Vir

[vyosek]

Udelejte prosim screen toho ESETu

[Jakub351]

tady je jeden muzu udelat i vic jaak chcete...

[vyosek]

Dle toho navodu kolegy resetujte router, nastavte, vycistete PC, pak vycisteni dns (ipconfig /flushdns) atd

Log z ESETu v poradku, neskodne veci

[Jakub351]

okey dekuju pujdu na to hadam to njak udelam

[vyosek]

Kdyby neco, tak napiste a zkusime poradit

[Jakub351]

takže vše sem udelal podla navodu akorat ten posledni 10 krok WebCureit nešel stahnout pytalo to heslo od routeru a kdyz sem ho dal tak nic a pytalo to znova

[vyosek]

Udelal jste i toto

Potom zvolíme Štart - Spustiť, napíšeme: CMD a klikneme na OK.
Potom napíšeme ipconfig /flushdns a stlačíme Enter.
Potom napíšeme netsh winsock reset a stlačíme Enter.

A jaky je stav

[Jakub351]

no to jsem neudelal kdyz mi nešel ten posledni krok ale tam bylo napsany kdyz mi jenom nepujde internet nebo neco podobnyho.... stav je porad takej istej...koupil sem si novej mobil nevim jestli vobec zapnout tu wif jak mi zas blokne prehliadac nepujde ani fcb ani ytb a bude tam napsany prej mam starej adobe mam ho aktualizovat i kdyz mam nejnovsi a kdyz ta to kliknu automaticky to blokne prej tam je vir...

[vyosek]

Ohledne toho adobe je to to same - napadeny router - vizte zde http://www.viruskasino.com/2014/05/warn ... ut-of.html

[Jakub351]

no uvidime wifi sem uz spustil jede to zatim normal i web vše kdyz ste rekli prej ty zlozky z esetu sou neškodne tak dam na vas necham to tak kdyz se začne dít neco horši pak se zas ozvu a dekuju za radu zatim

[vyosek]

Nemate zatim zac...

[Jakub351]

tak zdravim sem s5 problem je mam 113 infekcii nevim jak na to spyhunter je free oskenoval ale bez full verzii se neda vymazat ani jeden ten mallware prosim o radu

[vyosek]

Zdravim

SpyHuntera odinstalujte - jednak je placeny a jednak predevsim nekvalitni

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[Jakub351]

tady je: Logfile of random's system information tool 1.10 (written by random/random)
Run by JCMEDIA at 2014-11-24 19:45:46
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 816 GB (86%) free of 954 GB
Total RAM: 8138 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:45:48, on 24. 11. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Users\JCMEDIA\AppData\Roaming\Enigma Software Group\sh_installer.exe
C:\Program Files\trend micro\JCMEDIA.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1475959662-3361656365-1343682757-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1475959662-3361656365-1343682757-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - Unknown owner - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7509 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1196.0.955599121\216506164" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38,46 --gpu-vendor-id=0x10de --gpu-device-id=0x0fc6 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.1422 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="1196.1.87445446\1578352774" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="1196.7.1773522184\2078736928" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="1196.18.1779277942\791129779" /prefetch:673131151
"taskhost.exe"

