Page 1 of 2 12 LastLast
Results 1 to 10 of 14
  1. #1
    Member
    Join Date
    Feb 2010
    Posts
    126
    Points
    1

    Exclamation .exe --- "has stopped working" problem. Programmes continue to crash

    Hey all,

    Could possibly be a registry error or other. On startup the ControlDeck always stops first then it seems some but not all of the programmes I try to access do the same. ie: Windows Media Player, LifeFrame3, Windows Explorer etc. Ive looked online for possible solutions with no luck. The more thorough walkthroughs arent as easy to follow for someone like myself so have turned to Help2Go instead. Looked into System Restore but the earliest point which only seems to go back within the week was when this problem was occurring anyway unless Im overlooking on how to restore to an earlier point? Ive had this laptop for about 2 months now, brought 2nd hand and havent had any problems with it until I was running my CCleaner and decided to scan the registry files, not knowing at the time how detrimental the altering of those could be and hello here we are or so I suspect. No malware detected from either SuperAnti and Malwarebytes, thanks in advance for any info to work toward an answer

    Win 7 Pro 64bit, 500gb hdd, 4gb RAM on a ASUS K52J Note-book

  2. #2
    Member Spyware Fighter DonnaB's Avatar
    Join Date
    Apr 2009
    Location
    Illiana, Ill. USA
    Posts
    3,521
    Points
    563

    Default

    Hi xtrakt,

    Could you please follow Zep's instructions here to run AdwCleaner again and click the Clean button? We really do need to remove that adware that was found. It could make a difference.

    If you can, follow the instructions in Zep's instructions found here to find that Malwarebytes log. We really need to know what, if anything, that it may have removed so we know what we are working with here.

    I do see a few issues that Zep needs to tend to in the FRST log you posted, so please continue to follow his instructions till he says you are clean. Once we know there is no infection on your computer, we can continue to troubleshoot what the problem might be if it has not been fixed.

    As you may have found out, it is not good to run registry cleaners of any kind on a computer. I see he asked you to move a file from your downloads folder. Let's make this easy for you and change the default download location to the desktop so that everything will download straight to the desktop from now on. Since I am not sure which browser you prefer, just follow the instructions below for the browser of your choice to change the location.

    To change the default locations in your browser(s) to download any tools to the desktop by default. Please use the appropriate instructions below depending on the browser you are using.

    Google Chrome - Click the "Customize and control Google Chrome" button in the upper right-corner of the browser. Choose Settings. at the bottom of the screen click the
    "Show advanced settings..." link. Scroll down to find the Downloads section and click the Change... button. Select your desktop and click OK.

    Mozilla Firefox - Click the "Open Menu" button in the upper right-corner of the browser. Choose Options. In the downloads section, click the Browse button, click on the Desktop folder
    and the click the "Select Folder" button. Click OK to get out of the Options menu.

    Internet Explorer - Click the Tools menu in the upper right-corner of the browser. Select View downloads. Select the Options link in the lower left of the window. Click Browse and
    select the Desktop and then choose the Select Folder button. Click OK to get out of the download options screen and then click Close to get out of the View Downloads screen.
    NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.


    Thank you,
    Donna
    If you think you might be infected with malware or have recently cleansed your computer of malware without the help of an expert, please read and follow the instructions in How to Start Removing Viruses and Spyware from your Computer. This can alleviate time consumed in trouble shooting your current computer problems.

    If your problem is solved, here's how to say thanks!

    Very proud parent of a U.S. Navy "CB"



    "People may forget what you say,
    People may forget what you did,
    but People will never forget how you made them feel!"

  3. #3
    Member
    Join Date
    Feb 2010
    Posts
    126
    Points
    1

    Default

    Hey, howzit going DonnaB again. The post above is unrelated to the Spyware thread Ive submitted this is from another computer. Details to my knowledge are as mentioned with the following specsvWin 7 Pro 64bit, 500gb hdd, 4gb RAM on a ASUS K52J Note-book

    Do you still recommend other scans or would like to view logs from scans Ive been performed most recently?

  4. #4
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,173
    Points
    1307

    Default

    Hello,

    Is this the exact error message you're getting .exe --- "has stopped working"

    Can you post a these logs for us,

    Download the version of this tool for your operating system.
    Farbar Recovery Scan Tool (64 bit)
    farbar-recovery-scan-tool/dl/81/Farbar Recovery Scan Tool (32 bit)
    and save it to a folder on your computer's Desktop.
    Double-click to run it. When the tool opens click Yes to disclaimer.
    Press Scan button.
    It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
    The first time the tool is run, it makes also another log (Addition.txt). Please also paste it to your reply.

    Joe

  5. #5
    Member Spyware Fighter DonnaB's Avatar
    Join Date
    Apr 2009
    Location
    Illiana, Ill. USA
    Posts
    3,521
    Points
    563

    Default

    Quote Originally Posted by xtrakt View Post
    Hey, howzit going DonnaB again. The post above is unrelated to the Spyware thread Ive submitted this is from another computer. Details to my knowledge are as mentioned with the following specsvWin 7 Pro 64bit, 500gb hdd, 4gb RAM on a ASUS K52J Note-book

    Do you still recommend other scans or would like to view logs from scans Ive been performed most recently?
    Hey back at you, xtrakt! (waves) Guess I should have asked if it was the same computer or not. Silly me for evening thinking before my 2nd cup of coffee.

    Go ahead and follow Zep's instructions and post the logs so we can have a look see.
    If you think you might be infected with malware or have recently cleansed your computer of malware without the help of an expert, please read and follow the instructions in How to Start Removing Viruses and Spyware from your Computer. This can alleviate time consumed in trouble shooting your current computer problems.

    If your problem is solved, here's how to say thanks!

    Very proud parent of a U.S. Navy "CB"



    "People may forget what you say,
    People may forget what you did,
    but People will never forget how you made them feel!"

  6. #6
    Member
    Join Date
    Feb 2010
    Posts
    126
    Points
    1

    Default

    Quote Originally Posted by zep516 View Post
    Hello,

    Is this the exact error message you're getting .exe --- "has stopped working"

    Can you post a these logs for us,

    Download the version of this tool for your operating system.
    Farbar Recovery Scan Tool (64 bit)
    farbar-recovery-scan-tool/dl/81/Farbar Recovery Scan Tool (32 bit)
    and save it to a folder on your computer's Desktop.
    Double-click to run it. When the tool opens click Yes to disclaimer.
    Press Scan button.
    It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
    The first time the tool is run, it makes also another log (Addition.txt). Please also paste it to your reply.

    Joe
    Hey,

    No @ .exe, its just pretty much every programme I try and run. Go to open up Windows Media player, the icon begins to load before it stops and crashes prompting the Windows Media has stopped working. Then Windows works and searches for a solution but Im never notified on a fix etc. Same goes with Control Deck, itll begin to run then crash before the panel or main window opens. Ive tried uninstalling them and reinstalling, no luck. Ive tried the Data Execution exception trick, no luck. No malware on the system as far as the scans are showing me. Will reply with the FRST results shortly

    No worries DonnaB!

  7. #7
    Member
    Join Date
    Feb 2010
    Posts
    126
    Points
    1

    Default

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-03-2015
    Ran by DEMNS (administrator) on DEMNS-PC on 03-03-2015 14:42:13
    Running from C:\Users\DEMNS\Desktop
    Loaded Profiles: DEMNS (Available profiles: DEMNS & Guest)
    Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (AMD) C:\Windows\System32\atiesrxx.exe
    (AMD) C:\Windows\System32\atieclxx.exe
    (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
    (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
    (ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
    (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    (ASUS) C:\Program Files\P4G\BatteryLife.exe
    (ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
    () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
    () C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
    (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
    (Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
    (Visicom Media Inc.) C:\Program Files (x86)\ManyCam\ManyCam.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    (SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
    () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
    (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    (ASUS) C:\Windows\AsScrPro.exe
    () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    () C:\Program Files (x86)\ASUS\VirtualCamera\VirCamWS.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-16] ()
    HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2010-04-28] ()
    HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
    HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [729272 2014-01-28] (Nico Mak Computing)
    HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246304 2014-07-21] (Trend Micro Inc.)
    HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1266224 2014-07-21] (Trend Micro Inc.)
    HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-07] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2010-06-25] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
    HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-04] (Nuance Communications, Inc.)
    HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-05-04] (ASUS)
    HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-20] (ASUS)
    HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440 2010-07-03] ()
    HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-13] (Piriform Ltd)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7780120 2015-01-23] (SUPERAntiSpyware)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [9797416 2015-02-25] (Visicom Media Inc.)
    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-01-29] (Microsoft Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
    ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
    ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk
    ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (Acresso Software Inc.)
    ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll ()
    ShellIconOverlayIdentifiers: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll ()
    ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
    ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
    ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll ()
    ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll ()

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
    BHO: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
    BHO: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner64.dll (Google Inc.)
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
    BHO: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
    BHO-x32: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
    BHO-x32: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner.dll (Google Inc.)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
    BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
    BHO-x32: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
    BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    Toolbar: HKLM - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
    Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
    Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
    Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
    Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
    Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
    Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
    Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
    Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
    Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

    FireFox:
    ========
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
    FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension
    FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension [2015-03-02]
    FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension
    FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension
    FF Extension: Trend Micro Osprey Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension [2015-03-02]
    FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
    FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2015-03-02]

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.google.co.nz/
    CHR StartupUrls: Default -> "https://www.google.co.nz/"
    CHR Profile: C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Slides) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-26]
    CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2015-01-27]
    CHR Extension: (Google Docs) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-26]
    CHR Extension: (Google Drive) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-26]
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-01-26]
    CHR Extension: (YouTube) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-26]
    CHR Extension: (Adblock Plus) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-27]
    CHR Extension: (Google Search) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-26]
    CHR Extension: (Google Sheets) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-26]
    CHR Extension: (AdBlock) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-27]
    CHR Extension: (Google Wallet) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-26]
    CHR Extension: (Adblock Pro) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-01-27]
    CHR Extension: (Gmail) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-26]
    CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf] - https://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
    R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [File not signed]
    R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed]
    R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1187376 2014-07-21] (Trend Micro Inc.)
    R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] () [File not signed]
    R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
    R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed]
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
    R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-03-02] (REALiX(tm))
    R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
    R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
    S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-02] (Malwarebytes Corporation)
    R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2015-03-02] (Synaptics Incorporated)
    R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] ()
    S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [206080 2014-10-13] (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.))
    R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [121944 2014-07-14] (Trend Micro Inc.)
    R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [305832 2014-07-14] (Trend Micro Inc.)
    R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2014-07-10] (Trend Micro Inc.)
    R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [106296 2014-07-10] (Trend Micro Inc.)
    R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [93664 2014-07-14] (Trend Micro Inc.)
    R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [407864 2014-07-10] (Trend Micro Inc.)
    R2 tmusa; C:\Windows\System32\DRIVERS\tmusa.sys [106296 2014-07-01] (Trend Micro Inc.)
    R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-08-07] ()
    S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
    S3 clwvd6; system32\DRIVERS\clwvd6.sys [X]
    U2 TMAgent; No ImagePath

