Results 1 to 10 of 10

Thread: Persistent Malware - Spybot the only one who dares to combat them

  1. #1
    Junior Member
    Join Date
    Sep 2015
    Posts
    5

    Default Persistent Malware - Spybot the only one who dares to combat them

    Hi experts,
    I have something in my computer that simply I can't get rid of it.
    The symptoms are: 1) the explorer.exe is collapsed. Do not respond and it stays in the air. Therefore I have no access to my directories and files. 2) My internet conexion is very slow. 3) The CPU Usage is at 100%, even though it is not running so many stuff.
    I've run a lot of removal softwares (eset, adwcleaner, frst, cksscanner, jrt, malwarebytes, combofix, hijackthis and obviously my antivirus avast Internet Security). After running all of them several times, most results are "no threats found". Some others I don't understand the report.
    The only scanner that shows malware is Spybot. There are registries in: 1) MS Direct3D - Most recent application, 2) Windows Explorer - Recent file global history, 3) Cache in Internet Explorer, 4) Cookies in Internet Explorer, 5) History - in Internet Explorer (which I don't use it at all, by the way) and 6) History in Google Chrome.

    Spybot remove them without a problem. Seems to be clean. But if I run it twice, appears them back again. The malfunctions still there and causing problems, that means persist the malware, although Spybot succesfully removed them.

    I attach some log files.

    Looking forward to hear from you soon and have a nice day.

    Best regards

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-08-2015
    Ran by Alejandro (administrator) on ALEJANDRO-PC (04-09-2015 11:48:41)
    Running from C:\Users\Alejandro\Desktop\Malware
    Loaded Profiles: Alejandro (Available Profiles: Alejandro)
    Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: English (United States)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
    (Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
    (Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
    (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
    (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
    (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
    (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
    () C:\Program Files\CyberLink\Shared files\RichVideo.exe
    (Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
    (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
    (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
    (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
    (Don HO don.h@free.fr) C:\Program Files\Notepad++\notepad++.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe


    ==================== Registry (Whitelisted) ===========================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-08-25] (AVAST Software)
    HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
    HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [39179912 2015-08-05] (Dropbox, Inc.)
    HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
    HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
    HKU\S-1-5-21-3706417920-3564089269-4247878469-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6453528 2015-07-17] (Piriform Ltd)
    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-08-11] (Microsoft Corporation)
    HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files\Common Files\Apple\Internet Services\iCloud.exe [43816 2015-04-26] (Apple Inc.)
    ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2015-07-22] ()
    ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2015-07-22] ()
    ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2015-07-22] ()
    ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-08-05] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-08-10] (AVAST Software)
    BootExecute: autocheck autochk * sdnclean.exe

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
    Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
    Tcpip\..\Interfaces\{2B14B925-F7E8-4D97-8F65-C3BE1EAF0FED}: [DhcpNameServer] 192.168.178.1
    Tcpip\..\Interfaces\{C84D883A-962E-4E1F-96D3-803AF21B1149}: [DhcpNameServer] 192.168.178.1

    Internet Explorer:
    ==================
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
    HKU\S-1-5-21-3706417920-3564089269-4247878469-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKU\S-1-5-21-3706417920-3564089269-4247878469-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-3706417920-3564089269-4247878469-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-14] (Oracle Corporation)
    BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-10] (AVAST Software)
    BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-14] (Oracle Corporation)

    FireFox:
    ========
    FF ProfilePath: C:\Users\Alejandro\AppData\Roaming\Mozilla\Firefox\Profiles\updde7c6.default
    FF SelectedSearchEngine: Yahoo Search!
    FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
    FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-14] (Oracle Corporation)
    FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-14] (Oracle Corporation)
    FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-10] (Google Inc.)
    FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-10] (Google Inc.)
    FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-02] (Adobe Systems Inc.)
    FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)
    FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
    FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-10]
    FF Extension: No Name - C:\Users\Alejandro\AppData\Roaming\Mozilla\Firefox\Profiles\updde7c6.default\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [not found]
    FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-08-29]

    Chrome:
    =======
    CHR Profile: C:\Users\Alejandro\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Avast SafePrice) - C:\Users\Alejandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-08-17]
    CHR Extension: (Avast Online Security) - C:\Users\Alejandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-10]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Alejandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-10]
    CHR Extension: (Chrome Web Store Payments) - C:\Users\Alejandro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-10]
    CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-10]
    CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-10]

    ==================== Services (Whitelisted) ========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-10] (AVAST Software)
    R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-08-10] (AVAST Software)
    R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-08-10] (Avast Software)
    S4 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-11] (Dropbox, Inc.)
    S4 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-11] (Dropbox, Inc.)
    R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
    R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
    R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2010-08-19] ()
    S4 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
    S4 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
    S4 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
    R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-26] (Microsoft Corporation)
    S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]

    ===================== Drivers (Whitelisted) ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
    R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-08-10] (AVAST Software)
    R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [26096 2015-08-10] (AVAST Software)
    R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-08-10] (AVAST Software)
    R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [275856 2015-08-10] (AVAST Software)
    R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-08-10] (AVAST Software)
    R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-08-10] (AVAST Software)
    R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788784 2015-08-10] (AVAST Software)
    R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433264 2015-08-10] (AVAST Software)
    R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-08-10] (AVAST Software)
    R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-08-10] (AVAST Software)
    S3 eapihdrv; C:\Users\Alejandro\AppData\Local\temp\ehdrv.sys [135760 2015-09-04] (ESET)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
    R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [98520 2015-09-04] (Malwarebytes Corporation)
    R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
    R0 ngvss; C:\Windows\system32\Drivers\ngvss.sys [95112 2015-08-10] (AVAST Software)
    R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-08-10] (Avast Software)
    U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
    S3 catchme; \??\C:\Users\ALEJAN~1\AppData\Local\Temp\catchme.sys [X]
    S3 USB28xxBGA; system32\DRIVERS\emBDA.sys [X]
    S3 USB28xxOEM; system32\DRIVERS\emOEM.sys [X]
    U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-13] (Microsoft Corporation)