C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{FCC74B77-EC3E-4DD8-A80B-008A702075A9}
"C:\Users\JCMEDIA\AppData\Roaming\Enigma Software Group\sh_installer.exe" -r sh
"C:\Users\JCMEDIA\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-02-24 5581888]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2012-07-19 133440]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2014-11-24 19:44:09 ----D---- C:\Program Files\trend micro
2014-11-24 19:15:53 ----D---- C:\Users\JCMEDIA\AppData\Roaming\XnView
2014-11-24 19:15:49 ----D---- C:\Program Files (x86)\XnView
2014-11-24 18:57:33 ----D---- C:\Users\JCMEDIA\AppData\Roaming\IrfanView
2014-11-24 17:37:15 ----A---- C:\autoexec.bat
2014-11-24 17:36:51 ----D---- C:\Users\JCMEDIA\AppData\Roaming\Enigma Software Group
2014-11-23 19:32:51 ----AS---- C:\Windows\SYSWOW64\nircmdc.exe
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\zyadeizbstq.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\zmpm.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\zlvlgaoro.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\zbu.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ywcotf.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\yruogei.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\yqwnxmuqkr.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ynbpico.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\yft.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\yfddtyco.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\yeqc.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xrjmwls.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xratz.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xnrwoffi.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xkiazoygsu.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xitroqxj.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xhliavnncf.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xhi.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xhepiahgu.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xfor.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xei.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xdu.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xbwudob.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\xabxrnwognq.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\wztapis.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\wvpmojcpagc.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\wuienx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\wmaeoulj.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\wjd.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\wgfzxqxc.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vwx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vwvpxtf.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vtccpjjxhbl.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vpymgh.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vky.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vhgdwwy.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\vexcv.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\uuknvmo.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\upqsk.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\uilhoi.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ugh.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\uaqqwmjt.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\tubh.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\tmksiwyo.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\tjerrruiu.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\tgysztaa.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\tgp.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\szanch.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\swrosmstc.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\svh.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\surl.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\sthnpbr.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\skjqlknoa.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rvitifkhda.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ruwy.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rtsquze.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rnaxcorvnpm.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rmkgnn.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rfbddh.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rex.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rckntimj.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\rbou.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\qzegqoobxiy.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\qqqewpfdl.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\qpghwlpi.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\qnretzig.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\qheefqe.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\qbdvroefxtf.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\pvsbacopgo.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\puxozpwjj.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ptfcgaof.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\psxulyb.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\psuezqksw.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\pqjjgvrcrr.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\pplmagu.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\pefaimbebk.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\pcpmvigyknw.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\oxxpcqneqfk.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\onuhfaqdr.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\olcfhmx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\okbzdweogsf.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ogn.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ogknbwh.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ocduhsoaeky.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\netcd.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ndpxrjvfik.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mxdvmytw.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mpuqpwyjjoe.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mlfml.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mhymnl.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mhefcltipun.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mcrrrdylbyb.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\mbpbf.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\lxjydaq.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\lwcnbd.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\lvjfqnrfy.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\lmkwvtfa.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\liif.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\lhlcj.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\lex.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ldna.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ktkvvqws.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\kokjkgnayl.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\kgqeevfnt.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\kfkegdfzsmf.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\kblu.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\kaddzumq.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\jxqxva.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\jscxtijpp.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ixrmyzmuf.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\itshnv.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\isnvgwxvzx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ikvd.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ifvbafbi.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\iduxw.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ict.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ibqvywo.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\cheng.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hxpuo.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\htzs.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\htubwk.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hqwxnfwmq.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hoboh.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hmzimwaq.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hhxjfatux.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hgu.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hgdxppghmnp.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hfaptb.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\hbqnkzjqm.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gzswrdxw.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gxveh.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gxiglgpq.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gswxesatox.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gksspjwk.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gjrxn.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\giemuzl.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ggjxmqh.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gecrm.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gcgii.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\gbx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\fyvyvw.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\fqat.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\fnyj.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\fkuuzbgv.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ezafudvoiyt.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ehe.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\egskehx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\edsljcdivuy.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\dxrnzku.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\dqajfj.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\dmtlsnues.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\dfol.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\defhdp.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\cqbt.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\cntaml.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\civwzqm.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\cfclssx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\cdntf.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\cbgvboorrjj.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\bzyz.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\bsmobir.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\blxcchdo.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ayyyufnvi.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\aso.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\arembuqqlhl.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\apluecjxljh.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\akjgqsepny.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ajnzyssdz.dat
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\ajfm.ini
2014-11-22 11:42:17 ----A---- C:\Windows\SYSWOW64\aclcvmx.ini
2014-11-22 11:42:17 ----A---- C:\Windows\rnni.ini
2014-11-22 11:42:17 ----A---- C:\Windows\refyhravcw.dat
2014-11-22 11:42:17 ----A---- C:\Windows\qgqkumwr.ini
2014-11-22 11:42:17 ----A---- C:\Windows\pxluctu.dat
2014-11-22 11:42:17 ----A---- C:\Windows\fas.ini
2014-11-22 11:42:17 ----A---- C:\Windows\err.ini
2014-11-22 11:42:17 ----A---- C:\Windows\ecisfvuhpa.ini
2014-11-22 11:42:17 ----A---- C:\Windows\baxqskha.dat
2014-11-22 11:42:16 ----A---- C:\Windows\xibfo.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\zzmbkjttcv.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\zvxuplfqaiv.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\zmulmsalvp.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\zhbezzk.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\zgtn.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\yztg.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\yfguqg.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ybcwdcj.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\xhxj.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\xbeumyws.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\wvmaql.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\wtkvqxla.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\wmcwjfwebcg.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\wjjkwjxof.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\vuzy.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\vekhfmquvd.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\uvhkeoo.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ujupkolaxz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\uhgxcxne.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\udixx.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ubomomrwsdk.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\tttpgilubhz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\tixbprzs.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\tcu.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\swmx.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\srt.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\sqrvkkbktxz.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\sntlrnm.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\slfzi.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\skcx.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\sjzadmi.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\sfsz.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\rzuc.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\rumiqlhw.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\rpz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\riffaw.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\rifbww.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\rhw.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\qxbus.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\qttwzyei.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\qsopsnklrnj.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\qrpcq.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\qqqt.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\pqognjycvt.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\pjtdqi.