00011193 _____ C:\Users\EdG_ThinkPad\Documents\CHS 1963 Classmate Letter.odt
2015-06-19 13:21 - 2014-08-29 15:49 - 00324096 _____ C:\Users\EdG_ThinkPad\Documents\Caffeine Content of Drinks.xls
2015-06-19 13:21 - 2014-08-29 13:59 - 00029184 _____ C:\Users\EdG_ThinkPad\Documents\US Flag stars.xls
2015-06-19 13:21 - 2014-08-01 07:32 - 00001377 _____ C:\Users\EdG_ThinkPad\Documents\President Obama goes to a primary school to talk to the kids.txt
2015-06-19 13:21 - 2014-05-03 15:21 - 00003369 _____ C:\Users\EdG_ThinkPad\Documents\The most famous parts of the human body have been.txt
2015-06-19 13:21 - 2014-03-05 19:33 - 00001214 _____ C:\Users\EdG_ThinkPad\Documents\A few minutes before the church services started in this rural TEXAS town.txt
2015-06-19 13:21 - 2014-03-03 17:10 - 00000778 _____ C:\Users\EdG_ThinkPad\Documents\A husband had just finished reading a new book entitled.txt
2015-06-19 13:21 - 2014-01-28 11:24 - 00018432 _____ C:\Users\EdG_ThinkPad\Documents\UBS20140127.xls
2015-06-19 13:21 - 2013-12-14 16:24 - 00046592 _____ C:\Users\EdG_ThinkPad\Documents\2013 Christmas Gift List.xls
2015-06-19 13:21 - 2013-12-05 16:55 - 00037888 _____ C:\Users\EdG_ThinkPad\Documents\Calendar 2014.xls
2015-06-19 13:21 - 2013-09-04 18:23 - 00026112 _____ C:\Users\EdG_ThinkPad\Documents\September trip schedule.xls
2015-06-19 13:21 - 2012-12-24 19:59 - 00046592 _____ C:\Users\EdG_ThinkPad\Documents\2012 Christmas Gift List.xls
2015-06-19 13:21 - 2012-11-07 07:53 - 00035328 _____ C:\Users\EdG_ThinkPad\Documents\Facebook quotes - 2012.xls
2015-06-19 13:21 - 2012-07-07 17:02 - 00059392 _____ C:\Users\EdG_ThinkPad\Documents\Feeding the Government.pps
2015-06-19 13:21 - 2012-05-07 21:30 - 00024576 _____ C:\Users\EdG_ThinkPad\Documents\Poker chips.xls
2015-06-19 13:21 - 2011-12-17 18:29 - 00056832 _____ C:\Users\EdG_ThinkPad\Documents\2011 Christmas Gift List.xls
2015-06-19 13:21 - 2011-04-26 22:15 - 00025088 _____ C:\Users\EdG_ThinkPad\Documents\Kitchen drawer refurb.xls
2015-06-19 13:20 - 2015-06-19 13:20 - 00000000 ____D C:\Users\EdG_ThinkPad\Documents\Writing
2015-06-19 07:19 - 2015-07-10 07:39 - 00000000 ____D C:\Users\EdG_ThinkPad\Desktop\Unused Icons
2015-06-19 07:12 - 2015-06-19 07:12 - 00000376 _____ C:\Windows\ODBC.INI
2015-06-19 07:12 - 2015-06-19 07:12 - 00000035 _____ C:\Windows\vbaddin.ini
2015-06-19 07:11 - 2015-06-19 07:11 - 00002673 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Outlook.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002657 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002655 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002625 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002623 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Access.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002611 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft FrontPage.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002609 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Open Office Document.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00002599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\New Office Document.lnk
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\Program Files\Microsoft FrontPage
2015-06-19 07:11 - 2015-06-19 07:11 - 00000000 ____D C:\Program Files\Common Files\Designer
2015-06-19 07:10 - 2015-06-19 07:10 - 00000000 ____D C:\Windows\Msagent
2015-06-19 07:09 - 2015-06-19 07:09 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft Web Folders
2015-06-19 07:09 - 2015-06-19 07:09 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-19 07:03 - 2015-05-22 23:00 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-19 07:03 - 2012-02-11 01:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-06-19 07:03 - 2011-03-11 01:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-06-19 07:03 - 2011-03-11 01:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-06-19 07:03 - 2011-03-11 01:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-06-19 07:03 - 2011-03-11 01:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-06-19 07:03 - 2011-03-11 01:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-06-19 07:03 - 2011-03-11 01:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-06-19 07:03 - 2011-03-11 01:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-06-19 07:03 - 2011-03-11 00:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-06-19 07:02 - 2014-07-08 21:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-06-19 07:02 - 2014-06-23 22:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-06-19 07:02 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-06-19 07:02 - 2011-02-25 01:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-06-19 06:50 - 2015-06-19 06:50 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-19 06:50 - 2015-06-19 06:50 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-18 20:54 - 2015-05-01 09:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-18 20:51 - 2015-01-08 19:44 - 00419936 _____ C:\Windows\system32\locale.nls
2015-06-18 20:47 - 2015-06-18 20:46 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts.20150618-204709.backup
2015-06-18 20:46 - 2009-06-10 17:39 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.20150618-204629.backup
2015-06-18 20:28 - 2015-07-02 08:52 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-06-18 20:28 - 2015-07-02 08:51 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-06-18 19:33 - 2015-02-02 23:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-06-18 19:26 - 2015-06-18 19:26 - 00000000 ____D C:\Program Files\Microsoft.NET
