Safe mode I was able to do frst scan. Couldnt do combo fix as it says MS security essentials running and search wont show it, and I did elevated cmd command to stop it, access denied, and tried it also with super admin, same thing. I disabled sure user and did frst scan. here are the results.
AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
magicJack (HKU\S-1-5-21-289597471-917399791-413522533-1000\...\magicJack) (Version: 4.1.7574.5297 - magicJack L.P.)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Skype™ 7.1 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
Check "winmgmt" service or repair WMI.
2015-02-04 12:10 - 2015-02-19 07:50 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {2375F586-1009-41FB-B54E-30D8AF2B781D} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
HKU\S-1-5-21-289597471-917399791-413522533-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.
MSCONFIG\startupreg: cdloader => "C:\Users\Jared\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK
Administrator (S-1-5-21-289597471-917399791-413522533-500 - Administrator - Disabled)
Jared (S-1-5-21-289597471-917399791-413522533-1000 - Administrator - Enabled) => C:\Users\Jared
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007043c, This service cannot be started in Safe Mode
.
Description: Volume Shadow Copy Service error: The COM Server with CLSID {e579ab5f-1cc4-44b4-bed9-de0991ff0623} and name IVssCoordinatorEx2 cannot be started during Safe Mode.
The Volume Shadow Copy service cannot start while in safe mode. [0x8007043c, This service cannot be started in Safe Mode
Error: (02/26/2015 10:48:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/26/2015 10:48:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/26/2015 10:35:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/26/2015 10:35:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/26/2015 10:08:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/26/2015 10:08:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/26/2015 10:06:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/26/2015 10:43:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The WinHTTP Web Proxy Auto-Discovery Service service depends on the DHCP Client service which failed to start because of the following error:
Error: (02/26/2015 10:43:55 PM) (Source: Microsoft Antimalware) (EventID: 3002) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.
Description: CoCreateInstance0x8007043c, This service cannot be started in Safe Mode
Description: {e579ab5f-1cc4-44b4-bed9-de0991ff0623}IVssCoordinatorEx20x8007043c, This service cannot be started in Safe Mode
Error: (02/26/2015 10:48:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Error: (02/26/2015 10:48:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/26/2015 10:35:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Error: (02/26/2015 10:35:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Error: (02/26/2015 10:08:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Error: (02/26/2015 10:08:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Error: (02/26/2015 10:06:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\kernel32.dll because the set of per-page image hashes could not be found on the system.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-02-2015 01
Ran by Jared (administrator) on JARED-PC on 26-02-2015 22:51:41
Running from E:\
Loaded Profiles: Jared (Available profiles: Jared)
Platform: Microsoft Windows 7 Home Basic Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-289597471-917399791-413522533-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll No File
Chrome:
=======
CHR HomePage: Profile 2 -> hxxp://www.google.com
CHR StartupUrls: Profile 2 -> "hxxp://google.com/"
CHR DefaultSuggestURL: Profile 2 -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jared\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jared\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-19]
CHR Extension: (Google Wallet) - C:\Users\Jared\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-19]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S4 Appinfo; C:\Windows\System32\appinfo.dll [47104 2013-02-27] (Microsoft Corporation) [File not signed]
S2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [475136 2014-10-03] (Microsoft Corporation) [File not signed]
S2 Audiosrv; C:\Windows\System32\Audiosrv.dll [475136 2014-10-03] (Microsoft Corporation) [File not signed]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [140288 2013-07-09] (Microsoft Corporation) [File not signed]
S3 EFS; C:\Windows\System32\lsass.exe [22528 2014-04-12] (Microsoft Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2015-01-27] (Microsoft Corporation) [File not signed]
S2 IKEEXT; C:\Windows\System32\ikeext.dll [679424 2013-10-12] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\system32\lsass.exe [22528 2014-04-12] (Microsoft Corporation) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
S3 Netlogon; C:\Windows\system32\lsass.exe [22528 2014-04-12] (Microsoft Corporation) [File not signed]
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [242688 2014-12-06] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [164864 2014-12-19] (Microsoft Corporation) [File not signed]
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [22528 2014-04-12] (Microsoft Corporation) [File not signed]
S2 SamSs; C:\Windows\system32\lsass.exe [22528 2014-04-12] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [523776 2014-10-14] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\system32\lsass.exe [22528 2014-04-12] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\System32\webclnt.dll [205824 2013-07-04] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [1177088 2014-10-03] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [185344 2014-01-28] (Microsoft Corporation) [File not signed]
