Malware problem Pop-ups, Savifier, Display setting, superfish, etc.

V

Valk

New Member
Thread author
Nov 21, 2014
6
I recently got my laptop and now I am having problems with my browsers having popups and on my Steam client. I used zoek to get rid of some things but it didn't help with my popup problems I have been having on my chrome browser. I tried deleting cookies and resetting my browser countless time but to no avail.
Everytime I look at tutorials it tells me to uninstall the malware but I could not find them in my programs list to uninstall. Same when I was looking through my plug-ins and extensions.
Would really love some help on this problem?

Please and Thank you,
Herman
 

Attachments

  • Addition.txt
    27.6 KB · Views: 103
  • FRST.txt
    73.9 KB · Views: 71
argus

argus

Former MalwareTips Staff
Verified
Apr 24, 2014
3,395
Helllo,

Before we begin, please note the following:
  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.




Download
51a5f31352b88-icon_MBAR.png
Malwarebytes Anti-Rootkit to your desktop.
  • Double-click the icon to start the tool.
  • It will ask you where to extract it, then it will start.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Click in the introduction screen "next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder and paste the content of the following files in your next reply:
    • "mbar-log-{date} (xx-xx-xx).txt"
    • "system-log.txt"
 
argus

argus

Former MalwareTips Staff
Verified
Apr 24, 2014
3,395
FRST.gif
Fix with Farbar Recovery Scan Tool

icon_exclaim.gif
This fix was created for this user for use on that particular machine.
icon_exclaim.gif

icon_exclaim.gif
Running it on another one may cause damage and render the system unstable.
icon_exclaim.gif
Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on
    FRST.gif
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.
 

Attachments

  • Fixlist.txt
    1.1 KB · Views: 63
V

Valk

New Member
Thread author
Nov 21, 2014
6
I used the anti root kit but it found nothing to cleanup? Is that a bad thing? I have also run the fix list.
 

Attachments

  • system-log.txt
    52.9 KB · Views: 47
  • mbar-log-2014-11-21 (12-39-54).txt
    2 KB · Views: 44
  • Fixlog.txt
    4.1 KB · Views: 90
V

Valk

New Member
Thread author
Nov 21, 2014
6
Seems like nothing changed except my computer takes a little longer to turn on now and internet is slower, I'm and still getting popups but seems like adblocker finally starts to work a bit now. Still getting savifier and display settings popups and I keep finding superfish cookies
 
argus

argus

Former MalwareTips Staff
Verified
Apr 24, 2014
3,395
51a612a8b27e2-Zoek.png
Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on
    51a612a8b27e2-Zoek.png
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
  • Wait patiently until the main console will appear, it may take a minute or two.
  • In the main box please paste in the following script:
    Code: 
    createsrpoint;
filesrcm;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;
  • Make sure that Scan All Users option is checked.
  • Push Run Script and wait patiently. The scan may take a couple of minutes.
  • When the scan completes, a zoek-results logfile should open in notepad.
  • If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.
 
V

Valk

New Member
Thread author
Nov 21, 2014
6
Zoek.exe v5.0.0.0 Updated 21-11-2014
Tool run by Herman Chow on Sat 11/22/2014 at 14:21:59.80.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Herman Chow\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-11-21-111058.log 98003 bytes
C:\zoek-results2014-11-21-122757.log 66309 bytes