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-03 14:42 - 2015-03-03 14:43 - 00023423 _____ () C:\Users\DEMNS\Desktop\FRST.txt
    2015-03-03 14:42 - 2015-03-03 14:42 - 00000000 ____D () C:\FRST
    2015-03-03 14:35 - 2015-03-03 14:36 - 02092544 _____ (Farbar) C:\Users\DEMNS\Desktop\FRST64.exe
    2015-03-02 18:12 - 2015-03-02 18:12 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\ManyCam
    2015-03-02 18:11 - 2015-03-02 18:11 - 00000993 _____ () C:\Users\Public\Desktop\ManyCam.lnk
    2015-03-02 18:11 - 2015-03-02 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:11 - 00000000 ____D () C:\Program Files (x86)\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:09 - 00004535 _____ () C:\Users\DEMNS\AppData\Roaming\CamStudio.cfg
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamShapes.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamLayout.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000046 _____ () C:\Users\DEMNS\AppData\Roaming\Camdata.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000000 ____D () C:\ProgramData\ManyCam
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000096 _____ () C:\Users\DEMNS\AppData\Roaming\version2.xml
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000000 ____D () C:\Program Files\CamStudio 2.7
    2015-03-02 17:18 - 2015-03-02 17:18 - 00003064 _____ () C:\Windows\System32\Tasks\ASUSControlDeck
    2015-03-02 16:43 - 2015-03-02 16:43 - 00000000 ____D () C:\Users\Guest\AppData\Local\ASUS
    2015-03-02 16:42 - 2015-03-02 16:42 - 00001415 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-02 16:42 - 2015-03-02 16:42 - 00001371 _____ () C:\Users\Guest\Desktop\Trend Micro Internet Security.lnk
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\Documents\Bluetooth Exchange Folder
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Adobe
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Local\Broadcom
    2015-03-02 16:41 - 2015-03-02 16:42 - 00069616 _____ () C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-03-02 16:41 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest
    2015-03-02 16:41 - 2015-03-02 16:41 - 00000020 ___SH () C:\Users\Guest\ntuser.ini
    2015-03-02 16:41 - 2015-03-02 16:41 - 00000000 ____D () C:\Users\Guest\AppData\Local\VirtualStore
    2015-03-02 16:41 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-03-02 16:41 - 2011-03-15 11:36 - 00000000 ____D () C:\Users\Guest\AppData\Local\SRS Labs
    2015-03-02 16:41 - 2011-03-15 11:09 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
    2015-03-02 16:41 - 2011-03-15 11:08 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
    2015-03-02 16:41 - 2009-07-14 17:54 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-03-02 16:41 - 2009-07-14 17:49 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
    2015-03-02 16:25 - 2015-03-02 16:25 - 00001022 _____ () C:\Users\Public\Desktop\LifeFrame.lnk
    2015-03-02 16:23 - 2015-03-02 16:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\CyberLink
    2015-03-02 15:58 - 2015-03-02 16:12 - 00000000 ____D () C:\ProgramData\SUPPORTDIR
    2015-03-02 15:58 - 2015-03-02 15:58 - 00000000 ____D () C:\ProgramData\install_clap
    2015-03-02 15:56 - 2015-03-02 15:58 - 341448496 _____ () C:\Users\DEMNS\Documents\YouCam_6.0.3805.0_Trial_Trial_YUC141222-04.exe
    2015-03-02 15:52 - 2015-03-02 15:53 - 00000000 ____D () C:\Users\DEMNS\Documents\EatCam Webcam Recorder
    2015-03-02 15:49 - 2015-03-02 16:12 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
    2015-03-02 15:49 - 2015-03-02 16:12 - 00000000 ____D () C:\Program Files (x86)\NCH Software
    2015-03-02 15:49 - 2015-03-02 15:49 - 00052216 _____ () C:\Users\DEMNS\AppData\Roaming\Debut.dmp
    2015-03-02 15:49 - 2015-03-02 15:49 - 00000000 ____D () C:\ProgramData\NCH Software
    2015-03-02 15:44 - 2015-03-02 15:44 - 00002138 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\webcamAMP - Webcam Amplifier.lnk
    2015-03-02 15:44 - 2015-03-02 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webcamAMP
    2015-03-02 15:44 - 2015-03-02 15:44 - 00000000 ____D () C:\Program Files (x86)\KV Designs
    2015-03-02 14:41 - 2015-03-02 14:41 - 00145424 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\JME.sys
    2015-03-02 14:39 - 2015-03-02 14:39 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
    2015-03-02 14:39 - 2015-03-02 14:39 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
    2015-03-02 14:39 - 2015-03-02 14:39 - 00176880 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
    2015-03-02 14:36 - 2015-03-02 14:36 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
    2015-03-02 14:36 - 2015-03-02 14:36 - 00034544 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
    2015-03-02 14:36 - 2015-03-02 14:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
    2015-03-02 14:36 - 2015-03-02 14:36 - 00000000 ____D () C:\Program Files\Synaptics
    2015-03-02 14:26 - 2015-03-02 14:26 - 00000000 ____D () C:\ProgramData\ProductData
    2015-03-02 14:25 - 2015-03-03 06:24 - 00002874 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (DEMNS)
    2015-03-02 14:25 - 2015-03-02 14:26 - 00002146 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
    2015-03-02 14:25 - 2015-03-02 14:25 - 00026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
    2015-03-02 14:25 - 2015-03-02 14:25 - 00003232 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
    2015-03-02 14:25 - 2015-03-02 14:25 - 00003176 _____ () C:\Windows\System32\Tasks\Driver Booster Update
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\IObit
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\ProgramData\IObit
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\Program Files (x86)\IObit
    2015-03-02 14:14 - 2013-10-02 15:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
    2015-03-02 14:14 - 2013-10-02 15:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
    2015-03-02 14:14 - 2013-10-02 15:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
    2015-03-02 14:14 - 2013-10-02 14:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
    2015-03-02 14:14 - 2013-10-02 14:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
    2015-03-02 14:14 - 2013-10-02 14:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2015-03-02 14:14 - 2013-10-02 14:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
    2015-03-02 14:14 - 2013-10-02 13:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
    2015-03-02 14:14 - 2013-10-02 13:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
    2015-03-02 14:14 - 2013-10-02 13:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
    2015-03-02 14:14 - 2013-10-02 13:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
    2015-03-02 14:14 - 2013-10-02 13:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
    2015-03-02 14:14 - 2013-10-02 12:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2015-03-02 14:14 - 2013-10-02 12:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2015-03-02 14:14 - 2013-10-02 12:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
    2015-03-02 14:14 - 2013-10-02 11:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
    2015-03-02 14:14 - 2013-10-02 09:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-03-02 14:14 - 2013-10-02 09:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2015-03-02 14:13 - 2012-08-24 03:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2015-03-02 14:13 - 2012-08-24 03:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
    2015-03-02 14:13 - 2012-08-24 02:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
    2015-03-02 14:13 - 2012-08-24 00:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
    2015-03-02 14:13 - 2012-08-23 23:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
    2015-03-02 14:13 - 2012-08-23 22:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2015-03-02 11:56 - 2015-03-02 11:56 - 00001266 _____ () C:\Users\DEMNS\Desktop\Revo Uninstaller.lnk
    2015-03-02 11:56 - 2015-03-02 11:56 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
    2015-03-02 11:43 - 2015-03-02 11:43 - 00000000 ___HD () C:\TMRescueDisk
    2015-03-02 11:40 - 2015-03-02 11:40 - 00001443 _____ () C:\Users\DEMNS\Desktop\Trend Micro Internet Security.lnk
    2015-03-02 11:40 - 2015-03-02 11:40 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
    2015-03-02 11:39 - 2014-07-14 20:39 - 00305832 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
    2015-03-02 11:39 - 2014-07-14 20:39 - 00121944 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmactmon.sys
    2015-03-02 11:39 - 2014-07-14 20:39 - 00093664 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmevtmgr.sys
    2015-03-02 11:39 - 2014-07-10 05:03 - 00407864 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmnciesc.sys
    2015-03-02 11:39 - 2014-07-10 05:02 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmeevw.sys
    2015-03-02 11:39 - 2014-07-10 05:02 - 00050976 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\TMEBC64.sys
    2015-03-02 11:39 - 2014-07-01 00:06 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmusa.sys
    2015-03-02 11:38 - 2015-03-02 11:40 - 00003326 _____ () C:\Windows\System32\Tasks\Trend Micro Inspect of Platinum
    2015-03-02 11:35 - 2015-03-02 11:35 - 00000059 _____ () C:\Windows\system32\SupportTool.exe.bat
    2015-03-02 11:33 - 2015-03-02 11:34 - 00000000 ____D () C:\Program Files\Trend Micro
    2015-03-02 11:32 - 2015-03-02 11:32 - 00000036 _____ () C:\Users\DEMNS\AppData\Local\housecall.guid.cache
    2015-03-02 11:31 - 2015-03-03 06:22 - 00002424 _____ () C:\Windows\setupact.log
    2015-03-02 11:31 - 2015-03-02 11:31 - 00000000 _____ () C:\Windows\setuperr.log
    2015-03-02 11:30 - 2015-03-02 11:30 - 00005644 _____ () C:\Windows\PFRO.log
    2015-03-02 11:03 - 2015-03-02 11:03 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Trend Micro
    2015-03-02 10:54 - 2015-01-09 12:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
    2015-03-02 10:54 - 2015-01-09 12:43 - 00419936 _____ () C:\Windows\system32\locale.nls
    2015-02-25 21:27 - 2015-02-25 21:27 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Conexant
    2015-02-25 21:27 - 2015-02-25 21:27 - 00000000 ____D () C:\ProgramData\Conexant
    2015-02-24 16:15 - 2015-02-27 14:46 - 00000000 ____D () C:\Users\DEMNS\Desktop\MemCard
    2015-02-24 15:33 - 2015-02-24 15:38 - 00000000 ____D () C:\Users\DEMNS\Desktop\X-Sounds
    2015-02-20 22:55 - 2015-02-20 22:55 - 00000000 ____D () C:\Windows\en
    2015-02-20 22:53 - 2015-02-20 22:53 - 00001307 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
    2015-02-20 22:53 - 2015-02-20 22:53 - 00000000 ____D () C:\Windows\fr
    2015-02-20 22:53 - 2015-02-20 22:53 - 00000000 ____D () C:\Windows\es
    2015-02-20 22:52 - 2015-02-20 22:52 - 00001376 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
    2015-02-20 22:46 - 2014-03-31 21:06 - 00058056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
    2015-02-20 22:44 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002178 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00000000 ___RD () C:\Users\DEMNS\OneDrive
    2015-02-20 22:40 - 2015-02-20 22:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
    2015-02-20 22:39 - 2015-02-20 22:39 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
    2015-02-20 22:35 - 2015-02-20 22:35 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Windows Live
    2015-02-20 21:57 - 2015-03-02 10:14 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\vlc
    2015-02-20 21:56 - 2015-02-20 21:57 - 00001283 _____ () C:\Users\DEMNS\Desktop\VLC.lnk
    2015-02-20 21:55 - 2015-03-02 10:14 - 00000000 ____D () C:\Users\DEMNS\Documents\vlc-2.1.5
    2015-02-19 15:22 - 2015-02-20 22:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Spotify
    2015-02-19 15:22 - 2015-02-20 22:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Spotify
    2015-02-19 15:22 - 2015-02-19 15:22 - 00001809 _____ () C:\Users\DEMNS\Desktop\Spotify.lnk
    2015-02-19 15:22 - 2015-02-19 15:22 - 00001795 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\WinRAR
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
    2015-02-18 09:22 - 2015-02-18 09:23 - 00000000 ____D () C:\Program Files (x86)\WinRAR
    2015-02-17 11:36 - 2015-03-02 16:13 - 00000000 ____D () C:\Program Files (x86)\Driver Checker
    2015-02-17 11:35 - 2015-02-17 11:36 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\GetRightToGo
    2015-02-17 10:34 - 2015-02-17 10:34 - 00000000 __SHD () C:\found.001
    2015-02-17 10:02 - 2015-02-17 10:17 - 00000000 ____D () C:\ProgramData\Package Cache
    2015-02-17 10:01 - 2015-02-17 10:22 - 00000000 ____D () C:\Program Files\AMD
    2015-02-17 09:57 - 2015-02-17 09:57 - 00000000 ____D () C:\AMD
    2015-02-17 09:45 - 2015-02-17 09:45 - 00000000 ____D () C:\ProgramData\SlimWare Utilities, Inc
    2015-02-17 09:26 - 2015-02-17 10:37 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
    2015-02-17 09:26 - 2015-02-17 09:26 - 00013920 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
    2015-02-17 09:26 - 2015-02-17 09:26 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
    2015-02-17 09:26 - 2015-02-17 09:26 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
    2015-02-17 09:26 - 2015-02-17 09:26 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\SlimWare Utilities Inc
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Thunderbird
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Mozilla
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Thunderbird
    2015-02-16 20:23 - 2015-03-02 10:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
    2015-02-16 20:23 - 2015-03-02 10:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2015-02-16 20:23 - 2015-02-16 20:23 - 00002100 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
    2015-02-16 20:23 - 2015-02-16 20:23 - 00002088 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
    2015-02-16 20:23 - 2015-02-16 20:23 - 00000000 ____D () C:\ProgramData\Mozilla
    2015-02-16 18:42 - 2015-03-02 10:13 - 00000000 __RHD () C:\MSOCache
    2015-02-16 18:12 - 2015-02-16 18:12 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Macromedia
    2015-02-13 21:33 - 2015-02-13 21:33 - 00000000 ____D () C:\ProgramData\Sun
    2015-02-13 21:33 - 2015-02-13 21:32 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
    2015-02-13 21:32 - 2015-02-13 21:32 - 00000000 ____D () C:\ProgramData\Oracle
    2015-02-13 21:32 - 2015-02-13 21:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2015-02-13 21:31 - 2015-02-13 21:31 - 00000000 ____D () C:\Program Files (x86)\Java
    2015-02-11 09:28 - 2015-01-09 16:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
    2015-02-11 08:13 - 2013-05-10 18:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2015-02-11 08:13 - 2013-05-10 18:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2015-02-11 08:13 - 2013-05-10 17:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2015-02-11 08:13 - 2013-05-10 17:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2015-02-10 21:59 - 2015-02-10 21:59 - 00000000 ____D () C:\Users\Public\Documents\CrashDump
    2015-02-10 21:12 - 2015-02-10 21:12 - 00000000 ____D () C:\Program Files (x86)\MarkAny
    2015-02-10 21:07 - 2013-10-30 12:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieUserList
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieSiteList
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieBrowserModeList
    2015-02-10 20:50 - 2015-02-10 20:50 - 00000000 ____D () C:\Windows\system32\appmgmt
    2015-02-10 20:23 - 2015-02-10 20:23 - 00002285 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
    2015-02-10 20:23 - 2015-02-10 20:23 - 00002279 _____ () C:\Users\Public\Desktop\WinZip.lnk
    2015-02-10 20:23 - 2015-02-10 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
    2015-02-10 20:22 - 2015-02-10 20:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\WinZip
    2015-02-10 20:22 - 2015-02-10 20:23 - 00000000 ____D () C:\ProgramData\WinZip
    2015-02-10 20:21 - 2015-02-10 20:22 - 00000000 ____D () C:\Program Files\WinZip
    2015-02-10 20:21 - 2015-02-10 20:21 - 00000000 ____D () C:\Program Files\File Association Helper
    2015-02-10 19:58 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\Documents\SelfMV
    2015-02-10 18:18 - 2015-02-10 18:18 - 00002064 _____ () C:\Users\Public\Desktop\PC Image Editor.lnk
    2015-02-10 18:18 - 2015-02-10 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Image Editor
    2015-02-10 18:18 - 2015-02-10 18:18 - 00000000 ____D () C:\Program Files (x86)\Program4Pc
    2015-02-10 18:09 - 2015-02-10 18:09 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Autodesk
    2015-02-10 18:09 - 2015-02-10 18:09 - 00000000 ____D () C:\ProgramData\Autodesk
    2015-02-10 18:07 - 2015-02-10 18:07 - 00000000 ____D () C:\Autodesk
    2015-02-10 14:34 - 2015-02-25 21:17 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
    2015-02-10 14:33 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Samsung
    2015-02-10 14:33 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Samsung
    2015-02-10 14:33 - 2015-02-10 14:33 - 00000000 ____D () C:\Users\DEMNS\Documents\samsung
    2015-02-10 14:33 - 2014-11-11 16:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-02-10 14:33 - 2014-11-11 15:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2015-02-10 13:50 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
    2015-02-10 13:29 - 2015-02-10 13:29 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-02-10 13:29 - 2015-02-10 13:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-02-10 13:29 - 2015-02-10 13:29 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-02-10 13:29 - 2015-02-10 13:29 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-02-10 13:29 - 2015-02-10 13:29 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
    2015-02-10 13:29 - 2015-02-10 13:29 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2015-02-10 13:29 - 2015-02-10 13:29 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-02-10 13:29 - 2015-02-10 13:29 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2015-02-10 13:29 - 2015-02-10 13:29 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2015-02-10 13:29 - 2015-02-10 13:29 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-02-10 13:17 - 2015-02-10 13:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Zeon
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Nuance
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\FLEXnet
    2015-02-07 20:17 - 2014-10-13 18:57 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
    2015-02-07 20:17 - 2014-10-13 18:57 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll
    2015-02-07 20:17 - 2014-10-13 18:57 - 00206080 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudobex.sys
    2015-02-07 20:17 - 2014-10-13 18:57 - 00206080 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudmdm.sys
    2015-02-07 20:17 - 2014-10-13 18:57 - 00110336 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudbus.sys
    2015-02-07 20:13 - 2015-02-07 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
    2015-02-07 20:13 - 2015-02-07 20:13 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec
    2015-02-07 20:11 - 2015-02-10 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
    2015-02-07 20:11 - 2013-12-30 10:53 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
    2015-02-07 20:11 - 2013-10-30 12:13 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
    2015-02-07 20:08 - 2015-02-10 21:05 - 00000000 ____D () C:\ProgramData\Samsung
    2015-02-07 20:08 - 2015-02-10 21:04 - 00000000 ____D () C:\Program Files (x86)\Samsung
    2015-02-07 19:54 - 2015-02-10 21:03 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Downloaded Installations
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
    2015-02-07 12:14 - 2012-07-07 09:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
    2015-02-07 12:14 - 2011-04-28 16:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
    2015-02-07 12:14 - 2011-03-11 19:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
    2015-02-07 12:14 - 2011-03-11 19:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
    2015-02-07 12:14 - 2011-03-11 19:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
    2015-02-07 12:14 - 2011-03-11 18:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
    2015-02-07 12:14 - 2011-03-11 18:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
    2015-02-07 12:14 - 2011-03-11 17:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
    2015-02-07 01:32 - 2014-10-18 15:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-02-07 01:32 - 2014-10-18 14:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2015-02-07 01:32 - 2014-07-07 15:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-02-07 01:32 - 2014-07-07 15:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2015-02-07 01:32 - 2014-07-07 15:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2015-02-07 01:32 - 2014-07-07 15:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2015-02-07 01:32 - 2014-07-07 14:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2015-02-07 01:32 - 2014-07-07 14:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2015-02-07 01:32 - 2014-07-07 14:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2015-02-07 01:32 - 2014-07-07 14:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
    2015-02-07 01:19 - 2012-07-26 16:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
    2015-02-07 01:19 - 2012-07-26 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
    2015-02-07 01:19 - 2012-07-26 15:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
    2015-02-07 01:19 - 2012-06-03 03:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
    2015-02-07 01:00 - 2012-03-01 19:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2015-02-07 01:00 - 2012-03-01 19:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2015-02-07 01:00 - 2012-03-01 18:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
    2015-02-04 11:52 - 2015-03-02 17:06 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-02-04 11:52 - 2015-02-04 11:52 - 00001104 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2015-02-04 11:52 - 2015-02-04 11:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2015-02-04 11:51 - 2015-02-04 11:52 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
    2015-02-04 11:51 - 2015-02-04 11:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
    2015-02-04 11:51 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
    2015-02-04 11:51 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
    2015-02-04 11:51 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
    2015-02-02 19:53 - 2015-03-03 14:31 - 01645782 _____ () C:\Windows\WindowsUpdate.log
    2015-02-01 20:46 - 2014-12-12 18:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-02-01 20:46 - 2014-12-12 18:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-02-01 20:46 - 2014-12-12 18:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-02-01 20:46 - 2014-12-12 18:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-02-01 20:46 - 2014-12-12 18:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-02-01 20:46 - 2014-12-12 18:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-02-01 20:46 - 2014-12-12 18:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-02-01 20:46 - 2013-08-29 15:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-02-01 20:46 - 2013-08-29 15:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2015-02-01 20:46 - 2013-08-29 15:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
    2015-02-01 20:46 - 2013-08-29 14:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2015-02-01 20:46 - 2013-08-29 14:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2015-02-01 20:46 - 2013-08-29 14:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
    2015-02-01 20:46 - 2013-08-02 15:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-02-01 20:46 - 2013-08-02 15:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-02-01 20:46 - 2013-08-02 14:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-02-01 20:46 - 2013-08-02 13:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-02-01 20:46 - 2012-03-17 20:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
    2015-02-01 20:44 - 2011-08-17 18:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2015-02-01 20:44 - 2011-08-17 18:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2015-02-01 20:44 - 2011-08-17 17:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
    2015-02-01 20:44 - 2011-08-17 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
    2015-02-01 20:43 - 2014-09-04 18:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
    2015-02-01 20:43 - 2014-09-04 18:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
    2015-02-01 20:42 - 2014-10-03 15:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
    2015-02-01 20:42 - 2014-10-03 14:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
    2015-02-01 20:42 - 2014-10-03 14:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
    2015-02-01 20:42 - 2014-10-03 14:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
    2015-02-01 20:42 - 2014-10-03 14:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
    2015-02-01 20:42 - 2014-10-03 14:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
    2015-02-01 20:42 - 2014-02-04 15:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
    2015-02-01 20:42 - 2014-02-04 15:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
    2015-02-01 20:42 - 2014-02-04 15:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
    2015-02-01 20:42 - 2014-02-04 15:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
    2015-02-01 20:42 - 2014-02-04 15:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
    2015-02-01 20:42 - 2012-11-23 16:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
    2015-02-01 20:42 - 2012-02-17 19:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
    2015-02-01 20:42 - 2012-02-17 18:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
    2015-02-01 20:42 - 2012-02-17 17:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
    2015-02-01 20:41 - 2014-11-08 16:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2015-02-01 20:41 - 2014-11-08 15:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2015-02-01 20:37 - 2015-02-01 20:37 - 00000000 ____D () C:\Users\DEMNS\Documents\ASUS
    2015-02-01 20:36 - 2015-02-01 20:36 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\ASUS
    2015-02-01 20:36 - 2015-02-01 20:36 - 00000000 ____D () C:\ProgramData\ASUS
    2015-02-01 20:12 - 2013-05-10 18:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
    2015-02-01 20:12 - 2013-05-10 16:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
    2015-02-01 20:11 - 2014-10-25 14:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2015-02-01 20:11 - 2014-10-25 14:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
    2015-02-01 20:11 - 2014-07-17 15:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2015-02-01 20:11 - 2014-07-17 15:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
    2015-02-01 20:11 - 2014-07-17 15:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
    2015-02-01 20:11 - 2014-07-17 14:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
    2015-02-01 20:11 - 2014-07-17 14:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2015-02-01 20:11 - 2014-07-17 14:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2015-02-01 20:11 - 2012-04-26 18:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
    2015-02-01 20:11 - 2012-04-26 18:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
    2015-02-01 20:04 - 2013-09-08 15:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2015-02-01 20:04 - 2013-09-08 15:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
    2015-02-01 20:04 - 2013-07-20 23:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-02-01 20:04 - 2013-07-20 23:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2015-02-01 20:04 - 2012-12-08 00:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
    2015-02-01 20:04 - 2012-12-08 00:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
    2015-02-01 20:04 - 2012-12-08 00:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
    2015-02-01 20:04 - 2012-12-08 00:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
    2015-02-01 20:04 - 2012-12-08 00:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
    2015-02-01 20:04 - 2012-12-08 00:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
    2015-02-01 20:03 - 2012-12-08 02:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
    2015-02-01 20:03 - 2012-12-08 02:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
    2015-02-01 20:03 - 2012-12-08 01:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
    2015-02-01 20:03 - 2012-12-08 01:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
    2015-02-01 20:03 - 2012-12-08 00:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
    2015-02-01 20:03 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
    2015-02-01 20:03 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
    2015-02-01 20:02 - 2014-06-25 15:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-02-01 20:02 - 2014-06-25 14:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2015-02-01 20:02 - 2014-03-04 22:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2015-02-01 20:02 - 2014-03-04 22:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2015-02-01 20:02 - 2014-03-04 22:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2015-02-01 20:02 - 2014-03-04 22:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2015-02-01 20:02 - 2014-03-04 21:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2015-02-01 20:02 - 2014-03-04 21:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2015-02-01 20:02 - 2013-08-02 15:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2015-02-01 20:02 - 2013-08-02 13:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 13:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 13:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 13:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2015-02-01 20:02 - 2013-07-26 15:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2015-02-01 20:02 - 2013-07-26 14:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
    2015-02-01 20:01 - 2014-11-11 16:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-02-01 20:01 - 2014-11-11 16:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
    2015-02-01 20:01 - 2014-11-11 15:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-02-01 20:01 - 2014-11-11 15:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
    2015-02-01 20:01 - 2014-10-14 15:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-02-01 20:01 - 2014-10-14 15:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-02-01 20:01 - 2014-10-14 14:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-02-01 20:01 - 2014-10-14 14:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-02-01 20:00 - 2014-10-30 15:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
    2015-02-01 20:00 - 2014-10-30 14:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
    2015-02-01 20:00 - 2014-10-03 15:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2015-02-01 20:00 - 2014-10-03 14:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
    2015-02-01 20:00 - 2014-10-03 14:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2015-02-01 20:00 - 2014-10-03 14:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2015-02-01 20:00 - 2014-06-16 15:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2015-02-01 20:00 - 2014-04-12 15:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-02-01 20:00 - 2014-04-12 15:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-02-01 20:00 - 2014-04-12 15:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-02-01 20:00 - 2014-04-12 15:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-02-01 20:00 - 2014-04-12 15:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-02-01 20:00 - 2013-07-05 01:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2015-02-01 20:00 - 2013-04-26 18:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2015-02-01 20:00 - 2013-04-26 17:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
    2015-02-01 20:00 - 2013-04-10 19:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
    2015-02-01 20:00 - 2011-02-04 00:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
    2015-02-01 19:59 - 2014-10-10 13:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-02-01 19:59 - 2012-09-26 11:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
    2015-02-01 19:59 - 2012-09-26 11:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
    2015-02-01 19:59 - 2012-07-05 11:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2015-02-01 19:59 - 2012-07-05 11:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
    2015-02-01 19:59 - 2012-07-05 11:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
    2015-02-01 19:59 - 2012-07-05 10:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
    2015-02-01 19:59 - 2012-07-05 10:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
    2015-02-01 19:59 - 2011-05-25 00:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
    2015-02-01 19:59 - 2011-05-24 23:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
    2015-02-01 19:59 - 2011-05-24 23:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
    2015-02-01 19:59 - 2011-05-24 23:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
    2015-02-01 19:59 - 2011-05-24 23:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
    2015-02-01 19:59 - 2011-02-18 23:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
    2015-02-01 19:59 - 2011-02-06 06:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2015-02-01 19:59 - 2011-02-06 06:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
    2015-02-01 19:59 - 2011-02-06 06:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
    2015-02-01 19:59 - 2011-02-06 06:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
    2015-02-01 19:59 - 2011-02-06 06:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2015-02-01 19:59 - 2011-02-06 06:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2015-02-01 19:59 - 2011-02-06 06:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2015-02-01 19:58 - 2011-02-18 18:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
    2015-02-01 17:06 - 2013-01-24 19:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
    2015-02-01 17:06 - 2011-02-13 00:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
    2015-02-01 17:05 - 2011-12-16 21:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2015-02-01 17:05 - 2011-12-16 20:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
    2015-02-01 17:05 - 2011-05-03 18:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
    2015-02-01 17:05 - 2011-05-03 17:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
    2015-02-01 17:04 - 2014-01-24 15:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2015-02-01 13:37 - 2015-03-03 14:23 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
    2015-02-01 13:37 - 2015-02-15 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2015-02-01 13:37 - 2015-02-01 13:37 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware.lnk
    2015-02-01 13:37 - 2015-02-01 13:37 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\SUPERAntiSpyware.com
    2015-02-01 13:37 - 2015-02-01 13:37 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
    2015-02-01 01:42 - 2014-07-01 11:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
    2015-02-01 01:42 - 2014-07-01 11:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
    2015-02-01 01:42 - 2014-06-06 19:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
    2015-02-01 01:42 - 2014-06-06 19:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2015-02-01 01:42 - 2014-03-10 10:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
    2015-02-01 01:42 - 2014-03-10 10:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
    2015-02-01 01:42 - 2014-03-10 10:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
    2015-02-01 01:42 - 2014-03-10 10:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-03 14:00 - 2011-03-15 11:10 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-03-03 06:31 - 2009-07-14 17:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-03-03 06:31 - 2009-07-14 17:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-03-03 06:23 - 2011-03-15 11:44 - 00002182 _____ () C:\Windows\system32\AutoRunFilter.ini
    2015-03-03 06:23 - 2011-03-15 11:42 - 00000000 ____D () C:\Program Files\P4G
    2015-03-03 06:23 - 2011-03-15 11:10 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-03-03 06:23 - 2009-07-14 18:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
    2015-03-03 06:22 - 2009-07-14 18:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-03-02 22:05 - 2015-01-27 01:19 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\SoftGrid Client
    2015-03-02 17:18 - 2011-03-15 11:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
    2015-03-02 17:18 - 2011-03-15 11:20 - 00000000 ____D () C:\Program Files (x86)\ASUS
    2015-03-02 16:42 - 2011-03-15 11:22 - 00000000 ____D () C:\ProgramData\Trend Micro
    2015-03-02 16:25 - 2011-03-15 11:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
    2015-03-02 16:15 - 2015-01-26 18:35 - 00001415 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-02 16:12 - 2011-03-15 11:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
    2015-03-02 16:12 - 2011-03-15 11:02 - 00000000 ____D () C:\Program Files (x86)\CyberLink
    2015-03-02 16:03 - 2011-03-15 11:02 - 00000000 ____D () C:\ProgramData\CyberLink
    2015-03-02 15:59 - 2011-03-15 11:02 - 00000000 ____D () C:\ProgramData\Temp
    2015-03-02 15:52 - 2015-01-26 18:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\VirtualStore
    2015-03-02 14:44 - 2009-07-14 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-03-02 14:42 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
    2015-03-02 13:45 - 2009-07-14 17:45 - 00305424 _____ () C:\Windows\system32\FNTCACHE.DAT
    2015-03-02 13:43 - 2015-01-27 15:46 - 00000000 ___SD () C:\Windows\system32\CompatTel
    2015-03-02 13:43 - 2015-01-27 15:46 - 00000000 ____D () C:\Windows\system32\appraiser
    2015-03-02 12:11 - 2009-07-14 18:13 - 00789882 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-03-02 12:02 - 2011-03-15 11:44 - 00001274 _____ () C:\Windows\system32\ServiceFilter.ini
    2015-03-02 10:59 - 2011-03-15 11:23 - 00000824 _____ () C:\Windows\system32\Drivers\etc\tmvsthfud.bin
    2015-03-02 10:59 - 2011-03-15 11:23 - 00000824 _____ () C:\Windows\system32\Drivers\etc\tmvsthfss.bin
    2015-03-02 10:51 - 2015-01-26 18:34 - 00000000 ____D () C:\Users\DEMNS
    2015-03-02 10:14 - 2011-03-15 11:42 - 00000000 ____D () C:\ProgramData\P4G
    2015-03-02 10:14 - 2009-07-14 20:45 - 00000000 ___RD () C:\Users\Public\Recorded TV
    2015-03-02 10:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\registration
    2015-02-20 22:54 - 2011-03-15 11:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
    2015-02-20 22:50 - 2011-03-15 11:16 - 00001460 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
    2015-02-20 22:48 - 2011-03-15 11:15 - 00002488 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
    2015-02-20 22:47 - 2011-03-15 11:15 - 00000000 ____D () C:\Program Files (x86)\Windows Live
    2015-02-20 22:46 - 2011-03-15 11:14 - 00000000 ____D () C:\Program Files\Windows Live
    2015-02-20 22:45 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
    2015-02-20 22:05 - 2015-01-26 21:42 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Google
    2015-02-20 19:02 - 2015-01-26 21:41 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2015-02-17 10:23 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\LiveKernelReports
    2015-02-17 10:09 - 2015-01-27 01:19 - 00763182 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
    2015-02-13 09:52 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\tracing
    2015-02-13 09:31 - 2015-01-27 15:12 - 00000000 ____D () C:\Windows\system32\MRT
    2015-02-13 09:18 - 2015-01-27 15:11 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-02-11 12:08 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\rescache
    2015-02-11 08:20 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\System
    2015-02-10 23:57 - 2014-09-10 08:19 - 00000000 ____D () C:\Users\DEMNS\Documents\Odin_3.10.0
    2015-02-10 22:45 - 2009-07-29 19:52 - 00000000 ____D () C:\Windows\Panther
    2015-02-10 14:14 - 2009-07-14 20:47 - 00000000 ____D () C:\Program Files\Windows Journal
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\zh-HK
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\tr-TR
    2015-02-10 14:13 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Defender
    2015-02-10 14:13 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
    2015-02-10 14:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
    2015-02-10 14:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\Dism
    2015-02-08 08:34 - 2011-03-15 11:10 - 00000000 ____D () C:\ProgramData\Nuance
    2015-02-07 02:01 - 2015-01-26 18:34 - 00069616 _____ () C:\Users\DEMNS\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-02-07 00:55 - 2011-03-15 11:10 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2015-02-07 00:55 - 2011-03-15 11:10 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\winrm
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\WCN
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\servicing
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\winrm
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\WCN
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\slmgr
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\com
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\sysprep
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\Setup
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\oobe
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\MUI
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\migwiz
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\com
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\IME
    2015-02-06 10:56 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\Globalization