2015-06-18 19:26 - 2015-04-19 22:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-06-18 19:26 - 2015-04-19 22:56 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-06-18 19:25 - 2015-02-03 22:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-06-18 19:15 - 2015-06-18 19:15 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-06-18 19:04 - 2015-06-30 15:44 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Adobe
2015-06-18 15:29 - 2015-06-19 14:59 - 00062768 _____ C:\Users\EdG_ThinkPad\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-18 09:54 - 2012-07-25 23:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-06-18 09:54 - 2012-07-25 23:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-06-18 09:54 - 2012-07-25 23:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-06-18 09:54 - 2012-07-25 23:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-06-18 09:54 - 2012-07-25 23:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-06-18 09:54 - 2012-07-25 22:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-06-18 09:54 - 2012-07-25 22:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-06-18 09:54 - 2012-06-02 10:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-06-18 09:52 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-06-18 09:52 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-06-18 09:52 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-06-18 09:52 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-06-18 09:51 - 2012-03-01 01:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-06-18 09:51 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-06-18 09:30 - 2015-06-18 09:33 - 00000000 ____D C:\Windows\system32\MRT
2015-06-18 09:30 - 2015-05-27 00:03 - 136900096 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-18 09:21 - 2015-06-18 09:21 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-18 09:21 - 2015-06-18 09:21 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-06-18 09:21 - 2015-06-18 09:21 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-18 09:21 - 2015-06-18 09:21 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-06-18 09:21 - 2015-06-18 09:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-06-18 09:21 - 2015-06-18 09:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-06-18 09:21 - 2015-06-18 09:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-18 09:20 - 2015-06-18 09:20 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-06-18 09:20 - 2015-06-18 09:20 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-06-18 09:18 - 2015-06-18 09:18 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-06-18 09:18 - 2015-06-18 09:18 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-06-18 09:17 - 2015-06-18 09:17 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-06-18 09:16 - 2015-06-18 09:23 - 00014117 _____ C:\Windows\IE11_main.log
2015-06-18 09:11 - 2015-01-28 23:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-06-18 09:11 - 2015-01-08 22:48 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-06-18 09:11 - 2015-01-08 22:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-06-18 09:11 - 2015-01-08 22:48 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-06-18 09:11 - 2011-07-08 22:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-06-18 09:11 - 2011-04-26 22:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-06-18 09:11 - 2011-04-26 22:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-06-18 09:10 - 2014-11-10 22:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-06-18 09:10 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-06-18 09:10 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-06-18 09:10 - 2013-07-03 00:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-06-18 09:10 - 2013-07-02 23:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-06-18 09:10 - 2013-07-02 23:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-06-18 09:10 - 2013-02-11 23:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-06-18 09:10 - 2011-06-16 00:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-06-18 09:09 - 2015-05-22 14:03 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-18 09:09 - 2015-05-22 14:02 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-18 09:09 - 2015-05-22 13:58 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-18 09:09 - 2015-05-21 09:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-18 09:09 - 2015-01-27 19:36 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-06-18 09:09 - 2014-11-10 21:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-06-18 09:09 - 2014-09-04 01:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-06-18 09:09 - 2014-07-13 21:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-06-18 09:09 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-06-18 09:09 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-06-18 09:09 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-06-18 09:09 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-06-18 09:09 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-06-18 09:09 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-06-18 09:09 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-06-18 09:09 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-06-18 09:09 - 2013-01-24 00:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-06-18 09:09 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-06-18 09:09 - 2012-08-22 13:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-06-18 09:09 - 2012-08-21 16:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-06-18 09:09 - 2012-07-04 15:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-06-18 09:09 - 2011-08-17 00:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-06-18 09:09 - 2011-08-17 00:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-06-18 09:09 - 2011-04-28 22:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-06-18 09:09 - 2011-04-28 22:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-06-18 09:09 - 2011-04-28 22:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-06-18 09:09 - 2011-03-03 01:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-06-18 09:09 - 2011-03-03 01:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-06-18 09:09 - 2011-03-03 01:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-06-18 09:09 - 2011-02-18 01:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-06-18 09:08 - 2015-05-25 13:00 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-18 09:08 - 2014-10-03 21:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-06-18 09:08 - 2014-10-03 21:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-06-18 09:08 - 2014-08-11 21:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-06-18 09:08 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-06-18 09:08 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-06-18 09:08 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-06-18 09:08 - 2014-01-27 22:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-06-18 09:08 - 2013-08-27 20:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-06-18 09:08 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-06-18 09:08 - 2013-03-18 23:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-06-18 09:08 - 2011-12-30 01:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-06-18 09:08 - 2011-08-27 00:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-06-18 09:08 - 2011-05-24 06:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-06-18 09:08 - 2011-05-03 00:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-18 09:07 - 2015-04-10 23:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-06-18 09:07 - 2015-03-04 00:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-06-18 09:07 - 2015-03-04 00:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-06-18 09:07 - 2014-10-13 21:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-06-18 09:07 - 2014-06-15 21:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-06-18 09:07 - 2014-06-15 21:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-06-18 09:07 - 2014-06-15 21:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-06-18 09:07 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-18 09:00 - 2015-03-24 23:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-18 09:00 - 2015-03-24 23:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-18 09:00 - 2015-03-24 23:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-18 09:00 - 2015-01-16 22:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-06-18 09:00 - 2014-07-16 21:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-06-18 09:00 - 2014-07-16 21:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-06-18 09:00 - 2014-07-16 21:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-06-18 09:00 - 2014-07-16 21:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-06-18 09:00 - 2014-07-16 21:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-06-18 09:00 - 2014-07-16 21:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-06-18 09:00 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-06-18 09:00 - 2012-04-26 00:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-06-18 09:00 - 2012-04-26 00:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-06-18 08:59 - 2015-05-25 14:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-06-18 08:59 - 2015-05-25 14:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-18 08:59 - 2015-05-25 14:07 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-18 08:59 - 2015-05-25 14:07 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-18 08:59 - 2015-05-25 14:04 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-18 08:59 - 2015-05-25 14:01 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-18 08:59 - 2015-05-25 14:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-18 08:59 - 2015-05-25 14:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-18 08:59 - 2015-05-25 13:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-18 08:59 - 2015-05-25 13:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-18 08:59 - 2015-05-25 13:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-18 08:59 - 2015-05-25 13:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-18 08:59 - 2015-05-25 12:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-18 08:59 - 2015-04-17 22:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-06-18 08:59 - 2015-03-04 00:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-06-18 08:59 - 2015-03-04 00:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-06-18 08:59 - 2015-03-04 00:10 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-06-18 08:59 - 2015-03-04 00:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-06-18 08:59 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-06-18 08:59 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-06-18 08:59 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-06-18 08:59 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-06-18 08:59 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-06-18 08:59 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-06-18 08:59 - 2012-10-03 12:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-06-18 08:59 - 2012-10-03 11:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-06-18 08:58 - 2015-05-08 23:14 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-18 08:58 - 2015-05-08 23:13 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-18 08:58 - 2015-05-08 23:13 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-18 08:58 - 2015-05-08 23:12 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-18 