==== System Restore Info ======================

11/22/2014 2:22:36 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\HERMAN~1\AppData\Local\Temp ====
2014-11-22 03:04:06 4FDD5B0A7FBEF503A198E2F05CBB1665 27136 ----a-w- C:\Users\Herman Chow\AppData\Local\Temp\dufgmr4c.exe
2014-11-21 23:16:18 F1F13258BF350806223D337AD70AA1E3 480976 ----a-w- C:\Users\Herman Chow\AppData\Local\Temp\{47DE9732-D850-4628-BB8D-0A592F953D2F}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxsetup.exe
2014-11-21 23:16:15 A398C68FBFC2A57A2162892CE839E0ED 2245328 ----a-w- C:\Users\Herman Chow\AppData\Local\Temp\{47DE9732-D850-4628-BB8D-0A592F953D2F}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dsetup32.dll
2014-11-21 23:16:15 40DE6C7F8E5A7BE04B4207F60F5AB6D7 72400 ----a-w- C:\Users\Herman Chow\AppData\Local\Temp\{47DE9732-D850-4628-BB8D-0A592F953D2F}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\DSETUP.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-11-20 23:03:49 A042349B7208BF8BED858B1E9B48B06D 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-11-19 23:41:06 D494267BC169604FAC5E3679B9A97FED 444952 ----a-w- C:\Windows\SysWOW64\wrap_oal.dll
2014-11-19 23:41:06 235355A8DD26903E75D5E812ECF50E53 109080 ----a-w- C:\Windows\SysWOW64\OpenAL32.dll
2014-11-19 21:22:12 66F97677CC13F7B9E2408CC75750A389 208896 ----a-w- C:\Windows\SysWOW64\pku2u.dll
2014-11-19 21:22:12 4CD4C8D34213975444643A5F9594E363 806400 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2014-11-19 01:02:14 8A4CEBF34370D689E198E6673C1F2C40 74072 ----a-w- C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-11-19 01:02:14 81DFDDFB401D663BA7E6AD1C80364216 527192 ----a-w- C:\Windows\SysWOW64\XAudio2_7.dll
2014-11-19 01:02:14 4FD7BCB9D8AF6A165E9BA0C2EB702E7C 239960 ----a-w- C:\Windows\SysWOW64\xactengine3_7.dll
2014-11-19 01:02:13 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-11-19 01:02:12 83EBA442F07AAB8D6375D2EEC945C46C 1868128 ----a-w- C:\Windows\SysWOW64\d3dcsx_43.dll
2014-11-19 01:02:11 8E0BB968FF41D80E5F2C747C04DB79AE 248672 ----a-w- C:\Windows\SysWOW64\d3dx11_43.dll
2014-11-19 01:02:11 20C835843FCEC4DEDFCD7BFFA3B91641 470880 ----a-w- C:\Windows\SysWOW64\d3dx10_43.dll
2014-11-19 01:02:10 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Windows\SysWOW64\D3DX9_43.dll
2014-11-19 01:02:09 E4CE2AF32F501A7F7DDDD908704A0EE6 74072 ----a-w- C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-11-19 01:02:09 4976243BD70FAE3D1D24E49739AB2710 528216 ----a-w- C:\Windows\SysWOW64\XAudio2_6.dll
2014-11-19 01:02:08 F81C4678A55FFEE585AC75825FAF5582 238936 ----a-w- C:\Windows\SysWOW64\xactengine3_6.dll
2014-11-19 01:02:08 C811E70C8804CFFF719038250A43B464 22360 ----a-w- C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-11-19 01:02:07 8B01FB723F3B30AB3DEBDDBF97CFE577 515416 ----a-w- C:\Windows\SysWOW64\XAudio2_5.dll
2014-11-19 01:02:06 DB3C93E87452B8DAB4F58ED1FD2B1998 238936 ----a-w- C:\Windows\SysWOW64\xactengine3_5.dll
2014-11-19 01:02:05 B33B21DB610116262D906305CE65C354 1974616 ----a-w- C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-11-19 01:02:03 D09AC80A4B5312239852836C84DF3392 235344 ----a-w- C:\Windows\SysWOW64\d3dx11_42.dll
2014-11-19 01:02:03 B337306DFB508A1BCEF1974BFBB8D924 5501792 ----a-w- C:\Windows\SysWOW64\d3dcsx_42.dll
2014-11-19 01:02:02 501AC862517C5445742BEE8A2B88414E 453456 ----a-w- C:\Windows\SysWOW64\d3dx10_42.dll
2014-11-19 01:02:00 C6A44FC3CF2F5801561804272217B14D 1892184 ----a-w- C:\Windows\SysWOW64\D3DX9_42.dll
2014-11-19 01:01:59 781E8B5B6FDB3C9B4E4A4A9FB019960D 1846632 ----a-w- C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-11-19 01:01:59 1AA571774936717EE776DBED51E9EDF4 453456 ----a-w- C:\Windows\SysWOW64\d3dx10_41.dll
2014-11-19 01:01:57 3FA06CF5079B84155D18B05C08F7131B 4178264 ----a-w- C:\Windows\SysWOW64\D3DX9_41.dll
2014-11-19 01:01:56 E684C5FA18ADF9EA14737757413BF727 517448 ----a-w- C:\Windows\SysWOW64\XAudio2_4.dll
2014-11-19 01:01:56 30686ECE80545E06D78D156EB9F7D463 69464 ----a-w- C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-11-19 01:01:55 E763798CAD2A90B6AB61854F50CD47DD 22360 ----a-w- C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-11-19 01:01:55 686F8D1B4926D48227A06ACD4D41CD1E 235352 ----a-w- C:\Windows\SysWOW64\xactengine3_4.dll
2014-11-19 01:01:54 91B4AAD4412BB223B466F3DFB43E86DA 452440 ----a-w- C:\Windows\SysWOW64\d3dx10_40.dll
2014-11-19 01:01:54 3384134EEB8F223178C2EB8323003EC0 2036576 ----a-w- C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-11-19 01:01:52 EEA5E428CE63804F9B12D21C97B5968F 4379984 ----a-w- C:\Windows\SysWOW64\D3DX9_40.dll
2014-11-19 01:01:51 295E47A75F278580F9441041EAAEA3D2 70992 ----a-w- C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-11-19 01:01:50 47ED15DC87AE334C13C4DACD1BE2CCED 514384 ----a-w- C:\Windows\SysWOW64\XAudio2_3.dll
2014-11-19 01:01:49 8BA296419AF3417D1E9806B83166E472 235856 ----a-w- C:\Windows\SysWOW64\xactengine3_3.dll
2014-11-19 01:01:49 350FEFE18B86BD4D9AB2A96D00215A49 23376 ----a-w- C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-11-19 01:01:48 D95EAABF5D277EF91D9CA70151209E56 68616 ----a-w- C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-11-19 01:01:48 50F4A0D5E6A0BAFEFA78F353533B8E06 509448 ----a-w- C:\Windows\SysWOW64\XAudio2_2.dll
2014-11-19 01:01:47 F3C6BE26949CAADB11DBF0086082FAC9 238088 ----a-w- C:\Windows\SysWOW64\xactengine3_2.dll
2014-11-19 01:01:46 E6C2F1D8B667DDC04CB55B9F0159EF97 467984 ----a-w- C:\Windows\SysWOW64\d3dx10_39.dll
2014-11-19 01:01:46 C4F1972497FE2CEB7D900938C97FCF91 1493528 ----a-w- C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-11-19 01:01:44 8CB3DEFB8887C4F0846DB1FC1304D6D2 3851784 ----a-w- C:\Windows\SysWOW64\D3DX9_39.dll
2014-11-19 01:01:42 E34FF0115B1EE3B4E03D22AE9840EE03 507400 ----a-w- C:\Windows\SysWOW64\XAudio2_1.dll
2014-11-19 01:01:42 DD165760F1B95200A3DA2D9DFDB84234 65032 ----a-w- C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-11-19 01:01:42 2E0E25252E1D41752876E9FE12ADE175 238088 ----a-w- C:\Windows\SysWOW64\xactengine3_1.dll
2014-11-19 01:01:41 E3832514BD21236067B7227F6165EF95 25608 ----a-w- C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-11-19 01:01:40 A2650B27472C21CDD817EEEDE65648E1 467984 ----a-w- C:\Windows\SysWOW64\d3dx10_38.dll
2014-11-19 01:01:40 103CBFC5591008AD33046E20E8E1EEBE 1491992 ----a-w- C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-11-19 01:01:38 8F3EB548AC4ED90252394F60C77E3196 3850760 ----a-w- C:\Windows\SysWOW64\D3DX9_38.dll
2014-11-19 01:01:37 418CDC57E55EE79C3F86C13A19B3D5E3 479752 ----a-w- C:\Windows\SysWOW64\XAudio2_0.dll
2014-11-19 01:01:36 8A83673F0AB001870583FDE2B004FA59 238088 ----a-w- C:\Windows\SysWOW64\xactengine3_0.dll
2014-11-19 01:01:35 C593FD0A96EE4B6390B653C4C641313F 25608 ----a-w- C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-11-19 01:01:34 EA752DBCE35045D3C830DC16578CC8AB 1420824 ----a-w- C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-11-19 01:01:33 4A43E9A2B17E4CAFA9CB5FEC0B5B686B 462864 ----a-w- C:\Windows\SysWOW64\d3dx10_37.dll
2014-11-19 01:01:32 AC3C517FB0FBBE45FE44007BCD3625A7 3786760 ----a-w- C:\Windows\SysWOW64\D3DX9_37.dll
2014-11-19 01:01:31 73E055AF78A64F9B2779D44407CA2AB6 267272 ----a-w- C:\Windows\SysWOW64\xactengine2_10.dll
2014-11-19 01:01:28 FB4299688A0D3A37687C015AC2B9922D 1374232 ----a-w- C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-11-19 01:01:28 D9158E78A368B08D9133043EB3058C12 444776 ----a-w- C:\Windows\SysWOW64\d3dx10_36.dll
2014-11-19 01:01:27 44BFEC5C9C82A2EE9871D88FD3B9A0E2 3734536 ----a-w- C:\Windows\SysWOW64\d3dx9_36.dll
2014-11-19 01:01:26 46EE68F04A75A1CCF40235EA6F1CBA05 267112 ----a-w- C:\Windows\SysWOW64\xactengine2_9.dll
2014-11-19 01:01:24 F3764552E45880DC49B82F38699AA87C 444776 ----a-w- C:\Windows\SysWOW64\d3dx10_35.dll
2014-11-19 01:01:24 5B441670A4F5F8BCCE76741902B8AF56 1358192 ----a-w- C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-11-19 01:01:22 3EF18B78D17C962F2B71AC1CB7757684 3727720 ----a-w- C:\Windows\SysWOW64\d3dx9_35.dll
2014-11-19 01:01:21 F6A9FC2AD2F9111372B5AB3BBA3707EC 17928 ----a-w- C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-11-19 01:01:21 499210C45AFEAADEE8CF4DCF7D5E570B 266088 ----a-w- C:\Windows\SysWOW64\xactengine2_8.dll
2014-11-19 01:01:20 5AA9987F2E62B56D7661B6901901F927 443752 ----a-w- C:\Windows\SysWOW64\d3dx10_34.dll
2014-11-19 01:01:19 75F206C195BBACA6EF28565B1C0CD75C 1124720 ----a-w- C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-11-19 01:01:17 77F595DEE5FFACEA72B135B1FCE1312E 81768 ----a-w- C:\Windows\SysWOW64\xinput1_3.dll
2014-11-19 01:01:17 1CA939918ED1B930059B3A882DE6F648 3497832 ----a-w- C:\Windows\SysWOW64\d3dx9_34.dll
2014-11-19 01:01:16 7FEBB8CE2233CBAE738B16D42ED29674 261480 ----a-w- C:\Windows\SysWOW64\xactengine2_7.dll
2014-11-19 01:01:15 FAE7E1D578C42A7C3D9D61A99D178BD5 1123696 ----a-w- C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-11-19 01:01:15 37A8171ACCF46A9C196054066C28827F 443752 ----a-w- C:\Windows\SysWOW64\d3dx10_33.dll
2014-11-19 01:01:14 CDB1CD22BAFF21F48606B3C1A18B000B 3495784 ----a-w- C:\Windows\SysWOW64\d3dx9_33.dll
2014-11-19 01:01:13 39000E033D39D19CCCE21AEAFCCE2476 255848 ----a-w- C:\Windows\SysWOW64\xactengine2_6.dll