S2 WinDefend; %ProgramFiles%\Windows Defender\mpsvc.dll [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S1 AFD; C:\Windows\system32\drivers\afd.sys [338944 2014-05-30] (Microsoft Corporation) [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [35992 2015-02-12] ()
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [116224 2014-12-19] (Microsoft Corporation) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 RDPWD; C:\Windows\system32\Drivers\RDPWD.sys [184320 2014-07-17] (Microsoft Corporation) [File not signed]
S1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [74752 2014-11-11] (Microsoft Corporation) [File not signed]
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [31232 2014-07-17] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [49152 2013-10-02] (Microsoft Corporation) [File not signed]
S3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [80896 2013-07-12] (Microsoft Corporation) [File not signed]
S3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [76288 2013-11-27] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [86016 2013-07-12] (Microsoft Corporation) [File not signed]
R3 usbehci; C:\Windows\System32\DRIVERS\usbehci.sys [43520 2013-11-27] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [258560 2013-11-27] (Microsoft Corporation) [File not signed]
R3 usbohci; C:\Windows\System32\DRIVERS\usbohci.sys [20480 2013-11-27] (Microsoft Corporation) [File not signed]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Jared\AppData\Local\Temp\catchme.sys [X]
S1 ESProtectionDriver; \??\C:\Program Files\Malwarebytes Anti-Exploit\mbae.sys [X]
========================== Drivers MD5 =======================
C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\djsvs.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\drivers\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 77361D72A04F18809D0EFB6CCEB74D4B
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys 85449EEBE8F8EBD6481EFBF0F352B4EB
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys ==> MD5 is legit
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\Windows\system32\drivers\evbdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\hitmanpro37.sys 43DC78987ECB5FD270170A0F99A61047
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 4120DA10AA42A9996F4575DB9E3E6E6E
C:\Windows\System32\Drivers\ksecpkg.sys 1E1845606C5A4579F7F3D95796CC1ED1
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\MpFilter.sys 6460D4A5C981567E74A7AC1349DE10F5
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 03F899F521D2AAED1C55008F734DF252
C:\Windows\System32\DRIVERS\mrxsmb.sys 5D16C921E3671636C0EBA3BBAAC5FD25
C:\Windows\System32\DRIVERS\mrxsmb10.sys 6D17A4791ACA19328C685D256349FEFC
C:\Windows\System32\DRIVERS\mrxsmb20.sys B81F204D146000BE76651A50670A5E9E
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ASACPI.sys D48659BB24C48345D926ECB45C1EBDF5
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\NisDrvWFP.sys 6A83B8AF342E61DEE353BAA81F67B7DA
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\Windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nvm62x32.sys B5E37E31C053BC9950455A257526514B
C:\Windows\System32\DRIVERS\nvlddmkm.sys B0881DDA5A8160422561FFAB7F0008B1
C:\Windows\System32\DRIVERS\nvmf6232.sys 1DE923088878B495CD4219E47BA34EB8
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\System32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\System32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 65375DF758CA1872AB7EBBBA457FD5E6
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tdx.sys 7FE680A3DFA421C4A8E4879AE4C5AAB0
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys C6A5FBD4977305E1FA23E02C042DB463
C:\Windows\system32\drivers\TsUsbGD.sys 01246F0BAAD7B68EC0F472AA41E33282
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\Windows\System32\drivers\usbaudio.sys A1977C315BF5691DA99235AA4A6907AF
C:\Windows\System32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\System32\DRIVERS\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\system32\drivers\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\system32\drivers\usbuhci.sys ==> MD5 is legit
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viac7.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-26 22:51 - 2015-02-26 22:51 - 00000000 ____D () C:\FRST
2015-02-26 22:44 - 2015-02-26 22:51 - 00000000 ___SD () C:\32788R22FWJFW
2015-02-26 22:44 - 2015-02-26 22:51 - 00000000 ____D () C:\Qoobox
2015-02-26 22:06 - 2015-02-26 22:06 - 00062506 _____ () C:\Users\Jared\Desktop\autoruns.zip
2015-02-24 10:01 - 2015-02-24 10:01 - 02126848 _____ () C:\Users\Jared\Desktop\AdwCleaner.exe
2015-02-23 10:11 - 2015-02-23 10:11 - 06381796 _____ () C:\Users\Jared\Desktop\java scirpt funny sutfft.txt
2015-02-23 09:22 - 2015-02-23 09:23 - 00001201 _____ () C:\Users\Jared\Desktop\cmd.exe.lnk
2015-02-23 01:16 - 2015-02-23 01:16 - 00003470 _____ () C:\Users\Jared\Desktop\skype sharedxml file.txt
2015-02-22 20:51 - 2015-02-22 20:51 - 00026972 _____ () C:\Users\Jared\Desktop\geek.txt
2015-02-22 05:29 - 2015-02-22 05:29 - 00000000 ____D () C:\Users\Jared\AppData\Local\CrashDumps
2015-02-19 19:56 - 2015-02-19 19:56 - 00313903 _____ () C:\Users\Jared\Desktop\Windows6.1-KB975467-x86.msu
2015-02-19 19:56 - 2015-02-19 19:56 - 00207752 _____ () C:\Users\Jared\Desktop\Windows6.1-KB974571-x86.msu
2015-02-19 19:55 - 2015-02-19 19:57 - 16685427 _____ () C:\Users\Jared\Desktop\Windows6.1-KB974431-x86.msu
2015-02-19 19:55 - 2015-02-19 19:55 - 00188835 _____ () C:\Users\Jared\Desktop\Windows6.1-KB973525-x86.msu
2015-02-19 18:37 - 2015-02-19 18:37 - 00058016 _____ () C:\Users\Jared\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-19 17:20 - 2015-02-19 17:56 - 112270952 _____ (PokerStars) C:\Users\Jared\Desktop\PokerStarsInstall.exe
2015-02-19 15:33 - 2015-02-26 22:48 - 00004812 _____ () C:\Windows\system32\PerfStringBackup.TMP