08:58 - 2015-05-08 23:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 23:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-18 08:58 - 2015-05-08 21:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-18 08:58 - 2015-04-07 23:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-06-18 08:58 - 2015-04-07 23:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-06-18 08:58 - 2015-02-18 03:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-06-18 08:58 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-06-18 08:58 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-06-18 08:58 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-06-18 08:58 - 2011-05-04 00:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-06-18 08:58 - 2011-05-04 00:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-06-18 08:58 - 2011-05-04 00:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-06-18 08:58 - 2011-05-04 00:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-06-18 08:58 - 2011-05-04 00:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-06-18 08:57 - 2015-04-29 14:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-18 08:57 - 2015-04-29 14:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-18 08:57 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-18 08:57 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-18 08:57 - 2015-04-29 14:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-18 08:57 - 2015-02-20 00:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-06-18 08:57 - 2015-02-20 00:13 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-06-18 08:57 - 2015-02-20 00:13 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-06-18 08:57 - 2015-02-20 00:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-06-18 08:57 - 2015-02-19 23:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-06-18 08:57 - 2015-02-13 01:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-06-18 08:57 - 2014-08-01 07:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-06-18 08:57 - 2014-06-18 18:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-06-18 08:57 - 2014-06-18 18:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-06-18 08:57 - 2014-06-18 18:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-06-18 08:57 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-06-18 08:57 - 2014-06-03 05:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-06-18 08:57 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-06-18 08:57 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-06-18 08:57 - 2014-04-04 22:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-06-18 08:57 - 2014-04-04 22:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-06-18 08:57 - 2014-02-03 22:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-06-18 08:57 - 2014-02-03 22:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-06-18 08:57 - 2014-02-03 22:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-06-18 08:57 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-06-18 08:57 - 2014-01-23 22:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-06-18 08:57 - 2013-11-26 07:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-06-18 08:57 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-06-18 08:57 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-06-18 08:57 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-06-18 08:57 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-06-18 08:57 - 2012-01-04 04:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-06-18 08:57 - 2011-11-17 01:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-06-18 08:57 - 2011-10-15 01:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-06-18 08:57 - 2011-03-11 01:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-06-18 08:57 - 2011-03-11 01:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-06-18 08:57 - 2010-12-23 01:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-06-18 08:57 - 2010-12-23 01:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-06-18 08:57 - 2010-12-23 01:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-06-18 08:56 - 2015-04-12 23:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-06-18 08:56 - 2015-03-05 00:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-06-18 08:56 - 2015-02-24 23:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-06-18 08:56 - 2015-02-02 23:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-06-18 08:56 - 2015-02-02 23:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-06-18 08:56 - 2015-02-02 23:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-06-18 08:56 - 2014-12-18 22:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-06-18 08:56 - 2014-12-11 13:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-06-18 08:56 - 2014-12-05 23:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-06-18 08:56 - 2014-11-25 23:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-06-18 08:56 - 2014-11-07 22:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-06-18 08:56 - 2014-10-29 21:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-06-18 08:56 - 2014-10-24 21:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-06-18 08:56 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-06-18 08:56 - 2014-05-30 02:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-06-18 08:56 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-06-18 08:56 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-06-18 08:56 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-06-18 08:56 - 2013-10-11 22:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-06-18 08:56 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-06-18 08:56 - 2013-10-03 21:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-06-18 08:56 - 2013-10-03 21:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-06-18 08:56 - 2013-08-04 21:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-06-18 08:56 - 2013-07-12 06:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-06-18 08:56 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-06-18 08:56 - 2012-10-03 12:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-06-18 08:56 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-06-18 08:56 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-06-18 08:56 - 2012-07-04 17:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-06-18 08:56 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-06-18 08:56 - 2012-05-14 00:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-06-18 08:56 - 2012-03-17 03:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-06-18 08:56 - 2011-12-16 03:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-06-18 08:56 - 2011-06-15 04:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-06-18 08:56 - 2011-02-23 00:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-06-18 08:56 - 2011-02-12 01:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-06-18 08:55 - 2015-02-02 23:16 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-06-18 08:55 - 2015-02-02 23:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-06-18 08:55 - 2015-02-02 23:12 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-06-18 08:55 - 2015-02-02 23:11 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-06-18 08:55 - 2015-02-02 23:11 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-06-18 08:55 - 2015-02-02 23:10 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-06-18 08:55 - 2015-02-02 23:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-06-18 08:55 - 2015-02-02 23:00 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-06-18 08:55 - 2015-02-02 22:26 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-06-18 08:55 - 2015-01-30 19:56 - 00370488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-06-18 08:55 - 2014-12-18 21:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-06-18 08:55 - 2014-10-31 18:22 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-06-18 08:55 - 2014-10-13 21:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-06-18 08:55 - 2014-06-27 20:21 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-06-18 08:55 - 2014-06-27 20:21 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-06-18 08:55 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-06-18 08:55 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-06-18 08:55 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-06-18 08:55 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-06-18 08:55 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-06-18 08:55 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-06-18 08:55 - 2013-11-26 21:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-06-18 08:55 - 2013-11-26 21:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-06-18 08:55 - 2013-06-25 18:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-06-18 08:55 - 2012-11-28 18:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-06-18 08:55 - 2012-11-28 18:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-06-18 08:55 - 2012-11-28 18:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-06-18 08:54 - 2015-04-24 13:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-18 08:54 - 2015-03-09 23:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-06-18 08:54 - 2015-03-09 23:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-06-18 08:54 - 2014-12-07 22:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-06-18 08:54 - 2014-10-02 21:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-06-18 08:54 - 2014-10-02 21:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-06-18 08:54 - 2013-02-27 00:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-06-18 08:11 - 2015-06-18 08:11 - 00001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Thunderbird
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\Mozilla
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Thunderbird
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\ProgramData\Mozilla
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2015-06-18 08:11 - 2015-06-18 08:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-06-17 14:33 - 2015-07-14 09:10 - 01986999 _____ C:\Windows\WindowsUpdate.log
2015-06-17 11:10 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-06-17 11:10 - 2012-02-17 00:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-06-17 11:05 - 2015-06-17 11:05 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\AVG2015
2015-06-17 11:04 - 2015-07-12 08:53 - 00000000 ____D C:\ProgramData\AVG2015
2015-06-17 11:04 - 2015-07-05 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ___HD C:\$AVG
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Roaming\TuneUp Software
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ____D C:\Program Files\Common Files\AV
2015-06-17 11:04 - 2015-06-17 11:04 - 00000000 ____D C:\Program Files\AVG
2015-06-17 11:01 - 2015-07-14 08:16 - 00000000 ____D C:\ProgramData\MFAData
2015-06-17 11:01 - 2015-06-18 20:03 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\Avg2015
2015-06-17 11:01 - 2015-06-17 11:01 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\MFAData
2015-06-17 10:35 - 2015-06-19 08:07 - 00000000 ____D C:\Users\EdG_ThinkPad\AppData\Local\VirtualStore
2015-06-17 10:35 - 2015-06-17 10:37 - 00001420 _____ C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-17 10:35 - 2015-06-17 10:35 - 00000000 __SHD C:\Recovery
2015-06-17 10:35 - 2015-06-17 10:35 - 00000000 ____D C:\Users\EdG_ThinkPad