2014-11-19 01:01:12 86C93789E9006F1AC47ED9DD47D4C8A1 251672 ----a-w- C:\Windows\SysWOW64\xactengine2_5.dll
2014-11-19 01:01:12 6F34F7405807DCBF0B9BF6811C94C6D9 440080 ----a-w- C:\Windows\SysWOW64\d3dx10.dll
2014-11-19 01:01:10 6550E1A0A7BE611592C31222FCB981FB 237848 ----a-w- C:\Windows\SysWOW64\xactengine2_4.dll
2014-11-19 01:01:10 26AF232140C88B42D92A88F2198EDF6A 3426072 ----a-w- C:\Windows\SysWOW64\d3dx9_32.dll
2014-11-19 01:01:10 121B131EAA369D8F58DACC5C39A77D80 15128 ----a-w- C:\Windows\SysWOW64\x3daudio1_1.dll
2014-11-19 01:01:08 797E24743937D67D69F28F2CF5052EE8 2414360 ----a-w- C:\Windows\SysWOW64\d3dx9_31.dll
2014-11-19 01:01:08 69D841744B2BAE38FBB2D40A230A549C 236824 ----a-w- C:\Windows\SysWOW64\xactengine2_3.dll
2014-11-19 01:01:07 5C4D3843B491C047B7A619901FBD2EC1 230168 ----a-w- C:\Windows\SysWOW64\xactengine2_2.dll
2014-11-19 01:01:07 33B62BE226934E1B01F5043870C70427 62744 ----a-w- C:\Windows\SysWOW64\xinput1_2.dll
2014-11-19 01:01:06 F1726346E583442541FE73429F8E9C10 62672 ----a-w- C:\Windows\SysWOW64\xinput1_1.dll
2014-11-19 01:01:06 7C9952111F4C743B9F0D8B68B6ED93C9 229584 ----a-w- C:\Windows\SysWOW64\xactengine2_1.dll
2014-11-19 01:00:56 E415862612E65F10D7D888443ECD7594 2388176 ----a-w- C:\Windows\SysWOW64\d3dx9_30.dll
2014-11-19 01:00:54 4E961525CC7FF0E5D7DA19E170B7C14C 14032 ----a-w- C:\Windows\SysWOW64\x3daudio1_0.dll
2014-11-19 01:00:54 2112FE0C46662D429347A7D7B49E3ECE 230096 ----a-w- C:\Windows\SysWOW64\xactengine2_0.dll
2014-11-19 01:00:53 99F4FC172A5ACE36CF00AA7038D23F2C 2332368 ----a-w- C:\Windows\SysWOW64\d3dx9_29.dll
2014-11-19 01:00:52 BE19B603DFBAA829EE5B7749B3BA97DB 2323664 ----a-w- C:\Windows\SysWOW64\d3dx9_28.dll
2014-11-19 01:00:50 852EDC778A7A50077694F84D8E601234 2319568 ----a-w- C:\Windows\SysWOW64\d3dx9_27.dll
2014-11-19 01:00:48 523AB607EEF81CC4D909E7FEBD8A788E 2297552 ----a-w- C:\Windows\SysWOW64\d3dx9_26.dll
2014-11-19 01:00:47 5B48FE9D6686F0D54B26A005ACE24D1D 2337488 ----a-w- C:\Windows\SysWOW64\d3dx9_25.dll
2014-11-19 01:00:46 BC831661963763AC4D504C5CABB1FDD9 2222800 ----a-w- C:\Windows\SysWOW64\d3dx9_24.dll
2014-11-15 09:14:14 3B45EA6108E48406828D4E015FF41DD0 12800 ----a-w- C:\Windows\SysWOW64\winshfhc.dll
2014-11-15 09:14:10 5F333FDBF392850373C89BDA31EBEC1B 1346048 ----a-w- C:\Windows\SysWOW64\user32.dll
2014-11-15 09:13:36 B09332CC976AC43EFF595B6F01AA275C 2459136 ----a-w- C:\Windows\SysWOW64\authui.dll
2014-11-15 09:13:35 48C20EB77757F22840FF4CED98D8DEB1 325120 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2014-11-15 09:13:35 46FBD043A1688EFD6AC1395EE886AD33 3607040 ----a-w- C:\Windows\SysWOW64\msi.dll
2014-11-15 09:08:15 DDAAC7C966436938526D4CF4C6042A5C 154112 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2014-11-15 09:08:15 A22688490DCC2DA19441CA09EF7299BF 736768 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2014-11-15 09:08:14 791BDC9FD3C95F92C7DB2162132C8645 324096 ----a-w- C:\Windows\SysWOW64\certcli.dll
2014-11-15 09:07:28 C17F3F1EE09758CF9D234B22B80A1006 25600 ----a-w- C:\Windows\SysWOW64\wups.dll
2014-11-15 09:07:27 F344D6066EA270AABABA83E2A6B6428F 723968 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2014-11-15 09:07:27 DC523277A7EC2336A654960E08EB5BDC 81920 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2014-11-15 09:07:27 514AEA6CF4B70FAA30A2BC4B4CC10A39 29696 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2014-11-15 09:07:26 529122F3ADC548F0CCBB6164D86FA116 124928 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2014-11-15 09:06:47 75D0FAD0165770819770628239BF57DB 602768 ----a-w- C:\Windows\SysWOW64\oleaut32.dll
2014-11-13 22:13:02 BC426A818B7F3DB5F509BC1B62FF1501 357376 ----a-w- C:\Windows\SysWOW64\schannel.dll
2014-11-13 22:13:01 B2AC9E081A847ACBD5B62BE25AF39DA1 88800 ----a-w- C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-13 04:08:34 07330241FD9D9A03811DDBDC4F9FD18F 19781632 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-11-13 04:06:54 154532E0EC2317E6924A9D27F894FF2F 12819456 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-11-13 04:06:45 3CA90FDAB95FB2B0D91249BEDE3DE0D9 4298240 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2014-11-13 04:06:41 03D7DF4711B851EF286562F97429211D 1892864 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-11-13 04:06:39 027A2CF002AD94399B51C07E855E3B2B 1310208 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-11-13 04:06:37 F169B03C4B9996708DB20FF0C875B4FF 880128 ----a-w- C:\Windows\SysWOW64\inetcomm.dll
2014-11-13 04:06:37 98D83B6B4FBA32C39585D1E07121BEA0 2277376 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-11-13 04:06:36 8A88AD059EDC1014D5D6A472A6D1D66C 661504 ----a-w- C:\Windows\SysWOW64\jscript.dll
2014-11-13 04:06:34 8FC2FB51EB90E6AA582BDBA39C1935FD 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2014-11-13 04:06:33 EF7A48E5955736BEECF0B0ABB478E90E 478208 ----a-w- C:\Windows\SysWOW64\ieui.dll
2014-11-13 04:06:33 E855B15E1BE0B58F84843D31F4CC4795 501248 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-11-13 04:06:33 A6145F4F8C69C3B46653B1C5E75A7BD6 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-11-13 04:06:32 1BE74145FDF58734CFE968063533FBEC 708096 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2014-11-13 04:06:32 108D84EE2359C595CCEA32820A2D5405 2051072 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2014-11-13 04:06:31 7BCC24D058205664BD700D272B169AEC 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2014-11-13 04:06:31 7B0D22C64F9B6A8CD79EFADD29700693 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2014-11-13 04:06:30 9F6204775EB03156B430FD095E3D0B5C 325632 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2014-11-13 04:06:30 151E64E5D34DFB95D57B5B97C50DE64D 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2014-11-13 04:06:29 ED5A4451A1A2777C6C5DB4238FD09078 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-11-13 04:06:29 DCFF6E5356CFF5B50BBA0FAAE01A0412 90624 ----a-w- C:\Windows\SysWOW64\iesysprep.dll
2014-11-13 04:06:29 BE5EDCACB9E83C3695F650094367740C 99328 ----a-w- C:\Windows\SysWOW64\hlink.dll
2014-11-13 04:06:29 8DFBD587DBEBBC8EB50AD169DE88C449 340992 ----a-w- C:\Windows\SysWOW64\html.iec
2014-11-13 04:06:29 8A109878FA68DD1A4C91D8D499797E22 128000 ----a-w- C:\Windows\SysWOW64\iepeers.dll
2014-11-13 04:06:29 236AD481F1632F4CE7E9835FFD4AF41D 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2014-11-13 04:06:29 1D391C687102569FD1EA154F0C1A4CE8 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
2014-11-13 04:06:28 FCAF49AE2E10EF3823262D10E7F2D0DE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-13 04:06:28 FC51834D5057B9D7847666AE88BC981C 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
2014-11-13 04:06:28 F1313045CDCBBC4C90C34AEF67CEE088 112128 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll
2014-11-13 04:06:28 EF7B7299A1D6604AD3CA2CE1BEF8C8F3 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2014-11-13 04:06:28 A66A88FFE53BBB9DDAACE0110A8232EC 137728 ----a-w- C:\Windows\SysWOW64\wextract.exe
2014-11-13 04:06:28 971D57DFB6F3FBC98EB74D1AF8E3C13B 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-11-13 04:06:28 8D1E12756ED6F1FDB026AD3CF264F90C 40448 ----a-w- C:\Windows\SysWOW64\imgutil.dll
2014-11-13 04:06:28 615D259116D1B331911CE28C8CD1CCF3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx
2014-11-13 04:06:28 59607FB7C6B84860CE2D1C5F7C57E052 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-13 04:06:28 53E15B8DBD615567CA8895D65746C8D3 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-13 04:06:28 45CDC0E37774D30BEE8C5F62CE30D599 1042944 ----a-w- C:\Windows\SysWOW64\actxprxy.dll
2014-11-13 04:06:28 3FA76B67F25D84B3C2A4E8A8C0919E6E 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe
2014-11-13 04:06:28 3C544C566EE7091AC52D4D9156C62687 235520 ----a-w- C:\Windows\SysWOW64\url.dll
2014-11-13 04:06:28 316280CC22CBB15271A91D83CDFB73C3 27136 ----a-w- C:\Windows\SysWOW64\licmgr10.dll
2014-11-13 04:06:28 26F4BDB6EA83011885E217A51A4A3E68 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2014-11-13 04:06:28 1BD4CD20A25B4A3A5F7BAAC25E9D9202 11264 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe
2014-11-13 04:06:28 159199095C9959BE75E61C0FF947708F 152064 ----a-w- C:\Windows\SysWOW64\iexpress.exe
2014-11-13 04:06:28 0FEEFF4B96CA5972121F59525142A14E 52736 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll
2014-11-13 04:06:28 0812A503FF349D1DCEEB820B2E4FEE15 57344 ----a-w- C:\Windows\SysWOW64\pngfilt.dll
2014-11-13 04:06:28 02FF387F6228169EDDCB41F5E4B1A4E4 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-11-13 04:05:54 3BF6BEBD0A5666BDB426A734A4578D9B 1346048 ----a-w- C:\Windows\SysWOW64\msxml3.dll
2014-11-13 04:05:50 FACBA112943A89FBB8AC25085521924F 344536 ----a-w- C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-13 04:05:50 22B2920A0857BDD61B1331C30AD76F30 424544 ----a-w- C:\Windows\SysWOW64\AudioEng.dll
2014-11-13 04:05:50 0CBA301F325F922FAFB3B83AD3337BB2 370424 ----a-w- C:\Windows\SysWOW64\AudioSes.dll
2014-11-13 04:05:48 D1A07DE4DC408E5AA5CFBAE261919BDC 72192 ----a-w- C:\Windows\SysWOW64\packager.dll