2015-02-19 15:31 - 2015-02-26 22:10 - 00006400 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-19 15:31 - 2015-02-26 22:10 - 00006400 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-19 15:31 - 2015-02-19 15:31 - 00000552 _____ () C:\Windows\system32\spsys.log
2015-02-19 15:29 - 2015-02-26 22:42 - 00000903 _____ () C:\Windows\setupact.log
2015-02-19 15:29 - 2015-02-26 22:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-19 15:29 - 2015-02-19 15:29 - 00000020 ___SH () C:\Users\Jared\ntuser.ini
2015-02-19 15:29 - 2015-02-19 15:29 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-19 15:28 - 2015-02-19 15:29 - 00267016 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-19 15:26 - 2015-02-19 15:26 - 00000955 _____ () C:\DelFix.txt
2015-02-19 15:26 - 2015-02-19 15:26 - 00000000 ____D () C:\Windows\ERUNT
2015-02-19 14:11 - 2015-02-19 14:11 - 00000000 ____D () C:\ProgramData\Skype
2015-02-19 14:11 - 2015-02-19 14:11 - 00000000 ____D () C:\Program Files\Skype
2015-02-19 14:11 - 2015-02-19 14:11 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-02-19 12:34 - 2015-02-22 09:24 - 00000000 ____D () C:\Users\Jared\Desktop\COM
2015-02-19 12:21 - 2015-02-19 12:21 - 00088274 _____ () C:\Users\Jared\Documents\bookmarks_2_19_15.html
2015-02-19 10:41 - 2015-02-22 05:25 - 00000000 __SHD () C:\Users\Jared\AppData\Local\EmieUserList
2015-02-19 10:41 - 2015-02-22 05:25 - 00000000 __SHD () C:\Users\Jared\AppData\Local\EmieSiteList
2015-02-19 10:41 - 2015-02-22 05:25 - 00000000 __SHD () C:\Users\Jared\AppData\Local\EmieBrowserModeList
2015-02-19 07:20 - 2015-02-19 12:32 - 00000000 ____D () C:\Users\Jared\WORD
2015-02-19 05:37 - 2015-02-19 06:12 - 00002707 _____ () C:\Users\Jared\Downloads\~ESETUninstaller.log
2015-02-19 05:18 - 2015-02-19 05:19 - 16466552 _____ (Malwarebytes Corp.) C:\Users\Jared\Downloads\mbar-1.08.3.1004.exe
2015-02-18 21:46 - 2015-02-18 21:46 - 00000010 _____ () C:\Users\Jared\Documents\pkr.txt
2015-02-13 22:17 - 2015-02-13 22:17 - 00000000 ____D () C:\Users\Jared\Documents\Gary R
2015-02-13 12:00 - 2015-02-13 11:59 - 00196608 _____ () C:\Users\Jared\Downloads\3D8B6B9C-0B52-4022-BD12-D8DD71DDFCCC.Diagnose.0.etl
2015-02-12 21:51 - 2015-02-12 21:51 - 00036985 _____ () C:\Users\Jared\Documents\Appointments excel file.xlsx
2015-02-12 14:46 - 2015-02-12 14:46 - 00035992 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2015-02-06 06:51 - 2015-02-06 06:51 - 00003573 _____ () C:\Users\Jared\Documents\17-things-to-expect-when-you-date-a-girl-whos-used-to-being-on-her-own.txt
2015-02-05 20:16 - 2014-12-31 19:13 - 00249488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-05 20:04 - 2015-02-05 20:04 - 00000000 ____D () C:\Users\Jared\AppData\Local\tjnet
2015-02-05 04:57 - 2015-02-19 10:43 - 00000000 ____D () C:\Users\Jared\AppData\Local\PokerStars
2015-02-05 04:57 - 2015-02-05 20:15 - 00000000 ____D () C:\Program Files\PokerStars
2015-02-05 04:57 - 2015-02-05 04:57 - 00001913 _____ () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\PokerStars.lnk
2015-02-05 04:57 - 2015-02-05 04:57 - 00000000 ____D () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStars
2015-02-04 15:31 - 2015-02-26 22:40 - 00928371 _____ () C:\Windows\WindowsUpdate.log
2015-02-04 12:58 - 2015-02-04 12:58 - 00000000 ____D () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-04 12:47 - 2015-02-04 12:50 - 00000000 ____D () C:\Windows\erdnt
2015-02-04 11:46 - 2015-02-04 11:46 - 00650392 _____ (Sysinternals - www.sysinternals.com) C:\Users\Jared\Desktop\autoruns.exe
2015-02-04 08:22 - 2015-02-19 06:44 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2015-02-04 08:22 - 2015-02-19 05:30 - 00002205 _____ () C:\Windows\epplauncher.mif
2015-02-04 08:09 - 2015-02-04 08:20 - 00001770 _____ () C:\Users\Jared\Desktop\chrome - Shortcut.lnk
2015-02-01 15:18 - 2015-02-04 10:02 - 00000000 ____D () C:\Windows\pss
2015-01-30 21:37 - 2015-02-19 12:36 - 00000000 ____D () C:\ProgramData\magicJack
2015-01-30 21:36 - 2015-02-18 02:15 - 00000953 _____ () C:\Users\Jared\Desktop\magicJack.lnk
2015-01-30 21:36 - 2015-02-18 02:15 - 00000939 _____ () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\magicJack.lnk
2015-01-30 21:36 - 2015-01-30 21:36 - 00000000 ____D () C:\Users\Jared\AppData\Local\magicJack
2015-01-30 21:32 - 2015-02-18 02:15 - 00000000 ____D () C:\Users\Jared\AppData\Roaming\mjusbsp
2015-01-30 15:04 - 2015-02-19 06:20 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-01-30 14:49 - 2015-01-30 14:49 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-30 14:48 - 2015-01-30 14:48 - 00082648 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-30 14:44 - 2012-08-23 22:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-01-30 14:44 - 2012-08-23 22:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-01-30 14:44 - 2012-08-23 21:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-01-30 14:44 - 2012-08-23 19:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-01-30 14:44 - 2012-08-23 18:08 - 02739712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-01-30 14:43 - 2015-01-30 14:43 - 00000000 ____D () C:\OETemp
2015-01-30 14:43 - 2013-10-02 08:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-01-30 14:43 - 2013-10-02 08:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-30 14:43 - 2013-10-02 08:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-30 14:43 - 2013-10-02 08:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-01-30 14:43 - 2013-10-02 08:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-01-30 14:43 - 2013-10-02 07:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-01-30 14:43 - 2013-10-02 07:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-30 14:43 - 2013-10-02 07:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-01-30 14:43 - 2013-10-02 07:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-30 14:43 - 2013-10-02 06:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-01-30 14:43 - 2013-10-02 06:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-01-30 14:43 - 2013-10-02 04:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-30 14:42 - 2014-08-19 22:16 - 00061728 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-01-30 14:42 - 2014-07-03 03:42 - 04389848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-30 14:42 - 2014-07-03 03:42 - 00377288 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-30 14:42 - 2014-07-03 03:42 - 00062936 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-30 14:29 - 2014-12-13 11:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-29 18:53 - 2015-02-23 01:16 - 00000000 ____D () C:\Users\Jared\AppData\Roaming\Skype