    ==================== Files in the root of some directories =======

    2015-03-02 18:09 - 2015-03-02 18:09 - 0000046 _____ () C:\Users\DEMNS\AppData\Roaming\Camdata.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamLayout.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamShapes.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0004535 _____ () C:\Users\DEMNS\AppData\Roaming\CamStudio.cfg
    2015-03-02 15:49 - 2015-03-02 15:49 - 0052216 _____ () C:\Users\DEMNS\AppData\Roaming\Debut.dmp
    2015-03-02 18:00 - 2015-03-02 18:00 - 0000096 _____ () C:\Users\DEMNS\AppData\Roaming\version2.xml
    2015-03-02 11:32 - 2015-03-02 11:32 - 0000036 _____ () C:\Users\DEMNS\AppData\Local\housecall.guid.cache
    2011-03-15 11:21 - 2010-07-07 12:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
    2011-03-15 11:07 - 2011-03-15 11:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
    2011-03-15 11:09 - 2011-03-15 11:09 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
    2011-03-15 11:06 - 2011-03-15 11:07 - 0000106 _____ () C:\ProgramData\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}.log
    2011-03-15 11:08 - 2011-03-15 11:09 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
    2011-03-15 11:04 - 2011-03-15 11:06 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
    2011-03-15 11:08 - 2011-03-15 11:08 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log
    2011-03-15 11:02 - 2011-03-15 11:03 - 0000115 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