2014-11-13 04:05:36 CA23E168518460519DC8D49EC6AD9550 18723112 ----a-w- C:\Windows\SysWOW64\shell32.dll
2014-11-13 04:05:30 1FB4389CA807D59B105B0827FCC8F768 11820544 ----a-w- C:\Windows\SysWOW64\twinui.dll
2014-11-13 04:05:29 1793FC07D568C930C04F9FF40FFF9A69 799744 ----a-w- C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-13 04:05:29 0EEE3F2278E447498B2CDBDF34C63C91 670384 ----a-w- C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-13 04:05:27 C1AD30D5E28B4291D4A16BC6944ABC0C 2030592 ----a-w- C:\Windows\SysWOW64\WsmSvc.dll
2014-11-13 04:05:27 A208DEE0CD61E24817C26D5A05503DA7 334336 ----a-w- C:\Windows\SysWOW64\puiobj.dll
2014-11-13 04:05:26 17FC09725FEE2546B96A938288509719 485376 ----a-w- C:\Windows\SysWOW64\untfs.dll
2014-11-13 04:05:22 46C1902654FF54C835E4C4E8C14B7F2A 239104 ----a-w- C:\Windows\SysWOW64\FXSAPI.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-11-19 23:41:06 549347BCD4AACD63243D78E8F869DBB1 466456 ----a-w- C:\Windows\Sysnative\wrap_oal.dll
2014-11-19 23:41:06 2AD7B4F3C8D2BB686D231EDFF404B7A4 122904 ----a-w- C:\Windows\Sysnative\OpenAL32.dll
2014-11-19 21:22:12 E87F8EC00FEEF700E61F6989D88A8BC2 991232 ----a-w- C:\Windows\Sysnative\kerberos.dll
2014-11-19 21:22:12 788C7D910267DDCD675DF4AB01961265 259584 ----a-w- C:\Windows\Sysnative\pku2u.dll
2014-11-19 01:02:14 E9739AE8B2FA28DCD6F2EF5525DA8827 77656 ----a-w- C:\Windows\Sysnative\XAPOFX1_5.dll
2014-11-19 01:02:14 BDEC09A032DB44D9CDB3A0D97224D64E 176984 ----a-w- C:\Windows\Sysnative\xactengine3_7.dll
2014-11-19 01:02:14 4F7513FF4DE6303088DB28DCBCEF372C 518488 ----a-w- C:\Windows\Sysnative\XAudio2_7.dll
2014-11-19 01:02:13 ADA0C39D4EACDC81FD84163A95D62079 2526056 ----a-w- C:\Windows\Sysnative\D3DCompiler_43.dll
2014-11-19 01:02:12 5F1DA86286A2DFB01C4FED55C2DD1D61 1907552 ----a-w- C:\Windows\Sysnative\d3dcsx_43.dll
2014-11-19 01:02:11 AD7FA9485059F4DC53C98B49CAB13F0B 511328 ----a-w- C:\Windows\Sysnative\d3dx10_43.dll
2014-11-19 01:02:11 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\Windows\Sysnative\d3dx11_43.dll
2014-11-19 01:02:10 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\Windows\Sysnative\D3DX9_43.dll
2014-11-19 01:02:09 A9724EB3D6CC032D0C4ECAFF4AD8C17F 78680 ----a-w- C:\Windows\Sysnative\XAPOFX1_4.dll
2014-11-19 01:02:09 05E88C8D8E652DFF03B469331F474CCE 530776 ----a-w- C:\Windows\Sysnative\XAudio2_6.dll
2014-11-19 01:02:08 B4FF2A39685C1A6D43F0E56EB350AF3A 24920 ----a-w- C:\Windows\Sysnative\X3DAudio1_7.dll
2014-11-19 01:02:08 936DCC640B2991905D909395E03B64F9 176984 ----a-w- C:\Windows\Sysnative\xactengine3_6.dll
2014-11-19 01:02:07 C291AEFD47A587FF5F509E2F96613F7D 517960 ----a-w- C:\Windows\Sysnative\XAudio2_5.dll
2014-11-19 01:02:06 51D65BE2F794B944CADAF287B34EF603 176968 ----a-w- C:\Windows\Sysnative\xactengine3_5.dll
2014-11-19 01:02:05 E92D2E4AFA43CD39A8C1C2C2DB59667E 2582888 ----a-w- C:\Windows\Sysnative\D3DCompiler_42.dll
2014-11-19 01:02:03 F13B90F5090EBA9041558BC6AAED79B8 5554512 ----a-w- C:\Windows\Sysnative\d3dcsx_42.dll
2014-11-19 01:02:03 522749761B6CC69F8630F4B472DCA623 285024 ----a-w- C:\Windows\Sysnative\d3dx11_42.dll
2014-11-19 01:02:02 B739C423276AE62D7AC91773226EC13B 523088 ----a-w- C:\Windows\Sysnative\d3dx10_42.dll
2014-11-19 01:02:00 1AF7AE1FDE027A30B9097280819A0A86 2475352 ----a-w- C:\Windows\Sysnative\D3DX9_42.dll
2014-11-19 01:01:59 E730967811E3702499446FFC8A432607 520544 ----a-w- C:\Windows\Sysnative\d3dx10_41.dll
2014-11-19 01:01:59 A59A5BADE4AF200C720D99EAE6E04E0E 2430312 ----a-w- C:\Windows\Sysnative\D3DCompiler_41.dll
2014-11-19 01:01:57 ECDDB13BC805B9F3EF3A855E6FD85C69 5425496 ----a-w- C:\Windows\Sysnative\D3DX9_41.dll
2014-11-19 01:01:56 B94F08069EFE2F8151DEF350E526E063 521560 ----a-w- C:\Windows\Sysnative\XAudio2_4.dll
2014-11-19 01:01:56 37B348A79C4C9B8AB925B18FFD241E96 73544 ----a-w- C:\Windows\Sysnative\XAPOFX1_3.dll
2014-11-19 01:01:55 EEE871CC4F5563FF8B3C8385B32B0C5F 24920 ----a-w- C:\Windows\Sysnative\X3DAudio1_6.dll
2014-11-19 01:01:55 1BA01062450BD1F052C54C01C12248F6 174936 ----a-w- C:\Windows\Sysnative\xactengine3_4.dll
2014-11-19 01:01:54 862586AD4B1355F7DCDE111EE0AAF350 519000 ----a-w- C:\Windows\Sysnative\d3dx10_40.dll
2014-11-19 01:01:54 37309B833480DC69FDE7DB68F9B8BC20 2605920 ----a-w- C:\Windows\Sysnative\D3DCompiler_40.dll
2014-11-19 01:01:52 29A79F0B607FAF5722D7BAF2485F632A 5631312 ----a-w- C:\Windows\Sysnative\D3DX9_40.dll
2014-11-19 01:01:51 2F8F9B707FED2405A787380230CC6FA9 74576 ----a-w- C:\Windows\Sysnative\XAPOFX1_2.dll
2014-11-19 01:01:50 758139A39AECC1B512576275A27C1177 518480 ----a-w- C:\Windows\Sysnative\XAudio2_3.dll
2014-11-19 01:01:49 CFF1C1F7B9F855DDEE431D7B5DCACDF8 25936 ----a-w- C:\Windows\Sysnative\X3DAudio1_5.dll
2014-11-19 01:01:49 84B41FD03CAFC5048346B3B2AB92D199 175440 ----a-w- C:\Windows\Sysnative\xactengine3_3.dll
2014-11-19 01:01:48 E335DF094836EE7030F1B9CE7429E884 513544 ----a-w- C:\Windows\Sysnative\XAudio2_2.dll
2014-11-19 01:01:48 0F2DB378FBE2D124E4D3631B329688AE 72200 ----a-w- C:\Windows\Sysnative\XAPOFX1_1.dll
2014-11-19 01:01:47 CC8399A9E51B2AF1C2C20A26D85EB60E 177672 ----a-w- C:\Windows\Sysnative\xactengine3_2.dll
2014-11-19 01:01:46 EAA692FDC990ED0407DF957316DA33C2 540688 ----a-w- C:\Windows\Sysnative\d3dx10_39.dll
2014-11-19 01:01:46 7741A0A6CED6C441B97D625B730D6075 1942552 ----a-w- C:\Windows\Sysnative\D3DCompiler_39.dll
2014-11-19 01:01:44 7505C133FC704B40CFDDFD38777BAAC3 4992520 ----a-w- C:\Windows\Sysnative\D3DX9_39.dll
2014-11-19 01:01:42 E9C0F926D7C9082A805F4FEF81DEEB30 511496 ----a-w- C:\Windows\Sysnative\XAudio2_1.dll
2014-11-19 01:01:42 A2A098BF5A8C255A0090818AD8E87B0F 177672 ----a-w- C:\Windows\Sysnative\xactengine3_1.dll
2014-11-19 01:01:42 0E92D8C0ECA74B6D0A55ABAD53226113 68104 ----a-w- C:\Windows\Sysnative\XAPOFX1_0.dll
2014-11-19 01:01:41 DE6004D16DBACD781ED4596C4FEA7D14 28168 ----a-w- C:\Windows\Sysnative\X3DAudio1_4.dll
2014-11-19 01:01:40 A7E59BB6FAC119FABB83F18BD72AA1D7 1941528 ----a-w- C:\Windows\Sysnative\D3DCompiler_38.dll
2014-11-19 01:01:40 72CB653CECF4EA670E7F5A8D74358423 540688 ----a-w- C:\Windows\Sysnative\d3dx10_38.dll
2014-11-19 01:01:38 E5EC2AB7156A752F9614CDA4BE66EFE8 4991496 ----a-w- C:\Windows\Sysnative\D3DX9_38.dll
2014-11-19 01:01:37 29AF48F6C894328A58DEFDC560A70CF3 489480 ----a-w- C:\Windows\Sysnative\XAudio2_0.dll
2014-11-19 01:01:36 A8B5370B7B61D3777D840DA1C64A1C2D 177672 ----a-w- C:\Windows\Sysnative\xactengine3_0.dll
2014-11-19 01:01:35 C4C2ED69B18EE1C60026877FCC470FA7 28168 ----a-w- C:\Windows\Sysnative\X3DAudio1_3.dll
2014-11-19 01:01:34 31026CEA5AFA2798292179102C06FE40 1860120 ----a-w- C:\Windows\Sysnative\D3DCompiler_37.dll
2014-11-19 01:01:33 A8C5688BBA00C1630550F26260AB5CAE 529424 ----a-w- C:\Windows\Sysnative\d3dx10_37.dll
2014-11-19 01:01:32 8A10974DC6E1E42BDC635C2C2AFBD2CC 4910088 ----a-w- C:\Windows\Sysnative\D3DX9_37.dll
2014-11-19 01:01:31 E8932AF24786765859558CB79E385AC2 411656 ----a-w- C:\Windows\Sysnative\xactengine2_10.dll
2014-11-19 01:01:28 7299DF5CF81135934740211D9A946737 2006552 ----a-w- C:\Windows\Sysnative\D3DCompiler_36.dll
2014-11-19 01:01:28 570FDAE7041775DE0C67747BB7081939 508264 ----a-w- C:\Windows\Sysnative\d3dx10_36.dll
2014-11-19 01:01:27 BBB6C6833C30E323B41860D6DF61972D 5081608 ----a-w- C:\Windows\Sysnative\d3dx9_36.dll
2014-11-19 01:01:26 A69C32C2BD01522A088D254342826866 411496 ----a-w- C:\Windows\Sysnative\xactengine2_9.dll
2014-11-19 01:01:24 B21427EDF0449E92000FF497DAAF89C9 1985904 ----a-w- C:\Windows\Sysnative\D3DCompiler_35.dll
2014-11-19 01:01:24 84116AA94672D623B95217648AE5B5B9 508264 ----a-w- C:\Windows\Sysnative\d3dx10_35.dll
2014-11-19 01:01:22 1B3AF16A27D390096925576202A64037 5073256 ----a-w- C:\Windows\Sysnative\d3dx9_35.dll
2014-11-19 01:01:21 FA485E76F94B7457767E372F47757733 409960 ----a-w- C:\Windows\Sysnative\xactengine2_8.dll
2014-11-19 01:01:21 BC78D5328541410510DDE06B9FA92024 21000 ----a-w- C:\Windows\Sysnative\X3DAudio1_2.dll
2014-11-19 01:01:20 1ED4E7A82BD5C7DEED082F00E63BB7A0 506728 ----a-w- C:\Windows\Sysnative\d3dx10_34.dll
2014-11-19 01:01:19 9D9407F52B8E24E99358D9944B0D5FA3 1401200 ----a-w- C:\Windows\Sysnative\D3DCompiler_34.dll
2014-11-19 01:01:17 BFB3091B167550EC6E6454813D3DB244 107368 ----a-w- C:\Windows\Sysnative\xinput1_3.dll
2014-11-19 01:01:17 AE5D5439525B4A4CBF206058D493685D 4496232 ----a-w- C:\Windows\Sysnative\d3dx9_34.dll
2014-11-19 01:01:16 8C970509E0AE10061E3ED6D51E34FEB9 403304 ----a-w- C:\Windows\Sysnative\xactengine2_7.dll
2014-11-19 01:01:15 839C3921005BB41D441E3752C74F2292 506728 ----a-w- C:\Windows\Sysnative\d3dx10_33.dll
2014-11-19 01:01:15 3EBF620536A13CA343E52ECA4F0DE7F8 1400176 ----a-w- C:\Windows\Sysnative\D3DCompiler_33.dll
2014-11-19 01:01:14 3172C3CAC8EA7CA1B5D5AF6699C037D6 4494184 ----a-w- C:\Windows\Sysnative\d3dx9_33.dll
2014-11-19 01:01:13 4837A54574A6105D404A8560984B93DD 393576 ----a-w- C:\Windows\Sysnative\xactengine2_6.dll
2014-11-19 01:01:12 8251826F04BA0822D08AD9B92C65A3D5 469264 ----a-w- C:\Windows\Sysnative\d3dx10.dll
2014-11-19 01:01:12 398FF46FF7354FED2F0F1AECDB546866 390424 ----a-w- C:\Windows\Sysnative\xactengine2_5.dll
2014-11-19 01:01:10 A4DDFE5DC4E73D1FED9B1B3A3D885612 4398360 ----a-w- C:\Windows\Sysnative\d3dx9_32.dll