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-09-04 11:08 - 2015-09-04 11:30 - 00001207 _____ C:\Help-malware.txt
    2015-09-04 08:14 - 2015-09-04 08:42 - 00032020 _____ C:\Users\Alejandro\Downloads\Shortcut.txt
    2015-09-04 08:12 - 2015-09-04 08:42 - 00031002 _____ C:\Users\Alejandro\Downloads\Addition.txt
    2015-09-04 08:09 - 2015-09-04 11:48 - 00000000 ____D C:\FRST
    2015-09-04 08:09 - 2015-09-04 08:42 - 00184000 _____ C:\Users\Alejandro\Downloads\FRST.txt
    2015-09-04 08:05 - 2015-09-04 08:06 - 00005578 _____ C:\Users\Alejandro\Downloads\hijackthis.log
    2015-09-03 22:00 - 2015-09-03 22:00 - 00001743 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015 (32 Bit).lnk
    2015-09-03 22:00 - 2015-09-03 22:00 - 00000000 ____D C:\ProgramData\ALM
    2015-09-03 19:58 - 2015-09-01 02:15 - 637309063 _____ C:\Users\Alejandro\Downloads\Windows_8_Software.zip
    2015-09-03 16:11 - 2015-09-04 10:08 - 00000560 _____ C:\Windows\setupact.log
    2015-09-03 16:11 - 2015-09-03 16:11 - 00000000 _____ C:\Windows\setuperr.log
    2015-09-03 14:55 - 2015-09-04 11:48 - 00000000 ____D C:\Users\Alejandro\Desktop\Malware
    2015-09-03 12:23 - 2015-09-04 11:03 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-09-03 12:23 - 2015-09-03 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2015-09-03 12:23 - 2015-09-03 12:23 - 00000000 ____D C:\ProgramData\Malwarebytes
    2015-09-03 12:23 - 2015-09-03 12:23 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
    2015-09-03 12:23 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
    2015-09-03 12:23 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
    2015-09-03 12:23 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
    2015-09-03 12:22 - 2015-09-03 12:22 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Alejandro\Downloads\mbam-setup-2.1.8.1057.exe
    2015-09-03 12:16 - 2015-09-03 12:16 - 00001706 _____ C:\Users\Public\Documents\JRT.txt
    2015-09-02 12:10 - 2015-09-02 12:12 - 01489554 _____ C:\Users\Alejandro\Downloads\unconditional.1.1.3.zip
    2015-09-02 10:16 - 2015-09-03 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
    2015-09-02 09:30 - 2015-09-02 09:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
    2015-09-02 09:24 - 2015-09-02 22:34 - 00000000 ____D C:\xampp
    2015-09-01 19:44 - 2015-09-01 02:05 - 26489624 _____ C:\Users\Alejandro\Downloads\video_2_pc_mk2_setup.exe.zip
    2015-09-01 19:43 - 2015-09-01 19:44 - 10369928 _____ (SurfRight B.V.) C:\Users\Alejandro\Downloads\HitmanPro.exe
    2015-09-01 17:07 - 2015-09-01 17:07 - 00000000 ____D C:\Users\Alejandro\Documents\ProcAlyzer Dumps
    2015-09-01 16:23 - 2015-09-01 16:23 - 00000000 ____D C:\Program Files\ESET
    2015-09-01 13:21 - 2015-09-04 10:06 - 00000000 ____D C:\AdwCleaner
    2015-09-01 12:59 - 2015-09-01 12:59 - 00026620 _____ C:\ComboFix.txt
    2015-09-01 09:44 - 2011-06-25 23:45 - 00256000 _____ C:\Windows\PEV.exe
    2015-09-01 09:44 - 2010-11-07 10:20 - 00208896 _____ C:\Windows\MBR.exe
    2015-09-01 09:44 - 2009-04-19 21:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
    2015-09-01 09:44 - 2000-08-30 17:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
    2015-09-01 09:44 - 2000-08-30 17:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
    2015-09-01 09:44 - 2000-08-30 17:00 - 00098816 _____ C:\Windows\sed.exe
    2015-09-01 09:44 - 2000-08-30 17:00 - 00080412 _____ C:\Windows\grep.exe
    2015-09-01 09:44 - 2000-08-30 17:00 - 00068096 _____ C:\Windows\zip.exe
    2015-09-01 09:43 - 2015-09-01 12:59 - 00000000 ____D C:\Qoobox
    2015-09-01 08:19 - 2015-09-01 10:28 - 00000000 ____D C:\Windows\erdnt
    2015-08-30 14:09 - 2015-09-02 22:31 - 00005632 _____ C:\Users\Alejandro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2015-08-30 13:46 - 2015-08-30 13:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
    2015-08-30 13:45 - 2015-08-30 13:46 - 00000000 ____D C:\Program Files\FreeCodecPack
    2015-08-30 13:45 - 2015-08-30 13:46 - 00000000 ____D C:\Program Files\DVDVideoSoft
    2015-08-30 13:45 - 2015-08-30 13:46 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
    2015-08-30 13:44 - 2015-08-30 13:47 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\DVDVideoSoft
    2015-08-30 11:26 - 2015-08-30 14:04 - 03062158 _____ C:\Users\Public\Documents\andrea Music presentation.odp
    2015-08-29 13:38 - 2015-09-01 07:36 - 00000000 ____D C:\Program Files\Mozilla Firefox
    2015-08-27 18:36 - 2015-08-27 18:36 - 00000107 _____ C:\NombredeBorrado.txt
    2015-08-26 16:21 - 2015-08-31 17:10 - 00029334 _____ C:\Users\Alejandro\Documents\PDR.dmp
    2015-08-26 14:02 - 2015-08-26 16:16 - 00000000 ____D C:\Users\Public\CyberLink
    2015-08-26 14:02 - 2015-08-26 16:16 - 00000000 ____D C:\Users\Alejandro\Documents\CyberLink
    2015-08-26 12:09 - 2015-08-26 12:10 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Notepad++
    2015-08-26 12:09 - 2015-08-26 12:09 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
    2015-08-26 12:09 - 2015-08-26 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
    2015-08-26 12:09 - 2015-08-26 12:09 - 00000000 ____D C:\Program Files\Notepad++
    2015-08-26 10:54 - 2015-08-26 14:01 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\CyberLink
    2015-08-26 10:51 - 2015-08-26 14:17 - 00000000 ____D C:\ProgramData\CyberLink
    2015-08-26 10:40 - 2015-08-31 17:14 - 00000000 ____D C:\Program Files\CyberLink
    2015-08-26 10:40 - 2015-08-26 10:48 - 00000000 ____D C:\ProgramData\Temp
    2015-08-26 09:18 - 2006-11-09 13:50 - 00016382 _____ C:\Windows\system32\Drivers\merlinFW.rom
    2015-08-25 11:30 - 2015-08-25 11:30 - 00000000 ____D C:\Users\Alejandro\Documents\ArcSoft ToGo
    2015-08-25 11:29 - 2015-08-25 11:29 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Macromedia
    2015-08-25 11:28 - 2015-08-25 11:28 - 00000000 ____D C:\Users\Alejandro\AppData\Local\ArcSoft
    2015-08-25 11:25 - 2015-08-26 11:33 - 00000000 ____D C:\ProgramData\ArcSoft
    2015-08-25 11:25 - 2015-08-25 11:29 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\ArcSoft
    2015-08-25 11:24 - 2015-08-27 09:25 - 00000000 ____D C:\Program Files\Common Files\ArcSoft
    2015-08-25 11:24 - 2006-11-10 15:05 - 00018688 _____ (Arcsoft, Inc.) C:\Windows\system32\Drivers\afc.sys
    2015-08-24 17:56 - 2015-08-24 17:56 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
    2015-08-24 17:52 - 2015-08-24 17:52 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Tools&More
    2015-08-24 17:41 - 2015-08-24 17:41 - 00001260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015 (32 Bit).lnk
    2015-08-24 17:41 - 2015-08-24 17:41 - 00000000 ____D C:\Users\Alejandro\Documents\Adobe
    2015-08-24 17:12 - 2015-09-03 21:09 - 00000000 ___RD C:\Users\Alejandro\Creative Cloud Files
    2015-08-24 16:32 - 2015-09-03 21:08 - 00000000 ____D C:\ProgramData\boost_interprocess
    2015-08-24 16:29 - 2015-09-01 07:48 - 00000000 ____D C:\ProgramData\Package Cache
    2015-08-24 16:27 - 2015-08-24 16:27 - 00001195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
    2015-08-24 14:37 - 2015-08-24 14:37 - 00002701 _____ C:\Users\Public\Desktop\Joe - Rename.lnk
    2015-08-24 14:37 - 2015-08-24 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tools&More
    2015-08-24 14:37 - 2015-08-24 14:37 - 00000000 ____D C:\Program Files\Tools&More
    2015-08-24 14:26 - 2015-08-24 14:26 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
    2015-08-24 14:26 - 2015-08-24 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
    2015-08-24 14:26 - 2015-08-24 14:26 - 00000000 ____D C:\Program Files\WinDirStat
    2015-08-23 12:54 - 2015-09-04 10:08 - 00028219 _____ C:\ProgramData\nvModes.001
    2015-08-23 12:52 - 2015-09-03 14:35 - 00028219 _____ C:\ProgramData\nvModes.dat
    2015-08-20 08:52 - 2015-08-20 08:52 - 00021447 _____ C:\Users\Alejandro\Documents\Charly Garcia.odt
    2015-08-19 22:37 - 2015-08-10 17:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-08-19 22:37 - 2015-08-10 17:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-08-19 16:20 - 2015-08-19 16:20 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
    2015-08-19 16:20 - 2015-08-19 16:20 - 00000000 ____D C:\Program Files\CCleaner
    2015-08-19 12:20 - 2015-08-19 12:20 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Avery
    2015-08-19 12:15 - 2015-08-31 17:15 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
    2015-08-19 11:51 - 2015-08-19 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avery Dennison
    2015-08-19 11:51 - 2015-08-19 11:51 - 00000000 ____D C:\ProgramData\Avery
    2015-08-19 11:51 - 2015-08-19 11:51 - 00000000 ____D C:\Program Files\Avery Dennison
    2015-08-19 11:45 - 2015-08-25 11:23 - 00000000 ____D C:\Program Files\Common Files\InstallShield
    2015-08-19 11:41 - 2015-08-19 11:41 - 00000000 ____D C:\Users\Alejandro\AppData\Local\CEF
    2015-08-19 11:26 - 2015-08-19 11:37 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Apple Computer
    2015-08-19 11:26 - 2015-08-19 11:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    2015-08-19 11:25 - 2015-08-19 11:26 - 00000000 ____D C:\Program Files\iTunes
    2015-08-19 11:25 - 2015-08-19 11:25 - 00000000 ____D C:\ProgramData\Apple Computer
    2015-08-19 11:25 - 2015-08-19 11:25 - 00000000 ____D C:\Program Files\iPod
    2015-08-19 10:29 - 2015-09-03 22:08 - 00000000 ____D C:\Program Files\Common Files\Adobe
    2015-08-19 10:29 - 2015-09-03 22:00 - 00000000 ____D C:\Program Files\Adobe
    2015-08-19 10:29 - 2015-08-24 17:34 - 00000000 ____D C:\ProgramData\Adobe
    2015-08-19 10:26 - 2015-09-03 22:01 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Adobe
    2015-08-18 18:23 - 2015-08-18 18:23 - 00000000 ____D C:\Users\Alejandro\Documents\SafeNet Sentinel
    2015-08-18 18:23 - 2015-08-18 18:23 - 00000000 ____D C:\ProgramData\SafeNet Sentinel
    2015-08-18 18:23 - 2015-08-18 18:23 - 00000000 ____D C:\ProgramData\Readiris14ProHP
    2015-08-18 18:21 - 2015-08-18 18:26 - 00000000 ____D C:\Users\Alejandro\Documents\Readiris
    2015-08-18 18:21 - 2015-08-18 18:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IRIS
    2015-08-18 18:21 - 2015-08-18 18:21 - 00000000 ____D C:\Program Files\Readiris Pro 14
    2015-08-18 18:12 - 2015-08-24 14:37 - 00000000 ____D C:\Windows\Downloaded Installations
    2015-08-18 16:59 - 2015-08-18 16:59 - 00000000 ____D C:\Program Files\Hewlett-Packard
    2015-08-18 16:58 - 2015-08-18 16:58 - 00001171 _____ C:\Users\Alejandro\Desktop\HP Scan.lnk
    2015-08-18 16:58 - 2015-08-18 16:58 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\HpUpdate
    2015-08-18 16:58 - 2014-03-06 11:48 - 00597512 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPM7112.dll
    2015-08-18 16:56 - 2015-08-18 16:56 - 00000057 _____ C:\ProgramData\Ament.ini
    2015-08-17 19:38 - 2015-08-17 19:38 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\MySQL
    2015-08-17 18:11 - 2015-09-03 14:58 - 00000000 ____D C:\ProgramData\MySQL
    2015-08-17 18:04 - 2015-08-17 18:04 - 00000000 ____D C:\Program Files\Microsoft.NET
    2015-08-16 13:12 - 2015-08-16 13:13 - 00000000 ____D C:\Program Files\Minecraft
    2015-08-16 13:12 - 2015-08-16 13:12 - 00000931 _____ C:\Users\Public\Desktop\Minecraft.lnk
    2015-08-16 13:12 - 2015-08-16 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