2015-06-17 10:35 - 2010-11-20 16:57 - 00000020 ___SH C:\Users\EdG_ThinkPad\ntuser.ini
2015-06-17 10:35 - 2009-07-14 00:42 - 00000000 ___RD C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-17 10:35 - 2009-07-14 00:37 - 00000000 ___RD C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-06-16 15:54 - 2015-06-16 15:54 - 00207328 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-14 15:08 - 2009-07-14 00:34 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-14 15:08 - 2009-07-14 00:34 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-14 05:22 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-14 05:22 - 2009-07-14 00:39 - 00046383 _____ C:\Windows\setupact.log
2015-07-10 05:41 - 2010-11-20 17:48 - 00019686 _____ C:\Windows\PFRO.log
2015-07-04 11:03 - 2010-11-20 17:01 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-23 07:16 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\rescache
2015-06-20 09:30 - 2009-07-14 00:33 - 00278024 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-20 07:34 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-06-20 07:14 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\AppCompat
2015-06-19 07:12 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\Help
2015-06-19 07:11 - 2009-07-13 22:37 - 00000000 __RSD C:\Windows\Media
2015-06-19 07:11 - 2009-07-13 22:37 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-19 07:11 - 2009-07-13 22:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-19 07:10 - 2011-04-11 22:24 - 00000000 ____D C:\Windows\ShellNew
2015-06-19 07:09 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system
2015-06-19 06:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-06-18 20:47 - 2009-07-13 22:04 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts.20150702-085430.backup
2015-06-18 19:38 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\tracing
2015-06-18 18:56 - 2011-04-11 22:24 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-18 18:56 - 2009-07-14 00:52 - 00000000 ____D C:\Program Files\Windows Defender
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\zh-TW
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\zh-HK
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\zh-CN
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\tr-TR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\sv-SE
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\ru-RU
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\pt-PT
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\pt-BR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\pl-PL
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\nl-NL
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\nb-NO
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\ko-KR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\ja-JP
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\it-IT
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\hu-HU
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\fr-FR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\fi-FI
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\el-GR
2015-06-18 18:56 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\de-DE
2015-06-17 10:35 - 2014-01-16 20:00 - 00000000 ____D C:\Windows\Panther
2015-06-17 10:35 - 2010-11-20 16:57 - 00000000 ____D C:\Users\Administrator
2015-06-17 10:35 - 2009-07-14 00:52 - 00000000 ____D C:\Windows\system32\restore
2015-06-17 10:35 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\Recovery
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-03 10:16
==================== End of log ============================
Requested Addition.txt file follows:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-07-2015
Ran by EdG_ThinkPad at 2015-07-14 17:22:19
Running from C:\Users\EdG_ThinkPad\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2103494442-2559361938-690267513-500 - Administrator - Disabled)
EdG_ThinkPad (S-1-5-21-2103494442-2559361938-690267513-1000 - Administrator - Enabled) => C:\Users\EdG_ThinkPad
Guest (S-1-5-21-2103494442-2559361938-690267513-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC (HKLM\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6081 - AVG Technologies)
AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6081 - AVG Technologies) Hidden
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2000 Premium (HKLM\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Mozilla Thunderbird 38.0.1 (x86 en-US) (HKLM\...\Mozilla Thunderbird 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
RICOH R5U8xx Media Driver ver.3.64.02 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.64.02 - RICOH)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
ThinkPad Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.55 - )
Tweaking.com - Registry Backup (HKLM\...\Tweaking.com - Registry Backup) (Version: 2.2.0 - Tweaking.com)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2103494442-2559361938-690267513-1000_Classes\CLSID\{56CBD3CF-BF99-4DF5-851F-F5B9B57496A1}\InprocServer32 -> C:\ProgramData\{D9E629DC-CB1C-4A97-9900-81922B4EFFD4}\srhelper.dll (Microsoft Corporation) <==== ATTENTION
==================== Restore Points =========================
18-06-2015 19:15:21 Installed RICOH R5U8xx Media Driver ver.3.64.02
18-06-2015 19:24:20 Windows Update
18-06-2015 20:48:29 Windows Update
19-06-2015 07:06:04 Installed Microsoft Office 2000 Premium
20-06-2015 07:14:07 Windows Update
27-06-2015 09:25:06 Scheduled Checkpoint
04-07-2015 16:09:51 Scheduled Checkpoint
12-07-2015 10:28:33 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:04 - 2015-07-02 08:54 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 1000 more lines.