2014-11-19 01:01:10 58BB51253427A834A8807B9245CC5965 364824 ----a-w- C:\Windows\Sysnative\xactengine2_4.dll
2014-11-19 01:01:10 489E5B8BB1BD1028FF1C798EAAEC65E4 17688 ----a-w- C:\Windows\Sysnative\x3daudio1_1.dll
2014-11-19 01:01:08 FAAA0BB9CD2905B25334132E5BA093EB 3977496 ----a-w- C:\Windows\Sysnative\d3dx9_31.dll
2014-11-19 01:01:08 0396D2A98B0CCD4419B572EBF618E81E 363288 ----a-w- C:\Windows\Sysnative\xactengine2_3.dll
2014-11-19 01:01:07 DC5A914C34EB12056531777D4DD0F44E 354072 ----a-w- C:\Windows\Sysnative\xactengine2_2.dll
2014-11-19 01:01:07 06F15D3CB1AE0EAFA50F595B3FF8D9F5 83736 ----a-w- C:\Windows\Sysnative\xinput1_2.dll
2014-11-19 01:01:06 6F9D3289D8B166E478AFFF9EFA92C42C 83664 ----a-w- C:\Windows\Sysnative\xinput1_1.dll
2014-11-19 01:01:06 0CC809422AB40974DFF8078392E4D507 352464 ----a-w- C:\Windows\Sysnative\xactengine2_1.dll
2014-11-19 01:00:56 E09A9CF383ACF4A28038561E62277377 3927248 ----a-w- C:\Windows\Sysnative\d3dx9_30.dll
2014-11-19 01:00:54 F77D5AB654881E683CFF6650916C424E 16592 ----a-w- C:\Windows\Sysnative\x3daudio1_0.dll
2014-11-19 01:00:54 CE5753F9A27837259EB52F3F47F39593 355536 ----a-w- C:\Windows\Sysnative\xactengine2_0.dll
2014-11-19 01:00:53 68B35CBDB4A8CC424718BBCC894FEEEA 3830992 ----a-w- C:\Windows\Sysnative\d3dx9_29.dll
2014-11-19 01:00:52 88BAC8306D4EC79A82B1FFA17DC8CF4A 3815120 ----a-w- C:\Windows\Sysnative\d3dx9_28.dll
2014-11-19 01:00:50 914C3237E4D145A18DCD1D0D4C8659E1 3807440 ----a-w- C:\Windows\Sysnative\d3dx9_27.dll
2014-11-19 01:00:48 44F5C5E27D6825E4E62420BC29B8B533 3767504 ----a-w- C:\Windows\Sysnative\d3dx9_26.dll
2014-11-19 01:00:47 4C56E7C5B2A61353E534C7D15D05856D 3823312 ----a-w- C:\Windows\Sysnative\d3dx9_25.dll
2014-11-19 01:00:46 B165DF72E13E6AF74D47013504319921 3544272 ----a-w- C:\Windows\Sysnative\d3dx9_24.dll
2014-11-15 09:14:14 668417ED63F9FBE7DD8D7A54B04279DA 14336 ----a-w- C:\Windows\Sysnative\winshfhc.dll
2014-11-15 09:14:10 F0A117D19873FCDF801F082F33BFBB6C 1519488 ----a-w- C:\Windows\Sysnative\user32.dll
2014-11-15 09:13:37 034ED41F13D9C1845C1E081F05B640DB 110080 ----a-w- C:\Windows\Sysnative\appinfo.dll
2014-11-15 09:13:36 D5B41A0C38408814A3E9BAC8C82B2E5B 2773504 ----a-w- C:\Windows\Sysnative\authui.dll
2014-11-15 09:13:36 D1A2E993DB1867C79177CCC9DB6337D0 116032 ----a-w- C:\Windows\Sysnative\consent.exe
2014-11-15 09:13:35 EF745B98D81B8C462DB99FC8B5C4322A 3320320 ----a-w- C:\Windows\Sysnative\msi.dll
2014-11-15 09:13:34 D0C15BC83B3D0AF4F9B1D70216D91794 428032 ----a-w- C:\Windows\Sysnative\msihnd.dll
2014-11-15 09:08:15 D7B23B3154508256C9F434EF9B65B91D 131584 ----a-w- C:\Windows\Sysnative\rdpudd.dll
2014-11-15 09:08:15 A8484FB640E044858BA19FB4F13DD4CE 154112 ----a-w- C:\Windows\Sysnative\msaudite.dll
2014-11-15 09:08:15 91E59FCB3B32DD84E5DCDA2EA1583807 736768 ----a-w- C:\Windows\Sysnative\adtschema.dll
2014-11-15 09:08:14 488CEA4F1B4D2446FFB7A94E3CB385FE 445440 ----a-w- C:\Windows\Sysnative\certcli.dll
2014-11-15 09:08:14 3D2D2EA099D98FE6B94C7D8C7992C08C 40448 ----a-w- C:\Windows\Sysnative\rfxvmt.dll
2014-11-15 09:08:14 1D25CC0A9C480C5D56A5A6CF2B5DEB99 3547648 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2014-11-15 09:08:13 949E590B76018E4523FC71CE510ED9ED 1441792 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2014-11-15 09:07:27 EA2DF5520D3623F353F43809A2F88086 55776 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2014-11-15 09:07:27 DCD090318EC800CF6275C6835900B0C6 3557376 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2014-11-15 09:07:27 CCE7F88AD038494253B485EC1B144EB3 60416 ----a-w- C:\Windows\Sysnative\wups.dll
2014-11-15 09:07:27 BCC10D47920E83EAC8F2E7E2D414692E 894976 ----a-w- C:\Windows\Sysnative\wuapi.dll
2014-11-15 09:07:27 70AC0FA699C9420CB282CCF72993C2E1 51712 ----a-w- C:\Windows\Sysnative\wups2.dll
2014-11-15 09:07:27 4D94560FD4982BB52C1FE64AE38E1A9F 35840 ----a-w- C:\Windows\Sysnative\wuapp.exe
2014-11-15 09:07:27 4A112AD7D9C7289FE9945D05E97019D0 17408 ----a-w- C:\Windows\Sysnative\wuaext.dll
2014-11-15 09:07:26 E67B019D23320AA0C5F1E6DE5D30546A 407552 ----a-w- C:\Windows\Sysnative\WUSettingsProvider.dll
2014-11-15 09:07:26 5D67074419BBFDCA587C2E2A93743E8A 140288 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2014-11-15 09:07:26 2E66E7D4F1E39F7048A231AA60FD2532 95744 ----a-w- C:\Windows\Sysnative\wudriver.dll
2014-11-15 09:07:26 2585412FC573F298FCBFD6759F8C4C0F 1714176 ----a-w- C:\Windows\Sysnative\wucltux.dll
2014-11-15 09:06:47 9A108C0A3092110F4651B3AFB9CC7B3D 789184 ----a-w- C:\Windows\Sysnative\oleaut32.dll
2014-11-13 22:13:02 F0CE4A653EEBA09509EAF93AE2226FA9 426496 ----a-w- C:\Windows\Sysnative\schannel.dll
2014-11-13 22:13:01 6DE50D5592C6EE18C87B0C2EEEDC1621 185856 ----a-w- C:\Windows\Sysnative\dpapisrv.dll
2014-11-13 22:13:01 622928F5A8045F8122F10561D6C35ED0 104336 ----a-w- C:\Windows\Sysnative\ncryptsslp.dll
2014-11-13 04:08:37 6432F143CDC9D73BD2BF832CAB2EDC01 25110016 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-11-13 04:07:05 BED4D30B7FF094E368333CE2D1CE3195 14390272 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-11-13 04:06:47 079FEE6FC11A74E4309B6A10931C1CB2 6040064 ----a-w- C:\Windows\Sysnative\jscript9.dll
2014-11-13 04:06:42 BF1FC65A307B31939ADF7F976FDE033C 2365440 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-11-13 04:06:40 559E084EEBE44864493B2903433F19B3 1550336 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-11-13 04:06:39 22CBDB8810CBED0B4F5E4BE69D7E2AE8 2884096 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-11-13 04:06:38 62D54F4673A6208C8CC147758122B3C3 2865152 ----a-w- C:\Windows\Sysnative\actxprxy.dll
2014-11-13 04:06:38 46B5DD7C4B1851F59E48302185E076DF 1032704 ----a-w- C:\Windows\Sysnative\inetcomm.dll
2014-11-13 04:06:36 DE58DE2C6C8439B7174D6D3568AA4A80 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2014-11-13 04:06:35 587DEBB59F5F14C9610966FB14A33607 633856 ----a-w- C:\Windows\Sysnative\ieui.dll
2014-11-13 04:06:35 0D03DAD6BB183156C70F863D0F2FA55A 812544 ----a-w- C:\Windows\Sysnative\jscript.dll
2014-11-13 04:06:34 200CEA827BDC503F00C0AED0EA227D49 800768 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-11-13 04:06:33 258C3082AD82C1AAD335DA3FE2D3EB25 580096 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-11-13 04:06:32 F7522B00C823794F86ABD5BE1F3D6B09 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2014-11-13 04:06:32 175C139D51F99099D1BDA17794B02191 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2014-11-13 04:06:31 BC3B7CCE855F9A8E7BC96F7062229A02 799232 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2014-11-13 04:06:31 62E2FCF45F349DE6CAFB3AA7E1D81DA4 2124288 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2014-11-13 04:06:30 A7F53772ECAE2F44B455D14F71179940 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2014-11-13 04:06:30 853BB696932E4C48EE7034BFF1209A5A 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
2014-11-13 04:06:29 FD7C8FAC461BED1FEEB808E477D884D4 716800 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2014-11-13 04:06:29 F0A53129AE95A895EC8C4DC36E1797A2 108544 ----a-w- C:\Windows\Sysnative\hlink.dll
2014-11-13 04:06:29 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2014-11-13 04:06:29 AF28C90094C4C50F083599C10D2DC072 145408 ----a-w- C:\Windows\Sysnative\iepeers.dll
2014-11-13 04:06:29 9CD8D475F462F82E6FD8BFCA7186ACD4 372736 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2014-11-13 04:06:29 8AE1AC97407CD82D8389390C21430579 111616 ----a-w- C:\Windows\Sysnative\iesysprep.dll
2014-11-13 04:06:29 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2014-11-13 04:06:28 F79E5258AF040A8AD83C7C1273A071C3 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-11-13 04:06:28 F54E1190251EB245183BF16D6C315613 237568 ----a-w- C:\Windows\Sysnative\url.dll
2014-11-13 04:06:28 E99E2E88BFE584184AE92B1F8995CE93 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2014-11-13 04:06:28 DD8FD33C108F14681A410067AB21DDF3 152064 ----a-w- C:\Windows\Sysnative\occache.dll
2014-11-13 04:06:28 D66D11191B48007179B0A77DC0717267 33280 ----a-w- C:\Windows\Sysnative\licmgr10.dll
2014-11-13 04:06:28 CDC8A85EB301A8CBE55A81A1D55AF5E5 132096 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll
2014-11-13 04:06:28 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe
2014-11-13 04:06:28 C9AB2198141844D3DF96B4552CE9D5AB 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-11-13 04:06:28 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\Windows\Sysnative\mshta.exe
2014-11-13 04:06:28 A348DEFC16B6FBC88B7D61C3B861BCB1 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
2014-11-13 04:06:28 85E97591864F3125C5B08FB44E0E8078 60416 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll
2014-11-13 04:06:28 70576D76A11DD5AE54E719297A315F90 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2014-11-13 04:06:28 6A7F8D139610E5F3F158182778EF9275 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2014-11-13 04:06:28 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\Windows\Sysnative\msfeedssync.exe
2014-11-13 04:06:28 6096209CB47D61499C3608B9C25B073C 64512 ----a-w- C:\Windows\Sysnative\pngfilt.dll
2014-11-13 04:06:28 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\Windows\Sysnative\wextract.exe