    2015-08-16 12:35 - 2015-07-20 17:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-08-16 12:35 - 2015-07-16 13:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-08-16 12:35 - 2015-07-16 12:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-08-16 12:35 - 2015-07-16 12:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-08-16 12:35 - 2015-07-16 12:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-08-16 12:35 - 2015-07-16 12:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-08-16 12:35 - 2015-07-16 12:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-08-16 12:35 - 2015-07-16 12:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-08-16 12:35 - 2015-07-16 12:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-08-16 12:35 - 2015-07-16 12:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-08-16 12:35 - 2015-07-16 12:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-08-16 12:35 - 2015-07-16 12:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-08-16 12:35 - 2015-07-16 12:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-08-16 12:35 - 2015-07-16 12:39 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-08-16 12:35 - 2015-07-16 12:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-08-16 12:35 - 2015-07-16 12:32 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-08-16 12:35 - 2015-07-16 12:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-08-16 12:35 - 2015-07-16 12:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-08-16 12:35 - 2015-07-16 12:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-08-16 12:35 - 2015-07-16 12:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-08-16 12:35 - 2015-07-16 12:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-08-16 12:35 - 2015-07-16 12:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-08-16 12:35 - 2015-07-16 12:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-08-16 12:35 - 2015-07-16 12:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-08-16 12:35 - 2015-07-16 12:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-08-16 12:35 - 2015-07-16 12:06 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-08-16 12:35 - 2015-07-16 12:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-08-16 12:35 - 2015-07-16 11:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-08-16 12:35 - 2015-07-16 11:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-08-16 12:35 - 2015-07-16 11:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-08-16 12:33 - 2013-11-26 01:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2015-08-14 22:45 - 2015-08-14 22:45 - 00000000 ____D C:\Users\Alejandro\Desktop\runtime
    2015-08-14 22:44 - 2015-08-14 22:45 - 00000000 ____D C:\Users\Alejandro\Desktop\game
    2015-08-14 22:43 - 2015-08-14 22:43 - 00000000 ____D C:\ProgramData\NVIDIA
    2015-08-14 22:39 - 2015-08-14 22:36 - 01079840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpluir.dll
    2015-08-14 22:39 - 2015-08-14 22:36 - 00768544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe
    2015-08-14 22:39 - 2015-08-14 22:36 - 00313888 _____ (NVIDIA Corporation) C:\Windows\system32\nvexpbar.dll
    2015-08-14 22:39 - 2015-08-14 22:35 - 00420384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.cpl
    2015-08-14 22:38 - 2008-07-17 16:26 - 00446464 _____ (NVIDIA Corporation) C:\Windows\system32\NVUNINST.EXE
    2015-08-14 22:26 - 2015-09-03 14:35 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\.minecraft
    2015-08-14 22:26 - 2015-08-14 22:26 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\java
    2015-08-14 22:18 - 2015-08-14 22:18 - 00000000 ____D C:\ProgramData\Sun
    2015-08-14 22:18 - 2015-08-14 22:18 - 00000000 ____D C:\Program Files\Common Files\Java
    2015-08-14 22:18 - 2015-08-14 22:17 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
    2015-08-14 22:17 - 2015-08-14 22:19 - 00000000 ____D C:\ProgramData\Oracle
    2015-08-14 22:17 - 2015-08-14 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2015-08-14 22:17 - 2015-08-14 22:17 - 00000000 ____D C:\Program Files\Java
    2015-08-14 11:52 - 2015-08-14 22:08 - 00000000 ___RD C:\Users\Alejandro\iCloudDrive
    2015-08-14 11:52 - 2015-08-14 11:52 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Apple Inc
    2015-08-14 11:43 - 2015-08-19 11:26 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Apple Computer
    2015-08-14 11:42 - 2015-08-14 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
    2015-08-14 11:41 - 2015-08-14 11:41 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Apple
    2015-08-14 11:41 - 2015-08-14 11:41 - 00000000 ____D C:\Program Files\Bonjour
    2015-08-14 11:41 - 2015-08-14 11:41 - 00000000 ____D C:\Program Files\Apple Software Update
    2015-08-14 11:40 - 2015-08-19 11:25 - 00000000 ____D C:\ProgramData\Apple
    2015-08-14 11:40 - 2015-08-19 11:25 - 00000000 ____D C:\Program Files\Common Files\Apple
    2015-08-14 09:37 - 2015-07-30 10:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-08-14 09:37 - 2015-07-30 10:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-08-14 09:37 - 2015-07-30 10:57 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-08-14 09:37 - 2015-02-03 19:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-08-14 09:37 - 2015-02-02 20:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-08-14 08:57 - 2015-09-03 22:00 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Adobe
    2015-08-14 08:24 - 2015-08-14 08:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2015-08-14 08:24 - 2015-08-14 08:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2015-08-14 08:24 - 2015-08-14 08:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2015-08-14 08:24 - 2015-08-14 08:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2015-08-14 08:24 - 2015-08-14 08:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2015-08-14 08:24 - 2015-08-14 08:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2015-08-14 08:24 - 2015-08-14 08:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2015-08-14 08:24 - 2015-08-14 08:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2015-08-14 08:24 - 2015-08-14 08:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2015-08-14 08:23 - 2015-08-14 08:23 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
    2015-08-14 08:23 - 2015-08-14 08:23 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-08-14 08:22 - 2015-08-14 08:22 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-08-14 08:21 - 2015-08-14 08:21 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
    2015-08-12 21:07 - 2015-08-18 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
    2015-08-12 21:07 - 2015-08-18 17:55 - 00000000 ____D C:\Program Files\HP
    2015-08-12 21:07 - 2015-08-18 16:57 - 00000000 ____D C:\ProgramData\HP
    2015-08-12 21:07 - 2015-08-12 21:07 - 00000926 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
    2015-08-12 21:00 - 2015-08-18 17:53 - 00000000 ____D C:\Users\Alejandro\AppData\Local\HP
    2015-08-12 11:34 - 2014-06-30 15:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
    2015-08-12 11:34 - 2014-06-05 23:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2015-08-12 11:34 - 2014-03-09 14:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
    2015-08-12 11:34 - 2014-03-09 14:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
    2015-08-12 11:33 - 2012-02-29 22:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2015-08-12 11:33 - 2012-02-29 22:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2015-08-12 11:17 - 2015-07-30 06:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-08-12 11:02 - 2015-07-14 19:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
    2015-08-12 11:02 - 2013-07-25 18:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
    2015-08-12 11:01 - 2015-02-02 20:12 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
    2015-08-12 11:01 - 2015-02-02 20:11 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
    2015-08-12 11:01 - 2015-02-02 20:11 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
    2015-08-12 11:01 - 2015-02-02 20:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2015-08-12 11:01 - 2015-02-02 20:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2015-08-12 11:01 - 2015-02-02 20:11 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
    2015-08-12 11:01 - 2015-02-02 20:11 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
    2015-08-12 11:01 - 2015-02-02 20:11 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
    2015-08-12 11:01 - 2015-02-02 20:10 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
    2015-08-12 11:01 - 2015-02-02 20:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2015-08-12 11:01 - 2015-02-02 20:00 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
    2015-08-12 11:01 - 2015-02-02 19:26 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
    2015-08-12 11:01 - 2015-01-30 16:56 - 00370488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2015-08-12 11:01 - 2014-10-31 15:22 - 00521384 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2015-08-12 11:01 - 2014-10-17 18:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
    2015-08-12 11:01 - 2014-06-27 17:21 - 00455752 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2015-08-12 11:01 - 2014-06-27 17:21 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
    2015-08-12 11:01 - 2013-07-02 20:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
    2015-08-12 11:01 - 2013-07-02 20:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
    2015-08-12 11:01 - 2013-04-12 06:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2015-08-12 11:00 - 2015-07-20 10:56 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 02061312 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2015-08-12 11:00 - 2015-07-20 10:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2015-08-12 11:00 - 2015-07-20 10:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2015-08-12 11:00 - 2015-07-20 10:56 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
    2015-08-12 11:00 - 2015-07-10 10:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-08-12 11:00 - 2015-07-10 10:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2015-08-12 11:00 - 2015-07-10 10:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
    2015-08-12 11:00 - 2013-02-11 20:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
    2015-08-12 11:00 - 2011-04-28 19:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
    2015-08-12 11:00 - 2011-04-28 19:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2015-08-12 11:00 - 2011-04-28 19:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
    2015-08-12 10:59 - 2015-07-09 10:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
    2015-08-12 10:59 - 2015-07-09 10:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe
    2015-08-12 10:59 - 2015-07-01 13:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
    2015-08-12 10:59 - 2015-07-01 13:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
    2015-08-12 10:59 - 2014-11-10 19:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
    2015-08-12 10:59 - 2012-11-01 22:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
    2015-08-12 10:58 - 2015-06-15 14:47 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
    2015-08-12 10:58 - 2015-06-15 14:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
    2015-08-12 10:58 - 2015-06-15 14:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
    2015-08-12 10:58 - 2015-06-15 14:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
    2015-08-12 10:58 - 2015-06-15 14:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
    2015-08-12 10:58 - 2015-06-15 14:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
    2015-08-12 10:58 - 2015-06-15 14:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