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\phcioojd.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\pedcjlq.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\pclkwlz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\pathdekgnl.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ousspnt.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\otvbczqzr.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\otorwgb.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\oofzxmm.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\oofsbkfk.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ooaomuyhvz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\olhdsirhbjm.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\oicryjbsxhd.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ntpp.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\npuailglpt.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\narceunvfsr.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\mwzhlh.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\mwuwz.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\mvhxlyyr.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\minowwpnhw.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\mflohpswrxl.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\mbufohzbd.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\maynwlp.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\lvzw.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\lqya.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\lnm.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\lffhqjpt.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\kppamcnflm.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\knk.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\kkrk.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\kjvzwobzke.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\jvpytddxshm.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\jvanbm.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\jecbuzopv.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\jazdltqdat.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ivz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ithugwck.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\imisiwl.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ilppyukvb.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\hxokmtz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\hulemjbpzih.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\hrfumedgw.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\hiushfclfla.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\gwegf.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ghdvcccqxcv.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\fzzu.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\fnxe.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\fmlgoxxnn.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\fhagevihj.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\epuzw.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\eesejbzog.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\dmuuqmc.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\dkfd.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\djzobvavx.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\dgppwo.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\dgckkqqq.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\dfswulgomz.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\detwvkklv.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\ctxnogspj.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\cbqynozbpo.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\byoqvakieh.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\bxqecmpfn.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\bulcyfilrrd.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\bsxkwl.dat
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\betjex.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\azuxhafgo.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\auemdu.ini
2014-11-22 11:42:16 ----A---- C:\Windows\SYSWOW64\aesvs.dat
2014-11-22 11:42:16 ----A---- C:\Windows\kragnbr.dat
2014-11-22 11:42:16 ----A---- C:\Windows\eewo.ini
2014-11-19 11:27:58 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 11:27:58 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 11:27:58 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 11:27:58 ----A---- C:\Windows\system32\kerberos.dll
2014-11-18 14:33:12 ----D---- C:\Windows\SYSWOW64\directx
2014-11-18 13:58:54 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-11-18 13:58:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-11-18 13:58:54 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-11-18 13:58:54 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-11-18 13:58:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-11-18 13:58:53 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-11-18 13:58:53 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-11-13 09:54:32 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-13 09:54:32 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-13 09:54:32 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-13 09:54:32 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-13 09:54:32 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 09:54:32 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 09:54:32 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 09:54:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 09:54:32 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-13 09:54:29 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-13 09:54:29 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 09:54:29 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 09:54:29 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 09:54:29 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 09:54:29 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-13 09:54:28 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-13 09:54:28 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 09:54:28 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 09:54:28 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 09:54:28 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 09:54:28 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 09:54:28 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 09:54:27 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-13 09:54:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-13 09:54:27 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 09:54:27 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 09:54:27 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 09:54:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-13 09:54:26 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-13 09:54:26 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-13 09:54:26 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-13 09:54:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 09:54:26 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 09:54:26 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 09:54:26 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 09:54:26 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 09:54:26 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 09:54:25 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 09:54:24 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 09:52:19 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 09:52:18 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-13 09:52:18 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-13 09:52:18 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-13 09:52:18 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-13 09:52:18 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 09:52:18 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 09:52:18 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 09:52:18 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 09:52:17 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-13 09:52:17 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-13 09:52:17 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 09:52:17 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 09:52:17 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 09:52:16 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-13 09:52:16 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-13 09:52:16 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-13 09:52:16 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-13 09:52:16 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-13 09:52:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-13 09:52:16 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 09:52:16 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 09:52:16 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 09:52:16 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 09:52:16 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 09:52:16 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 09:52:10 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-13 09:52:10 ----A---- C:\Windows\system32\packager.dll
2014-11-13 09:52:09 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 09:52:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-13 09:52:08 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-03 18:32:13 ----D---- C:\Users\JCMEDIA\AppData\Roaming\Quake3
2014-10-16 10:12:46 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-16 10:12:46 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-16 10:12:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-16 10:12:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-16 10:12:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-16 10:12:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-16 10:09:30 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-10-16 10:09:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-16 10:09:30 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-10-16 10:09:30 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-10-16 10:09:30 ----A---- C:\Windows\system32\tsgqec.dll
2014-10-16 10:09:30 ----A---- C:\Windows\system32\mstsc.exe
2014-10-16 10:09:30 ----A---- C:\Windows\system32\aaclient.dll
2014-10-16 10:09:29 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-16 10:09:29 ----A---- C:\Windows\system32\mstscax.dll
2014-10-16 10:09:22 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-16 10:09:22 ----A---- C:\Windows\system32\rastls.dll
2014-10-16 10:09:20 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-16 10:09:20 ----A---- C:\Windows\system32\winsta.dll
2014-10-16 10:09:20 ----A---- C:\Windows\system32\winlogon.exe
2014-10-16 10:09:20 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-16 10:09:20 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-16 10:09:19 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-12 09:32:04 ----D---- C:\Users\JCMEDIA\AppData\Roaming\Steam
2014-10-12 09:05:58 ----D---- C:\Program Files (x86)\Middle Earth Shadow of Mordor
2014-10-02 16:29:19 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-10-02 16:16:12 ----D---- C:\ProgramData\Steam
2014-09-29 08:21:13 ----D---- C:\Users\JCMEDIA\AppData\Roaming\uTorrent
2014-09-29 06:37:10 ----D---- C:\Users\JCMEDIA\AppData\Roaming\Firefly Studios
2014-09-29 06:27:16 ----D---- C:\ProgramData\Firefly Studios
2014-09-29 06:26:04 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-09-29 06:26:04 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-09-29 06:26:03 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-09-29 06:26:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-09-29 06:26:03 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-09-29 06:26:03 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-09-29 06:26:02 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-09-29 06:26:02 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-09-29 06:26:02 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-09-29 06:26:02 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-09-29 06:26:01 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-09-29 06:26:01 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-09-29 06:26:00 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-09-29 06:25:59 ----A---- C:\Windows\system32\xinput1_3.dll
2014-09-29 06:25:42 ----D---- C:\Program Files (x86)\Firefly Studios
2014-09-29 01:24:03 ----D---- C:\Users\JCMEDIA\AppData\Roaming\Audacity
2014-09-20 23:38:38 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-09-20 23:38:38 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-09-20 23:38:37 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-09-20 23:38:37 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-09-14 19:26:49 ----D---- C:\Users\JCMEDIA\AppData\Roaming\NVIDIA
2014-08-29 09:44:28 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-29 09:44:28 ----A---- C:\Windows\system32\gdi32.dll
2014-08-29 09:43:47 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-29 09:43:46 ----A---- C:\Windows\system32\shell32.dll
2014-08-29 09:43:16 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-29 09:43:16 ----A---- C:\Windows\system32\tzres.dll
2014-08-29 09:42:31 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-29 09:42:30 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-29 09:42:11 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-29 09:41:48 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-29 09:41:48 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-29 09:41:48 ----A---- C:\Windows\system32\msi.dll
2014-08-29 09:41:48 ----A---- C:\Windows\system32\authui.dll
2014-08-29 09:41:47 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-29 09:41:47 ----A---- C:\Windows\system32\msihnd.dll
2014-08-29 09:41:47 ----A---- C:\Windows\system32\consent.exe
2014-08-29 09:41:04 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-29 09:41:04 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-29 09:41:04 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-29 09:41:04 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-29 09:41:04 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-29 09:41:02 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-29 09:41:02 ----A---- C:\Windows\system32\icardres.dll
2014-08-29 09:41:02 ----A---- C:\Windows\system32\icardagt.exe