  8. #8
    Member
    Join Date
    Feb 2010
    Posts
    126
    Points
    1

    Default

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-03-2015
    Ran by DEMNS (administrator) on DEMNS-PC on 03-03-2015 14:42:13
    Running from C:\Users\DEMNS\Desktop
    Loaded Profiles: DEMNS (Available profiles: DEMNS & Guest)
    Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (AMD) C:\Windows\System32\atiesrxx.exe
    (AMD) C:\Windows\System32\atieclxx.exe
    (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
    (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
    (ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
    (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    (ASUS) C:\Program Files\P4G\BatteryLife.exe
    (ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
    () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
    () C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
    (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
    (Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
    (Visicom Media Inc.) C:\Program Files (x86)\ManyCam\ManyCam.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    (SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
    () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
    (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    (ASUS) C:\Windows\AsScrPro.exe
    () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    () C:\Program Files (x86)\ASUS\VirtualCamera\VirCamWS.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-16] ()
    HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2010-04-28] ()
    HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
    HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [729272 2014-01-28] (Nico Mak Computing)
    HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246304 2014-07-21] (Trend Micro Inc.)
    HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1266224 2014-07-21] (Trend Micro Inc.)
    HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-07] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2010-06-25] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
    HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-04] (Nuance Communications, Inc.)
    HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-05-04] (ASUS)
    HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-20] (ASUS)
    HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440 2010-07-03] ()
    HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-13] (Piriform Ltd)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7780120 2015-01-23] (SUPERAntiSpyware)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [9797416 2015-02-25] (Visicom Media Inc.)
    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-01-29] (Microsoft Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
    ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
    ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk
    ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (Acresso Software Inc.)
    ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll ()
    ShellIconOverlayIdentifiers: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll ()
    ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
    ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
    ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll ()
    ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll ()

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
    BHO: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
    BHO: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner64.dll (Google Inc.)
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
    BHO: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
    BHO-x32: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
    BHO-x32: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner.dll (Google Inc.)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
    BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
    BHO-x32: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
    BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    Toolbar: HKLM - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
    Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
    Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
    Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
    Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
    Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
    Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
    Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
    Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
    Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

    FireFox:
    ========
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
    FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension
    FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension [2015-03-02]
    FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension
    FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension
    FF Extension: Trend Micro Osprey Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension [2015-03-02]
    FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
    FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2015-03-02]

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.google.co.nz/
    CHR StartupUrls: Default -> "https://www.google.co.nz/"
    CHR Profile: C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Slides) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-26]
    CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2015-01-27]
    CHR Extension: (Google Docs) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-26]
    CHR Extension: (Google Drive) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-26]
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-01-26]
    CHR Extension: (YouTube) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-26]
    CHR Extension: (Adblock Plus) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-27]
    CHR Extension: (Google Search) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-26]
    CHR Extension: (Google Sheets) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-26]
    CHR Extension: (AdBlock) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-27]
    CHR Extension: (Google Wallet) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-26]
    CHR Extension: (Adblock Pro) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-01-27]
    CHR Extension: (Gmail) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-26]
    CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf] - https://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
    R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [File not signed]
    R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed]
    R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1187376 2014-07-21] (Trend Micro Inc.)
    R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] () [File not signed]
    R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
    R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed]
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
    R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-03-02] (REALiX(tm))
    R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
    R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
    S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-02] (Malwarebytes Corporation)
    R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2015-03-02] (Synaptics Incorporated)
    R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] ()
    S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [206080 2014-10-13] (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.))
    R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [121944 2014-07-14] (Trend Micro Inc.)
    R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [305832 2014-07-14] (Trend Micro Inc.)
    R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2014-07-10] (Trend Micro Inc.)
    R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [106296 2014-07-10] (Trend Micro Inc.)
    R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [93664 2014-07-14] (Trend Micro Inc.)
    R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [407864 2014-07-10] (Trend Micro Inc.)
    R2 tmusa; C:\Windows\System32\DRIVERS\tmusa.sys [106296 2014-07-01] (Trend Micro Inc.)
    R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-08-07] ()
    S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
    S3 clwvd6; system32\DRIVERS\clwvd6.sys [X]
    U2 TMAgent; No ImagePath