2014-11-13 04:06:28 3721721151DB49457B0FD35E0C04594C 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2014-11-13 04:06:28 2E475D2FCE0125FA0C486DB9D59E739B 417280 ----a-w- C:\Windows\Sysnative\html.iec
2014-11-13 04:06:28 2CEACC509889A095828F27115257408D 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-11-13 04:06:28 161BC2E883A8D8759A4DCF2A85AF9128 51200 ----a-w- C:\Windows\Sysnative\imgutil.dll
2014-11-13 04:06:28 00FB2FB8C27C834CF575BC415B80F995 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx
2014-11-13 04:05:54 93645AEBE163230A2ED5050C14AE6603 2149376 ----a-w- C:\Windows\Sysnative\msxml3.dll
2014-11-13 04:05:50 DFDFDE2EA4B5CD0606BA6E56ECEE502D 272248 ----a-w- C:\Windows\Sysnative\audiodg.exe
2014-11-13 04:05:50 C0484CA5C7F87E38909746B63C7FC868 911360 ----a-w- C:\Windows\Sysnative\audiosrv.dll
2014-11-13 04:05:50 BB93DAAAE9006598935192B9CB65E475 108432 ----a-w- C:\Windows\Sysnative\EncDump.dll
2014-11-13 04:05:50 9F87516BF76C40B41D831F7D729A6044 482872 ----a-w- C:\Windows\Sysnative\AudioEng.dll
2014-11-13 04:05:50 9C88C9397B44B76E5C9A44B8E2CE53A1 500016 ----a-w- C:\Windows\Sysnative\AudioSes.dll
2014-11-13 04:05:50 8085F95BB18A171E7221D2831BC08BC2 394120 ----a-w- C:\Windows\Sysnative\AUDIOKSE.dll
2014-11-13 04:05:50 7F70B1044272982AAEA7C16E83424770 226304 ----a-w- C:\Windows\Sysnative\AudioEndpointBuilder.dll
2014-11-13 04:05:49 B31C4917EC5EADE24A90DDAF37EA00E0 4182016 ----a-w- C:\Windows\Sysnative\win32k.sys
2014-11-13 04:05:48 84549E8C8BF76B293A7E625A98D4BCF9 81408 ----a-w- C:\Windows\Sysnative\packager.dll
2014-11-13 04:05:39 1D303CE5BCBD5B80BBA08321F28A3F86 21197152 ----a-w- C:\Windows\Sysnative\shell32.dll
2014-11-13 04:05:37 BCE66E78D388875B87286CA091E7075F 7484224 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2014-11-13 04:05:35 1907823D5ACFD75D1D8C0D4318299726 2714112 ----a-w- C:\Windows\Sysnative\SettingsHandlers.dll
2014-11-13 04:05:34 C4306ADC38939CAC60EA38AAD9F170C0 13424128 ----a-w- C:\Windows\Sysnative\twinui.dll
2014-11-13 04:05:32 C88B63FE96DB4BCED65DD442BC8E77F5 1053184 ----a-w- C:\Windows\Sysnative\localspl.dll
2014-11-13 04:05:32 A208498C5CD750A1743C1AC8162A810F 941568 ----a-w- C:\Windows\Sysnative\MFMediaEngine.dll
2014-11-13 04:05:31 CA729FCE295895515A09BD6FF7903DC8 836176 ----a-w- C:\Windows\Sysnative\mfmp4srcsnk.dll
2014-11-13 04:05:28 9CE162EB9057CF079736F4DD00FC0D6C 2480128 ----a-w- C:\Windows\Sysnative\WsmSvc.dll
2014-11-13 04:05:28 50E96089F9BE352621997143A56C8E76 822272 ----a-w- C:\Windows\Sysnative\win32spl.dll
2014-11-13 04:05:27 5416C603B6C85CF0698E8A2A1D28BAA2 448512 ----a-w- C:\Windows\Sysnative\puiobj.dll
2014-11-13 04:05:26 8758F5DEBD2B950B2D56ED11F9E0B38F 545792 ----a-w- C:\Windows\Sysnative\untfs.dll
2014-11-13 04:05:24 6C118AEDD15FDBEAECC0E85C64B5B86B 615424 ----a-w- C:\Windows\Sysnative\FXSCOMEX.dll
2014-11-13 04:05:23 9C55CE9707B3CA29A6505BCDCC546390 275968 ----a-w- C:\Windows\Sysnative\FXSAPI.dll
2014-11-13 04:05:22 A92EF73B02686B7E6F070B486512DB88 389176 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml
====== C:\Windows\Sysnative\drivers =====
2014-11-21 20:39:46 435DCC78057A57965DA660A85A0922DE 135384 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-11-21 20:39:13 3540DDFAC8A076B983F86EB2A79D8FBD 96472 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-11-15 09:14:14 DE8D12B4C3F55FA2C5E9774314F6C58A 258368 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys
2014-11-15 09:14:14 4AD874CDC812EC156265E451B6B09DAB 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys
2014-11-15 09:14:14 0359607177E5E9F6041136CC0A5CB0B6 35320 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys
2014-11-15 09:08:14 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys
2014-11-15 09:08:13 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-15 09:08:13 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2014-11-13 04:05:32 CCB3A2BB60FE5073F2DEA63FE83CF8FE 2497344 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-11-13 04:05:28 E3FCE2A6B3533D99A3B498504DF9CC47 474432 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2014-11-13 04:05:26 7F23E38C5B6448F91439E4066645191E 428864 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-11-13 04:05:26 66732C13628BDB1AB0D6FD46027327C2 148800 ----a-w- C:\Windows\Sysnative\drivers\USBSTOR.SYS
====== C:\Windows\Tasks ======
2014-11-21 23:26:33 DC217A7A93A70FF812A05BEC86C5357B 830 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-21 23:26:33 0331D7E482689C1690E18FBD25C5CFC5 3718 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater
2014-11-15 07:37:37 E9EC2850514FF6D60ADF8DAFFAD74A04 916 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000a77039515.job
2014-11-15 07:37:37 47335A1F60F861CC816504EBB1C59B51 3656 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore1d000a77039515
2014-11-06 20:32:42 DB64A5131D99123023D10EB8F76C256F 920 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-06 20:32:42 D41F0A78319A2CCC290D2AFECF5C3B95 3892 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-11-06 20:32:41 CD482D15B46A035F05D2D2C3C0E1A4E8 916 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-11-21 23:09:55 -------- d-----w- C:\PROGRA~2\EA GAMES
2014-11-20 23:45:55 -------- d-----w- C:\PROGRA~2\S.W.A.T. 4
2014-11-20 23:14:17 -------- d-----w- C:\PROGRA~2\Koei
2014-11-20 23:03:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-11-20 23:03:04 -------- d-----w- C:\PROGRA~2\Java
2014-11-20 22:27:32 -------- d-----w- C:\PROGRA~2\Fort Zombie
2014-11-20 22:26:52 -------- d-----w- C:\PROGRA~2\Microsoft XNA
2014-11-19 23:41:06 -------- d-----w- C:\PROGRA~2\OpenAL
2014-11-19 11:21:04 -------- d-----w- C:\PROGRA~2\Mumble
2014-11-18 22:57:43 -------- d-----w- C:\PROGRA~2\COMMON~1\Steam
2014-11-18 22:57:41 -------- d-----w- C:\PROGRA~2\Steam
2014-10-25 22:23:47 -------- d-----w- C:\PROGRA~2\Electronic Arts
======= C: =====
====== C:\Users\Herman Chow\AppData\Roaming ======
2014-11-21 23:09:55 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA GAMES
2014-11-21 23:09:55 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\InstallShield Installation Information
2014-11-21 12:19:29 -------- d-----w- C:\Users\Herman Chow\AppData\Local\Temp
2014-11-21 11:49:07 -------- d-----w- C:\Users\Herman Chow\AppData\Local\Intel_Corporation
2014-11-21 11:07:23 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-11-21 11:07:23 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-11-21 11:07:23 -------- d-----w- C:\Users\Default\AppData\Local\Temp
2014-11-21 11:07:23 -------- d-----w- C:\Users\Default User\AppData\Local\Temp
2014-11-21 10:59:48 -------- d-sh--w- C:\Users\Herman Chow\AppData\Local\EmieBrowserModeList
2014-11-20 23:13:51 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koei
2014-11-20 22:43:57 -------- d-----w- C:\Users\Herman Chow\AppData\Local\Kerberos_Productions
2014-11-20 00:44:39 -------- d-----w- C:\Users\Herman Chow\AppData\Locallow\Sun
2014-11-19 11:21:21 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\Mumble
2014-11-19 01:20:45 -------- d-sh--w- C:\Users\Herman Chow\AppData\Locallow\EmieBrowserModeList
2014-11-19 01:02:19 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\Running with rifles
2014-11-19 00:49:56 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-11-12 22:36:32 -------- d-----w- C:\Users\Herman Chow\AppData\Locallow\Ludeon Studios
2014-11-11 21:43:09 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\yvt.jp
2014-11-11 21:43:09 -------- d-----w- C:\Users\Herman Chow\AppData\Roaming\OpenSpades
2014-10-27 06:37:52 -------- d-----w- C:\Users\Herman Chow\AppData\Local\Chromium
2014-10-25 22:46:51 -------- d--h--r- C:\Users\Herman Chow\AppData\Roaming\SecuROM
2014-10-24 04:04:08 EE45100BFAA9F6E8DD469F69C7C53A31 7601 ----a-w- C:\Users\Herman Chow\AppData\Local\Resmon.ResmonCfg
====== C:\Users\Herman Chow ======
2014-11-21 23:10:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2014-11-21 21:22:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.W.A.T. 4
2014-11-21 20:38:09 F92CE6E6B3A0AB75E48D9A6BE9DDB550 16448208 ----a-w- C:\Users\Herman Chow\Downloads\mbar-1.08.2.1001.exe
2014-11-21 11:37:14 0978F3431EBBE86F0DF99DC72570F9AC 2117632 ----a-w- C:\Users\Herman Chow\Downloads\FRST64.exe
2014-11-20 23:03:51 -------- d-----w- C:\ProgramData\Sun
2014-11-20 23:03:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-20 23:03:06 -------- d-----w- C:\ProgramData\Oracle
2014-11-20 22:44:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-11-20 22:27:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fort Zombie
2014-11-20 01:01:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\King Arthur's Gold
2014-11-20 01:01:09 -------- d-----w- C:\Users\Herman Chow\KAG
2014-11-19 11:21:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
2014-11-19 09:55:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ace of Spades
2014-11-18 22:57:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-11-06 20:33:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-31 22:00:48 -------- d-----w- C:\Windows\serviceprofiles\Localservice\winhttp
2014-10-25 22:30:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts

====== C: exe-files ==
2014-11-22 03:04:06 4FDD5B0A7FBEF503A198E2F05CBB1665 27136 ----a-w- C:\Users\Herman Chow\AppData\Local\Temp\dufgmr4c.exe
2014-11-21 23:16:18 F1F13258BF350806223D337AD70AA1E3 480976 ----a-w- C:\Users\Herman Chow\AppData\Local\Temp\{47DE9732-D850-4628-BB8D-0A592F953D2F}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxsetup.exe
2014-11-21 23:11:19 EF969624108066EC6A4571DAF26E7ACF 4640768 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\Bf2_w32ded.exe
2014-11-21 23:11:19 694D388DF50BE1E370713C59003126A4 196608 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2VoiceSetup.exe
2014-11-21 23:11:19 3DD8AA9B8CBB4959B966CC926E4C6078 6537238 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\Redist\ArcadeInstallBATTLEFIELD2_20.EXE
2014-11-21 23:11:19 0C7AC7B3760C864383A4CF9A9A4E6C23 774144 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2ServerLauncher.exe
2014-11-21 23:11:18 BC4CD1ABDC9DDB0CF411CEEE95700895 12288 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\AdminUtils\rcon\remoteconsole.exe
2014-11-21 23:11:18 56CCF8D0924BD000A9ED6BAE02A89EF3 618496 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2VoipServer_w32ded.exe
2014-11-21 23:11:18 5370DFEA024A3B39292B1F2CF28FC549 196608 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2VoipServer.exe
2014-11-21 23:10:58 577BEF3C5920C4B26E20B8B3BB7876C1 561152 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\Support\EasyInfo.exe
2014-11-21 23:10:58 495DA482DBD15024CCBD5019FDF0F811 618496 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\Support\EReg.exe
2014-11-21 23:10:58 31F34C1CAB6F25538A4659FA2FDEF5B8 323584 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\Support\Battlefield 2_code.exe
2014-11-21 23:09:55 B01BA38C120B8B1F5963E6B47FF12A1E 118736 ----a-w- C:\Users\Herman Chow\AppData\Roaming\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe
2014-11-21 23:08:16 5ACDFD83F9365633913AE76D8180453C 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2014-11-21 23:01:36 F2A5CBCB5C9E1B73562F05EC872DE195 6041600 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
2014-11-21 21:22:04 DDBDB20B1E7411C3132DB1575499B306 290816 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\CreateLocalizationPackage.exe
2014-11-21 21:22:04 A3E04A16409E94F8B42ABA08100DA2A6 36864 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\ShaderPackager.exe
2014-11-21 21:22:04 8A26160752993DEF82DCF3B0B9FF5CAC 249856 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\IGEffectsConfigurator.exe
2014-11-21 21:22:04 7D030A794315D7DFD922367C1B142390 102400 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\UCC.exe
2014-11-21 21:22:04 500035AE0C48529865669F6371977F63 180224 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\Swat4DedicatedServer.exe
2014-11-21 21:22:04 3A6EE2993DACDDC22FD2796D8F3B0B06 2486272 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\SwatEd.exe
2014-11-21 21:22:04 18DF5D2231130CDC0954D419E9B9C056 180224 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\Swat4.exe
2014-11-21 21:19:21 6D6DFC8EBCA2C2CC12B723BAD4E8705C 649642 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\unins000.exe
2014-11-21 20:39:07 FAB83053CAE661446491946824E843CC 821560 ----a-w- C:\Users\Herman Chow\Desktop\mbar\Plugins\fixdamage.exe
2014-11-21 20:39:07 EACCC127C05090878AC0153FA17C4E65 54072 ----a-w- C:\Users\Herman Chow\Desktop\mbar\mbamdor.exe
2014-11-21 20:39:07 2E65369E31EC7B7C95ABCD5516A06B5F 1216824 ----a-w- C:\Users\Herman Chow\Desktop\mbar\mbar.exe
2014-11-21 20:38:09 F92CE6E6B3A0AB75E48D9A6BE9DDB550 16448208 ----a-w- C:\Users\Herman Chow\Downloads\mbar-1.08.2.1001.exe
2014-11-21 11:37:14 0978F3431EBBE86F0DF99DC72570F9AC 2117632 ----a-w- C:\Users\Herman Chow\Downloads\FRST64.exe
2014-11-20 23:15:19 7486729577DED868063CF59478E8166E 300328 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{64893225-ADBA-469E-B114-F3B2C1FBBA77}\setup.exe
2014-11-20 23:14:50 F5B177010B8C314E6D4F91C75B0DC469 65536 ----a-r- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Installer\{64893225-ADBA-469E-B114-F3B2C1FBBA77}\Manual_UK_64893225ADBA469EB114F3B2C1FBBA77.exe
2014-11-20 23:14:50 F5B177010B8C314E6D4F91C75B0DC469 65536 ----a-r- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Installer\{64893225-ADBA-469E-B114-F3B2C1FBBA77}\Manual_FR_64893225ADBA469EB114F3B2C1FBBA77.exe
2014-11-20 23:14:50 F5B177010B8C314E6D4F91C75B0DC469 65536 ----a-r- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Installer\{64893225-ADBA-469E-B114-F3B2C1FBBA77}\Manual_DE_64893225ADBA469EB114F3B2C1FBBA77.exe
2014-11-20 23:14:50 95D649E678DDE650E7EE69A07E7C4098 45056 ----a-r- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Installer\{64893225-ADBA-469E-B114-F3B2C1FBBA77}\S11Launcher.exeE_64893225ADBA469EB114F3B2C1FBBA77.exe
2014-11-20 23:14:50 95D649E678DDE650E7EE69A07E7C4098 45056 ----a-r- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Installer\{64893225-ADBA-469E-B114-F3B2C1FBBA77}\S11Launcher.exe_64893225ADBA469EB114F3B2C1FBBA77.exe
2014-11-20 23:03:33 AA3520FB0133A56BEE1DB34D74DBEF64 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe
2014-11-20 23:03:33 75D477E868CA51EC1B09D730570F322B 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe
2014-11-20 23:03:33 691D49FB44EDE9788288CABE4F7E0DAF 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe
2014-11-20 23:03:20 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmid.exe
2014-11-20 23:03:20 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\unpack200.exe
2014-11-20 23:03:20 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssvagent.exe
2014-11-20 23:03:20 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmiregistry.exe
2014-11-20 23:03:20 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\servertool.exe
2014-11-20 23:03:20 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\tnameserv.exe
2014-11-20 23:03:19 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\pack200.exe
2014-11-20 23:03:19 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jjs.exe
2014-11-20 23:03:19 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe
2014-11-20 23:03:19 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\kinit.exe
2014-11-20 23:03:19 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\orbd.exe
2014-11-20 23:03:19 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\policytool.exe
2014-11-20 23:03:19 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaw.exe
2014-11-20 23:03:19 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaws.exe
2014-11-20 23:03:19 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2launcher.exe
2014-11-20 23:03:19 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\klist.exe
2014-11-20 23:03:19 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ktab.exe
2014-11-20 23:03:18 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jabswitch.exe
2014-11-20 23:03:18 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\java.exe
2014-11-20 23:03:18 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\java-rmi.exe
2014-11-20 23:03:18 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javacpl.exe
2014-11-20 22:26:47 E75121808E60B7806E38620AD3ABF345 528392 ----a-w- C:\Program Files (x86)\Microsoft XNA\XNA Game Studio\v3.0\Redist\DX Redist\DXSETUP.exe
2014-11-20 05:42:28 DBDC93187B17D055F0B17838C7D264BE 6838864 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\39.0.2171.65\39.0.2171.65_38.0.2125.111_chrome_updater.exe
2014-11-19 23:41:06 694F54BD227916B89FC3EB1DB53F0685 809496 ----a-w- C:\Program Files (x86)\OpenAL\oalinst.exe
2014-11-19 23:31:53 23BEEB90693696AE03A4A914BA8F768F 25600 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\tools\php\php-win.exe
2014-11-19 23:31:50 879151407E43DBA4EC845064E90B528D 189440 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\rwr_config.exe
2014-11-19 23:31:07 202CACA76F8837A0842C36D72C66D73A 58880 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\tools\php\php.exe
2014-11-19 22:28:26 B6FD5EE945110AEE9A59B9413BDD9699 2915328 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\rwr_game.exe
2014-11-19 22:28:25 E2ADA570911EDAAAE7D1B3C979345FCE 5207896 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\_CommonRedist\vcredist\2008\vcredist_x64.exe
2014-11-19 22:28:25 BF3F290275C21BDD3951955C9C3CF32C 517976 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\_CommonRedist\DirectX\Jun2010\DXSETUP.exe
2014-11-19 22:28:25 694F54BD227916B89FC3EB1DB53F0685 809496 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\_CommonRedist\OpenAL\2.0.7.0\oalinst.exe
2014-11-19 22:28:25 35DA2BF2BEFD998980A495B6F4F55E60 4479832 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\_CommonRedist\vcredist\2008\vcredist_x86.exe
2014-11-18 23:03:17 999F58FD49FD1106EC44553565CC1325 513216 ----a-w- C:\Program Files (x86)\Steam\steamerrorreporter.exe
2014-11-18 23:03:17 0F8B19E2652FEF7E3512F0E764AE3395 565952 ----a-w- C:\Program Files (x86)\Steam\steamerrorreporter64.exe
2014-11-18 23:03:14 5343A390558A7550AA3ABBE207FA0E3F 1520320 ----a-w- C:\Program Files (x86)\Steam\streaming_client.exe
2014-11-18 23:03:13 FA377C94905D363C1868B9C9ECB11D94 382656 ----a-w- C:\Program Files (x86)\Steam\bin\x86launcher.exe
2014-11-18 23:03:13 5B85DFCDC1C359C601D991714A30339B 383168 ----a-w- C:\Program Files (x86)\Steam\GameOverlayUI.exe
2014-11-18 23:03:13 31D74F51C684B27A24BE0EE08DB998EF 1519808 ----a-w- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
2014-11-18 23:03:13 18F35D618F90AC41C35A9F03FA170957 391872 ----a-w- C:\Program Files (x86)\Steam\bin\x64launcher.exe
2014-11-18 23:03:09 EE57DFA8CDE83118E8745BE09D5E8259 284456 ----a-w- C:\Program Files (x86)\Steam\WriteMiniDump.exe
2014-11-18 23:03:08 E52C1B99FB8622F6F79144F84EA1382D 193784 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_10560.exe
2014-11-18 23:03:08 C34F746ACB2A8C69817AE58AA1DF5D30 238840 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_17300.exe
2014-11-18 23:03:08 B6AE77037F06336CF5046603E715D39F 226552 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_17340.exe
2014-11-18 23:03:08 A23357A49B79CBF46E15F367FBC2028E 500984 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_17330.exe
2014-11-18 23:03:08 9F54C8A9C92C42165575C1428862AF2B 2364920 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_6520.exe
2014-11-18 23:03:08 9F54C8A9C92C42165575C1428862AF2B 2364920 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_6510.exe
2014-11-18 23:03:08 9F0ACFF4C39190F3F84CF87FE4C34085 193784 ----a-w- C:\Program Files (x86)\Steam\steam\games\appid_10540.exe
2014-11-18 22:57:43 CC7ED069C2FC82B5B1555C2044C765CC 833728 ----a-w- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
2014-11-16 21:16:36 697D1E5E6452171F0B9FE3849889BC90 1385808 ----a-w- C:\Users\Herman Chow\AppData\Roaming\uTorrent\updates\3.4.2_34944.exe
=== C: other files ==
2014-11-22 03:53:06 DD94D9163D8951B06AA5DFF9875B949B 294 ----a-w- C:\Games\FalloutNV\mods\cache\JaySuS Ninjas V10-37325-1-0.zip
2014-11-22 03:52:41 32EDE3E8F7183A6BDC84BD28447DDCFC 466 ----a-w- C:\Games\FalloutNV\mods\cache\Lohengrin Main File-44311-1-01.zip
2014-11-22 03:51:39 368D0B2CDB86F438E0F1F27496085051 436 ----a-w- C:\Games\FalloutNV\mods\cache\Machete Gladius Retexture-55142-1-0.zip
2014-11-22 03:47:19 7551E6A0035C5050A59A1E23DED2D8E1 436 ----a-w- C:\Games\FalloutNV\mods\cache\F-1 Grenade-54890-1-0.zip
2014-11-22 03:46:47 37CF432CBE40BC99DEA4ED5419271DA7 716 ----a-w- C:\Games\FalloutNV\mods\cache\Slaver-Hunter Duster-47614-1-0.zip
2014-11-22 03:46:27 C5C22908D8D31D198419C3E79DB5E4CA 294 ----a-w- C:\Games\FalloutNV\mods\cache\G43 - Dark-49977-1-6.zip
2014-11-22 03:46:05 82D59EB4C0A0703F6B7BE05C851CF3AD 294 ----a-w- C:\Games\FalloutNV\mods\cache\KnightHunter.zip
2014-11-22 03:45:45 153E42BEF60F29AF1EA643566C62B721 478 ----a-w- C:\Games\FalloutNV\mods\cache\Custom Tailored Suit-42400.zip
2014-11-22 03:45:21 AC28E0C3A36FF95237DC89C2C32E5AE1 294 ----a-w- C:\Games\FalloutNV\mods\cache\SeamConcealer.zip
2014-11-22 03:44:39 5549C8F3BCD97DA98BD74F63C742EBB8 294 ----a-w- C:\Games\FalloutNV\mods\cache\RaiderFaces.zip
2014-11-22 03:44:10 8C721DB8DDF55CB49535435E56970582 436 ----a-w- C:\Games\FalloutNV\mods\cache\Combat and Chances Knife Retexture-55114-1-1.zip
2014-11-22 01:12:02 C31E019D2BE9B3ED7064DD43BED6F929 1633 ----a-w- C:\Users\Herman Chow\Downloads\Camp Searchlight HotFix Patch-42666-1-15c.zip
2014-11-21 23:14:32 658DE99CEA456C5C19A774AAD9E1AA0B 536057696 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Objects_client.zip
2014-11-21 23:14:14 FF115DD214D5F3571851DC6CB2932C1B 64975608 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Zatar_Wetlands\client.zip
2014-11-21 23:14:07 6FAC04142D615AA63A0E90C7BE92D283 36100851 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Strike_at_Karkand\client.zip
2014-11-21 23:13:54 734D9F7781B3245ADB2959B0DF4A3AFC 68225164 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Songhua_Stalemate\client.zip
2014-11-21 23:13:42 709966D289AA83D51AACA1008A86EFC7 51680043 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Sharqi_Peninsula\client.zip
2014-11-21 23:13:28 94564FC6164AA8B53E34A1C449942793 59921180 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Operation_Clean_Sweep\client.zip
2014-11-21 23:13:10 F96CD38FB152F8F3CC2C600370FDB866 63991704 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Mashtuur_City\client.zip
2014-11-21 23:12:57 05BD77DBA1F9BDC56BDC1B37D1B24435 60333257 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\kubra_dam\client.zip
2014-11-21 23:12:39 5ABF839B3A5B60F3570F1C07E2464C7C 49541018 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Gulf_of_Oman\client.zip
2014-11-21 23:12:20 EAF38D331D5E67844CE97CA4BD287FD2 70290566 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\FuShe_Pass\client.zip
2014-11-21 23:12:05 3BF69E3F66190D97FEA00195F7F9E6F3 63615816 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Dragon_Valley\client.zip
2014-11-21 23:11:41 C30943E8C0ED382088FD1DB446E9F01D 61405808 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Daqing_oilfields\client.zip
2014-11-21 23:11:19 5AF4B875369618A0221A602FC1964070 54301969 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Dalian_plant\client.zip
2014-11-21 23:11:18 55BEEC7B2BDA4505F2D75FFF280087E6 222865 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\AdminUtils\rcon\library.zip
2014-11-21 23:10:42 265B5FFC0F8BDC66BDEF773DEA2BC7E3 8153263 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Zatar_Wetlands\server.zip
2014-11-21 23:10:41 63D462D1F57F9AB6425FA45F69137C6A 2741542 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Strike_at_Karkand\server.zip
2014-11-21 23:10:37 471D9EEBAFC4CD82054357548101CB2E 9084591 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Songhua_Stalemate\server.zip
2014-11-21 23:10:36 ECF2943D43C3CE16C11F11DB02F40BBD 4884701 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Sharqi_Peninsula\server.zip
2014-11-21 23:10:33 2F7185408310EEB02F78B37C23025B4A 10821116 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Operation_Clean_Sweep\server.zip
2014-11-21 23:10:31 42D0034616F1D9C9D05957BCE116FDF7 7130820 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Mashtuur_City\server.zip
2014-11-21 23:10:29 9F5F74A363129D264293FF9FB04F45C6 2543936 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\kubra_dam\server.zip
2014-11-21 23:10:28 E119D8EA0413852A07C2C444FB54B64B 3106785 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Gulf_of_Oman\server.zip
2014-11-21 23:10:26 E553712FE922CDCDE430908210F896C0 5532323 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\FuShe_Pass\server.zip
2014-11-21 23:10:23 AA8163C421EC650DF1E07DBCFA7443CB 8707227 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Dragon_Valley\server.zip
2014-11-21 23:10:22 F771460A4E39846492B74CEE6D5C8F06 6175702 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Daqing_oilfields\server.zip
2014-11-21 23:10:22 8C37226AB14DFC94118B67A4B69EAECB 6841199 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Levels\Dalian_plant\server.zip
2014-11-21 23:10:21 DEE162022D2B179CE6B043BB87C88F31 637218 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Shaders_client.zip
2014-11-21 23:10:18 E59848E3B9499B02849753FFA00E4776 40336842 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Menu_client.zip
2014-11-21 23:10:16 756F35BD654D95F8CCC67252B61FB38D 11472812 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Fonts_client.zip
2014-11-21 23:09:58 9B37A7B368180FD5BB0949A6B49FDDB8 130458067 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Common_client.zip
2014-11-21 23:09:57 F90B23D03CE4B050A784C9ADCEBAB7FD 77282 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Common_server.zip
2014-11-21 23:09:57 F423BE66828D391FC9BA81D7FB6C9B89 2872597 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\pylib-2.3.4.zip
2014-11-21 23:09:57 EB85A20CEA6EAC552D404128B9141FBB 46354826 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Objects_server.zip
2014-11-21 23:09:57 E309814FA8314B0C27C36D166EE08A44 461385 ----a-w- C:\Program Files (x86)\EA GAMES\Battlefield 2\mods\bf2\Menu_server.zip
2014-11-21 21:19:35 835D171DFD40D9CCCEBEB28C31084943 301 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\Content\System\ConvertFonts.bat
2014-11-21 20:39:46 435DCC78057A57965DA660A85A0922DE 135384 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-11-21 20:39:13 3540DDFAC8A076B983F86EB2A79D8FBD 96472 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-11-21 00:54:12 9180100EA75A202191DD62A79A033611 2220463 ----a-w- C:\Program Files (x86)\S.W.A.T. 4\SWAT4_SDK.zip
2014-11-20 23:03:21 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\lib\deploy\ffjcext.zip
2014-11-19 23:21:59 6E1FB40D532C0FFA2A764DB68098D127 765 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\process.bat
2014-11-19 23:19:16 F52A9ADDC8C9A1FBC775B783498298CD 468 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\map_view_prepare.bat
2014-11-19 23:18:59 DDB06A04E430E0A4B84482DB474027FA 745 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\lobby\process_post_lobby.bat
2014-11-19 23:18:58 5539EE197E8BCDC22CC7073ECC13E818 129 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\process_map_view.bat
2014-11-19 23:18:58 5539EE197E8BCDC22CC7073ECC13E818 129 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\lobby\process_map_view_lobby.bat
2014-11-19 23:18:27 DA297E770B466E8DDA8F96CC69C8ABDE 152 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\map_view_water.bat
2014-11-19 23:18:26 14C454BFC12955DD5A92E56A885AF1A0 897 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\lobby\process.bat
2014-11-19 23:18:10 2160BE788B2003778E5AEA45BA23F118 154 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\map_view_isoline.bat
2014-11-19 23:18:06 FE4F39FF58B872F8572D15B743590EF5 761 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\lobby\process_post.bat
2014-11-19 23:18:06 B3C7895A001F3B80249DE2F3248F226D 883 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\lobby\process_lobby.bat
2014-11-19 23:17:56 A75F7FF4D1A81751AE629A8340A1E9D9 336 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\process_post.bat
2014-11-19 23:17:54 6401832ED8925BB479BC6B7B7877473E 324 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\map_view_woods.bat
2014-11-19 23:17:53 8797EA93EF9E7BE21D0C96C842AC3C7F 921 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\RunningWithRiflesDemo\media\packages\vanilla\maps\map2\map_view_combine.bat
2014-11-18 22:40:45 78485A3595BBC4AD875C9F0E3F394E00 820 ----a-w- C:\Games\FalloutNV\mods\cache\Emile Skull Helmet Simple-37040-1-0.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-264883345-1753318112-2640443885-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
"WebStorage"="C:\Program Files (x86)\ASUS\WebStorage\2.1.10.398\ASUSWSLoader.exe"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3"
"DptfPolicyLpmServiceHelper"="C:\Windows\system32\DptfPolicyLpmServiceHelper.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