======List of files/folders modified in the last 3 months======

2014-11-24 19:45:48 ----D---- C:\Windows\Temp
2014-11-24 19:45:26 ----RD---- C:\Program Files
2014-11-24 19:45:21 ----D---- C:\Windows\Prefetch
2014-11-24 19:15:49 ----RD---- C:\Program Files (x86)
2014-11-24 18:48:48 ----HD---- C:\ProgramData
2014-11-24 18:28:27 ----SHD---- C:\Windows\Installer
2014-11-24 18:28:25 ----SHD---- C:\System Volume Information
2014-11-24 18:28:21 ----D---- C:\Windows
2014-11-24 18:27:58 ----D---- C:\Program Files (x86)\Common Files
2014-11-24 17:38:31 ----D---- C:\Windows\System32
2014-11-24 17:38:31 ----D---- C:\Windows\inf
2014-11-24 17:38:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-24 17:38:20 ----D---- C:\Windows\system32\catroot2
2014-11-24 17:36:49 ----D---- C:\Windows\system32\Tasks
2014-11-24 17:35:34 ----A---- C:\Windows\SYSWOW64\log.txt
2014-11-24 17:35:28 ----D---- C:\Windows\system32\drivers
2014-11-24 17:33:25 ----D---- C:\ProgramData\NVIDIA
2014-11-24 17:32:45 ----D---- C:\Windows\system32\config
2014-11-23 19:32:51 ----D---- C:\Windows\SysWOW64
2014-11-23 18:28:01 ----SD---- C:\Users\JCMEDIA\AppData\Roaming\Microsoft
2014-11-23 17:55:44 ----D---- C:\Windows\Tasks
2014-11-23 14:52:56 ----D---- C:\Windows\SoftwareDistribution
2014-11-23 14:46:33 ----D---- C:\Windows\system32\wdi
2014-11-23 14:44:51 ----D---- C:\Windows\debug
2014-11-20 20:12:18 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-11-20 14:37:10 ----D---- C:\Windows\winsxs
2014-11-19 13:28:30 ----D---- C:\Windows\Logs
2014-11-19 11:27:31 ----D---- C:\Windows\system32\catroot
2014-11-18 13:59:01 ----SHD---- C:\Config.Msi
2014-11-14 20:13:25 ----D---- C:\Windows\rescache
2014-11-14 19:55:26 ----D---- C:\Windows\Microsoft.NET
2014-11-14 19:55:07 ----RSD---- C:\Windows\assembly
2014-11-14 17:41:42 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-14 17:41:42 ----D---- C:\Windows\system32\en-US
2014-11-14 17:41:42 ----D---- C:\Program Files\Internet Explorer
2014-11-14 17:41:41 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-14 10:57:34 ----D---- C:\Windows\system32\MRT
2014-11-14 10:55:13 ----A---- C:\Windows\system32\MRT.exe
2014-11-04 14:30:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-16 17:13:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-10-16 17:13:24 ----D---- C:\Windows\system32\sk-SK
2014-09-27 14:24:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-08-31 22:17:50 ----D---- C:\Users\JCMEDIA\AppData\Roaming\TS3Client
2014-08-30 05:09:52 ----D---- C:\Windows\ehome
2014-08-30 05:09:49 ----D---- C:\Windows\PolicyDefinitions
2014-08-26 19:01:46 ----D---- C:\Windows\system32\drivers\UMDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 19264]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 357184]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-02 62784]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-12-19 194488]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
S3 EagleX64;EagleX64; C:\Windows\system32\drivers\EagleX64.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-07-30 25640]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2014-07-30 30528]
S3 MBAMSwissArmy;MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-07-30 19456]
S3 TrueSight;TrueSight; \??\C:\Windows\System32\drivers\TrueSight.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-07-30 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-07-30 30208]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2014-02-24 1343408]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-05 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-19 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 877856]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-19 365376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe []
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-07-30 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Jakub351]

Omluvam se za rsit frsit nesel stahnout prej je skodlivej a nejde to ani upravit tak hadam neva sou tady oboji Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-11-2014 01
Ran by JCMEDIA (administrator) on JCMEDIA-PC on 24-11-2014 20:00:46
Running from C:\Users\JCMEDIA\Desktop
Loaded Profiles: JCMEDIA & UpdatusUser (Available profiles: JCMEDIA & UpdatusUser)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Enigma Software Group USA, LLC.) C:\Users\JCMEDIA\AppData\Local\Temp\esg_uninstall.exe~
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5581888 2014-02-24] (ESET)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\S-1-5-21-1475959662-3361656365-1343682757-1000 -> {2F50EB31-9A82-4879-B88E-93CA5D524E33} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll No File
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 146.185.220.85 8.8.8.8