    2015-08-12 10:58 - 2014-06-15 18:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2015-08-12 10:58 - 2014-06-15 18:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
    2015-08-12 10:58 - 2014-06-15 18:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
    2015-08-12 10:58 - 2014-03-04 02:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
    2015-08-12 10:58 - 2013-10-18 18:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
    2015-08-12 10:58 - 2011-03-02 22:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
    2015-08-12 10:58 - 2011-03-02 22:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
    2015-08-12 10:58 - 2011-03-02 22:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
    2015-08-12 10:57 - 2015-07-15 10:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
    2015-08-12 10:57 - 2015-07-15 10:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-08-12 10:57 - 2015-07-15 10:59 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-08-12 10:57 - 2015-07-15 10:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2015-08-12 10:57 - 2015-07-15 10:59 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-08-12 10:57 - 2015-07-15 10:56 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-08-12 10:57 - 2015-07-15 10:55 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-08-12 10:57 - 2015-07-15 10:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-08-12 10:57 - 2015-07-15 10:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-08-12 10:57 - 2015-07-15 10:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-08-12 10:57 - 2015-07-15 10:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2015-08-12 10:57 - 2015-07-15 10:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2015-08-12 10:57 - 2015-07-15 10:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2015-08-12 10:57 - 2015-07-15 10:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-08-12 10:57 - 2015-07-15 10:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-08-12 10:57 - 2015-07-15 10:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-08-12 10:57 - 2015-07-15 09:36 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2015-08-12 10:57 - 2015-07-15 09:36 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
    2015-08-12 10:57 - 2015-07-15 09:36 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
    2015-08-12 10:57 - 2015-07-04 10:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
    2015-08-12 10:57 - 2014-08-11 18:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
    2015-08-12 10:57 - 2013-10-11 19:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
    2015-08-12 10:57 - 2013-10-11 19:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
    2015-08-12 10:57 - 2013-10-11 18:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
    2015-08-12 10:57 - 2013-10-11 18:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
    2015-08-12 10:57 - 2011-08-26 21:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
    2015-08-12 10:57 - 2011-08-16 21:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2015-08-12 10:57 - 2011-08-16 21:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2015-08-12 10:57 - 2011-05-24 03:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
    2015-08-12 10:56 - 2015-06-17 10:39 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2015-08-12 10:56 - 2015-03-03 21:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
    2015-08-12 10:56 - 2015-03-03 21:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
    2015-08-12 10:56 - 2015-01-16 19:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2015-08-12 10:56 - 2014-09-03 22:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
    2015-08-12 10:56 - 2013-05-12 20:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2015-08-12 10:56 - 2013-05-12 20:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
    2015-08-12 10:56 - 2013-04-25 21:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2015-08-12 10:56 - 2012-06-05 22:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
    2015-08-12 10:56 - 2011-05-02 21:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
    2015-08-12 10:55 - 2015-07-30 10:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2015-08-12 10:55 - 2015-07-30 10:57 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2015-08-12 10:55 - 2015-07-30 10:57 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2015-08-12 10:55 - 2015-07-30 10:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2015-08-12 10:55 - 2015-07-30 09:52 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-08-12 10:55 - 2015-07-30 09:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2015-08-12 10:55 - 2015-04-17 19:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
    2015-08-12 10:55 - 2015-04-12 20:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
    2015-08-12 10:55 - 2014-06-17 18:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
    2015-08-12 10:55 - 2014-06-06 02:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
    2015-08-12 10:55 - 2014-05-29 23:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
    2015-08-12 10:55 - 2014-04-04 19:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2015-08-12 10:55 - 2014-04-04 19:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
    2015-08-12 10:55 - 2013-11-26 04:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
    2015-08-12 10:55 - 2013-10-03 18:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
    2015-08-12 10:55 - 2013-10-03 18:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
    2015-08-12 10:55 - 2013-07-25 01:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
    2015-08-12 10:55 - 2012-07-04 14:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2015-08-12 10:55 - 2012-07-04 14:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
    2015-08-12 10:55 - 2012-07-04 14:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
    2015-08-12 10:55 - 2011-10-14 22:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
    2015-08-12 10:55 - 2011-02-11 22:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
    2015-08-12 10:55 - 2010-12-22 22:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
    2015-08-12 10:55 - 2010-12-22 22:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
    2015-08-12 10:55 - 2010-12-22 22:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
    2015-08-12 10:54 - 2015-02-02 20:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
    2015-08-12 10:54 - 2014-12-18 19:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
    2015-08-12 10:54 - 2014-12-11 10:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
    2015-08-12 10:54 - 2014-10-24 18:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2015-08-12 10:54 - 2014-06-18 15:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
    2015-08-12 10:54 - 2014-06-18 15:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
    2015-08-12 10:54 - 2014-06-18 15:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
    2015-08-12 10:54 - 2012-09-25 15:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
    2015-08-12 10:54 - 2012-03-17 00:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
    2015-08-12 10:54 - 2011-12-16 00:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2015-08-12 10:54 - 2011-11-16 22:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
    2015-08-12 10:54 - 2011-06-15 01:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
    2015-08-12 10:54 - 2011-06-15 01:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
    2015-08-12 10:54 - 2011-06-15 01:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
    2015-08-12 10:54 - 2011-06-15 01:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
    2015-08-12 10:54 - 2011-06-15 01:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
    2015-08-12 10:53 - 2015-07-10 10:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-08-12 10:53 - 2015-05-09 11:09 - 00715200 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
    2015-08-12 10:53 - 2015-04-07 20:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
    2015-08-12 10:53 - 2015-04-07 20:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
    2015-08-12 10:53 - 2015-02-18 00:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
    2015-08-12 10:53 - 2014-07-16 18:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
    2015-08-12 10:53 - 2014-07-16 18:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2015-08-12 10:53 - 2014-07-16 18:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2015-08-12 10:53 - 2014-07-16 18:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
    2015-08-12 10:53 - 2014-07-16 18:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2015-08-12 10:53 - 2014-07-16 18:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2015-08-12 10:53 - 2013-10-11 19:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
    2015-08-12 10:53 - 2013-10-11 19:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2015-08-12 10:53 - 2013-10-11 19:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
    2015-08-12 10:53 - 2013-07-12 03:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
    2015-08-12 10:53 - 2013-07-12 03:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
    2015-08-12 10:53 - 2013-07-12 03:07 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
    2015-08-12 10:53 - 2012-11-22 19:48 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
    2015-08-12 10:53 - 2012-05-13 21:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
    2015-08-12 10:53 - 2012-04-25 21:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
    2015-08-12 10:53 - 2012-04-25 21:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
    2015-08-12 10:52 - 2015-05-08 20:14 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-08-12 10:52 - 2015-05-08 20:13 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-08-12 10:52 - 2015-05-08 20:13 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2015-08-12 10:52 - 2015-05-08 20:12 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2015-08-12 10:52 - 2015-05-08 20:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 20:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 18:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 18:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2015-08-12 10:52 - 2015-05-08 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2015-08-12 10:52 - 2015-04-29 11:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2015-08-12 10:52 - 2015-04-29 11:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
    2015-08-12 10:52 - 2015-04-29 11:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
    2015-08-12 10:52 - 2015-04-29 11:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
    2015-08-12 10:52 - 2015-04-29 11:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2015-08-12 10:52 - 2015-02-24 20:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
    2015-08-12 10:52 - 2014-12-05 20:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
    2015-08-12 10:52 - 2014-01-28 19:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
    2015-08-12 10:52 - 2012-10-03 09:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
    2015-08-12 10:52 - 2012-10-03 09:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
    2015-08-12 10:52 - 2011-03-10 22:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
    2015-08-12 10:52 - 2011-03-10 22:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
    2015-08-12 10:51 - 2015-07-14 19:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2015-08-12 10:51 - 2015-07-14 19:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2015-08-12 10:51 - 2015-07-14 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