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {7D6AFA0B-902B-4565-8DDD-F1D1BDBAF6F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14] (Adobe Systems Incorporated)
Task: {9102C5FD-36A7-44E5-B92C-C4D3B357D39D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {9874A172-B2BD-49AF-B7E2-1121E49B4431} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {A5E5F1D6-CE36-4760-8B3D-F7C2AB6A0EFB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {E75BC9E8-6E42-4815-AA31-A1B3919FDE89} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (Whitelisted) ==============
2014-01-16 20:11 - 2013-01-15 00:47 - 00079648 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2015-06-19 19:10 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-06-19 19:10 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2015-06-19 19:10 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-06-19 19:10 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2015-06-19 19:10 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7866 more restricted sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2103494442-2559361938-690267513-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\EdG_ThinkPad\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 65.32.5.111 - 65.32.5.112
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C9F8DA4-32A2-49A9-851B-90E43F925155}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{6DC46584-E669-43EE-B136-D404FB5F0126}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{7B926BA1-C65E-46B5-9B34-E0CB70FB8698}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{89A2C7FF-3C3C-4AC6-A64B-1138A15C0739}] => (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{EAD8B732-11ED-44B7-B81F-9E8CB022106D}] => (Allow) C:\Program Files\AVG\AVG2015\avgnsx.exe
FirewallRules: [{5685E1C2-48AB-4C5F-A6B0-5D21F47FF8F8}] => (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{37649CB9-89CC-45C2-88D1-DC5CCAB7D75C}] => (Allow) C:\Program Files\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{08C04A07-52BC-4920-8AB3-7EDD83FC2E12}] => (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
FirewallRules: [{D6F48DDA-E597-4626-8F29-2B344719526E}] => (Allow) C:\Program Files\AVG\AVG2015\avgemcx.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/14/2015 04:46:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1fec
Start Time: 01d0be75df0f5199
Termination Time: 320
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (07/14/2015 04:30:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1b3c
Start Time: 01d0be7387d92eda
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (07/14/2015 05:24:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SDTray.exe, version: 2.4.40.129, time stamp: 0x535a51a2
Faulting module name: dhcpcsvc.DLL_unloaded, version: 0.0.0.0, time stamp: 0x4a5bd9b5
Exception code: 0xc0000005
Fault offset: 0x72001b2d
Faulting process id: 0xf5c
Faulting application start time: 0xSDTray.exe0
Faulting application path: SDTray.exe1
Faulting module path: SDTray.exe2
Report Id: SDTray.exe3
Error: (07/14/2015 05:22:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 05:54:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 09:06:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/12/2015 09:34:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/11/2015 08:55:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GWXUX.exe, version: 6.3.9600.17813, time stamp: 0x554a1601
Faulting module name: ntdll.dll, version: 6.1.7601.18869, time stamp: 0x55636303
Exception code: 0xc0000005
Fault offset: 0x00032214
Faulting process id: 0x1fc8
Faulting application start time: 0xGWXUX.exe0
Faulting application path: GWXUX.exe1
Faulting module path: GWXUX.exe2
Report Id: GWXUX.exe3
Error: (07/10/2015 05:42:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/09/2015 08:35:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1674
Start Time: 01d0ba9f03b19f38
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
System errors:
=============
Error: (07/14/2015 03:11:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.