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-07-30]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (James White) - C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2014-08-24]
CHR Extension: (YouTube) - C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-30]
CHR Extension: (Adblock Plus) - C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-02]
CHR Extension: (Hľadať v Google) - C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-30]
CHR Extension: (Peňaženka Google) - C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-30]
CHR Extension: (Gmail) - C:\Users\JCMEDIA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-30]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1343408 2014-02-24] (ESET)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-05] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
S3 EagleX64; No ImagePath
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-07-30] ()
S3 MBAMSwissArmy; No ImagePath
U3 TrueSight; C:\Windows\SysWOW64\drivers\TrueSight.sys [33512 2014-08-24] ()

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-24 20:00 - 2014-11-24 20:00 - 02118144 _____ (Farbar) C:\Users\JCMEDIA\Desktop\FRST64.exe
2014-11-24 20:00 - 2014-11-24 20:00 - 00112640 _____ (forum.viry.cz) C:\Users\JCMEDIA\Desktop\Nepotvrdené 412511.crdownload
2014-11-24 20:00 - 2014-11-24 20:00 - 00008845 _____ () C:\Users\JCMEDIA\Desktop\FRST.txt
2014-11-24 20:00 - 2014-11-24 20:00 - 00000000 ____D () C:\FRST
2014-11-24 19:44 - 2014-11-24 19:45 - 00000000 ____D () C:\Program Files\trend micro
2014-11-24 19:43 - 2014-11-24 19:43 - 01222144 _____ () C:\Users\JCMEDIA\Desktop\RSITx64.exe
2014-11-24 19:15 - 2014-11-24 19:28 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\XnView
2014-11-24 19:15 - 2014-11-24 19:16 - 00000923 _____ () C:\Users\JCMEDIA\Desktop\XnView.lnk
2014-11-24 19:15 - 2014-11-24 19:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2014-11-24 19:15 - 2014-11-24 19:15 - 00000000 ____D () C:\Program Files (x86)\XnView
2014-11-24 19:01 - 2014-11-24 19:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-11-24 18:57 - 2014-11-24 18:58 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\IrfanView
2014-11-24 18:41 - 2014-11-24 18:54 - 00000000 ____D () C:\Users\JCMEDIA\Documents\DonationCoder
2014-11-24 17:37 - 2014-11-24 17:37 - 00000000 _____ () C:\autoexec.bat
2014-11-24 17:36 - 2014-11-24 19:45 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\Enigma Software Group
2014-11-23 19:32 - 2013-08-11 15:40 - 00043520 ____S (NirSoft) C:\Windows\SysWOW64\nircmdc.exe
2014-11-23 17:55 - 2014-11-23 17:55 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-11-23 14:44 - 2014-11-24 17:33 - 00000392 _____ () C:\Windows\setupact.log
2014-11-23 14:44 - 2014-11-23 20:53 - 00002414 _____ () C:\Windows\PFRO.log
2014-11-23 14:44 - 2014-11-23 14:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-22 23:27 - 2014-11-23 14:52 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\The.Evil.Within-RELOADED
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\zwjvhcytwbc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\xibfo.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\uivgphjr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\tzhdw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\togl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\tnlcyha
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zzmbkjttcv.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zyowns
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zyadeizbstq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zxykwvw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zxntsmpkns
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zxlhpcxet
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zvybg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zvxxfsps
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zvxuplfqaiv.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zufsomdnqb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zprns
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zph
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\znubd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zmulmsalvp.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zmpm.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zlvlgaoro.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zkvadtmlfi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zkgl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zhbezzk.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zgtn.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zgdzvuq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zfxbo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zerryde
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zdo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zbu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\zayfbnltwb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yzvlitevcp
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yztg.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ywjmsytb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ywcotf.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yueiza
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yrvdebxgrzt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yruogei.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yqwnxmuqkr.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yqjwaqwjrgn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ypwgam
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ypn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ypb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ynbpico.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yjbyky
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yifbtom
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yhvfljhx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yft.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yfguqg.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yfddtyco.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yeubbz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yeqc.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ybnso
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ybcwdcj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yajdu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\yacxpunyz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xxfxt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xwolbkcl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xwfjdkdtixu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xuyoohmb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xsdi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xrjnqaxgslz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xrjmwls.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xratz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xogeiasqdx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xnrwoffi.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xnaaiqyn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xlaoaq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xkiazoygsu.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xivldzk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xitroqxj.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xhxj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xhliavnncf.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xhjvdk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xhi.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xhepiahgu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xfor.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xei.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xdu.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xdnu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xbwudob.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xbeumyws.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\xabxrnwognq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wztapis.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wvpmojcpagc.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wvmaql.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wuienx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wtkvqxla.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wriuwbh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wrfmrz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wqnbogohpa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wpushbesv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wpa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wooq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wnzrlwgymia
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wnwpuad
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wnwis
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wmsxmgb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wmcwjfwebcg.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wmcbsqz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wmaeoulj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wltgfaapaxg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wlagsxpfnjc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wkaig
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wjjkwjxof.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wjd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wio
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\winwis
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wchut
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wgjy
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wgfzxqxc.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wgekhz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\wbyqcoru
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vylysjgigsp
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vydky
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vxamvnvecd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vwx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vwvpxtf.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vuzy.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vutlo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vtccpjjxhbl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vrt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vrb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vqzkhuu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vpymgh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vlzenqzgwi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vlv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vltbvctcek
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vlhw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vky.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vhuya
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vhgdwwy.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vgkauki
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vexcv.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vekhfmquvd.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vedcfvtun
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\vcwbqe
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\uykjvcews
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\uvhkeoo.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\uuknvmo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\usbsjhq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\urupvqobgah
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\urfoeuqrrvx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\upwhfcfpq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\upqsk.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\umckcky
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\umblkiu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ukqsipcp
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ujurc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ujupkolaxz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ujmb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ujemlvpjgb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\uilhoi.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\uhgxcxne.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ugh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\udixx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ubomomrwsdk.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\uaqqwmjt.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\txkpazbbtc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tvumtdvg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tviuuwtwvs
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tubh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tttpgilubhz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\trpcwzo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\trjhziwhqax
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tqkrkktdw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tplabizkfi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tparier
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tmksiwyo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tmiduq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tmhmpisgrjb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tjerrruiu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tixbprzs.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tgysztaa.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tgp.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\teatwcjgoq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\tcu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\szanch.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sxngztzr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\swucw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\swrosmstc.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\swmx.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\svh.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\surl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\strlohjio
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sthnpbr.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\srt.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\srceeuuzog
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sqrvkkbktxz.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sntlrnm.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\slvwlpnaqo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\slfzi.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\skjqlknoa.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\skcx.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sjzadmi.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sjfso
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sghtkpu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sfxzlgg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sfsz.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sbm
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\sao
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rzyxt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rzuc.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rybqxma
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rxlxmq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rwwmb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rwumiig
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rvitifkhda.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ruwy.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rumiqlhw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rtssxvscl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rtsquze.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rrbddpfknf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rquw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rpz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rnixg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rnaxcorvnpm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rmkgnn.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rlxrf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rkdkyehqiv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rjzxhrd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rilkwzwyil.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\riffaw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rifbww.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rhw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rhrrf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rfmfahwb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rfbddh.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rex.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rckntimj.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rbw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rbou.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\rbc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qzegqoobxiy.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qxbus.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qwdspx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qvt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\quqsl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qttwzyei.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qswzofzltsi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qsopsnklrnj.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qrpcq.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qqqt.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qqqewpfdl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qqmnchoguw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qpghwlpi.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qogqdj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qnretzig.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qncintxhpbv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qmlr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qldlx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qjhrojfdm