    2015-08-12 10:51 - 2015-07-14 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2015-08-12 10:51 - 2015-06-01 16:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
    2015-08-12 10:51 - 2014-12-18 18:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
    2015-08-12 10:51 - 2014-04-24 19:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
    2015-08-12 10:51 - 2013-11-26 18:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
    2015-08-12 10:51 - 2013-11-26 18:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
    2015-08-12 10:51 - 2013-11-26 18:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
    2015-08-12 10:51 - 2013-11-26 18:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
    2015-08-12 10:51 - 2013-11-26 18:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
    2015-08-12 10:51 - 2013-11-26 18:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
    2015-08-12 10:51 - 2013-11-26 18:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
    2015-08-12 10:51 - 2013-06-25 15:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
    2015-08-12 10:51 - 2012-11-28 15:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
    2015-08-12 10:51 - 2012-11-28 15:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
    2015-08-12 10:51 - 2012-11-28 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
    2015-08-12 10:51 - 2011-02-22 21:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
    2015-08-12 10:50 - 2015-04-24 10:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
    2015-08-12 10:50 - 2014-12-07 19:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
    2015-08-12 10:50 - 2014-10-13 18:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
    2015-08-12 10:18 - 2012-02-16 22:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
    2015-08-12 10:18 - 2012-02-16 21:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
    2015-08-11 20:28 - 2015-08-11 20:28 - 00000000 ____D C:\Users\Alejandro\Tracing
    2015-08-11 20:27 - 2015-08-20 21:26 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Skype
    2015-08-11 20:27 - 2015-08-14 11:49 - 00000000 ___RD C:\Program Files\Skype
    2015-08-11 20:27 - 2015-08-11 20:27 - 00002687 _____ C:\Users\Public\Desktop\Skype.lnk
    2015-08-11 20:27 - 2015-08-11 20:27 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Skype
    2015-08-11 20:27 - 2015-08-11 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
    2015-08-11 20:27 - 2015-08-11 20:27 - 00000000 ____D C:\Program Files\Common Files\Skype
    2015-08-11 20:26 - 2015-08-11 20:27 - 00000000 ____D C:\ProgramData\Skype
    2015-08-11 20:21 - 2015-09-04 10:10 - 00000000 ___RD C:\Users\Alejandro\Dropbox
    2015-08-11 20:21 - 2015-08-11 20:21 - 00001188 _____ C:\Users\Alejandro\Desktop\Dropbox.lnk
    2015-08-11 20:19 - 2015-08-11 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
    2015-08-11 20:18 - 2015-08-11 20:18 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Dropbox
    2015-08-11 20:17 - 2015-09-04 10:10 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Dropbox
    2015-08-11 20:17 - 2015-08-20 07:38 - 00001208 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
    2015-08-11 20:17 - 2015-08-20 07:38 - 00001204 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
    2015-08-11 20:17 - 2015-08-11 20:19 - 00000000 ____D C:\Program Files\Dropbox
    2015-08-11 20:17 - 2015-08-11 20:17 - 00000000 ____D C:\ProgramData\Dropbox
    2015-08-11 17:43 - 2015-08-11 17:43 - 00000000 ____D C:\Windows\system32\SPReview
    2015-08-11 17:42 - 2015-08-11 17:42 - 00000000 ____D C:\Windows\system32\EventProviders
    2015-08-11 14:20 - 2010-11-20 05:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
    2015-08-11 14:20 - 2010-11-20 03:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
    2015-08-11 14:19 - 2010-11-20 05:36 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
    2015-08-11 14:19 - 2010-11-20 05:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
    2015-08-11 14:19 - 2010-11-20 05:30 - 00712576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00233344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00085376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
    2015-08-11 14:19 - 2010-11-20 05:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
    2015-08-11 14:19 - 2010-11-20 05:29 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 00274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
    2015-08-11 14:19 - 2010-11-20 05:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
    2015-08-11 14:19 - 2010-11-20 05:29 - 00132992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
    2015-08-11 14:19 - 2010-11-20 05:29 - 00014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
    2015-08-11 14:19 - 2010-11-20 05:24 - 00271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
    2015-08-11 14:19 - 2010-11-20 05:24 - 00194800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
    2015-08-11 14:19 - 2010-11-20 05:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
    2015-08-11 14:19 - 2010-11-20 05:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
    2015-08-11 14:19 - 2010-11-20 05:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
    2015-08-11 14:19 - 2010-11-20 05:20 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
    2015-08-11 14:19 - 2010-11-20 05:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
    2015-08-11 14:19 - 2010-11-20 05:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
    2015-08-11 14:19 - 2010-11-20 05:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 02151936 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 01698816 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
    2015-08-11 14:19 - 2010-11-20 05:19 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00732160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
    2015-08-11 14:19 - 2010-11-20 05:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
    2015-08-11 14:19 - 2010-11-20 05:19 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
    2015-08-11 14:19 - 2010-11-20 05:19 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
    2015-08-11 14:19 - 2010-11-20 05:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
    2015-08-11 14:19 - 2010-11-20 05:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 03727872 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 02522624 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01400320 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 01040384 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00854016 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00762880 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00665600 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
    2015-08-11 14:19 - 2010-11-20 05:18 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00252928 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
    2015-08-11 14:19 - 2010-11-20 05:18 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
    2015-08-11 14:19 - 2010-11-20 05:17 - 03367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00098816 _____ (Microsoft) C:\Windows\system32\Robocopy.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
    2015-08-11 14:19 - 2010-11-20 05:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
    2015-08-11 14:19 - 2010-11-20 05:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
    2015-08-11 14:19 - 2010-11-20 05:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
    2015-08-11 14:19 - 2010-11-20 05:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
    2015-08-11 14:19 - 2010-11-20 05:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
    2015-08-11 14:19 - 2010-11-20 05:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
    2015-08-11 14:19 - 2010-11-20 05:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
    2015-08-11 14:19 - 2010-11-20 05:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
    2015-08-11 14:19 - 2010-11-20 05:16 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
    2015-08-11 14:19 - 2010-11-20 05:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
    2015-08-11 14:19 - 2010-11-20 05:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
    2015-08-11 14:19 - 2010-11-20 05:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
    2015-08-11 14:19 - 2010-11-20 05:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
    2015-08-11 14:19 - 2010-11-20 05:16 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
    2015-08-11 14:19 - 2010-11-20 05:16 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
    2015-08-11 14:19 - 2010-11-20 04:54 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2015-08-11 14:19 - 2010-11-20 03:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
    2015-08-11 14:19 - 2010-11-20 03:22 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
    2015-08-11 14:19 - 2010-11-20 03:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
    2015-08-11 14:19 - 2010-11-20 03:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
    2015-08-11 14:19 - 2010-11-20 02:59 - 00035968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys
    2015-08-11 14:19 - 2010-11-20 02:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
    2015-08-11 14:19 - 2010-11-20 01:44 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
    2015-08-11 14:19 - 2010-11-20 01:42 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
    2015-08-11 14:19 - 2010-11-20 01:39 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
    2015-08-11 14:19 - 2010-11-19 20:52 - 00419880 _____ C:\Windows\system32\locale.nls
    2015-08-11 14:19 - 2010-11-04 19:20 - 00146852 _____ C:\Windows\system32\systemsf.ebd
    2015-08-11 14:19 - 2010-11-04 19:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
    2015-08-11 14:19 - 2010-11-04 18:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
    2015-08-11 14:19 - 2010-11-04 18:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
    2015-08-11 14:19 - 2010-11-04 18:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
    2015-08-11 14:19 - 2010-11-04 18:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
    2015-08-11 14:18 - 2010-11-20 05:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
    2015-08-11 14:18 - 2010-11-20 05:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
    2015-08-11 14:18 - 2010-11-20 05:29 - 00137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
    2015-08-11 14:18 - 2010-11-20 05:21 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
    2015-08-11 14:18 - 2010-11-20 05:21 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
    2015-08-11 14:18 - 2010-11-20 05:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
    2015-08-11 14:18 - 2010-11-20 05:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
    2015-08-11 14:18 - 2010-11-20 05:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
    2015-08-11 14:18 - 2010-11-20 05:20 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
    2015-08-11 14:18 - 2010-11-20 05:20 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
    2015-08-11 14:18 - 2010-11-20 05:20 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00093696 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\fms.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
    2015-08-11 14:18 - 2010-11-20 05:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00537600 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