2015-01-29 18:53 - 2015-02-19 14:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-01-29 18:53 - 2015-02-07 04:44 - 00000000 ____D () C:\Users\Jared\AppData\Local\Skype
2015-01-29 18:53 - 2015-02-04 11:42 - 00002685 _____ () C:\Users\Public\Desktop\Skype.lnk
2015-01-29 18:50 - 2015-01-30 22:35 - 00001141 _____ () C:\Users\Jared\Desktop\Downloads - Shortcut.lnk
2015-01-29 18:30 - 2015-01-29 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-29 18:28 - 2015-01-29 18:30 - 00000000 ____D () C:\Users\Jared\AppData\Local\Google
2015-01-29 18:28 - 2015-01-29 18:30 - 00000000 ____D () C:\Program Files\Google
2015-01-29 18:04 - 2012-02-11 13:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-01-29 10:38 - 2014-06-27 09:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-01-29 10:37 - 2014-11-22 09:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-01-29 10:37 - 2013-11-24 02:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-01-29 10:37 - 2011-03-11 13:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-01-29 10:37 - 2011-03-11 13:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-01-29 10:37 - 2011-03-11 13:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-01-29 10:37 - 2011-03-11 13:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-01-29 10:37 - 2011-03-11 13:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-01-29 10:37 - 2011-03-11 13:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-01-29 10:37 - 2011-03-11 12:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-01-29 10:36 - 2014-07-09 09:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-01-29 10:36 - 2014-07-09 09:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-01-29 10:36 - 2014-07-09 09:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-01-29 10:36 - 2014-07-09 09:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-01-29 10:36 - 2014-07-09 09:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-01-29 10:36 - 2014-07-09 06:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2015-01-29 10:36 - 2014-06-24 10:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-01-29 10:36 - 2013-11-26 16:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-01-29 10:36 - 2011-02-25 13:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-01-28 12:49 - 2015-02-04 13:03 - 00000000 ____D () C:\Windows\Panther
2015-01-28 05:25 - 2015-01-28 05:25 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-01-28 05:25 - 2015-01-28 05:25 - 00000000 ____D () C:\Windows\system32\appraiser
2015-01-28 03:01 - 2014-10-18 09:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-01-28 03:01 - 2014-07-07 09:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-01-28 03:01 - 2014-07-07 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-01-28 03:01 - 2014-07-07 09:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-01-28 03:01 - 2014-07-07 09:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-01-28 01:36 - 2015-02-19 09:15 - 00000000 ____D () C:\Users\Jared\AppData\Local\Apps\2.0
2015-01-28 00:28 - 2014-11-11 10:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-28 00:27 - 2013-04-10 07:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-01-28 00:21 - 2015-01-28 00:21 - 00000000 ____D () C:\Users\Jared\AppData\Roaming\Adobe
2015-01-27 23:55 - 2015-02-19 06:47 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-27 23:55 - 2010-08-09 22:33 - 00011164 _____ () C:\Windows\system32\Drivers\nvphy.bin
2015-01-27 23:33 - 2015-01-27 23:35 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-27 22:53 - 2012-07-26 11:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-01-27 22:53 - 2012-07-26 11:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-01-27 22:53 - 2012-07-26 11:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-01-27 22:53 - 2012-07-26 11:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-01-27 22:53 - 2012-07-26 11:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-01-27 22:53 - 2012-07-26 10:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-01-27 22:53 - 2012-07-26 10:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-01-27 22:53 - 2012-06-02 22:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-01-27 22:51 - 2012-03-01 13:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-01-27 22:51 - 2012-03-01 13:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-01-27 22:41 - 2015-01-27 22:41 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-01-27 22:38 - 2013-05-10 12:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-01-27 22:38 - 2013-05-10 12:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 19749376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 12836864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 04299264 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-01-27 22:30 - 2015-01-27 22:30 - 02277888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 02052096 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-01-27 22:30 - 2015-01-27 22:30 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-01-27 22:30 - 2015-01-27 22:30 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00342200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-01-27 22:30 - 2015-01-27 22:30 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-01-27 