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qhyfrlwcpck
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qheefqe.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qebywplco
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qcyfwezkrw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qcw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qbvhrrhf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qbt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qbqeurlah
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qbdvroefxtf.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\qayekwvmsh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pwlwjlqf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pwalonerzam
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pwa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pvsbacopgo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\puxozpwjj.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ptuhkoey
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ptfcgaof.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ptcwmepfq.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\psxulyb.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\psuezqksw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pqognjycvt.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pqjjgvrcrr.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ppmurgqnqi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pplmagu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pjtdqi.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pjjipw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\phcioojd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pgsh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pgmxllhrgl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pffkxpns
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pepxq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pefaimbebk.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pedcjlq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pdqrcouep
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pctk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pcpmvigyknw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pcnbisr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pclkwlz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pbzcnzjjax
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\pathdekgnl.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oylo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oybbndhpat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oxxpcqneqfk.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oxsta
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ousspnt.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ourtunrnnc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\otvbczqzr.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\otorwgb.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\otngpkqlgc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oqljnan
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oqipw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\opnaypiuh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\opn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oofzxmm.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oofsbkfk.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oocihv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ooaomuyhvz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\onuhfaqdr.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\omgkwcqmzh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\olwz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\olvkvxg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\olhitsu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\olhdsirhbjm.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\olcfhmx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\okbzdweogsf.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ojlw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\oicryjbsxhd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ohfmfxmgnvd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ogn.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ogknbwh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\odpeuveeirg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\odklrkid
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\odieozehykz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ocduhsoaeky.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\obfbsckxiuv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nysjggwyrz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nybrohbe
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nvolurg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nvdkhnrqwn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ntpp.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nreadmitf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nqxtrw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\npx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\npuailglpt.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\noyqt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nnzey
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\nlzvfpgxhuw.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\netcd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ndpxrjvfik.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\narceunvfsr.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mzquaye
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mxdvmytw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mwzhlh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mwuwz.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mvxgdkyrjxt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mvhxlyyr.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mvfhxic
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\msbwl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mrprxeehpe
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mpvauzxwdz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mpuqpwyjjoe.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mpr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mlfml.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mkyszmt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\minowwpnhw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mimsxzkfsba
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mhymnl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mhefcltipun.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mftkul
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mfpfkyzrxe
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mflohpswrxl.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mcrrrdylbyb.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mbufohzbd.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mbpbf.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\mbcuyqp
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\maynwlp.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lzjqvgauzfs
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lxjydaq.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lwohwwxa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lwcnbd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lvzw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lvjfqnrfy.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ltm
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ltcbbxm
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lrwldsbcq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lrotxpqhol
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lqya.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lqpksm
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lptdlhqltgj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lnuzijew
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lnm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lmti
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lmkwvtfa.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lljl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lklnirnii
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\litvwn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\liif.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lhlcj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lffhqjpt.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lfdwrke
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lex.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lervczxc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lepkgvz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ldypa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ldna.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\lbial
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kza
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kykkyyjuomq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kxfziwiehxe
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ktkvvqws.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kppamcnflm.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kokjkgnayl.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\knkpjcuzkb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\knk.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kmgbr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kkxlvn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kkrk.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kjvzwobzke.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kjvgkvsar
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kjj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\khzpcmbe
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kgqeevfnt.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kfzlj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kfkegdfzsmf.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kffzqte
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kdi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kcd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kblu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kagoeryt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\kaddzumq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jxvemnjznu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jxqxva.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jvpytddxshm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jvanbm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\junn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jtdznq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jsslx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jsgzsb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jscxtijpp.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jresfclof
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jmpx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jkne
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jhvyfmljeob
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jfuwpyqkkiu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jfilvhux
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jes
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jeoc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jecbuzopv.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jdlshte
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jclas
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\jazdltqdat.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iyao
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ixrmyzmuf.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ivz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iuzsgndntd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\itshnv.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ithugwck.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\isnvgwxvzx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ipldozicq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ipdnxhip
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iooy
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iobspad
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\imisiwl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ilppyukvb.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ikvd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ikugogpknz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ikitzfwrlzd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ihxkhtew
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\igy
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\igwyc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ifwyys
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ifvbafbi.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ifhfyantlzc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ifh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iecx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\idzfxu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iduxw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ict.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ibqvywo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\iarssnndg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cheng.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hzooveshuhi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hznd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hxpuo.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hxokmtz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hwsfdvw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hvbzrysf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hulemjbpzih.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\huiqk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\htzs.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\htubwk.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\htmhmor
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hsxps
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hrqwp
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hrfumedgw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hqwxnfwmq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hqofa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hoboh.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hmzimwaq.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hiushfclfla.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\higwf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hhxjfatux.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hgu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hgdxppghmnp.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hfbtzuzg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hfaptb.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hbqnkzjqm.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\hbduxvmv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gzswrdxw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gxveh.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gxiglgpq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gwyphivwam
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gwegf.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gwcogj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gvsgjc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gtkrjpla
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gsztiwpu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gswxesatox.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gswssvrjl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gqr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gksspjwk.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gjrxn.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gityrsbrb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\giemuzl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ghgeryzg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ghdvcccqxcv.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ggjxmqh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gfgr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gecrm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gdsbvd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gck