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-03 14:42 - 2015-03-03 14:43 - 00023423 _____ () C:\Users\DEMNS\Desktop\FRST.txt
    2015-03-03 14:42 - 2015-03-03 14:42 - 00000000 ____D () C:\FRST
    2015-03-03 14:35 - 2015-03-03 14:36 - 02092544 _____ (Farbar) C:\Users\DEMNS\Desktop\FRST64.exe
    2015-03-02 18:12 - 2015-03-02 18:12 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\ManyCam
    2015-03-02 18:11 - 2015-03-02 18:11 - 00000993 _____ () C:\Users\Public\Desktop\ManyCam.lnk
    2015-03-02 18:11 - 2015-03-02 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:11 - 00000000 ____D () C:\Program Files (x86)\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:09 - 00004535 _____ () C:\Users\DEMNS\AppData\Roaming\CamStudio.cfg
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamShapes.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamLayout.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000046 _____ () C:\Users\DEMNS\AppData\Roaming\Camdata.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000000 ____D () C:\ProgramData\ManyCam
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000096 _____ () C:\Users\DEMNS\AppData\Roaming\version2.xml
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000000 ____D () C:\Program Files\CamStudio 2.7
    2015-03-02 17:18 - 2015-03-02 17:18 - 00003064 _____ () C:\Windows\System32\Tasks\ASUSControlDeck
    2015-03-02 16:43 - 2015-03-02 16:43 - 00000000 ____D () C:\Users\Guest\AppData\Local\ASUS
    2015-03-02 16:42 - 2015-03-02 16:42 - 00001415 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-02 16:42 - 2015-03-02 16:42 - 00001371 _____ () C:\Users\Guest\Desktop\Trend Micro Internet Security.lnk
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\Documents\Bluetooth Exchange Folder
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Adobe
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Local\Broadcom
    2015-03-02 16:41 - 2015-03-02 16:42 - 00069616 _____ () C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-03-02 16:41 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest
    2015-03-02 16:41 - 2015-03-02 16:41 - 00000020 ___SH () C:\Users\Guest\ntuser.ini
    2015-03-02 16:41 - 2015-03-02 16:41 - 00000000 ____D () C:\Users\Guest\AppData\Local\VirtualStore
    2015-03-02 16:41 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-03-02 16:41 - 2011-03-15 11:36 - 00000000 ____D () C:\Users\Guest\AppData\Local\SRS Labs
    2015-03-02 16:41 - 2011-03-15 11:09 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
    2015-03-02 16:41 - 2011-03-15 11:08 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
    2015-03-02 16:41 - 2009-07-14 17:54 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-03-02 16:41 - 2009-07-14 17:49 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
    2015-03-02 16:25 - 2015-03-02 16:25 - 00001022 _____ () C:\Users\Public\Desktop\LifeFrame.lnk
    2015-03-02 16:23 - 2015-03-02 16:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\CyberLink
    2015-03-02 15:58 - 2015-03-02 16:12 - 00000000 ____D () C:\ProgramData\SUPPORTDIR
    2015-03-02 15:58 - 2015-03-02 15:58 - 00000000 ____D () C:\ProgramData\install_clap
    2015-03-02 15:56 - 2015-03-02 15:58 - 341448496 _____ () C:\Users\DEMNS\Documents\YouCam_6.0.3805.0_Trial_Trial_YUC141222-04.exe
    2015-03-02 15:52 - 2015-03-02 15:53 - 00000000 ____D () C:\Users\DEMNS\Documents\EatCam Webcam Recorder
    2015-03-02 15:49 - 2015-03-02 16:12 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
    2015-03-02 15:49 - 2015-03-02 16:12 - 00000000 ____D () C:\Program Files (x86)\NCH Software
    2015-03-02 15:49 - 2015-03-02 15:49 - 00052216 _____ () C:\Users\DEMNS\AppData\Roaming\Debut.dmp
    2015-03-02 15:49 - 2015-03-02 15:49 - 00000000 ____D () C:\ProgramData\NCH Software
    2015-03-02 15:44 - 2015-03-02 15:44 - 00002138 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\webcamAMP - Webcam Amplifier.lnk
    2015-03-02 15:44 - 2015-03-02 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webcamAMP
    2015-03-02 15:44 - 2015-03-02 15:44 - 00000000 ____D () C:\Program Files (x86)\KV Designs
    2015-03-02 14:41 - 2015-03-02 14:41 - 00145424 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\JME.sys
    2015-03-02 14:39 - 2015-03-02 14:39 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
    2015-03-02 14:39 - 2015-03-02 14:39 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
    2015-03-02 14:39 - 2015-03-02 14:39 - 00176880 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
    2015-03-02 14:36 - 2015-03-02 14:36 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
    2015-03-02 14:36 - 2015-03-02 14:36 - 00034544 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
    2015-03-02 14:36 - 2015-03-02 14:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
    2015-03-02 14:36 - 2015-03-02 14:36 - 00000000 ____D () C:\Program Files\Synaptics
    2015-03-02 14:26 - 2015-03-02 14:26 - 00000000 ____D () C:\ProgramData\ProductData
    2015-03-02 14:25 - 2015-03-03 06:24 - 00002874 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (DEMNS)
    2015-03-02 14:25 - 2015-03-02 14:26 - 00002146 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
    2015-03-02 14:25 - 2015-03-02 14:25 - 00026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
    2015-03-02 14:25 - 2015-03-02 14:25 - 00003232 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
    2015-03-02 14:25 - 2015-03-02 14:25 - 00003176 _____ () C:\Windows\System32\Tasks\Driver Booster Update
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\IObit
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\ProgramData\IObit
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\Program Files (x86)\IObit
    2015-03-02 14:14 - 2013-10-02 15:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
    2015-03-02 14:14 - 2013-10-02 15:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
    2015-03-02 14:14 - 2013-10-02 15:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
    2015-03-02 14:14 - 2013-10-02 14:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
    2015-03-02 14:14 - 2013-10-02 14:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
    2015-03-02 14:14 - 2013-10-02 14:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2015-03-02 14:14 - 2013-10-02 14:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
    2015-03-02 14:14 - 2013-10-02 13:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
    2015-03-02 14:14 - 2013-10-02 13:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
    2015-03-02 14:14 - 2013-10-02 13:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
    2015-03-02 14:14 - 2013-10-02 13:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
    2015-03-02 14:14 - 2013-10-02 13:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
    2015-03-02 14:14 - 2013-10-02 12:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2015-03-02 14:14 - 2013-10-02 12:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2015-03-02 14:14 - 2013-10-02 12:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
    2015-03-02 14:14 - 2013-10-02 11:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
    2015-03-02 14:14 - 2013-10-02 09:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-03-02 14:14 - 2013-10-02 09:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2015-03-02 14:13 - 2012-08-24 03:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2015-03-02 14:13 - 2012-08-24 03:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
    2015-03-02 14:13 - 2012-08-24 02:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
    2015-03-02 14:13 - 2012-08-24 00:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
    2015-03-02 14:13 - 2012-08-23 23:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
    2015-03-02 14:13 - 2012-08-23 22:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2015-03-02 11:56 - 2015-03-02 11:56 - 00001266 _____ () C:\Users\DEMNS\Desktop\Revo Uninstaller.lnk
    2015-03-02 11:56 - 2015-03-02 11:56 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
    2015-03-02 11:43 - 2015-03-02 11:43 - 00000000 ___HD () C:\TMRescueDisk
    2015-03-02 11:40 - 2015-03-02 11:40 - 00001443 _____ () C:\Users\DEMNS\Desktop\Trend Micro Internet Security.lnk
    2015-03-02 11:40 - 2015-03-02 11:40 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
    2015-03-02 11:39 - 2014-07-14 20:39 - 00305832 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
    2015-03-02 11:39 - 2014-07-14 20:39 - 00121944 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmactmon.sys
    2015-03-02 11:39 - 2014-07-14 20:39 - 00093664 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmevtmgr.sys
    2015-03-02 11:39 - 2014-07-10 05:03 - 00407864 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmnciesc.sys
    2015-03-02 11:39 - 2014-07-10 05:02 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmeevw.sys
    2015-03-02 11:39 - 2014-07-10 05:02 - 00050976 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\TMEBC64.sys
    2015-03-02 11:39 - 2014-07-01 00:06 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmusa.sys
    2015-03-02 11:38 - 2015-03-02 11:40 - 00003326 _____ () C:\Windows\System32\Tasks\Trend Micro Inspect of Platinum
    2015-03-02 11:35 - 2015-03-02 11:35 - 00000059 _____ () C:\Windows\system32\SupportTool.exe.bat
    2015-03-02 11:33 - 2015-03-02 11:34 - 00000000 ____D () C:\Program Files\Trend Micro
    2015-03-02 11:32 - 2015-03-02 11:32 - 00000036 _____ () C:\Users\DEMNS\AppData\Local\housecall.guid.cache
    2015-03-02 11:31 - 2015-03-03 06:22 - 00002424 _____ () C:\Windows\setupact.log
    2015-03-02 11:31 - 2015-03-02 11:31 - 00000000 _____ () C:\Windows\setuperr.log
    2015-03-02 11:30 - 2015-03-02 11:30 - 00005644 _____ () C:\Windows\PFRO.log
    2015-03-02 11:03 - 2015-03-02 11:03 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Trend Micro
    2015-03-02 10:54 - 2015-01-09 12:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
    2015-03-02 10:54 - 2015-01-09 12:43 - 00419936 _____ () C:\Windows\system32\locale.nls
    2015-02-25 21:27 - 2015-02-25 21:27 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Conexant
    2015-02-25 21:27 - 2015-02-25 21:27 - 00000000 ____D () C:\ProgramData\Conexant
    2015-02-24 16:15 - 2015-02-27 14:46 - 00000000 ____D () C:\Users\DEMNS\Desktop\MemCard
    2015-02-24 15:33 - 2015-02-24 15:38 - 00000000 ____D () C:\Users\DEMNS\Desktop\X-Sounds
    2015-02-20 22:55 - 2015-02-20 22:55 - 00000000 ____D () C:\Windows\en
    2015-02-20 22:53 - 2015-02-20 22:53 - 00001307 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
    2015-02-20 22:53 - 2015-02-20 22:53 - 00000000 ____D () C:\Windows\fr
    2015-02-20 22:53 - 2015-02-20 22:53 - 00000000 ____D () C:\Windows\es
    2015-02-20 22:52 - 2015-02-20 22:52 - 00001376 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
    2015-02-20 22:46 - 2014-03-31 21:06 - 00058056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
    2015-02-20 22:44 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002178 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00000000 ___RD () C:\Users\DEMNS\OneDrive
    2015-02-20 22:40 - 2015-02-20 22:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
    2015-02-20 22:39 - 2015-02-20 22:39 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
    2015-02-20 22:35 - 2015-02-20 22:35 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Windows Live
    2015-02-20 21:57 - 2015-03-02 10:14 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\vlc
    2015-02-20 21:56 - 2015-02-20 21:57 - 00001283 _____ () C:\Users\DEMNS\Desktop\VLC.lnk
    2015-02-20 21:55 - 2015-03-02 10:14 - 00000000 ____D () C:\Users\DEMNS\Documents\vlc-2.1.5
    2015-02-19 15:22 - 2015-02-20 22:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Spotify
    2015-02-19 15:22 - 2015-02-20 22:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Spotify
    2015-02-19 15:22 - 2015-02-19 15:22 - 00001809 _____ () C:\Users\DEMNS\Desktop\Spotify.lnk
    2015-02-19 15:22 - 2015-02-19 15:22 - 00001795 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\WinRAR
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
    2015-02-18 09:22 - 2015-02-18 09:23 - 00000000 ____D () C:\Program Files (x86)\WinRAR
    2015-02-17 11:36 - 2015-03-02 16:13 - 00000000 ____D () C:\Program Files (x86)\Driver Checker
    2015-02-17 11:35 - 2015-02-17 11:36 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\GetRightToGo
    2015-02-17 10:34 - 2015-02-17 10:34 - 00000000 __SHD () C:\found.001
    2015-02-17 10:02 - 2015-02-17 10:17 - 00000000 ____D () C:\ProgramData\Package Cache
    2015-02-17 10:01 - 2015-02-17 10:22 - 00000000 ____D () C:\Program Files\AMD
    2015-02-17 09:57 - 2015-02-17 09:57 - 00000000 ____D () C:\AMD
    2015-02-17 09:45 - 2015-02-17 09:45 - 00000000 ____D () C:\ProgramData\SlimWare Utilities, Inc
    2015-02-17 09:26 - 2015-02-17 10:37 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
    2015-02-17 09:26 - 2015-02-17 09:26 - 00013920 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
    2015-02-17 09:26 - 2015-02-17 09:26 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
    2015-02-17 09:26 - 2015-02-17 09:26 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
    2015-02-17 09:26 - 2015-02-17 09:26 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\SlimWare Utilities Inc
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Thunderbird
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Mozilla
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Thunderbird
    2015-02-16 20:23 - 2015-03-02 10:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
    2015-02-16 20:23 - 2015-03-02 10:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2015-02-16 20:23 - 2015-02-16 20:23 - 00002100 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
    2015-02-16 20:23 - 2015-02-16 20:23 - 00002088 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
    2015-02-16 20:23 - 2015-02-16 20:23 - 00000000 ____D () C:\ProgramData\Mozilla
    2015-02-16 18:42 - 2015-03-02 10:13 - 00000000 __RHD () C:\MSOCache
    2015-02-16 18:12 - 2015-02-16 18:12 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Macromedia
    2015-02-13 21:33 - 2015-02-13 21:33 - 00000000 ____D () C:\ProgramData\Sun
    2015-02-13 21:33 - 2015-02-13 21:32 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
    2015-02-13 21:32 - 2015-02-13 21:32 - 00000000 ____D () C:\ProgramData\Oracle
    2015-02-13 21:32 - 2015-02-13 21:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2015-02-13 21:31 - 2015-02-13 21:31 - 00000000 ____D () C:\Program Files (x86)\Java
    2015-02-11 09:28 - 2015-01-09 16:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
    2015-02-11 08:13 - 2013-05-10 18:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2015-02-11 08:13 - 2013-05-10 18:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2015-02-11 08:13 - 2013-05-10 17:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2015-02-11 08:13 - 2013-05-10 17:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2015-02-10 21:59 - 2015-02-10 21:59 - 00000000 ____D () C:\Users\Public\Documents\CrashDump
    2015-02-10 21:12 - 2015-02-10 21:12 - 00000000 ____D () C:\Program Files (x86)\MarkAny
    2015-02-10 21:07 - 2013-10-30 12:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieUserList
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieSiteList
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieBrowserModeList
    2015-02-10 20:50 - 2015-02-10 20:50 - 00000000 ____D () C:\Windows\system32\appmgmt
    2015-02-10 20:23 - 2015-02-10 20:23 - 00002285 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
    2015-02-10 20:23 - 2015-02-10 20:23 - 00002279 _____ () C:\Users\Public\Desktop\WinZip.lnk
    2015-02-10 20:23 - 2015-02-10 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
    2015-02-10 20:22 - 2015-02-10 20:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\WinZip
    2015-02-10 20:22 - 2015-02-10 20:23 - 00000000 ____D () C:\ProgramData\WinZip
    2015-02-10 20:21 - 2015-02-10 20:22 - 00000000 ____D () C:\Program Files\WinZip
    2015-02-10 20:21 - 2015-02-10 20:21 - 00000000 ____D () C:\Program Files\File Association Helper
    2015-02-10 19:58 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\Documents\SelfMV
    2015-02-10 18:18 - 2015-02-10 18:18 - 00002064 _____ () C:\Users\Public\Desktop\PC Image Editor.lnk
    2015-02-10 18:18 - 2015-02-10 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Image Editor
    2015-02-10 18:18 - 2015-02-10 18:18 - 00000000 ____D () C:\Program Files (x86)\Program4Pc
    2015-02-10 18:09 - 2015-02-10 18:09 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Autodesk
    2015-02-10 18:09 - 2015-02-10 18:09 - 00000000 ____D () C:\ProgramData\Autodesk
    2015-02-10 18:07 - 2015-02-10 18:07 - 00000000 ____D () C:\Autodesk
    2015-02-10 14:34 - 2015-02-25 21:17 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
    2015-02-10 14:33 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Samsung
    2015-02-10 14:33 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Samsung
    2015-02-10 14:33 - 2015-02-10 14:33 - 00000000 ____D () C:\Users\DEMNS\Documents\samsung
    2015-02-10 14:33 - 2014-11-11 16:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-02-10 14:33 - 2014-11-11 15:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2015-02-10 13:50 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
    2015-02-10 13:29 - 2015-02-10 13:29 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-02-10 13:29 - 2015-02-10 13:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-02-10 13:29 - 2015-02-10 13:29 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-02-10 13:29 - 2015-02-10 13:29 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-02-10 13:29 - 2015-02-10 13:29 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
    2015-02-10 13:29 - 2015-02-10 13:29 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2015-02-10 13:29 - 2015-02-10 13:29 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-02-10 13:29 - 2015-02-10 13:29 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2015-02-10 13:29 - 2015-02-10 13:29 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2015-02-10 13:29 - 2015-02-10 13:29 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-02-10 13:17 - 2015-02-10 13:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Zeon
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Nuance
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\FLEXnet
    2015-02-07 20:17 - 2014-10-13 18:57 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
    2015-02-07 20:17 - 2014-10-13 18:57 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll
    2015-02-07 20:17 - 2014-10-13 18:57 - 00206080 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudobex.sys
    2015-02-07 20:17 - 2014-10-13 18:57 - 00206080 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudmdm.sys
    2015-02-07 20:17 - 2014-10-13 18:57 - 00110336 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudbus.sys
    2015-02-07 20:13 - 2015-02-07 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
    2015-02-07 20:13 - 2015-02-07 20:13 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec
    2015-02-07 20:11 - 2015-02-10 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
    2015-02-07 20:11 - 2013-12-30 10:53 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
    2015-02-07 20:11 - 2013-10-30 12:13 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
    2015-02-07 20:08 - 2015-02-10 21:05 - 00000000 ____D () C:\ProgramData\Samsung
    2015-02-07 20:08 - 2015-02-10 21:04 - 00000000 ____D () C:\Program Files (x86)\Samsung
    2015-02-07 19:54 - 2015-02-10 21:03 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Downloaded Installations
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
    2015-02-07 12:14 - 2012-07-07 09:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
    2015-02-07 12:14 - 2011-04-28 16:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
    2015-02-07 12:14 - 2011-03-11 19:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
    2015-02-07 12:14 - 2011-03-11 19:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
    2015-02-07 12:14 - 2011-03-11 19:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
    2015-02-07 12:14 - 2011-03-11 18:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
    2015-02-07 12:14 - 2011-03-11 18:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
    2015-02-07 12:14 - 2011-03-11 17:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
    2015-02-07 01:32 - 2014-10-18 15:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-02-07 01:32 - 2014-10-18 14:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2015-02-07 01:32 - 2014-07-07 15:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-02-07 01:32 - 2014-07-07 15:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2015-02-07 01:32 - 2014-07-07 15:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2015-02-07 01:32 - 2014-07-07 15:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2015-02-07 01:32 - 2014-07-07 14:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2015-02-07 01:32 - 2014-07-07 14:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2015-02-07 01:32 - 2014-07-07 14:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2015-02-07 01:32 - 2014-07-07 14:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
    2015-02-07 01:19 - 2012-07-26 16:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
    2015-02-07 01:19 - 2012-07-26 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
    2015-02-07 01:19 - 2012-07-26 15:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
    2015-02-07 01:19 - 2012-06-03 03:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
    2015-02-07 01:00 - 2012-03-01 19:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2015-02-07 01:00 - 2012-03-01 19:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2015-02-07 01:00 - 2012-03-01 18:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
    2015-02-04 11:52 - 2015-03-02 17:06 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-02-04 11:52 - 2015-02-04 11:52 - 00001104 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2015-02-04 11:52 - 2015-02-04 11:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2015-02-04 11:51 - 2015-02-04 11:52 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
    2015-02-04 11:51 - 2015-02-04 11:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
    2015-02-04 11:51 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
    2015-02-04 11:51 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
    2015-02-04 11:51 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
    2015-02-02 19:53 - 2015-03-03 14:31 - 01645782 _____ () C:\Windows\WindowsUpdate.log
    2015-02-01 20:46 - 2014-12-12 18:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-02-01 20:46 - 2014-12-12 18:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-02-01 20:46 - 2014-12-12 18:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-02-01 20:46 - 2014-12-12 18:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-02-01 20:46 - 2014-12-12 18:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-02-01 20:46 - 2014-12-12 18:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-02-01 20:46 - 2014-12-12 18:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-02-01 20:46 - 2013-08-29 15:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-02-01 20:46 - 2013-08-29 15:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2015-02-01 20:46 - 2013-08-29 15:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
    2015-02-01 20:46 - 2013-08-29 14:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2015-02-01 20:46 - 2013-08-29 14:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
    2015-02-01 20:46 - 2013-08-29 14:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
    2015-02-01 20:46 - 2013-08-02 15:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-02-01 20:46 - 2013-08-02 15:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-02-01 20:46 - 2013-08-02 14:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-02-01 20:46 - 2013-08-02 13:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-02-01 20:46 - 2012-03-17 20:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
    2015-02-01 20:44 - 2011-08-17 18:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2015-02-01 20:44 - 2011-08-17 18:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2015-02-01 20:44 - 2011-08-17 17:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
    2015-02-01 20:44 - 2011-08-17 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
    2015-02-01 20:43 - 2014-09-04 18:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
    2015-02-01 20:43 - 2014-09-04 18:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
    2015-02-01 20:42 - 2014-10-03 15:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
    2015-02-01 20:42 - 2014-10-03 15:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
    2015-02-01 20:42 - 2014-10-03 14:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
    2015-02-01 20:42 - 2014-10-03 14:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
    2015-02-01 20:42 - 2014-10-03 14:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
    2015-02-01 20:42 - 2014-10-03 14:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
    2015-02-01 20:42 - 2014-10-03 14:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
    2015-02-01 20:42 - 2014-02-04 15:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
    2015-02-01 20:42 - 2014-02-04 15:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
    2015-02-01 20:42 - 2014-02-04 15:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
    2015-02-01 20:42 - 2014-02-04 15:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
    2015-02-01 20:42 - 2014-02-04 15:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
    2015-02-01 20:42 - 2012-11-23 16:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
    2015-02-01 20:42 - 2012-02-17 19:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
    2015-02-01 20:42 - 2012-02-17 18:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
    2015-02-01 20:42 - 2012-02-17 17:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
    2015-02-01 20:41 - 2014-11-08 16:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2015-02-01 20:41 - 2014-11-08 15:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2015-02-01 20:37 - 2015-02-01 20:37 - 00000000 ____D () C:\Users\DEMNS\Documents\ASUS
    2015-02-01 20:36 - 2015-02-01 20:36 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\ASUS
    2015-02-01 20:36 - 2015-02-01 20:36 - 00000000 ____D () C:\ProgramData\ASUS
    2015-02-01 20:12 - 2013-05-10 18:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
    2015-02-01 20:12 - 2013-05-10 16:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
    2015-02-01 20:11 - 2014-10-25 14:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2015-02-01 20:11 - 2014-10-25 14:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
    2015-02-01 20:11 - 2014-07-17 15:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
    2015-02-01 20:11 - 2014-07-17 15:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
    2015-02-01 20:11 - 2014-07-17 15:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
    2015-02-01 20:11 - 2014-07-17 14:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
    2015-02-01 20:11 - 2014-07-17 14:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2015-02-01 20:11 - 2014-07-17 14:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2015-02-01 20:11 - 2012-04-26 18:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
    2015-02-01 20:11 - 2012-04-26 18:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
    2015-02-01 20:04 - 2013-09-08 15:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2015-02-01 20:04 - 2013-09-08 15:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
    2015-02-01 20:04 - 2013-07-20 23:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-02-01 20:04 - 2013-07-20 23:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2015-02-01 20:04 - 2012-12-08 00:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
    2015-02-01 20:04 - 2012-12-08 00:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
    2015-02-01 20:04 - 2012-12-08 00:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
    2015-02-01 20:04 - 2012-12-08 00:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
    2015-02-01 20:04 - 2012-12-08 00:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
    2015-02-01 20:04 - 2012-12-08 00:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
    2015-02-01 20:04 - 2012-12-07 23:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
    2015-02-01 20:03 - 2012-12-08 02:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
    2015-02-01 20:03 - 2012-12-08 02:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
    2015-02-01 20:03 - 2012-12-08 01:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
    2015-02-01 20:03 - 2012-12-08 01:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
    2015-02-01 20:03 - 2012-12-08 00:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
    2015-02-01 20:03 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
    2015-02-01 20:03 - 2012-12-08 00:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
    2015-02-01 20:03 - 2012-12-08 00:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
    2015-02-01 20:03 - 2012-12-07 23:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
    2015-02-01 20:02 - 2014-06-25 15:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-02-01 20:02 - 2014-06-25 14:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2015-02-01 20:02 - 2014-03-04 22:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2015-02-01 20:02 - 2014-03-04 22:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2015-02-01 20:02 - 2014-03-04 22:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2015-02-01 20:02 - 2014-03-04 22:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2015-02-01 20:02 - 2014-03-04 22:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2015-02-01 20:02 - 2014-03-04 21:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2015-02-01 20:02 - 2014-03-04 21:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2015-02-01 20:02 - 2013-08-02 15:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 15:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2015-02-01 20:02 - 2013-08-02 13:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 13:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 13:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2015-02-01 20:02 - 2013-08-02 13:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2015-02-01 20:02 - 2013-07-26 15:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2015-02-01 20:02 - 2013-07-26 14:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
    2015-02-01 20:01 - 2014-11-11 16:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-02-01 20:01 - 2014-11-11 16:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
    2015-02-01 20:01 - 2014-11-11 15:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-02-01 20:01 - 2014-11-11 15:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
    2015-02-01 20:01 - 2014-10-14 15:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-02-01 20:01 - 2014-10-14 15:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-02-01 20:01 - 2014-10-14 14:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-02-01 20:01 - 2014-10-14 14:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-02-01 20:01 - 2014-09-19 22:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-02-01 20:01 - 2014-09-19 22:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-02-01 20:00 - 2014-10-30 15:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
    2015-02-01 20:00 - 2014-10-30 14:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
    2015-02-01 20:00 - 2014-10-03 15:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2015-02-01 20:00 - 2014-10-03 15:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2015-02-01 20:00 - 2014-10-03 14:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
    2015-02-01 20:00 - 2014-10-03 14:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2015-02-01 20:00 - 2014-10-03 14:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2015-02-01 20:00 - 2014-06-16 15:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2015-02-01 20:00 - 2014-04-12 15:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-02-01 20:00 - 2014-04-12 15:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-02-01 20:00 - 2014-04-12 15:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-02-01 20:00 - 2014-04-12 15:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-02-01 20:00 - 2014-04-12 15:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-02-01 20:00 - 2013-07-05 01:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2015-02-01 20:00 - 2013-04-26 18:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2015-02-01 20:00 - 2013-04-26 17:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
    2015-02-01 20:00 - 2013-04-10 19:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
    2015-02-01 20:00 - 2011-02-04 00:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
    2015-02-01 19:59 - 2014-10-10 13:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-02-01 19:59 - 2012-09-26 11:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
    2015-02-01 19:59 - 2012-09-26 11:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
    2015-02-01 19:59 - 2012-07-05 11:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2015-02-01 19:59 - 2012-07-05 11:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
    2015-02-01 19:59 - 2012-07-05 11:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
    2015-02-01 19:59 - 2012-07-05 10:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
    2015-02-01 19:59 - 2012-07-05 10:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
    2015-02-01 19:59 - 2011-05-25 00:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
    2015-02-01 19:59 - 2011-05-24 23:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
    2015-02-01 19:59 - 2011-05-24 23:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
    2015-02-01 19:59 - 2011-05-24 23:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
    2015-02-01 19:59 - 2011-05-24 23:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
    2015-02-01 19:59 - 2011-02-18 23:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
    2015-02-01 19:59 - 2011-02-06 06:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2015-02-01 19:59 - 2011-02-06 06:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
    2015-02-01 19:59 - 2011-02-06 06:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
    2015-02-01 19:59 - 2011-02-06 06:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
    2015-02-01 19:59 - 2011-02-06 06:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2015-02-01 19:59 - 2011-02-06 06:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2015-02-01 19:59 - 2011-02-06 06:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2015-02-01 19:58 - 2011-02-18 18:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
    2015-02-01 17:06 - 2013-01-24 19:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
    2015-02-01 17:06 - 2011-02-13 00:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
    2015-02-01 17:05 - 2011-12-16 21:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2015-02-01 17:05 - 2011-12-16 20:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
    2015-02-01 17:05 - 2011-05-03 18:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
    2015-02-01 17:05 - 2011-05-03 17:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
    2015-02-01 17:04 - 2014-01-24 15:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2015-02-01 13:37 - 2015-03-03 14:23 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
    2015-02-01 13:37 - 2015-02-15 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2015-02-01 13:37 - 2015-02-01 13:37 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware.lnk
    2015-02-01 13:37 - 2015-02-01 13:37 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\SUPERAntiSpyware.com
    2015-02-01 13:37 - 2015-02-01 13:37 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
    2015-02-01 01:42 - 2014-07-01 11:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
    2015-02-01 01:42 - 2014-07-01 11:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
    2015-02-01 01:42 - 2014-06-06 19:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
    2015-02-01 01:42 - 2014-06-06 19:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2015-02-01 01:42 - 2014-03-10 10:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
    2015-02-01 01:42 - 2014-03-10 10:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
    2015-02-01 01:42 - 2014-03-10 10:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
    2015-02-01 01:42 - 2014-03-10 10:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-03 14:00 - 2011-03-15 11:10 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-03-03 06:31 - 2009-07-14 17:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-03-03 06:31 - 2009-07-14 17:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-03-03 06:23 - 2011-03-15 11:44 - 00002182 _____ () C:\Windows\system32\AutoRunFilter.ini
    2015-03-03 06:23 - 2011-03-15 11:42 - 00000000 ____D () C:\Program Files\P4G
    2015-03-03 06:23 - 2011-03-15 11:10 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-03-03 06:23 - 2009-07-14 18:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
    2015-03-03 06:22 - 2009-07-14 18:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-03-02 22:05 - 2015-01-27 01:19 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\SoftGrid Client
    2015-03-02 17:18 - 2011-03-15 11:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
    2015-03-02 17:18 - 2011-03-15 11:20 - 00000000 ____D () C:\Program Files (x86)\ASUS
    2015-03-02 16:42 - 2011-03-15 11:22 - 00000000 ____D () C:\ProgramData\Trend Micro
    2015-03-02 16:25 - 2011-03-15 11:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
    2015-03-02 16:15 - 2015-01-26 18:35 - 00001415 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-02 16:12 - 2011-03-15 11:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
    2015-03-02 16:12 - 2011-03-15 11:02 - 00000000 ____D () C:\Program Files (x86)\CyberLink
    2015-03-02 16:03 - 2011-03-15 11:02 - 00000000 ____D () C:\ProgramData\CyberLink
    2015-03-02 15:59 - 2011-03-15 11:02 - 00000000 ____D () C:\ProgramData\Temp
    2015-03-02 15:52 - 2015-01-26 18:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\VirtualStore
    2015-03-02 14:44 - 2009-07-14 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-03-02 14:42 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
    2015-03-02 13:45 - 2009-07-14 17:45 - 00305424 _____ () C:\Windows\system32\FNTCACHE.DAT
    2015-03-02 13:43 - 2015-01-27 15:46 - 00000000 ___SD () C:\Windows\system32\CompatTel
    2015-03-02 13:43 - 2015-01-27 15:46 - 00000000 ____D () C:\Windows\system32\appraiser
    2015-03-02 12:11 - 2009-07-14 18:13 - 00789882 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-03-02 12:02 - 2011-03-15 11:44 - 00001274 _____ () C:\Windows\system32\ServiceFilter.ini
    2015-03-02 10:59 - 2011-03-15 11:23 - 00000824 _____ () C:\Windows\system32\Drivers\etc\tmvsthfud.bin
    2015-03-02 10:59 - 2011-03-15 11:23 - 00000824 _____ () C:\Windows\system32\Drivers\etc\tmvsthfss.bin
    2015-03-02 10:51 - 2015-01-26 18:34 - 00000000 ____D () C:\Users\DEMNS
    2015-03-02 10:14 - 2011-03-15 11:42 - 00000000 ____D () C:\ProgramData\P4G
    2015-03-02 10:14 - 2009-07-14 20:45 - 00000000 ___RD () C:\Users\Public\Recorded TV
    2015-03-02 10:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\registration
    2015-02-20 22:54 - 2011-03-15 11:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
    2015-02-20 22:50 - 2011-03-15 11:16 - 00001460 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
    2015-02-20 22:48 - 2011-03-15 11:15 - 00002488 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
    2015-02-20 22:47 - 2011-03-15 11:15 - 00000000 ____D () C:\Program Files (x86)\Windows Live
    2015-02-20 22:46 - 2011-03-15 11:14 - 00000000 ____D () C:\Program Files\Windows Live
    2015-02-20 22:45 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
    2015-02-20 22:05 - 2015-01-26 21:42 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Google
    2015-02-20 19:02 - 2015-01-26 21:41 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2015-02-17 10:23 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\LiveKernelReports
    2015-02-17 10:09 - 2015-01-27 01:19 - 00763182 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
    2015-02-13 09:52 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\tracing
    2015-02-13 09:31 - 2015-01-27 15:12 - 00000000 ____D () C:\Windows\system32\MRT
    2015-02-13 09:18 - 2015-01-27 15:11 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-02-11 12:08 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\rescache
    2015-02-11 08:20 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\System
    2015-02-10 23:57 - 2014-09-10 08:19 - 00000000 ____D () C:\Users\DEMNS\Documents\Odin_3.10.0
    2015-02-10 22:45 - 2009-07-29 19:52 - 00000000 ____D () C:\Windows\Panther
    2015-02-10 14:14 - 2009-07-14 20:47 - 00000000 ____D () C:\Program Files\Windows Journal
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\zh-HK
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\tr-TR
    2015-02-10 14:13 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Defender
    2015-02-10 14:13 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
    2015-02-10 14:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
    2015-02-10 14:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\Dism
    2015-02-08 08:34 - 2011-03-15 11:10 - 00000000 ____D () C:\ProgramData\Nuance
    2015-02-07 02:01 - 2015-01-26 18:34 - 00069616 _____ () C:\Users\DEMNS\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-02-07 00:55 - 2011-03-15 11:10 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2015-02-07 00:55 - 2011-03-15 11:10 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\winrm
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\WCN
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
    2015-02-06 11:00 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
    2015-02-06 11:00 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
    2015-02-06 11:00 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\servicing
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\winrm
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\WCN
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\slmgr
    2015-02-06 10:59 - 2009-07-14 18:37 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\com
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\sysprep
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\Setup
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\oobe
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\MUI
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\migwiz
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\com
    2015-02-06 10:59 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\IME
    2015-02-06 10:56 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\Globalization