==== Startup Folders ======================

2014-10-03 00:18:00 1003 ----a-w- C:\Users\Herman Chow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11/21/2014 03:26 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [11/06/2014 12:32 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore1d000a77039515.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [11/06/2014 12:32 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [11/06/2014 12:32 PM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update1" [C:\Program Files (x86)]
"C:\Windows\SysNative\tasks\ASUS Live Update2" [C:\Program Files (x86)]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\ASUS\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS Patch for Touch Panel" [C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe]
"C:\Windows\SysNative\tasks\ASUS Smart Gesture Launcher" [C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe]
"C:\Windows\SysNative\tasks\ASUS Splendid ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe]
"C:\Windows\SysNative\tasks\ASUS Splendid ColorU" [C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe]
"C:\Windows\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"]
"C:\Windows\SysNative\tasks\AsusVibeSchedule" ["C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore1d000a77039515" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\P4GIntlCtrl" [C:\Program Files\ASUS\P4G\IntlDPST.exe]
"C:\Windows\SysNative\tasks\Update Checker" [C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{09AB35B0-1CA1-4EF8-96F8-77FAB230A75D}" [C:\Windows\system32\msfeedssync.exe]

==== Chromium Look ======================

Google Slides - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Google Voice Search Hotword (Beta) - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
YouTube - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Last updated at time on date - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=8 folders=14 16439 bytes)

==== EOF on Sat 11/22/2014 at 14:26:40.62 ======================
 
argus

argus

Former MalwareTips Staff
Verified
Apr 24, 2014
3,395
Re-run zoek and run this script:


Code: 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes];r
"DefaultScope"=-;r
createsrpoint;
emptyfolderscheck;delete
autoclean;
emptyalltemp;
ipconfig /flushdns;b
 
V

Valk

New Member
Thread author
Nov 21, 2014
6
Still getting savifier pop-ups and display setting things


Zoek.exe v5.0.0.0 Updated 05-November-2014
Tool run by Herman Chow on Sat 11/22/2014 at 23:54:38.29.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Herman Chow\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-11-21-111058.log 98003 bytes
C:\zoek-results2014-11-21-122757.log 66309 bytes
C:\zoek-results2014-11-22-222640.log 74898 bytes

==== System Restore Info ======================

11/22/2014 11:55:14 PM Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"=-

==== Batch Command(s) Run By Tool======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) not found
C:\PROGRA~3\Start Menu deleted

==== Chromium Look ======================

Google Voice Search Hotword (Beta) - Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn

==== Chromium Fix ======================

C:\Users\Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Users\Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="Not_Found"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Herman Chow\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Herman Chow\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Herman Chow\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Herman Chow\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Herman Chow\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=12 folders=14 34994 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Herman Chow\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\HERMAN~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on Sun 11/23/2014 at 0:05:21.76 ======================
 

Similar threads

S
    • Like
  • Locked
Google being redirected to Bing search
Replies
1
Views
656
Windows Malware Removal Help & Support
nasdaq
nasdaq
vtqhtr413
    • Like
Technology The apps, movies, games, and everything else we loved in 2023
Replies
0
Views
410
Technology News
vtqhtr413
vtqhtr413
C
    • Like
    • +Reputation
App Review ESET Internet Security 2023
Replies
2
Views
1,817
Written Reviews - Security and Privacy
ForgottenSeer 103564
F

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top