    2015-08-11 14:18 - 2010-11-20 05:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
    2015-08-11 14:18 - 2010-11-20 05:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
    2015-08-11 14:18 - 2010-11-20 05:17 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00257536 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgrade.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
    2015-08-11 14:18 - 2010-11-20 05:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
    2015-08-11 14:18 - 2010-11-20 05:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
    2015-08-11 14:18 - 2010-11-20 05:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
    2015-08-11 14:18 - 2010-11-20 05:16 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
    2015-08-11 14:18 - 2010-11-20 05:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
    2015-08-11 14:18 - 2010-11-20 05:16 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
    2015-08-11 14:18 - 2010-11-20 05:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
    2015-08-11 14:18 - 2010-11-20 05:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
    2015-08-11 14:18 - 2010-11-20 05:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
    2015-08-11 14:18 - 2010-11-20 05:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
    2015-08-11 14:18 - 2010-11-20 05:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
    2015-08-11 14:18 - 2010-11-20 05:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
    2015-08-11 14:18 - 2010-11-20 05:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
    2015-08-11 14:18 - 2010-11-20 05:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
    2015-08-11 14:18 - 2010-11-20 05:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
    2015-08-11 14:18 - 2010-11-20 05:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
    2015-08-11 14:18 - 2010-11-20 05:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
    2015-08-11 14:18 - 2010-11-20 05:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
    2015-08-11 14:18 - 2010-11-20 05:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
    2015-08-11 14:18 - 2010-11-20 05:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
    2015-08-11 14:18 - 2010-11-20 05:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2015-08-11 14:18 - 2010-11-20 05:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
    2015-08-11 14:18 - 2010-11-20 05:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
    2015-08-11 14:18 - 2010-11-20 05:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
    2015-08-11 14:18 - 2010-11-20 05:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
    2015-08-11 14:18 - 2010-11-20 05:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
    2015-08-11 14:18 - 2010-11-20 05:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
    2015-08-11 14:18 - 2010-11-20 05:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
    2015-08-11 14:18 - 2010-11-20 05:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
    2015-08-11 14:18 - 2010-11-20 04:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
    2015-08-11 14:18 - 2010-11-20 04:56 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
    2015-08-11 14:18 - 2010-11-20 03:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
    2015-08-11 14:18 - 2010-11-20 03:22 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
    2015-08-11 14:18 - 2010-11-20 03:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
    2015-08-11 14:18 - 2010-11-20 03:21 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys
    2015-08-11 14:18 - 2010-11-20 03:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
    2015-08-11 14:18 - 2010-11-20 03:07 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
    2015-08-11 14:18 - 2010-11-20 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
    2015-08-11 14:18 - 2010-11-20 03:07 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
    2015-08-11 14:18 - 2010-11-20 03:06 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
    2015-08-11 14:18 - 2010-11-20 03:06 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
    2015-08-11 14:18 - 2010-11-20 03:06 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
    2015-08-11 14:18 - 2010-11-20 03:00 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
    2015-08-11 14:18 - 2010-11-20 03:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
    2015-08-11 14:18 - 2010-11-20 03:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
    2015-08-11 14:18 - 2010-11-20 03:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
    2015-08-11 14:18 - 2010-11-20 02:59 - 00132224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
    2015-08-11 14:18 - 2010-11-20 02:59 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
    2015-08-11 14:18 - 2010-11-20 02:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
    2015-08-11 14:18 - 2010-11-20 02:58 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
    2015-08-11 14:18 - 2010-11-20 02:50 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
    2015-08-11 14:18 - 2010-11-20 02:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
    2015-08-11 14:18 - 2010-11-20 02:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
    2015-08-11 14:18 - 2010-11-20 02:24 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
    2015-08-11 14:18 - 2010-11-20 02:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
    2015-08-11 14:18 - 2010-11-20 01:54 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
    2015-08-11 14:18 - 2010-11-20 01:47 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
    2015-08-11 14:18 - 2010-11-20 01:42 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
    2015-08-11 14:18 - 2010-11-20 01:39 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
    2015-08-11 14:18 - 2010-11-20 01:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
    2015-08-11 14:18 - 2010-11-20 01:38 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
    2015-08-11 14:18 - 2010-11-19 22:23 - 00053600 _____ C:\Windows\system32\dosx.exe
    2015-08-11 14:18 - 2010-11-09 18:45 - 00010429 _____ C:\Windows\system32\ScavengeSpace.xml
    2015-08-11 14:18 - 2010-11-04 19:20 - 00105559 _____ C:\Windows\system32\RacRules.xml
    2015-08-11 11:26 - 2015-08-12 09:27 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\XMind
    2015-08-11 11:25 - 2015-08-11 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMind
    2015-08-11 11:24 - 2015-08-28 17:17 - 00000000 ____D C:\Program Files\XMind
    2015-08-11 11:03 - 2015-08-11 11:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
    2015-08-11 09:51 - 2015-08-12 20:28 - 00011185 _____ C:\Users\Alejandro\Documents\150809 JobAG.odt
    2015-08-11 09:25 - 2015-08-11 09:25 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\LibreOffice
    2015-08-11 09:24 - 2015-08-11 09:24 - 00001426 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
    2015-08-11 09:24 - 2015-08-11 09:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
    2015-08-11 09:24 - 2015-08-11 09:24 - 00000000 ____D C:\Program Files\LibreOffice 5
    2015-08-10 21:22 - 2015-08-10 21:22 - 00000000 ____D C:\Program Files\Intel
    2015-08-10 21:22 - 2015-08-10 21:21 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\system32\CSVer.dll
    2015-08-10 21:21 - 2015-08-10 21:21 - 00000000 ____D C:\Intel
    2015-08-10 21:05 - 2015-08-27 16:28 - 00007593 _____ C:\Users\Alejandro\AppData\Local\Resmon.ResmonCfg
    2015-08-10 19:53 - 2015-08-10 19:53 - 00000000 ____D C:\Program Files\Common Files\AV
    2015-08-10 19:51 - 2015-08-10 19:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
    2015-08-10 19:47 - 2015-08-20 07:38 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-08-10 19:47 - 2015-08-20 07:38 - 00001026 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-08-10 19:47 - 2015-08-10 19:49 - 00000000 ____D C:\Program Files\Google
    2015-08-10 19:46 - 2015-08-10 20:14 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Google
    2015-08-10 19:29 - 2015-09-01 15:53 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
    2015-08-10 19:29 - 2015-08-10 22:00 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
    2015-08-10 19:29 - 2015-08-10 19:29 - 00002135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
    2015-08-10 19:29 - 2015-08-10 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
    2015-08-10 19:29 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
    2015-08-10 19:20 - 2015-08-27 08:42 - 00000000 ____D C:\Windows\pss
    2015-08-10 19:19 - 2015-06-23 13:27 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
    2015-08-10 19:17 - 2015-08-10 19:17 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\AVAST Software
    2015-08-10 19:12 - 2015-08-10 19:12 - 00433264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00313472 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
    2015-08-10 19:12 - 2015-08-10 19:12 - 00208664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00113592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00081728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00076000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
    2015-08-10 19:12 - 2015-08-10 19:12 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
    2015-08-10 19:12 - 2015-08-10 19:12 - 00000000 ____D C:\Windows\system32\vbox
    2015-08-10 19:12 - 2015-08-10 19:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
    2015-08-10 19:12 - 2015-08-10 19:11 - 00788784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
    2015-08-10 19:12 - 2015-08-10 19:11 - 00095112 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
    2015-08-10 19:12 - 2015-08-10 19:11 - 00026096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
    2015-08-10 19:11 - 2015-08-10 19:11 - 00275856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
    2015-08-10 19:08 - 2015-08-10 19:08 - 00000000 ____D C:\Program Files\AVAST Software
    2015-08-10 19:07 - 2015-08-26 11:13 - 00093304 _____ C:\Users\Alejandro\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-08-10 19:07 - 2015-08-10 19:07 - 00000000 ____D C:\ProgramData\AVAST Software
    2015-08-10 19:05 - 2015-08-10 19:11 - 00000000 ____D C:\Users\Alejandro\AppData\Local\Mozilla
    2015-08-10 19:05 - 2015-08-10 19:05 - 00000000 ____D C:\Users\Alejandro\AppData\Roaming\Mozilla
    2015-08-10 19:04 - 2015-08-10 19:04 - 00000000 ____D C:\ProgramData\Mozilla
    2015-08-10 18:45 - 2015-08-30 14:04 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
    2015-08-10 18:40 - 2015-08-27 16:00 - 00000000 ____D C:\Users\Alejandro
    2015-08-10 18:40 - 2015-08-16 13:10 - 00000000 ____D C:\Users\Alejandro\AppData\Local\VirtualStore
    2015-08-10 18:40 - 2015-08-10 18:40 - 00000020 ___SH C:\Users\Alejandro\ntuser.ini
    2015-08-10 18:40 - 2009-07-13 21:42 - 00000000 ___RD C:\Users\Alejandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-08-10 18:40 - 2009-07-13 21:37 - 00000000 ___RD C:\Users\Alejandro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
    2015-08-10 18:39 - 2015-08-10 18:39 - 00000000 ____D C:\Recovery
    2015-08-10 18:27 - 2015-08-19 16:22 - 00000000 ____D C:\Windows\Panther
    2015-08-10 17:31 - 2015-09-04 10:11 - 01468109 _____ C:\Windows\WindowsUpdate.log
    2015-08-10 17:29 - 2015-08-10 17:29 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
    2015-08-10 06:27 - 2015-08-10 06:27 - 00000000 ____D C:\OEM
    2015-08-10 01:35 - 2015-08-10 01:35 - 00000000 _SHDL C:\Programme
    2015-08-06 15:57 - 2015-08-06 15:57 - 00000151 _____ C:\ods.exe.config