    ==================== Files in the root of some directories =======

    2015-03-02 18:09 - 2015-03-02 18:09 - 0000046 _____ () C:\Users\DEMNS\AppData\Roaming\Camdata.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamLayout.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamShapes.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0004535 _____ () C:\Users\DEMNS\AppData\Roaming\CamStudio.cfg
    2015-03-02 15:49 - 2015-03-02 15:49 - 0052216 _____ () C:\Users\DEMNS\AppData\Roaming\Debut.dmp
    2015-03-02 18:00 - 2015-03-02 18:00 - 0000096 _____ () C:\Users\DEMNS\AppData\Roaming\version2.xml
    2015-03-02 11:32 - 2015-03-02 11:32 - 0000036 _____ () C:\Users\DEMNS\AppData\Local\housecall.guid.cache
    2011-03-15 11:21 - 2010-07-07 12:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
    2011-03-15 11:07 - 2011-03-15 11:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
    2011-03-15 11:09 - 2011-03-15 11:09 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
    2011-03-15 11:06 - 2011-03-15 11:07 - 0000106 _____ () C:\ProgramData\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}.log
    2011-03-15 11:08 - 2011-03-15 11:09 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
    2011-03-15 11:04 - 2011-03-15 11:06 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
    2011-03-15 11:08 - 2011-03-15 11:08 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log
    2011-03-15 11:02 - 2011-03-15 11:03 - 0000115 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

  9. #9
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,173
    Points
    1307

    Default

    There's a bit of adware, and I'm missing the additions.txt log


    Run frst again and just post the additions.txt, actually that log maybe already on the desktop.


    • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
    • Under Optional Scan place a checkmark in the box for Addition.txt to ensure it creates that 2nd log.
    • Press Scan button.
    • Please post both logs in your next reply.



    Next

    Please download AdwCleaner by Xplode onto your Desktop.
    • Close all open programs and internet browsers.
    • Double click on AdwCleaner.exe to run the tool.
    • Click the Scan button and wait for the process to complete.
    • Click the Report button and the report will open in Notepad.
    • NOTE: If you get an error message, it means that nothing was found. Exit from AdwCleaner.
    • Click on the Clean button follow the prompts.[/*]
    • A log file will automatically open after the scan has finished and the PC has rebooted.
    • Please post the content of that log file with your next answer.
    • You can find the log file at C:\AdwCleaner

  10. The Following User Says Thank You to zep516 For This Useful Post:


  11. #10
    Member
    Join Date
    Feb 2010
    Posts
    126
    Points
    1

    Default

    FRST

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-03-2015 03
    Ran by DEMNS (administrator) on DEMNS-PC on 09-03-2015 10:34:36
    Running from C:\Users\DEMNS\Downloads
    Loaded Profiles: DEMNS (Available profiles: DEMNS & Guest)
    Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (AMD) C:\Windows\System32\atiesrxx.exe
    (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    (AMD) C:\Windows\System32\atieclxx.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
    (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
    (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
    (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
    (ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
    (ASUS) C:\Program Files\P4G\BatteryLife.exe
    () C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
    (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
    (Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
    (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
    (Visicom Media Inc.) C:\Program Files (x86)\ManyCam\ManyCam.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
    (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
    (ASUS) C:\Windows\AsScrPro.exe
    () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
    (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
    () C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
    (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Reader\bin\PDFReader.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-16] ()
    HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2010-04-28] ()
    HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
    HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [729272 2014-01-28] (Nico Mak Computing)
    HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246304 2014-07-21] (Trend Micro Inc.)
    HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1266224 2014-07-21] (Trend Micro Inc.)
    HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-07] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2010-06-25] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
    HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
    HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-04] (Nuance Communications, Inc.)
    HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-05-04] (ASUS)
    HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-20] (ASUS)
    HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440 2010-07-03] ()
    HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-13] (Piriform Ltd)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7780120 2015-01-23] (SUPERAntiSpyware)
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [9797416 2015-02-25] (Visicom Media Inc.)
    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-01-29] (Microsoft Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
    ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
    ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk
    ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (Acresso Software Inc.)
    ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll ()
    ShellIconOverlayIdentifiers: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll ()
    ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
    ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
    ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll ()
    ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll ()

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-4141175638-1873252099-901921829-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-4141175638-1873252099-901921829-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
    BHO: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2014-07-21] (Trend Micro Inc.)
    BHO: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner64.dll [2011-03-15] (Google Inc.)
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
    BHO: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll [2014-07-01] (Trend Micro Inc.)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-03-15] (Google Inc.)
    BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-03-15] (Google Inc.)
    BHO: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll [2014-07-12] (Trend Micro Inc.)
    BHO-x32: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2014-07-21] (Trend Micro Inc.)
    BHO-x32: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner.dll [2011-03-15] (Google Inc.)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
    BHO-x32: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll [2014-07-01] (Trend Micro Inc.)
    BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-03-15] (Google Inc.)
    BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-03-15] (Google Inc.)
    BHO-x32: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll [2014-07-12] (Trend Micro Inc.)
    BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-03-15] (Google Inc.)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-03-15] (Google Inc.)
    Toolbar: HKLM - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2014-07-21] (Trend Micro Inc.)
    Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-03-15] (Google Inc.)
    Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2014-07-21] (Trend Micro Inc.)
    Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll [2014-07-12] (Trend Micro Inc.)
    Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll [2014-07-12] (Trend Micro Inc.)
    Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll [2014-07-01] (Trend Micro Inc.)
    Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll [2014-07-01] (Trend Micro Inc.)
    Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2014-07-21] (Trend Micro Inc.)
    Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2014-07-21] (Trend Micro Inc.)
    Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll [2014-07-21] (Trend Micro Inc.)
    Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll [2014-07-21] (Trend Micro Inc.)
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

    FireFox:
    ========
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
    FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-24] (Zeon Corporation)
    FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension
    FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension [2015-03-02]
    FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension
    FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension
    FF Extension: Trend Micro Osprey Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension [2015-03-02]
    FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
    FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2015-03-02]