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gcgii.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gbx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\gazeenlg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ganwg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fzzu.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fyvyvw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fxwpiwys
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fxhn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fsopbrrnag
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fsjfcnvfjr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\frznpwqgbxt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fqat.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fonbotjzdzr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fnyj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fnxe.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fnwncbqssp.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fmlgoxxnn.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fkuuzbgv.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fjpkjgod
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fhsongrcc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fhg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fhagevihj.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\fcibhhrxsu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ezafudvoiyt.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\evpk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eswjlbv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\erauoi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eqartqwjeg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\epvvbcvej
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\epuzw.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eng
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eiwxqfsa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ehe.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\egskehx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\egeegu
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\efwxeovrva
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eesejbzog.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eebifxejokv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\edsljcdivuy.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\edovnmlhmu.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ecqooiby
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ebwmf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ebeblkboibi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\eafryqglx
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dzna
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dxrnzku.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dtxfol
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dqeavzgp.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dqajfj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dpfrqyaznoo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dows
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dogequdlcho
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dmuuqmc.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dmtlsnues.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dkfd.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\djzobvavx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dizbniz.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dgppwo.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dgckkqqq.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dfswulgomz.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dfol.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dfdenbmhi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\detwvkklv.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\defhdp.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\dbsbm
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\daltzc
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\daflhn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cxoab
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cwr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ctxnogspj.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ctsn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cqbt.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cprceg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cntaml.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cjsvjsn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cixpn
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\civwzqm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cguaohd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cfclssx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cdntf.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cbqynozbpo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cbgvboorrjj.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\cakqt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bzyz.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bzkhikmncyf
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\byoqvakieh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bycuny
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bxqecmpfn.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bulcyfilrrd.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bsxkwl.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bsmobir.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bpajjydv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bmpedqmgmxo
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\blxcchdo.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bloulzqvnrd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bfsdlrscmiv
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\betjex.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\bacdzugy
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\azuxhafgo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\azepwokxctz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ayyyufnvi.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\axxvniyw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\auqopa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\auemdu.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aso.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\arsimaqa
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\arembuqqlhl.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aqluxxpvzxz
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\apluecjxljh.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aotnjwxb.xml
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\alswcpnkwg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\alpzadzk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\akophcvl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\akjgqsepny.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ajnzyssdz.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ajfm.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aihwg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\ahlkupje
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\agd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\afocvlmwd
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aesvs.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\adpgegoatcl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aclcvmx.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\abqj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\SysWOW64\aaydghedumh
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\rnni.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\refyhravcw.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\qgqkumwr.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\pxluctu.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\pnaphwmzlgp
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\oaap
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\nhs
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\lzuovdq
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\lyi
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\lqrbl
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\kragnbr.dat
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\jnpltjziixr
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\iurduaasebj
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\hihw
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\grgqrvb
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\fas.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\err.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\ejxebk
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\eewo.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\ecisfvuhpa.ini
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\dwbwxg
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\dehidfjtpt
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\cpznhdhikek
2014-11-22 11:42 - 2014-11-22 11:42 - 00000032 _____ () C:\Windows\baxqskha.dat
2014-11-19 11:27 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 11:27 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 11:27 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 11:27 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 14:33 - 2014-11-18 14:33 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-11-18 14:06 - 2014-11-18 14:06 - 00003176 _____ () C:\Windows\System32\Tasks\{95181418-DE83-4256-B3A7-1AEBFEECE4C2}
2014-11-18 13:58 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-11-18 13:58 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-11-18 13:58 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-11-18 13:58 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-11-18 13:58 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-11-18 13:58 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-11-18 13:58 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-11-15 22:20 - 2014-11-15 22:20 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\Metallica---Master-of-Puppets-(1986)-[CD-Rip]
2014-11-15 22:20 - 2014-11-15 22:20 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\1986-Helloween---Walls-Of-Jericho
2014-11-14 21:51 - 2010-02-13 10:07 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\Tublatanka
2014-11-13 09:54 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-13 09:54 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-13 09:54 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-13 09:54 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-13 09:54 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 09:54 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-13 09:54 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-13 09:54 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-13 09:54 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-13 09:54 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-13 09:54 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-13 09:54 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-13 09:54 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-13 09:54 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-13 09:54 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-13 09:54 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-13 09:54 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-13 09:54 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-13 09:54 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 09:54 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-13 09:54 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-13 09:54 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-13 09:54 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-13 09:54 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-13 09:54 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-13 09:54 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 09:54 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-13 09:54 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-13 09:54 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-13 09:54 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-13 09:54 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-13 09:54 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-13 09:54 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-13 09:54 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-13 09:54 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-13 09:54 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-13 09:54 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-13 09:54 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-13 09:54 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-13 09:54 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-13 09:54 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-13 09:54 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-13 09:54 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-13 09:54 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-13 09:54 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-13 09:54 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-13 09:54 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-13 09:54 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-13 09:54 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-13 09:54 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-13 09:54 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-13 09:54 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-13 09:54 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-13 09:54 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-13 09:54 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-13 09:54 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-13 09:54 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-13 09:54 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-13 09:54 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-13 09:54 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-13 09:54 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-13 09:54 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-13 09:54 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-13 09:54 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-13 09:54 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-13 09:52 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-13 09:52 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-13 09:52 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-13 09:52 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-13 09:52 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-13 09:52 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-13 09:52 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-13 09:52 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-13 09:52 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-13 09:52 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-13 09:52 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-13 09:52 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-13 09:52 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-13 09:52 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-13 09:52 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-13 09:52 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-13 09:52 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-13 09:52 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-13 09:52 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-13 09:52 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-13 09:52 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-13 09:52 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-13 09:52 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-13 09:52 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-13 09:52 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-13 09:52 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-13 09:52 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-13 09:52 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-13 09:52 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-13 09:52 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-13 09:52 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-07 01:28 - 2014-11-17 23:25 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-11-03 18:32 - 2014-11-03 18:32 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\Quake3
2014-11-03 10:33 - 2014-11-07 00:43 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\filmy

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-24 19:07 - 2014-07-30 08:30 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-24 18:48 - 2014-08-24 16:03 - 00000058 _____ () C:\Users\JCMEDIA\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2014-11-24 17:40 - 2009-07-14 05:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-24 17:40 - 2009-07-14 05:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-24 17:38 - 2009-07-14 06:13 - 00778834 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-24 17:36 - 2014-07-30 08:23 - 00000000 ____D () C:\Users\JCMEDIA
2014-11-24 17:33 - 2014-08-06 09:08 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-11-24 17:33 - 2014-07-30 08:45 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-24 17:33 - 2014-07-30 08:30 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-24 17:33 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-24 17:32 - 2014-09-29 08:21 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\uTorrent
2014-11-24 17:32 - 2014-07-30 08:23 - 01655053 _____ () C:\Windows\WindowsUpdate.log
2014-11-24 17:01 - 2014-07-30 14:13 - 00007592 _____ () C:\Users\JCMEDIA\AppData\Local\Resmon.ResmonCfg
2014-11-24 15:27 - 2014-08-26 19:03 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Local\CrashDumps
2014-11-22 22:05 - 2014-09-15 19:30 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\Hudba
2014-11-22 11:50 - 2014-09-07 02:46 - 00000000 ____D () C:\Users\JCMEDIA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-21 18:09 - 2014-07-30 08:30 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 20:12 - 2014-07-30 19:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCsoft
2014-11-20 20:12 - 2014-07-30 08:34 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-18 20:00 - 2014-10-19 14:26 - 00000000 ____D () C:\Users\JCMEDIA\Desktop\hihiiih
2014-11-14 20:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-14 18:51 - 2009-07-14 05:45 - 00267368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-14 10:57 - 2014-08-05 19:18 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-14 10:55 - 2014-08-05 19:18 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-13 20:02 - 2014-07-30 08:30 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-13 20:02 - 2014-07-30 08:30 - 00003680 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\JCMEDIA\AppData\Local\Temp\EsgInstallerx64Stub.exe
C:\Users\JCMEDIA\AppData\Local\Temp\iv_uninstall.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-19 16:13

==================== End Of Log ============================