22:30 - 2015-01-27 22:30 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-01-27 22:30 - 2015-01-27 22:30 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-01-27 22:30 - 2015-01-27 22:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-01-27 22:29 - 2015-01-27 22:29 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-01-27 22:29 - 2015-01-27 22:29 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-01-27 22:28 - 2015-01-27 22:28 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-01-27 22:28 - 2015-01-27 22:28 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-01-27 22:26 - 2015-01-27 22:26 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-01-27 22:23 - 2014-12-04 12:38 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-01-27 22:23 - 2014-12-04 12:38 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-01-27 22:23 - 2014-12-04 12:38 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-01-27 22:23 - 2014-12-04 12:38 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-01-27 22:23 - 2014-12-04 12:38 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-01-27 22:23 - 2014-12-04 12:38 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-01-27 22:23 - 2014-12-04 12:34 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-01-27 22:23 - 2014-12-02 07:28 - 01160872 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-01-27 22:22 - 2014-07-17 09:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-01-27 22:22 - 2014-07-17 09:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-01-27 22:22 - 2014-07-17 09:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-01-27 22:22 - 2014-07-17 09:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-01-27 22:22 - 2014-07-17 09:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-01-27 22:22 - 2014-06-18 09:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-01-27 22:22 - 2014-03-04 17:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-01-27 22:22 - 2014-03-04 17:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-01-27 22:22 - 2013-12-04 10:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-01-27 22:22 - 2013-12-04 10:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-01-27 22:22 - 2013-12-04 10:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-01-27 22:22 - 2013-12-04 10:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-01-27 22:22 - 2013-12-04 10:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-01-27 22:22 - 2013-12-04 09:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-01-27 22:22 - 2013-12-04 09:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-01-27 22:22 - 2013-12-04 09:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-01-27 22:22 - 2013-12-04 09:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-01-27 22:22 - 2013-05-13 11:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-01-27 22:22 - 2013-05-13 11:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-01-27 22:22 - 2012-04-26 12:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-01-27 22:22 - 2012-04-26 12:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-01-27 22:22 - 2011-07-09 10:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-01-27 22:22 - 2011-04-27 10:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-01-27 22:22 - 2011-04-27 10:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-01-27 22:21 - 2014-12-19 10:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-27 22:21 - 2014-12-12 13:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-01-27 22:21 - 2014-12-12 13:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-27 22:21 - 2014-11-11 10:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-01-27 22:21 - 2014-11-11 10:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-01-27 22:21 - 2014-09-19 17:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-01-27 22:21 - 2014-09-19 17:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-01-27 22:21 - 2014-09-19 17:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-01-27 22:21 - 2014-09-19 17:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-01-27 22:21 - 2014-09-19 17:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-01-27 22:21 - 2014-09-19 17:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-01-27 22:21 - 2014-08-01 19:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-01-27 22:21 - 2014-07-14 09:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-01-27 22:21 - 2013-07-26 09:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-01-27 22:21 - 2013-07-09 12:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-01-27 22:21 - 2013-06-06 12:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-01-27 22:21 - 2013-06-06 12:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-01-27 22:21 - 2013-06-06 12:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-01-27 22:21 - 2013-06-06 11:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-01-27 22:21 - 2013-06-06 11:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-01-27 22:21 - 2012-12-07 20:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-01-27 22:21 - 2012-12-07 20:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-01-27 22:21 - 2012-12-07 18:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-01-27 22:21 - 2012-12-07 18:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-01-27 22:21 - 2012-10-10 01:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-01-27 22:21 - 2012-10-10 01:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-01-27 22:21 - 2012-08-22 04:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-01-27 22:21 - 2012-06-06 13:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-01-27 22:21 - 2011-04-09 13:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-01-27 22:20 - 2014-12-19 09:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-27 22:20 - 2014-12-06 11:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-27 22:20 - 2014-11-11 09:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-01-27 22:20 - 2014-08-12 09:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-01-27 22:20 - 2014-06-25 09:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-01-27 22:20 - 2014-06-03 17:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-01-27 22:20 - 2014-06-03 17:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-01-27 22:20 - 2014-06-03 17:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-01-27 22:20 - 2014-03-04 17:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-01-27 22:20 - 2013-10-06 03:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-01-27 22:20 - 2013-10-04 09:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-01-27 22:20 - 2013-10-04 09:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-01-27 22:20 - 2013-08-02 09:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 08:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-01-27 22:20 - 2013-08-02 08:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 08:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 08:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-01-27 22:20 - 2013-08-02 08:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-01-27 22:20 - 2013-07-09 12:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-01-27 22:20 - 2013-07-09 12:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-01-27 22:20 - 2013-05-10 11:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-01-27 22:20 - 2012-10-04 00:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-01-27 22:20 - 2012-10-04 00:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-27 22:20 - 2012-10-04 00:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-27 22:20 - 2012-10-04 00:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-01-27 22:20 - 2012-10-04 00:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-01-27 22:20 - 2012-10-03 23:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-01-27 22:20 - 2012-08-23 01:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-01-27 22:20 - 2012-07-05 03:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-01-27 22:20 - 2012-01-04 16:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-01-27 22:20 - 2011-11-17 13:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-01-27 22:20 - 2011-08-27 12:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-01-27 22:19 - 2014-11-08 10:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-27 22:19 - 2014-10-30 09:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-01-27 22:19 - 2014-10-25 09:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-01-27 22:19 - 2014-10-18 09:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-01-27 22:19 - 2014-10-14 09:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-01-27 22:19 - 2014-10-10 08:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-01-27 22:19 - 2014-06-19 06:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-01-27 22:19 - 2014-06-19 06:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-01-27 22:19 - 2014-06-19 06:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-01-27 22:19 - 2014-04-25 10:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-01-27 22:19 - 2014-02-04 10:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-01-27 22:19 - 2014-02-04 10:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-01-27 22:19 - 2014-02-04 10:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-01-27 22:19 - 2014-02-04 10:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-01-27 22:19 - 2014-01-29 10:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-27 22:19 - 2013-11-27 09:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-01-27 22:19 - 2013-11-27 09:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-01-27 22:19 - 2013-11-27 09:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-01-27 22:19 - 2013-11-27 09:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-01-27 22:19 - 2013-11-27 09:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-01-27 22:19 - 2013-11-27 09:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-01-27 22:19 - 2013-08-28 08:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-01-27 22:19 - 2013-07-04 19:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-01-27 22:19 - 2013-07-03 11:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-01-27 22:19 - 2013-07-03 11:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-01-27 22:19 - 2013-06-26 06:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-01-27 22:19 - 2013-02-12 11:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-01-27 22:19 - 2013-01-24 12:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-01-27 22:19 - 2012-11-29 06:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-01-27 22:19 - 2012-11-29 06:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-01-27 22:19 - 2012-11-29 06:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-01-27 22:19 - 2011-06-16 12:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-01-27 22:19 - 2011-05-04 12:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-01-27 22:19 - 2011-05-04 12:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-01-27 22:19 - 2011-05-04 12:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-01-27 22:19 - 2011-05-04 12:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-01-27 22:19 - 2011-05-04 12:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-01-27 22:19 - 2011-05-04 12:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-01-27 22:19 - 2011-05-04 12:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-01-27 22:19 - 2011-05-04 12:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-01-27 22:19 - 2011-05-04 12:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-01-27 22:19 - 2011-02-23 12:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-01-27 22:19 - 2010-12-23 13:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-01-27 22:18 - 2014-10-03 09:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-27 22:18 - 2014-10-03 09:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-01-27 22:18 - 2014-10-03 09:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-01-27 22:18 - 2014-10-03 09:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-27 22:18 - 2014-10-03 09:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-27 22:18 - 2014-09-25 09:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-01-27 22:18 - 2014-09-04 13:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-01-27 22:18 - 2014-08-23 09:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-01-27 22:18 - 2014-08-21 14:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-01-27 22:18 - 2014-08-21 14:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-01-27 22:18 - 2014-06-16 09:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-01-27 22:18 - 2014-06-16 09:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-01-27 22:18 - 2014-06-16 09:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-01-27 22:18 - 2014-06-06 17:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-01-27 22:18 - 2014-05-30 14:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-01-27 22:18 - 2014-04-05 10:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-01-27 22:18 - 2014-04-05 10:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-01-27 22:18 - 2014-03-26 22:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-01-27 22:18 - 2014-03-26 22:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-01-27 22:18 - 2014-01-28 10:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-01-27 22:18 - 2014-01-24 10:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-01-27 22:18 - 2013-11-26 19:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-01-27 22:18 - 2013-10-30 10:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-01-27 22:18 - 2013-10-19 09:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-01-27 22:18 - 2013-10-12 10:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-01-27 22:18 - 2013-10-12 10:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-01-27 22:18 - 2013-10-12 10:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-01-27 22:18 - 2013-10-12 10:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-01-27 22:18 - 2013-10-12 10:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-01-27 22:18 - 2013-10-12 09:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-01-27 22:18 - 2013-10-12 09:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-01-27 22:18 - 2013-10-04 09:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-01-27 22:18 - 2013-10-04 09:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-01-27 22:18 - 2013-08-05 09:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-01-27 22:18 - 2013-07-25 16:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-01-27 22:18 - 2013-07-12 18:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-01-27 22:18 - 2013-07-12 18:07 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2015-01-27 22:18 - 2013-07-04 19:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-01-27 22:18 - 2013-07-04 19:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-01-27 22:18 - 2013-04-26 12:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-27 22:18 - 2013-03-19 11:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-01-27 22:18 - 2012-11-02 13:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-01-27 22:18 - 2012-09-26 06:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-01-27 22:18 - 2012-07-05 05:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-01-27 22:18 - 2012-07-05 05:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-01-27 22:18 - 2012-07-05 05:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-01-27 22:18 - 2012-05-14 12:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-27 22:18 - 2012-05-05 15:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-27 22:18 - 2012-03-17 15:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-01-27 22:18 - 2011-12-30 13:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-01-27 22:18 - 2011-12-16 15:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-01-27 22:18 - 2011-10-26 12:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-01-27 22:18 - 2011-10-15 13:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-01-27 22:18 - 2011-08-17 12:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-01-27 22:18 - 2011-08-17 12:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-01-27 22:18 - 2011-06-15 16:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2015-01-27 22:18 - 2011-06-15 16:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-01-27 22:18 - 2011-06-15 16:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-01-27 22:18 - 2011-06-15 16:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-01-27 22:18 - 2011-06-15 16:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-01-27 22:18 - 2011-05-24 18:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-01-27 22:18 - 2011-05-03 12:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-01-27 22:18 - 2011-04-29 10:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-01-27 22:18 - 2011-04-29 10:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-01-27 22:18 - 2011-04-29 10:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-01-27 22:18 - 2011-03-11 13:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-01-27 22:18 - 2011-03-11 13:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-01-27 22:18 - 2011-03-03 13:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-01-27 22:18 - 2011-03-03 13:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-01-27 22:18 - 2011-03-03 13:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-01-27 22:18 - 2011-02-18 13:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-01-27 22:18 - 2010-12-23 13:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-01-27 22:18 - 2010-12-23 13:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-01-27 22:09 - 2014-10-14 09:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-01-27 22:09 - 2014-10-14 09:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-01-27 22:09 - 2014-10-14 09:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-01-27 22:09 - 2014-10-14 09:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-01-27 22:09 - 2014-10-14 09:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-01-27 22:09 - 2014-04-12 10:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-01-27 22:09 - 2014-04-12 10:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-01-27 22:09 - 2014-04-12 10:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-01-27 22:09 - 2014-04-12 10:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-01-27 22:09 - 2014-04-12 10:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-01-27 22:09 - 2013-07-04 20:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-01-27 22:09 - 2013-02-27 12:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-01-27 22:07 - 2014-10-03 09:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-27 22:07 - 2014-10-03 09:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-01-27 22:07 - 2014-10-03 09:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-01-27 22:07 - 2014-10-03 09:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-01-27 22:07 - 2014-10-03 09:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-01-27 21:20 - 2014-05-15 00:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-27 21:20 - 2014-05-15 00:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-27 21:20 - 2014-05-15 00:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-27 21:20 - 2014-05-15 00:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-01-27 21:20 - 2014-05-15 00:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-01-27 21:20 - 2014-05-15 00:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-27 21:20 - 2014-05-15 00:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-27 21:20 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-27 21:20 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-27 20:58 - 2015-02-19 15:29 - 00000000 ____D () C:\Users\Jared
2015-01-27 20:58 - 2015-02-13 09:49 - 00000000 ____D () C:\Users\Jared\AppData\Local\VirtualStore
2015-01-27 20:58 - 2015-01-27 20:58 - 00001409 _____ () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-27 20:58 - 2015-01-27 20:58 - 00000000 ____D () C:\Recovery
2015-01-27 20:58 - 2009-07-14 12:42 - 00000000 ___RD () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-27 20:58 - 2009-07-14 12:37 - 00000000 ___RD () C:\Users\Jared\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-26 22:44 - 2009-07-14 10:37 - 00000000 ___RD () C:\Users\Public
2015-02-22 04:49 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-21 15:52 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\rescache
2015-02-19 15:27 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\spool
2015-02-19 12:59 - 2009-07-14 10:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-19 12:08 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2015-02-19 07:50 - 2009-07-14 10:04 - 00000215 _____ () C:\Windows\system.ini
2015-02-19 07:24 - 2009-07-14 12:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-02-19 07:16 - 2009-07-14 12:52 - 00000000 ____D () C:\Program Files\Windows Defender
2015-02-19 06:51 - 2009-07-14 10:37 - 00000000 ____D () C:\Users\Jared\MSInfo
2015-02-13 12:20 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\wfp
2015-02-13 12:18 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\registration
2015-02-04 12:50 - 2009-07-14 10:37 - 00000000 __RHD () C:\Users\Default
2015-02-01 15:13 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-01-30 19:23 - 2009-07-14 10:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-30 14:42 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\Help
2015-01-28 12:48 - 2009-07-14 12:57 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2015-01-28 12:48 - 2009-07-14 12:52 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2015-01-28 05:25 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\AppCompat
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\it-IT
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\el-GR
2015-01-28 00:12 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\de-DE
2015-01-27 21:20 - 2009-07-14 12:52 - 00000000 ____D () C:\Windows\system32\restore
2015-01-27 20:58 - 2009-07-14 10:37 - 00000000 ____D () C:\Windows\system32\Recovery
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale en-US
inherit {globalsettings}
default {current}
resumeobject {f63aa300-a6a8-11e4-bf47-ef668ac72a3d}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale en-US
inherit {bootloadersettings}
recoverysequence {f63aa302-a6a8-11e4-bf47-ef668ac72a3d}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {f63aa300-a6a8-11e4-bf47-ef668ac72a3d}
nx OptIn
Windows Boot Loader
-------------------
identifier {f63aa302-a6a8-11e4-bf47-ef668ac72a3d}
device ramdisk=[C:]\Recovery\f63aa302-a6a8-11e4-bf47-ef668ac72a3d\Winre.wim,{f63aa303-a6a8-11e4-bf47-ef668ac72a3d}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\f63aa302-a6a8-11e4-bf47-ef668ac72a3d\Winre.wim,{f63aa303-a6a8-11e4-bf47-ef668ac72a3d}
systemroot \windows
nx OptIn
winpe Yes
Resume from Hibernate
---------------------
identifier {f63aa300-a6a8-11e4-bf47-ef668ac72a3d}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale en-US
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
pae Yes
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-US
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems Yes
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {f63aa303-a6a8-11e4-bf47-ef668ac72a3d}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\f63aa302-a6a8-11e4-bf47-ef668ac72a3d\boot.sdi
LastRegBack: 2015-02-23 10:30
==================== End Of Log ============================