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.google.co.nz/
    CHR StartupUrls: Default -> "https://www.google.co.nz/"
    CHR Profile: C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Slides) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-26]
    CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2015-01-27]
    CHR Extension: (Google Docs) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-26]
    CHR Extension: (Google Drive) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-26]
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-01-26]
    CHR Extension: (YouTube) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-26]
    CHR Extension: (Adblock Plus) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-27]
    CHR Extension: (Google Search) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-26]
    CHR Extension: (Google Sheets) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-26]
    CHR Extension: (AdBlock) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-27]
    CHR Extension: (Google Wallet) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-26]
    CHR Extension: (Adblock Pro) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-01-27]
    CHR Extension: (Gmail) - C:\Users\DEMNS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-26]
    CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf] - https://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
    R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [File not signed]
    R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed]
    R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1187376 2014-07-21] (Trend Micro Inc.)
    R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] () [File not signed]
    R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
    R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed]
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
    R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-03-02] (REALiX(tm))
    R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
    R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
    R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2015-03-02] (Synaptics Incorporated)
    R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] ()
    S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [206080 2014-10-13] (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.))
    R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [121944 2014-07-14] (Trend Micro Inc.)
    R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [305832 2014-07-14] (Trend Micro Inc.)
    R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2014-07-10] (Trend Micro Inc.)
    R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [106296 2014-07-10] (Trend Micro Inc.)
    R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [93664 2014-07-14] (Trend Micro Inc.)
    R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [407864 2014-07-10] (Trend Micro Inc.)
    R2 tmusa; C:\Windows\System32\DRIVERS\tmusa.sys [106296 2014-07-01] (Trend Micro Inc.)
    R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-08-07] ()
    S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
    S3 clwvd6; system32\DRIVERS\clwvd6.sys [X]
    U2 TMAgent; No ImagePath