    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-09-04 10:16 - 2009-07-13 21:34 - 00014928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-09-04 10:16 - 2009-07-13 21:34 - 00014928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-09-04 10:08 - 2009-07-13 21:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2015-09-03 21:57 - 2009-07-13 19:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
    2015-09-03 12:48 - 2009-07-13 21:52 - 00000000 ____D C:\Windows\Performance
    2015-09-01 12:58 - 2009-07-13 19:04 - 00000215 _____ C:\Windows\system.ini
    2015-09-01 10:30 - 2009-07-13 19:37 - 00000000 __RHD C:\Users\Default
    2015-09-01 10:30 - 2009-07-13 19:37 - 00000000 ___RD C:\Users\Public
    2015-08-31 18:02 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\Registration
    2015-08-27 11:57 - 2009-07-13 21:33 - 00388800 _____ C:\Windows\system32\FNTCACHE.DAT
    2015-08-19 10:21 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\Microsoft.NET
    2015-08-18 22:43 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\rescache
    2015-08-18 17:52 - 2009-07-13 21:52 - 00000000 ____D C:\Windows\twain_32
    2015-08-14 22:39 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\Help
    2015-08-14 22:37 - 2008-08-07 15:05 - 00458752 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
    2015-08-14 22:37 - 2008-08-07 15:05 - 00189957 _____ C:\Windows\system32\nvapps.xml
    2015-08-14 22:37 - 2008-08-07 15:05 - 00154144 _____ (NVIDIA Corporation) C:\Windows\system32\nvcolor.exe
    2015-08-14 22:37 - 2008-08-07 15:05 - 00122880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod132.dll
    2015-08-14 22:37 - 2008-08-07 15:05 - 00122880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod.dll
    2015-08-14 22:37 - 2008-08-07 15:05 - 00118784 _____ (NVIDIA Corporation) C:\Windows\system32\nvcohda.dll
    2015-08-14 22:37 - 2008-08-07 15:04 - 00795104 _____ (Microsoft Corporation) C:\Windows\system32\dpinst.exe
    2015-08-14 22:36 - 2008-08-07 15:06 - 09048064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 04147744 _____ (NVIDIA Corporation) C:\Windows\system32\nvvitvsr.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 03787296 _____ (NVIDIA Corporation) C:\Windows\system32\nvvitvs.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 02677280 _____ (NVIDIA Corporation) C:\Windows\system32\nvwssr.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 02636320 _____ (NVIDIA Corporation) C:\Windows\system32\nvwss.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 02362880 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 00608800 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 00446464 _____ (NVIDIA Corporation) C:\Windows\system32\nvuhda.exe
    2015-08-14 22:36 - 2008-08-07 15:06 - 00446464 _____ (NVIDIA Corporation) C:\Windows\system32\nvudisp.exe
    2015-08-14 22:36 - 2008-08-07 15:06 - 00217088 _____ (NVIDIA Corporation) C:\Windows\system32\oemdspif.dll
    2015-08-14 22:36 - 2008-08-07 15:06 - 00196608 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
    2015-08-14 22:36 - 2008-08-07 15:06 - 00035521 _____ C:\Windows\system32\nvwsapps.xml
    2015-08-14 22:36 - 2008-08-07 15:05 - 07545824 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
    2015-08-14 22:36 - 2008-08-07 15:05 - 05885952 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 05790240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispsr.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 03992096 _____ (NVIDIA Corporation) C:\Windows\system32\nvdisps.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 03430944 _____ (NVIDIA Corporation) C:\Windows\system32\nvgamesr.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 03402272 _____ (NVIDIA Corporation) C:\Windows\system32\nvgames.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 02861600 _____ (NVIDIA Corporation) C:\Windows\system32\nvmoblsr.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 01264160 _____ (NVIDIA Corporation) C:\Windows\system32\nvmobls.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00465440 _____ (NVIDIA Corporation) C:\Windows\system32\nvmccssr.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00236064 _____ (NVIDIA Corporation) C:\Windows\system32\nvmccs.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00195104 _____ (NVIDIA Corporation) C:\Windows\system32\nvmccss.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00096800 _____ (NVIDIA Corporation) C:\Windows\system32\nvhotkey.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00092704 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00045056 _____ (NVIDIA Corporation) C:\Windows\system32\nvmccsrs.dll
    2015-08-14 22:36 - 2008-08-07 15:05 - 00044064 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys
    2015-08-14 22:36 - 2008-08-07 15:05 - 00008664 _____ C:\Windows\system32\nvdisp.nvu
    2015-08-14 22:36 - 2008-08-07 15:05 - 00000351 _____ C:\Windows\system32\nvhda.nvu
    2015-08-14 22:35 - 2008-08-07 15:05 - 13543968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\zh-TW
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\zh-HK
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\zh-CN
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\tr-TR
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\sv-SE
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\ru-RU
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\pt-PT
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\pt-BR
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\pl-PL
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\nl-NL
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\nb-NO
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\ko-KR
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\ja-JP
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\it-IT
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\hu-HU
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\fr-FR
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\fi-FI
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\el-GR
    2015-08-14 08:55 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\de-DE
    2015-08-12 17:31 - 2009-07-13 19:37 - 00000000 ____D C:\Program Files\Common Files\System
    2015-08-12 17:30 - 2009-07-14 00:49 - 00000000 ____D C:\Program Files\Windows Journal
    2015-08-12 17:30 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\Windows Defender
    2015-08-11 20:39 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\LogFiles
    2015-08-11 19:10 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\Windows Sidebar
    2015-08-11 19:10 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\Windows Portable Devices
    2015-08-11 19:10 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\Windows Photo Viewer
    2015-08-11 19:10 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\DVD Maker
    2015-08-11 19:10 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
    2015-08-11 17:47 - 2009-07-13 19:05 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
    2015-08-10 19:03 - 2009-07-13 19:37 - 00000000 ____D C:\Windows\system32\NDF
    2015-08-10 18:44 - 2009-07-13 21:52 - 00000000 ____D C:\Windows\system32\restore
    2015-08-10 18:39 - 2009-07-13 19:37 - 00000000 __RHD C:\Users\Public\Libraries
    2015-08-10 18:27 - 2009-07-13 21:57 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
    2015-08-10 18:27 - 2009-07-13 21:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
    2015-08-10 17:30 - 2009-07-13 21:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
    2015-08-10 17:30 - 2009-07-13 19:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-08-10 06:27 - 2006-11-02 06:33 - 00000000 ___RD C:\Program Files (x86)

