DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.17631 BrowserJavaVersion: 11.25.2 Run by Michelle at 23:16:03 on 2015-02-19 Microsoft Windows 7 Enterprise 6.1.7601.1.1252.47.1033.18.4095.1863 [GMT 1:00] . SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe C:\Program Files\KMSpico\Service_KMS.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe C:\Windows\system32\sppsvc.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\System32\StikyNot.exe C:\Users\Michelle\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Users\Michelle\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxps://mysearch.avg.com/?cid={75EB0C7C-1BF2-4CA3-A040-6431A3E940AD}&mid=3942f740ee4847cda040d16a122fd051-cab29ffd95fe1af9efbd708a60456bc02548513a&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-02-19 15:42:55&v=4.1.0.404&pid=wtu&sg=&sap=hp mWinlogon: Userinit = userinit.exe, BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll uRun: [GoogleChromeAutoLaunch_D767CAD71DA7DD1CDFD0D3EF6D1B23BA] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe uRun: [Spotify Web Helper] "C:\Users\Michelle\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" StartupFolder: C:\Users\Michelle\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Michelle\AppData\Roaming\Dropbox\bin\Dropbox.exe StartupFolder: C:\Users\Michelle\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-Windows\System: EnableSmartScreen = dword:0 IE: Clip bookmark - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0 IE: Clip image - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4 IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3 IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1 IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 IE: New note - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html TCP: NameServer = 192.168.1.1 TCP: Interfaces\{D4F85E51-7F63-49B5-9344-45FBDD77C9C8} : DHCPNameServer = 192.168.1.1 Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL Notify: SDWinLogon - SDWinLogon.dll SSODL: WebCheck - mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll x64-IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - x64-SSODL: WebCheck - . ============= SERVICES / DRIVERS =============== . R2 ClickToRunSvc;Tjenesten Microsoft Office ClickToRun;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2015-1-30 2449592] R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service;C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2015-1-30 244448] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-2-19 1871160] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-2-19 969016] R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-11-25 1738168] R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-11-25 2088408] R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-11-25 171928] R2 Service KMSELDI;Service KMSELDI;C:\Program Files\KMSpico\Service_KMS.exe [2014-7-12 954048] R2 WtuSystemSupport;WtuSystemSupport;C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [2015-2-19 620056] R3 KoneFltr;ROCCAT Kone;C:\Windows\System32\drivers\Kone.sys [2008-12-11 15488] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2015-2-19 25816] R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2015-2-19 129752] R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2015-2-19 63704] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496] S2 vToolbarUpdater18.4.0;vToolbarUpdater18.4.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe --> C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe [?] S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2015-2-11 114688] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-11-24 19456] S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136] S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960] S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2014-11-24 29696] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-11-24 56832] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2014-11-24 30208] S3 tsusbhub;Remote Deskotop USB Hub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-11-25 1255736] . =============== Created Last 30 ================ . 2015-02-19 21:52:26 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2015-02-19 21:51:12 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2015-02-19 21:51:12 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys 2015-02-19 21:51:12 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2015-02-19 21:51:11 -------- d-----w- C:\ProgramData\Malwarebytes 2015-02-19 21:51:11 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-02-19 17:40:42 -------- d-----w- C:\AdwCleaner 2015-02-19 14:43:11 -------- d-----w- C:\Users\Michelle\AppData\Local\AVG Web TuneUp 2015-02-19 14:42:46 -------- d-----w- C:\ProgramData\AVG Web TuneUp 2015-02-19 14:42:41 -------- d-----w- C:\Program Files (x86)\AVG Web TuneUp 2015-02-19 13:22:36 -------- d-----w- C:\Users\Michelle\AppData\Roaming\AVG2015 2015-02-19 13:22:02 -------- d-----w- C:\Users\Michelle\AppData\Roaming\TuneUp Software 2015-02-19 13:21:32 -------- d--h--w- C:\$AVG 2015-02-19 13:21:31 -------- d-----w- C:\ProgramData\AVG2015 2015-02-19 13:20:57 -------- d-----w- C:\Program Files (x86)\AVG 2015-02-19 13:19:22 -------- d--h--w- C:\ProgramData\Common Files 2015-02-19 13:19:22 -------- d-----w- C:\Users\Michelle\AppData\Local\MFAData 2015-02-19 13:19:22 -------- d-----w- C:\Users\Michelle\AppData\Local\Avg2015 2015-02-19 13:19:22 -------- d-----w- C:\ProgramData\MFAData 2015-02-19 12:28:09 20 ----a-w- C:\Users\Michelle\AppData\Roaming\appdataFr3.bin 2015-02-19 12:07:48 -------- d-----w- C:\Program Files (x86)\PathRunner 2015-02-12 07:21:30 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll 2015-02-12 07:21:30 4300800 ----a-w- C:\Windows\SysWow64\jscript9.dll 2015-02-12 07:21:29 814080 ----a-w- C:\Windows\System32\jscript9diag.dll 2015-02-12 07:21:29 6041600 ----a-w- C:\Windows\System32\jscript9.dll 2015-02-11 06:01:53 5554112 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-02-11 06:01:53 3972544 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2015-02-11 06:01:53 3917760 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2015-02-11 06:01:52 503808 ----a-w- C:\Windows\System32\srcore.dll 2015-02-11 06:01:52 50176 ----a-w- C:\Windows\System32\srclient.dll 2015-02-11 06:01:52 43008 ----a-w- C:\Windows\SysWow64\srclient.dll 2015-02-11 06:01:52 296960 ----a-w- C:\Windows\System32\rstrui.exe 2015-02-11 06:01:37 3201536 ----a-w- C:\Windows\System32\win32k.sys 2015-02-04 03:43:21 11870360 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5EA2956C-70D1-48C7-9A4C-8C1E07FC4AA8}\mpengine.dll 2015-01-31 08:43:11 -------- d-----w- C:\Program Files\CCleaner 2015-01-30 13:44:55 -------- d-----w- C:\Users\Michelle\AppData\Roaming\Foxit Software 2015-01-30 13:44:30 -------- d-----w- C:\Program Files (x86)\Foxit Software 2015-01-30 09:34:53 -------- d-----w- C:\ProgramData\{21fc6685-20a5-3fc1-21fc-c668520a9a14} 2015-01-30 08:56:14 -------- d-----w- C:\ProgramData\regid.1991-06.com.microsoft 2015-01-30 08:55:02 -------- d-----w- C:\Program Files\Microsoft Office 15 2015-01-29 16:17:16 -------- d-----w- C:\Users\Michelle\AppData\Local\Sony 2015-01-29 16:17:16 -------- d-----w- C:\Program Files\Sony 2015-01-29 16:17:16 -------- d-----w- C:\Program Files (x86)\Sony 2015-01-21 11:10:14 -------- d-----r- C:\Users\Michelle\Dropbox . ==================== Find3M ==================== . 2015-01-15 08:14:17 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-01-15 08:14:16 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-01-15 08:09:58 29184 ----a-w- C:\Windows\System32\sspisrv.dll 2015-01-15 08:09:58 136192 ----a-w- C:\Windows\System32\sspicli.dll 2015-01-15 08:09:57 28160 ----a-w- C:\Windows\System32\secur32.dll 2015-01-15 08:09:51 1461760 ----a-w- C:\Windows\System32\lsasrv.dll 2015-01-15 08:09:15 31232 ----a-w- C:\Windows\System32\lsass.exe 2015-01-15 08:08:59 64000 ----a-w- C:\Windows\System32\auditpol.exe 2015-01-15 08:06:22 60416 ----a-w- C:\Windows\System32\msobjs.dll 2015-01-15 08:06:11 146432 ----a-w- C:\Windows\System32\msaudite.dll 2015-01-15 08:04:23 686080 ----a-w- C:\Windows\System32\adtschema.dll 2015-01-15 07:42:59 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2015-01-15 07:42:05 50176 ----a-w- C:\Windows\SysWow64\auditpol.exe 2015-01-15 07:41:53 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2015-01-15 07:39:53 60416 ----a-w- C:\Windows\SysWow64\msobjs.dll 2015-01-15 07:39:36 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll 2015-01-15 07:37:55 686080 ----a-w- C:\Windows\SysWow64\adtschema.dll 2015-01-15 04:22:18 458824 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-01-13 03:10:22 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll 2015-01-13 02:49:19 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll 2015-01-12 03:05:32 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2015-01-12 03:05:19 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2015-01-12 02:49:42 66560 ----a-w- C:\Windows\System32\iesetup.dll 2015-01-12 02:48:57 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2015-01-12 02:48:52 584192 ----a-w- C:\Windows\System32\vbscript.dll 2015-01-12 02:47:25 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll 2015-01-12 02:34:42 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-01-12 02:34:30 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-01-12 02:25:28 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-01-12 02:21:19 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2015-01-12 02:13:27 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2015-01-12 02:08:09 503296 ----a-w- C:\Windows\SysWow64\vbscript.dll 2015-01-12 02:07:51 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll 2015-01-12 02:07:06 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll 2015-01-12 02:05:36 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll 2015-01-12 01:55:47 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2015-01-12 01:46:29 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2015-01-12 01:46:00 2125824 ----a-w- C:\Windows\System32\inetcpl.cpl 2015-01-12 01:40:43 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll 2015-01-12 01:27:32 2358272 ----a-w- C:\Windows\System32\wininet.dll 2015-01-12 01:23:09 2052608 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2015-01-12 01:22:17 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll 2015-01-12 01:00:17 1888256 ----a-w- C:\Windows\SysWow64\wininet.dll 2015-01-10 06:48:22 210944 ----a-w- C:\Windows\System32\wdigest.dll 2015-01-10 06:48:19 86528 ----a-w- C:\Windows\System32\TSpkg.dll 2015-01-10 06:48:17 341504 ----a-w- C:\Windows\System32\schannel.dll 2015-01-10 06:48:13 309760 ----a-w- C:\Windows\System32\ncrypt.dll 2015-01-10 06:48:12 314880 ----a-w- C:\Windows\System32\msv1_0.dll 2015-01-10 06:48:10 728064 ----a-w- C:\Windows\System32\kerberos.dll 2015-01-10 06:48:05 22016 ----a-w- C:\Windows\System32\credssp.dll 2015-01-10 06:27:54 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll 2015-01-10 06:27:51 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll 2015-01-10 06:27:47 248832 ----a-w- C:\Windows\SysWow64\schannel.dll 2015-01-10 06:27:44 221184 ----a-w- C:\Windows\SysWow64\ncrypt.dll 2015-01-10 06:27:43 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll 2015-01-10 06:27:39 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll 2015-01-10 06:27:32 17408 ----a-w- C:\Windows\SysWow64\credssp.dll 2014-12-19 03:06:55 210432 ----a-w- C:\Windows\System32\profsvc.dll 2014-12-19 01:46:45 141312 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2014-12-13 00:50:38 829264 ----a-w- C:\Windows\System32\msvcr100.dll 2014-12-13 00:50:38 608080 ----a-w- C:\Windows\System32\msvcp100.dll 2014-12-12 22:22:40 773968 ----a-w- C:\Windows\SysWow64\msvcr100.dll 2014-12-12 22:22:40 421200 ----a-w- C:\Windows\SysWow64\msvcp100.dll 2014-12-11 17:47:17 87040 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2014-12-08 03:09:05 406528 ----a-w- C:\Windows\System32\scesrv.dll 2014-12-08 02:46:05 308224 ----a-w- C:\Windows\SysWow64\scesrv.dll 2014-12-06 04:17:27 303616 ----a-w- C:\Windows\System32\nlasvc.dll 2014-12-06 03:50:19 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll 2014-12-06 03:50:18 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll 2014-11-25 21:27:27 111016 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll 2014-11-25 21:25:52 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll . ============= FINISH: 23:16:33,46 ===============