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-09 10:34 - 2015-03-09 10:35 - 00024935 _____ () C:\Users\DEMNS\Downloads\FRST.txt
    2015-03-09 10:34 - 2015-03-09 10:34 - 02095104 _____ (Farbar) C:\Users\DEMNS\Downloads\FRST64.exe
    2015-03-04 21:08 - 2015-03-04 21:09 - 02126848 _____ () C:\Users\DEMNS\Desktop\adwcleaner_4.111.exe
    2015-03-04 15:34 - 2015-03-09 08:35 - 00001188 _____ () C:\Windows\setupact.log
    2015-03-04 15:34 - 2015-03-04 15:34 - 00000000 _____ () C:\Windows\setuperr.log
    2015-03-04 12:03 - 2015-03-04 15:42 - 00000000 ____D () C:\Users\DEMNS\Desktop\ISO
    2015-03-04 10:46 - 2015-03-04 10:46 - 00204997 _____ () C:\Users\DEMNS\Desktop\Property Inspection Due.zip
    2015-03-04 06:51 - 2014-12-12 06:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
    2015-03-03 14:45 - 2015-03-03 14:45 - 00236080 _____ (Trend Micro Inc.) C:\Windows\RegBootClean64.exe
    2015-03-03 14:42 - 2015-03-09 10:34 - 00000000 ____D () C:\FRST
    2015-03-03 06:40 - 2014-09-05 15:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-03-03 06:40 - 2014-09-05 14:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2015-03-03 06:40 - 2014-08-29 15:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2015-03-03 06:40 - 2014-05-08 22:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
    2015-03-02 18:12 - 2015-03-02 18:12 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\ManyCam
    2015-03-02 18:11 - 2015-03-02 18:11 - 00000993 _____ () C:\Users\Public\Desktop\ManyCam.lnk
    2015-03-02 18:11 - 2015-03-02 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:11 - 00000000 ____D () C:\Program Files (x86)\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:09 - 00004535 _____ () C:\Users\DEMNS\AppData\Roaming\CamStudio.cfg
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamShapes.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamLayout.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000046 _____ () C:\Users\DEMNS\AppData\Roaming\Camdata.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\ManyCam
    2015-03-02 18:09 - 2015-03-02 18:09 - 00000000 ____D () C:\ProgramData\ManyCam
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000096 _____ () C:\Users\DEMNS\AppData\Roaming\version2.xml
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
    2015-03-02 18:00 - 2015-03-02 18:00 - 00000000 ____D () C:\Program Files\CamStudio 2.7
    2015-03-02 17:18 - 2015-03-02 17:18 - 00003064 _____ () C:\Windows\System32\Tasks\ASUSControlDeck
    2015-03-02 16:43 - 2015-03-02 16:43 - 00000000 ____D () C:\Users\Guest\AppData\Local\ASUS
    2015-03-02 16:42 - 2015-03-02 16:42 - 00001415 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-02 16:42 - 2015-03-02 16:42 - 00001371 _____ () C:\Users\Guest\Desktop\Trend Micro Internet Security.lnk
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\Documents\Bluetooth Exchange Folder
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Adobe
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
    2015-03-02 16:42 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest\AppData\Local\Broadcom
    2015-03-02 16:41 - 2015-03-02 16:42 - 00069616 _____ () C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-03-02 16:41 - 2015-03-02 16:42 - 00000000 ____D () C:\Users\Guest
    2015-03-02 16:41 - 2015-03-02 16:41 - 00000020 ___SH () C:\Users\Guest\ntuser.ini
    2015-03-02 16:41 - 2015-03-02 16:41 - 00000000 ____D () C:\Users\Guest\AppData\Local\VirtualStore
    2015-03-02 16:41 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-03-02 16:41 - 2011-03-15 11:36 - 00000000 ____D () C:\Users\Guest\AppData\Local\SRS Labs
    2015-03-02 16:41 - 2011-03-15 11:09 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
    2015-03-02 16:41 - 2011-03-15 11:08 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
    2015-03-02 16:41 - 2009-07-14 17:54 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-03-02 16:41 - 2009-07-14 17:49 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
    2015-03-02 16:25 - 2015-03-02 16:25 - 00001022 _____ () C:\Users\Public\Desktop\LifeFrame.lnk
    2015-03-02 16:23 - 2015-03-02 16:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\CyberLink
    2015-03-02 15:58 - 2015-03-02 16:12 - 00000000 ____D () C:\ProgramData\SUPPORTDIR
    2015-03-02 15:58 - 2015-03-02 15:58 - 00000000 ____D () C:\ProgramData\install_clap
    2015-03-02 15:56 - 2015-03-02 15:58 - 341448496 _____ () C:\Users\DEMNS\Documents\YouCam_6.0.3805.0_Trial_Trial_YUC141222-04.exe
    2015-03-02 15:52 - 2015-03-02 15:53 - 00000000 ____D () C:\Users\DEMNS\Documents\EatCam Webcam Recorder
    2015-03-02 15:49 - 2015-03-02 16:12 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
    2015-03-02 15:49 - 2015-03-02 16:12 - 00000000 ____D () C:\Program Files (x86)\NCH Software
    2015-03-02 15:49 - 2015-03-02 15:49 - 00052216 _____ () C:\Users\DEMNS\AppData\Roaming\Debut.dmp
    2015-03-02 15:49 - 2015-03-02 15:49 - 00000000 ____D () C:\ProgramData\NCH Software
    2015-03-02 15:44 - 2015-03-02 15:44 - 00002138 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\webcamAMP - Webcam Amplifier.lnk
    2015-03-02 15:44 - 2015-03-02 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webcamAMP
    2015-03-02 15:44 - 2015-03-02 15:44 - 00000000 ____D () C:\Program Files (x86)\KV Designs
    2015-03-02 14:41 - 2015-03-02 14:41 - 00145424 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\JME.sys
    2015-03-02 14:39 - 2015-03-02 14:39 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
    2015-03-02 14:39 - 2015-03-02 14:39 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
    2015-03-02 14:39 - 2015-03-02 14:39 - 00176880 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
    2015-03-02 14:36 - 2015-03-02 14:36 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
    2015-03-02 14:36 - 2015-03-02 14:36 - 00034544 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
    2015-03-02 14:36 - 2015-03-02 14:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
    2015-03-02 14:36 - 2015-03-02 14:36 - 00000000 ____D () C:\Program Files\Synaptics
    2015-03-02 14:26 - 2015-03-02 14:26 - 00000000 ____D () C:\ProgramData\ProductData
    2015-03-02 14:25 - 2015-03-09 08:37 - 00002874 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (DEMNS)
    2015-03-02 14:25 - 2015-03-02 14:26 - 00002146 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
    2015-03-02 14:25 - 2015-03-02 14:25 - 00026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
    2015-03-02 14:25 - 2015-03-02 14:25 - 00003232 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
    2015-03-02 14:25 - 2015-03-02 14:25 - 00003176 _____ () C:\Windows\System32\Tasks\Driver Booster Update
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\IObit
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\ProgramData\IObit
    2015-03-02 14:25 - 2015-03-02 14:25 - 00000000 ____D () C:\Program Files (x86)\IObit
    2015-03-02 14:14 - 2013-10-02 15:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
    2015-03-02 14:14 - 2013-10-02 15:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
    2015-03-02 14:14 - 2013-10-02 15:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
    2015-03-02 14:14 - 2013-10-02 14:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
    2015-03-02 14:14 - 2013-10-02 14:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
    2015-03-02 14:14 - 2013-10-02 14:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2015-03-02 14:14 - 2013-10-02 14:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
    2015-03-02 14:14 - 2013-10-02 13:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
    2015-03-02 14:14 - 2013-10-02 13:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
    2015-03-02 14:14 - 2013-10-02 13:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
    2015-03-02 14:14 - 2013-10-02 13:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
    2015-03-02 14:14 - 2013-10-02 12:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2015-03-02 14:14 - 2013-10-02 12:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
    2015-03-02 14:14 - 2013-10-02 12:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
    2015-03-02 14:14 - 2013-10-02 11:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
    2015-03-02 14:13 - 2012-08-24 03:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2015-03-02 14:13 - 2012-08-24 03:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
    2015-03-02 14:13 - 2012-08-24 00:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
    2015-03-02 14:13 - 2012-08-23 23:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
    2015-03-02 11:56 - 2015-03-02 11:56 - 00001266 _____ () C:\Users\DEMNS\Desktop\Revo Uninstaller.lnk
    2015-03-02 11:56 - 2015-03-02 11:56 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
    2015-03-02 11:43 - 2015-03-02 11:43 - 00000000 ___HD () C:\TMRescueDisk
    2015-03-02 11:40 - 2015-03-02 11:40 - 00001443 _____ () C:\Users\DEMNS\Desktop\Trend Micro Internet Security.lnk
    2015-03-02 11:40 - 2015-03-02 11:40 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
    2015-03-02 11:39 - 2014-07-14 20:39 - 00305832 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
    2015-03-02 11:39 - 2014-07-14 20:39 - 00121944 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmactmon.sys
    2015-03-02 11:39 - 2014-07-14 20:39 - 00093664 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmevtmgr.sys
    2015-03-02 11:39 - 2014-07-10 05:03 - 00407864 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmnciesc.sys
    2015-03-02 11:39 - 2014-07-10 05:02 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmeevw.sys
    2015-03-02 11:39 - 2014-07-10 05:02 - 00050976 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\TMEBC64.sys
    2015-03-02 11:39 - 2014-07-01 00:06 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmusa.sys
    2015-03-02 11:38 - 2015-03-02 11:40 - 00003326 _____ () C:\Windows\System32\Tasks\Trend Micro Inspect of Platinum
    2015-03-02 11:35 - 2015-03-02 11:35 - 00000059 _____ () C:\Windows\system32\SupportTool.exe.bat
    2015-03-02 11:33 - 2015-03-02 11:34 - 00000000 ____D () C:\Program Files\Trend Micro
    2015-03-02 11:32 - 2015-03-02 11:32 - 00000036 _____ () C:\Users\DEMNS\AppData\Local\housecall.guid.cache
    2015-03-02 11:03 - 2015-03-02 11:03 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Trend Micro
    2015-03-02 10:54 - 2015-01-09 12:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
    2015-03-02 10:54 - 2015-01-09 12:43 - 00419936 _____ () C:\Windows\system32\locale.nls
    2015-02-25 21:27 - 2015-02-25 21:27 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Conexant
    2015-02-25 21:27 - 2015-02-25 21:27 - 00000000 ____D () C:\ProgramData\Conexant
    2015-02-24 16:15 - 2015-02-27 14:46 - 00000000 ____D () C:\Users\DEMNS\Desktop\MemCard
    2015-02-24 15:33 - 2015-02-24 15:38 - 00000000 ____D () C:\Users\DEMNS\Desktop\X-Sounds
    2015-02-20 22:55 - 2015-02-20 22:55 - 00000000 ____D () C:\Windows\en
    2015-02-20 22:53 - 2015-02-20 22:53 - 00001307 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
    2015-02-20 22:53 - 2015-02-20 22:53 - 00000000 ____D () C:\Windows\fr
    2015-02-20 22:53 - 2015-02-20 22:53 - 00000000 ____D () C:\Windows\es
    2015-02-20 22:52 - 2015-02-20 22:52 - 00001376 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
    2015-02-20 22:46 - 2014-03-31 21:06 - 00058056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys
    2015-02-20 22:44 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
    2015-02-20 22:44 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
    2015-02-20 22:44 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002178 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00002102 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
    2015-02-20 22:40 - 2015-02-20 22:40 - 00000000 ___RD () C:\Users\DEMNS\OneDrive
    2015-02-20 22:40 - 2015-02-20 22:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
    2015-02-20 22:39 - 2015-02-20 22:39 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
    2015-02-20 22:35 - 2015-02-20 22:35 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Windows Live
    2015-02-20 21:57 - 2015-03-02 10:14 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\vlc
    2015-02-20 21:56 - 2015-02-20 21:57 - 00001283 _____ () C:\Users\DEMNS\Desktop\VLC.lnk
    2015-02-20 21:55 - 2015-03-02 10:14 - 00000000 ____D () C:\Users\DEMNS\Documents\vlc-2.1.5
    2015-02-19 15:22 - 2015-02-20 22:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Spotify
    2015-02-19 15:22 - 2015-02-20 22:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Spotify
    2015-02-19 15:22 - 2015-02-19 15:22 - 00001809 _____ () C:\Users\DEMNS\Desktop\Spotify.lnk
    2015-02-19 15:22 - 2015-02-19 15:22 - 00001795 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\WinRAR
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
    2015-02-18 09:23 - 2015-02-18 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
    2015-02-18 09:22 - 2015-02-18 09:23 - 00000000 ____D () C:\Program Files (x86)\WinRAR
    2015-02-17 11:36 - 2015-03-02 16:13 - 00000000 ____D () C:\Program Files (x86)\Driver Checker
    2015-02-17 11:35 - 2015-02-17 11:36 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\GetRightToGo
    2015-02-17 10:34 - 2015-02-17 10:34 - 00000000 __SHD () C:\found.001
    2015-02-17 10:02 - 2015-02-17 10:17 - 00000000 ____D () C:\ProgramData\Package Cache
    2015-02-17 10:01 - 2015-02-17 10:22 - 00000000 ____D () C:\Program Files\AMD
    2015-02-17 09:57 - 2015-02-17 09:57 - 00000000 ____D () C:\AMD
    2015-02-17 09:45 - 2015-02-17 09:45 - 00000000 ____D () C:\ProgramData\SlimWare Utilities, Inc
    2015-02-17 09:26 - 2015-02-17 10:37 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
    2015-02-17 09:26 - 2015-02-17 09:26 - 00013920 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
    2015-02-17 09:26 - 2015-02-17 09:26 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
    2015-02-17 09:26 - 2015-02-17 09:26 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
    2015-02-17 09:26 - 2015-02-17 09:26 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\SlimWare Utilities Inc
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Thunderbird
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Mozilla
    2015-02-16 20:25 - 2015-02-16 20:25 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Thunderbird
    2015-02-16 20:23 - 2015-03-08 13:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
    2015-02-16 20:23 - 2015-03-02 10:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2015-02-16 20:23 - 2015-02-16 20:23 - 00002100 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
    2015-02-16 20:23 - 2015-02-16 20:23 - 00002088 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
    2015-02-16 20:23 - 2015-02-16 20:23 - 00000000 ____D () C:\ProgramData\Mozilla
    2015-02-16 18:42 - 2015-03-02 10:13 - 00000000 __RHD () C:\MSOCache
    2015-02-16 18:12 - 2015-02-16 18:12 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Macromedia
    2015-02-13 21:33 - 2015-02-13 21:33 - 00000000 ____D () C:\ProgramData\Sun
    2015-02-13 21:33 - 2015-02-13 21:32 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
    2015-02-13 21:32 - 2015-02-13 21:32 - 00000000 ____D () C:\ProgramData\Oracle
    2015-02-13 21:32 - 2015-02-13 21:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2015-02-13 21:31 - 2015-02-13 21:31 - 00000000 ____D () C:\Program Files (x86)\Java
    2015-02-11 09:28 - 2015-01-09 16:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
    2015-02-11 08:13 - 2013-05-10 18:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2015-02-11 08:13 - 2013-05-10 18:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2015-02-11 08:13 - 2013-05-10 17:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2015-02-11 08:13 - 2013-05-10 17:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2015-02-10 21:59 - 2015-02-10 21:59 - 00000000 ____D () C:\Users\Public\Documents\CrashDump
    2015-02-10 21:12 - 2015-02-10 21:12 - 00000000 ____D () C:\Program Files (x86)\MarkAny
    2015-02-10 21:07 - 2013-10-30 12:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieUserList
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieSiteList
    2015-02-10 20:51 - 2015-02-10 20:51 - 00000000 __SHD () C:\Users\DEMNS\AppData\Local\EmieBrowserModeList
    2015-02-10 20:50 - 2015-02-10 20:50 - 00000000 ____D () C:\Windows\system32\appmgmt
    2015-02-10 20:23 - 2015-02-10 20:23 - 00002285 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
    2015-02-10 20:23 - 2015-02-10 20:23 - 00002279 _____ () C:\Users\Public\Desktop\WinZip.lnk
    2015-02-10 20:23 - 2015-02-10 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
    2015-02-10 20:22 - 2015-02-10 20:24 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\WinZip
    2015-02-10 20:22 - 2015-02-10 20:23 - 00000000 ____D () C:\ProgramData\WinZip
    2015-02-10 20:21 - 2015-02-10 20:22 - 00000000 ____D () C:\Program Files\WinZip
    2015-02-10 20:21 - 2015-02-10 20:21 - 00000000 ____D () C:\Program Files\File Association Helper
    2015-02-10 19:58 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\Documents\SelfMV
    2015-02-10 18:18 - 2015-02-10 18:18 - 00002064 _____ () C:\Users\Public\Desktop\PC Image Editor.lnk
    2015-02-10 18:18 - 2015-02-10 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Image Editor
    2015-02-10 18:18 - 2015-02-10 18:18 - 00000000 ____D () C:\Program Files (x86)\Program4Pc
    2015-02-10 18:09 - 2015-02-10 18:09 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Autodesk
    2015-02-10 18:09 - 2015-02-10 18:09 - 00000000 ____D () C:\ProgramData\Autodesk
    2015-02-10 18:07 - 2015-02-10 18:07 - 00000000 ____D () C:\Autodesk
    2015-02-10 14:34 - 2015-02-25 21:17 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
    2015-02-10 14:33 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Samsung
    2015-02-10 14:33 - 2015-02-10 21:11 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Samsung
    2015-02-10 14:33 - 2015-02-10 14:33 - 00000000 ____D () C:\Users\DEMNS\Documents\samsung
    2015-02-10 14:33 - 2014-11-11 16:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-02-10 14:33 - 2014-11-11 15:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2015-02-10 13:50 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
    2015-02-10 13:29 - 2015-02-10 13:29 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-02-10 13:29 - 2015-02-10 13:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-02-10 13:29 - 2015-02-10 13:29 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-02-10 13:29 - 2015-02-10 13:29 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-02-10 13:29 - 2015-02-10 13:29 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
    2015-02-10 13:29 - 2015-02-10 13:29 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2015-02-10 13:29 - 2015-02-10 13:29 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-02-10 13:29 - 2015-02-10 13:29 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2015-02-10 13:29 - 2015-02-10 13:29 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2015-02-10 13:29 - 2015-02-10 13:29 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
    2015-02-10 13:29 - 2015-02-10 13:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-02-10 13:21 - 2015-02-10 13:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    2015-02-10 13:17 - 2015-02-10 13:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Zeon
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\Nuance
    2015-02-08 08:34 - 2015-02-08 08:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\FLEXnet
    2015-02-07 20:17 - 2014-10-13 18:57 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
    2015-02-07 20:17 - 2014-10-13 18:57 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll
    2015-02-07 20:17 - 2014-10-13 18:57 - 00206080 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudobex.sys
    2015-02-07 20:17 - 2014-10-13 18:57 - 00206080 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudmdm.sys
    2015-02-07 20:17 - 2014-10-13 18:57 - 00110336 _____ (DEVGURU Co., LTD.(데브구루 | 데브구루에 오*것을 환영합니다.)) C:\Windows\system32\Drivers\ssudbus.sys
    2015-02-07 20:13 - 2015-02-07 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
    2015-02-07 20:13 - 2015-02-07 20:13 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec
    2015-02-07 20:11 - 2015-02-10 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
    2015-02-07 20:11 - 2013-12-30 10:53 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
    2015-02-07 20:11 - 2013-10-30 12:13 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
    2015-02-07 20:08 - 2015-02-10 21:05 - 00000000 ____D () C:\ProgramData\Samsung
    2015-02-07 20:08 - 2015-02-10 21:04 - 00000000 ____D () C:\Program Files (x86)\Samsung
    2015-02-07 19:54 - 2015-02-10 21:03 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Downloaded Installations
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
    2015-02-07 12:14 - 2014-07-09 15:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
    2015-02-07 12:14 - 2014-07-09 14:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
    2015-02-07 12:14 - 2012-07-07 09:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
    2015-02-07 12:14 - 2011-04-28 16:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
    2015-02-07 12:14 - 2011-03-11 19:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
    2015-02-07 12:14 - 2011-03-11 19:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
    2015-02-07 12:14 - 2011-03-11 19:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
    2015-02-07 12:14 - 2011-03-11 19:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
    2015-02-07 12:14 - 2011-03-11 18:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
    2015-02-07 12:14 - 2011-03-11 18:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
    2015-02-07 12:14 - 2011-03-11 17:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
    2015-02-07 01:32 - 2014-10-18 15:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-02-07 01:32 - 2014-10-18 14:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2015-02-07 01:32 - 2014-07-07 15:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-02-07 01:32 - 2014-07-07 15:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2015-02-07 01:32 - 2014-07-07 15:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2015-02-07 01:32 - 2014-07-07 15:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2015-02-07 01:32 - 2014-07-07 14:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2015-02-07 01:32 - 2014-07-07 14:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2015-02-07 01:32 - 2014-07-07 14:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2015-02-07 01:32 - 2014-07-07 14:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
    2015-02-07 01:19 - 2012-07-26 16:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
    2015-02-07 01:19 - 2012-07-26 16:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
    2015-02-07 01:19 - 2012-07-26 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
    2015-02-07 01:19 - 2012-07-26 15:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
    2015-02-07 01:19 - 2012-06-03 03:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
    2015-02-07 01:00 - 2012-03-01 19:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2015-02-07 01:00 - 2012-03-01 19:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2015-02-07 01:00 - 2012-03-01 18:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-09 10:07 - 2015-02-02 19:53 - 02038201 _____ () C:\Windows\WindowsUpdate.log
    2015-03-09 10:00 - 2011-03-15 11:10 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-03-09 08:44 - 2009-07-14 17:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-03-09 08:44 - 2009-07-14 17:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-03-09 08:36 - 2015-02-01 13:37 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
    2015-03-09 08:36 - 2011-03-15 11:42 - 00000000 ____D () C:\Program Files\P4G
    2015-03-09 08:36 - 2011-03-15 11:10 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-03-09 08:35 - 2009-07-14 18:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-03-06 23:41 - 2015-01-27 01:19 - 00000000 ____D () C:\Users\DEMNS\AppData\Roaming\SoftGrid Client
    2015-03-05 11:01 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\rescache
    2015-03-04 21:07 - 2015-02-04 11:52 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-03-04 16:34 - 2009-07-14 18:13 - 00789886 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-03-03 14:45 - 2011-03-15 11:22 - 00000000 ____D () C:\ProgramData\Trend Micro
    2015-03-03 06:23 - 2011-03-15 11:44 - 00002182 _____ () C:\Windows\system32\AutoRunFilter.ini
    2015-03-03 06:23 - 2009-07-14 18:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
    2015-03-02 17:18 - 2011-03-15 11:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
    2015-03-02 17:18 - 2011-03-15 11:20 - 00000000 ____D () C:\Program Files (x86)\ASUS
    2015-03-02 16:25 - 2011-03-15 11:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
    2015-03-02 16:15 - 2015-01-26 18:35 - 00001415 _____ () C:\Users\DEMNS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-02 16:12 - 2011-03-15 11:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
    2015-03-02 16:12 - 2011-03-15 11:02 - 00000000 ____D () C:\Program Files (x86)\CyberLink
    2015-03-02 16:03 - 2011-03-15 11:02 - 00000000 ____D () C:\ProgramData\CyberLink
    2015-03-02 15:59 - 2011-03-15 11:02 - 00000000 ____D () C:\ProgramData\Temp
    2015-03-02 15:52 - 2015-01-26 18:34 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\VirtualStore
    2015-03-02 14:44 - 2009-07-14 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
    2015-03-02 14:42 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
    2015-03-02 13:45 - 2009-07-14 17:45 - 00305424 _____ () C:\Windows\system32\FNTCACHE.DAT
    2015-03-02 13:43 - 2015-01-27 15:46 - 00000000 ___SD () C:\Windows\system32\CompatTel
    2015-03-02 13:43 - 2015-01-27 15:46 - 00000000 ____D () C:\Windows\system32\appraiser
    2015-03-02 12:02 - 2011-03-15 11:44 - 00001274 _____ () C:\Windows\system32\ServiceFilter.ini
    2015-03-02 10:59 - 2011-03-15 11:23 - 00000824 _____ () C:\Windows\system32\Drivers\etc\tmvsthfud.bin
    2015-03-02 10:59 - 2011-03-15 11:23 - 00000824 _____ () C:\Windows\system32\Drivers\etc\tmvsthfss.bin
    2015-03-02 10:51 - 2015-01-26 18:34 - 00000000 ____D () C:\Users\DEMNS
    2015-03-02 10:14 - 2011-03-15 11:42 - 00000000 ____D () C:\ProgramData\P4G
    2015-03-02 10:14 - 2009-07-14 20:45 - 00000000 ___RD () C:\Users\Public\Recorded TV
    2015-03-02 10:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\registration
    2015-02-20 22:54 - 2011-03-15 11:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
    2015-02-20 22:50 - 2011-03-15 11:16 - 00001460 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
    2015-02-20 22:48 - 2011-03-15 11:15 - 00002488 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
    2015-02-20 22:47 - 2011-03-15 11:15 - 00000000 ____D () C:\Program Files (x86)\Windows Live
    2015-02-20 22:46 - 2011-03-15 11:14 - 00000000 ____D () C:\Program Files\Windows Live
    2015-02-20 22:45 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
    2015-02-20 22:05 - 2015-01-26 21:42 - 00000000 ____D () C:\Users\DEMNS\AppData\Local\Google
    2015-02-20 19:02 - 2015-01-26 21:41 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2015-02-17 10:23 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\LiveKernelReports
    2015-02-17 10:09 - 2015-01-27 01:19 - 00763182 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
    2015-02-15 00:00 - 2015-02-01 13:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2015-02-13 09:52 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\tracing
    2015-02-13 09:31 - 2015-01-27 15:12 - 00000000 ____D () C:\Windows\system32\MRT
    2015-02-13 09:18 - 2015-01-27 15:11 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-02-11 08:20 - 2009-07-14 16:20 - 00000000 ____D () C:\Program Files\Common Files\System
    2015-02-10 23:57 - 2014-09-10 08:19 - 00000000 ____D () C:\Users\DEMNS\Documents\Odin_3.10.0
    2015-02-10 22:45 - 2009-07-29 19:52 - 00000000 ____D () C:\Windows\Panther
    2015-02-10 14:14 - 2009-07-14 20:47 - 00000000 ____D () C:\Program Files\Windows Journal
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\zh-HK
    2015-02-10 14:14 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\tr-TR
    2015-02-10 14:13 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files\Windows Defender
    2015-02-10 14:13 - 2009-07-14 18:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
    2015-02-10 14:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
    2015-02-10 14:13 - 2009-07-14 16:20 - 00000000 ____D () C:\Windows\system32\Dism
    2015-02-08 08:34 - 2011-03-15 11:10 - 00000000 ____D () C:\ProgramData\Nuance
    2015-02-07 02:01 - 2015-01-26 18:34 - 00069616 _____ () C:\Users\DEMNS\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-02-07 00:55 - 2011-03-15 11:10 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2015-02-07 00:55 - 2011-03-15 11:10 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

    ==================== Files in the root of some directories =======

    2015-03-02 18:09 - 2015-03-02 18:09 - 0000046 _____ () C:\Users\DEMNS\AppData\Roaming\Camdata.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamLayout.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0000408 _____ () C:\Users\DEMNS\AppData\Roaming\CamShapes.ini
    2015-03-02 18:09 - 2015-03-02 18:09 - 0004535 _____ () C:\Users\DEMNS\AppData\Roaming\CamStudio.cfg
    2015-03-02 15:49 - 2015-03-02 15:49 - 0052216 _____ () C:\Users\DEMNS\AppData\Roaming\Debut.dmp
    2015-03-02 18:00 - 2015-03-02 18:00 - 0000096 _____ () C:\Users\DEMNS\AppData\Roaming\version2.xml
    2015-03-02 11:32 - 2015-03-02 11:32 - 0000036 _____ () C:\Users\DEMNS\AppData\Local\housecall.guid.cache
    2011-03-15 11:21 - 2010-07-07 12:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
    2011-03-15 11:07 - 2011-03-15 11:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
    2011-03-15 11:09 - 2011-03-15 11:09 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
    2011-03-15 11:06 - 2011-03-15 11:07 - 0000106 _____ () C:\ProgramData\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}.log
    2011-03-15 11:08 - 2011-03-15 11:09 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
    2011-03-15 11:04 - 2011-03-15 11:06 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
    2011-03-15 11:08 - 2011-03-15 11:08 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log
    2011-03-15 11:02 - 2011-03-15 11:03 - 0000115 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

Page 1 of 2 12 LastLast