Error: (07/14/2015 10:25:15 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.
Error: (07/14/2015 08:10:28 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Error: (07/13/2015 02:30:10 PM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
Microsoft Office:
=========================
Error: (07/14/2015 04:46:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.178401fec01d0be75df0f5199320C:\Program Files\Internet Explorer\iexplore.exe
Error: (07/14/2015 04:30:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.178401b3c01d0be7387d92eda0C:\Program Files\Internet Explorer\iexplore.exe
Error: (07/14/2015 05:24:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: SDTray.exe2.4.40.129535a51a2dhcpcsvc.DLL_unloaded0.0.0.04a5bd9b5c000000572001b2df5c01d0be16e6555737C:\Program Files\Spybot - Search & Destroy 2\SDTray.exedhcpcsvc.DLL2d79a924-2a0a-11e5-b935-00226817a818
Error: (07/14/2015 05:22:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 05:54:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/13/2015 09:06:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/12/2015 09:34:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/11/2015 08:55:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.17813554a1601ntdll.dll6.1.7601.1886955636303c0000005000322141fc801d0bc3d79a48c90C:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dllba1d95a3-2830-11e5-ae31-00226817a818
Error: (07/10/2015 05:42:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/09/2015 08:35:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.17840167401d0ba9f03b19f380C:\Program Files\Internet Explorer\iexplore.exe
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz
Percentage of memory in use: 74%
Total physical RAM: 1944.03 MB
Available physical RAM: 493.09 MB
Total Virtual: 4832.54 MB
Available Virtual: 2393.07 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:294.72 GB) (Free:261.43 GB) NTFS
Drive d: (O9PRMCD01) (CDROM) (Total:0.49 GB) (Free:0 GB) CDFS
Drive e: (TOSHIBA) (Removable) (Total:7.44 GB) (Free:2.54 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 9C948886)
Partition 1: (Active) - (Size=3.4 GB) - (Type=27)
Partition 2: (Not Active) - (Size=294.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.4 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.4 GB) - (Type=0C)
==================== End of log ============================
Requested aswMBR.txt follows:
aswMBR version 1.0.1.2252 Copyright(c) 2014 AVAST Software
Run date: 2015-07-14 17:28:08
-----------------------------
17:28:08.032 OS Version: Windows 6.1.7601 Service Pack 1
17:28:08.032 Number of processors: 2 586 0x170A
17:28:08.032 ComputerName: EDG_THINKPAD-PC UserName: EdG_ThinkPad
17:29:01.243 Initialize success
17:29:02.023 VM: initialized successfully
17:29:02.023 VM: Intel CPU BiosDisabled
17:31:48.153 AVAST engine defs: 15071401
17:32:12.136 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:32:12.136 Disk 0 Vendor: ST320LT0 0005 Size: 305245MB BusType: 3
17:32:13.136 Disk 0 MBR read successfully
17:32:13.136 Disk 0 MBR scan
17:32:13.719 Disk 0 Windows 7 default MBR code
17:32:13.828 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 3450 MB offset 2048
17:32:13.984 Disk 0 default boot code
17:32:14.187 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 301793 MB offset 7067648
17:32:15.045 Disk 0 scanning sectors +625139712
17:32:17.494 Disk 0 scanning C:\Windows\system32\drivers
17:33:39.254 Service scanning
17:34:28.160 Modules scanning
17:34:28.176 Disk 0 trace - called modules:
17:34:28.192
17:34:32.528 AVAST engine scan C:\Windows
17:34:38.815 AVAST engine scan C:\Windows\system32
17:50:29.799 AVAST engine scan C:\Windows\system32\drivers
17:51:13.183 AVAST engine scan C:\Users\EdG_ThinkPad
18:01:35.328 Disk 0 MBR has been saved successfully to "C:\Users\EdG_ThinkPad\Desktop\MBR.dat"
18:01:35.375 The log file has been saved successfully to "C:\Users\EdG_ThinkPad\Desktop\aswMBR.txt"
====
Do you want MBR.dat file?