    ==================== Files in the root of some directories =======

    2015-08-30 14:09 - 2015-09-02 22:31 - 0005632 _____ () C:\Users\Alejandro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2015-08-10 21:05 - 2015-08-27 16:28 - 0007593 _____ () C:\Users\Alejandro\AppData\Local\Resmon.ResmonCfg
    2015-08-18 16:56 - 2015-08-18 16:56 - 0000057 _____ () C:\ProgramData\Ament.ini
    2015-08-23 12:54 - 2015-09-04 10:08 - 0028219 _____ () C:\ProgramData\nvModes.001
    2015-08-23 12:52 - 2015-09-03 14:35 - 0028219 _____ () C:\ProgramData\nvModes.dat

    Some files in TEMP:
    ====================
    C:\Users\Alejandro\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp46qvqj.dll
    C:\Users\Alejandro\AppData\Local\temp\sqlite3.dll


    ==================== Bamital & volsnap =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-09-02 13:04

    ==================== End of FRST.txt ============================
    Attached Files Attached Files

  2. #2
    Emeritus
    Join Date
    Nov 2005
    Location
    @localhost
    Posts
    6,067

    Default

    hi Bazzi,

    Since you have run quite a few malware tools we will assume its not malware related. Can you start explorer.exe manually?

    At the desk top hit ctrl-alt-del keys at once to bring up task manager, click on start task manager. Click on the applications tab, then the New task button. In the Open field type in explorer.exe and click the ok button. do things look ok?

    You can also see if explorer.exe starts ok in safe mode. To test that restart your computer and tap the F8 key. From the menu options chose safe mode. Does it all look ok? To get out of safe mode restart your machine normally. you should also be able to start explorer.exe manually in safe mode.

    Last you can go to start and in the search window type in cmd. At the top under programs right click on cmd.exe and select run as admin.
    copy paste in whats below and click enter. This will check OS files for possible corruption.

    Code:
    sfc /scannow
    How Can I Reduce My Risk?

  3. #3
    Junior Member
    Join Date
    Sep 2015
    Posts
    5

    Default

    hallo shelf life!!
    I appreciate your comments.
    The "sfc /scannow" reports "Windows Resource Protection did not find any integrity violations", I assume everything is in order.
    Once the explorer.exe collapse, then I will try to recover it using the task Manager. By the moment everything run normally.
    Through the safe mode, I had been running some (not all of them) malware and everything seems to be ok. Ah! no the avast I couldn't run it in the safe mode, but the Spybot yes. It removes everything, but at the end appears once again. Even in the safe mode.

    I suspect it is a malware because:
    1. The symptoms appears suddenly. It doesn't has a specific program or moment. Suddenly it starts bothering. I am forced to restart my computer.
    2. The Spybot always report it as malware
    3. I have been reading in the internet and I found that this problem appears along with video drivers. I guess it comes to me because I am digitalizing videos 8mm into avi. I am using a device ION Video2PC MKII, and the drivers I downloaded from the original site. Nevertheless seems to come infected.

    Any other suggestion?

  4. #4
    Emeritus
    Join Date
    Nov 2005
    Location
    @localhost
    Posts
    6,067

    Default

    A conflict with software/drivers is possible. You got the drivers from the manufacturers website or installed them off media? What is it that Spybots reporting as malware and you think thats the cause of the problem? Is it related to the software package you installed?
    How Can I Reduce My Risk?

  5. #5
    Junior Member
    Join Date
    Sep 2015
    Posts
    5

    Default

    That means, when Spybot reports threats, there are not, but misfunctions from the drivers? Is that possible for Spybot?
    In case that is right, make sense why supposedly is removing threats, but in reality it is not fixing anything, because the problems are the drivers and Spybot never interfieres with the drivers. That is a little bit weird, isn't it?
    Then, why the problems with explorer.exe?
    Also, since the begining I have uninstalled both, software and drivers that I suspected could be the source of the problem, but still exactly the same.

    What else I can do? Which drivers or software should I keep uninstalling? Is there something to prove the drivers?

    Regards

  6. #6
    Emeritus
    Join Date
    Nov 2005
    Location
    @localhost
    Posts
    6,067

    Default

    Does the problem happen in safe mode also? This: "explorer.exe collapse" and you can restart it with task manager?
    Does it just happen randomly at any time? You have uninstalled certain software and drivers and it is still happening, correct?

    These are not malware:

    MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-3706417920-3564089269-4247878469-1001\Software\Microsoft\Direct3D\MostRecentApplication\Name

    Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-3706417920-3564089269-4247878469-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs

    Cookie: [SBI $49804B54] Browser: Cookie (1) (Browser: Cookie, nothing done)


    Cache: [SBI $49804B54] Browser: Cache (3) (Browser: Cache, nothing done)


    History: [SBI $49804B54] Browser: History (1) (Browser: History, nothing done)


    History: [SBI $49804B54] Browser: History (130) (Browser: History, nothing done)
    How Can I Reduce My Risk?

  7. #7
    Junior Member
    Join Date
    Sep 2015
    Posts
    5

    Default

    No, it hasn't happened. I never work in Safe-Mode. I only get in to run the Spybot and that's it.
    I will do try it right now. I will change into safe-mode and stay there for a while to see if it happens there also.

    Yes, I have already uninstalled the software and drivers that I suspect could be the origin of the problem.

    But if they are not malware, what they are? Why Spybot bring them as something wrong?

  8. #8
    Emeritus
    Join Date
    Nov 2005
    Location
    @localhost
    Posts
    6,067

    Default

    The reason for trying safe mode would be to see if the explorer.exe problem happens like it does in "normal mode". In safe mode not everything will "load"up to run like it normally does, like only a minimal amount of drivers will load in safe mode.

    So if it all looks good in safe mode and not in normal mode then this could point to a driver issue causing the explorer.exe problem.

    If you recently installed other software then you might want to try uninstalling it also. I know you already uninstalled something that you thought might be causing the problem. Probably this? ION Video2PC MKII,

    This below looks like a list of Recent documents you opened. Windows stores all kinds of information by default.

    Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-3706417920-3564089269-4247878469-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
    How Can I Reduce My Risk?

  9. #9
    Junior Member
    Join Date
    Sep 2015
    Posts
    5

    Default

    hi shelf life,
    sorry for the delay, but I've been doing big stuff.
    I have re-formatted my computer and re-installed all my software from reliable sources.
    Only a couple of things have changed. The CPU 100% saturation is gone, then it is faster, it seems that the explorer.exe issue is solved. Since yesterday, only once it happens to corrupt. Right now I am running from the safe mode and everything seems to work fine. But!

    I run the Spybot here in the safe mode. I attached 2 scan result files.

    Do you know what is that?

    I agree with you it can't be malware, but what it is then? I have run it twice (2004 and 2105) Why they persist? Where are they coming from? Which consequences they make in my machine?

    As you can see, almost all of them are from Microsoft. Is MS doing something strange? Why Spybot consider them as malware? or Spybot detect misfunctions in the OS?

    Please, give me your feedback. I need my machine 100% clean.

    Regards
    Attached Files Attached Files

  10. #10
    Emeritus
    Join Date
    Nov 2005
    Location
    @localhost
    Posts
    6,067

    Default

    Ok good. Nothing like a clean slate to start with.

    I dont use Spybot but i think this list: are Spybots .exe files and definition files. Nothing to worry about.

    --- Spybot - Search & Destroy version: 2.4.40.131 DLL (build: 20140425) ---

    2014-06-24 blindman.exe (2.4.40.151)
    2014-06-24 explorer.exe (2.4.40.181)
    2014-06-24 SDBootCD.exe (2.4.40.109)
    2014-06-24 SDCleaner.exe (2.4.40.110)
    2014-06-24 SDDelFile.exe (2.4.40.94)
    2013-06-18 SDDisableProxy.exe
    2014-06-24 SDFiles.exe (2.4.40.135)
    2014-06-24 SDFileScanHelper.exe (2.4.40.1)
    2014-06-24 SDFSSvc.exe (2.4.40.217)
    2014-06-24 SDHelp.exe (2.4.40.1)
    2014-04-25 SDHookHelper.exe (2.3.39.2)
    2014-04-25 SDHookInst32.exe (2.3.39.2)
    2014-06-24 SDImmunize.exe (2.4.40.130)
    etc
    etc
    --------------------------------------------------------------------------
    These others below are Windows usage tracks. Windows stores all kinds of settings. You should have the option to "clear" these in Spybot somewhere.

    MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-3726133480-3864631066-3700537221-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id

    Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-3726133480-3864631066-3700537221-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs

    These below are related to your browser. Cookies are set by websites, Cache is info the browser may store temporarily for faster browsing of websites, History is where your browser has been. All three of these can be controlled from settings in your browser. you can have your browser automatically delete this info when you close it. Also I think Spybot can clear this info for you also automatically.

    Cookie: [SBI $49804B54] Browser: Cookie (9) (Browser: Cookie, nothing done)


    Cache: [SBI $49804B54] Browser: Cache (47) (Browser: Cache, nothing done)


    History: [SBI $49804B54] Browser: History (9) (Browser: History, nothing done)


    History: [SBI $49804B54] Browser: History (522) (Browser: History, nothing done)

    To clean up windows tracks you might be interested in one or two of these.

    http://privazer.com/
    https://www.piriform.com/CCLEANER
    http://bleachbit.sourceforge.net/
    How Can I Reduce My Risk?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •