Hello WHF members.

We are now Accepting applications for.

Malware Analysis/Malware Removal Course

If you are interested please follow the link below.
Malware Course Application

PC Checkup  [SOLVED]

Assistance for malware removal.

Moderator: Removal Specialist

Forum rules
1. No warez linking, selling, or requesting.
2. No illegal product key discussions.
3. Remove any counterfeit software that might be on your system.
(This includes any hacked keys and or software)
4. Any illegal version of Windows will not be supported and must be activated.

Topic author
IcyTower
Newbie
Newbie
Posts: 4
Joined: Thu Aug 11, 2016 11:35 am

#1 PC Checkup  [SOLVED]

Postby IcyTower » Thu Aug 11, 2016 12:01 pm

Hi. Can someone check up my pc? :)

MBAM log

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Tarkistuksen päivämäärä: 11.8.2016
Tarkistuksen kellonaika: 14:41
Lokitiedosto: log.txt
Järjestelmänvalvoja: Kyllä

Versio: 2.2.1.1043
Haittaohjelmien tietokanta: v2016.08.11.06
Rootkittien tietokanta: v2016.08.09.01
Lisenssi: Ilmainen
Haittaohjelmasuoja: Pois käytöstä
Haitallisten verkkosivujen esto: Pois käytöstä
Itsepuolustus: Pois käytöstä

Käyttöjärjestelmä: Windows 7 Service Pack 1
Prosessori: x64
Tiedostojärjestelmä: NTFS
Käyttäjä: kone

Tarkistuksen tyyppi: Kattava tarkistus
Tulos: Valmis
Kohteita tarkistettu: 286997
Aikaa kulunut: 14 minuutti(a), 47 sekuntti(a)

Muisti: Käytössä
Käynnistys: Käytössä
Tiedostojärjestelmä: Käytössä
Pakkaukset: Käytössä
Rootkitit: Käytössä
Heuristiikka: Käytössä
Mahdollisesti haitalliset ohjelmat: Käytössä
Mahdollisesti haitalliset muutokset: Käytössä

Prosessit: 0
(Haitallisia kohteita ei löydetty)

Moduulit: 0
(Haitallisia kohteita ei löydetty)

Rekisteriavain: 0
(Haitallisia kohteita ei löydetty)

Rekisteriarvot: 0
(Haitallisia kohteita ei löydetty)

Reksiteritiedot: 0
(Haitallisia kohteita ei löydetty)

Kansiot: 0
(Haitallisia kohteita ei löydetty)

Tiedostot: 0
(Haitallisia kohteita ei löydetty)

Fyysiset sektorit: 0
(Haitallisia kohteita ei löydetty)


(end)

FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-08-2016 01
Ran by kone (administrator) on KONE-PC (11-08-2016 14:57:27)
Running from C:\Users\kone\Desktop
Loaded Profiles: kone (Available Profiles: kone)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: suomi (Suomi)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hammer & Chisel, Inc.) C:\Users\kone\AppData\Local\Discord\app-0.0.295\Discord.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Hammer & Chisel, Inc.) C:\Users\kone\AppData\Local\Discord\app-0.0.295\Discord.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hammer & Chisel, Inc.) C:\Users\kone\AppData\Local\Discord\app-0.0.295\Discord.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Simon Tatham) C:\Users\kone\Downloads\putty.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2631120 2016-07-28] (Malwarebytes Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Run: [Discord] => C:\Users\kone\AppData\Local\Discord\app-0.0.295\Discord.exe [62385336 2016-08-01] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3582240 2016-06-13] (Nota Inc.)
HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2852128 2016-08-03] (Valve Corporation)
HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Run: [uTorrent] => C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe [2370560 2016-08-04] (BitTorrent Inc.)
HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{90135747-FD3B-40A4-8BC3-367A42E4BA1E}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-08-07] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-07] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2014-03-27] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2014-03-27] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2014-03-27] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2014-03-27] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\kone\AppData\Roaming\Mozilla\Firefox\Profiles\40wfygbt.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-21] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-07] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-21] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Extension: leethax.net extension - C:\Users\kone\AppData\Roaming\Mozilla\Firefox\Profiles\40wfygbt.default\extensions\leethax@leethax.net.xpi [2016-07-21]
FF Extension: Itemsview - C:\Users\kone\AppData\Roaming\Mozilla\Firefox\Profiles\40wfygbt.default\Extensions\{1EE1807F-1A93-A4F0-16FF-1A67A7878290} [2016-08-07] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxp://www1.delta-search.com/?affID=119 ... FF44B59A81
CHR StartupUrls: Default -> "hxxp://www.google.fi/"
CHR Profile: C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google-presentaatiot) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-13]
CHR Extension: (Google-dokumentit) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-13]
CHR Extension: (Google Drive) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-13]
CHR Extension: (YouTube) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-13]
CHR Extension: (Adblock Plus) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-07-13]
CHR Extension: (Tampermonkey) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-07-30]
CHR Extension: (FrankerFaceZ) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2016-07-13]
CHR Extension: (Google-taulukot) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-13]
CHR Extension: (Google Docsin offline-tila) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-13]
CHR Extension: (Chrome Web Storen maksut) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-13]
CHR Extension: (Click&Clean App) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2016-07-17]
CHR Extension: (Gmail) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-13]
CHR Extension: (Chrome Media Router) - C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-10]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [750032 2016-07-28] (Malwarebytes Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [74984 2016-07-28] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\NETwsw01.sys [11534096 2015-05-04] (Intel Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-11 14:57 - 2016-08-11 14:57 - 00011876 _____ C:\Users\kone\Desktop\FRST.txt
2016-08-11 14:56 - 2016-08-11 14:57 - 00000000 ____D C:\FRST
2016-08-11 14:45 - 2016-08-11 14:37 - 02393600 _____ (Farbar) C:\Users\kone\Desktop\FRST64.exe
2016-08-11 14:37 - 2016-08-11 14:37 - 02393600 _____ (Farbar) C:\Users\kone\Downloads\FRST64.exe
2016-08-11 11:22 - 2016-08-11 11:25 - 00000000 ____D C:\Users\kone\AppData\Roaming\HandBrake
2016-08-11 11:22 - 2016-08-11 11:22 - 00000000 ____D C:\Users\kone\AppData\Roaming\HandBrake Team
2016-08-11 11:07 - 2016-08-11 11:07 - 16824320 _____ (Team Einherjar ) C:\Users\kone\Downloads\ZXG (3).exe
2016-08-11 11:02 - 2016-08-11 11:02 - 16520043 _____ C:\Users\kone\Downloads\HandBrake-0.10.5-x86_64-Win_GUI-1.exe
2016-08-11 11:02 - 2016-08-11 11:02 - 00000824 _____ C:\Users\kone\Desktop\Handbrake.lnk
2016-08-11 11:02 - 2016-08-11 11:02 - 00000562 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-08-11 11:02 - 2016-08-11 11:02 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-08-11 11:02 - 2016-08-11 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-08-11 11:02 - 2016-08-11 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-08-11 11:02 - 2016-08-11 11:02 - 00000000 ____D C:\Program Files\Handbrake
2016-08-11 11:01 - 2016-08-11 11:01 - 00000000 ____D C:\Users\kone\Downloads\Fraps 3.5.99 Build 15618[A4]
2016-08-11 11:00 - 2016-08-11 11:01 - 02632823 ____R C:\Users\kone\Downloads\Fraps 3.5.99 Build 15618[A4].zip
2016-08-11 11:00 - 2016-08-11 11:00 - 00004762 _____ C:\Users\kone\Downloads\[kickass.unblocked.date]Fraps 3.5.99 Full Cracked 2013[A4].torrent
2016-08-11 10:58 - 2016-08-11 10:58 - 00001245 _____ C:\Users\kone\Downloads\Beepa.Fraps.v3.5.99.15618-DVT.torrent
2016-08-10 23:06 - 2016-08-10 23:06 - 04728036 _____ C:\Users\kone\Documents\clip0010.avi
2016-08-10 23:02 - 2016-08-10 23:02 - 08703536 _____ C:\Users\kone\Documents\clip0009.avi
2016-08-10 23:00 - 2016-08-10 23:01 - 14598194 _____ C:\Users\kone\Documents\clip0008.avi
2016-08-10 22:58 - 2016-08-10 23:00 - 69933450 _____ C:\Users\kone\Documents\clip0007.avi
2016-08-10 22:55 - 2016-08-10 22:57 - 58706578 _____ C:\Users\kone\Documents\clip0006.avi
2016-08-10 22:42 - 2016-08-10 22:42 - 00892416 _____ (Farbar) C:\Users\kone\Downloads\MiniToolBox.exe
2016-08-10 22:35 - 2016-08-10 22:36 - 00192584 _____ C:\TDSSKiller.3.1.0.11_10.08.2016_22.35.06_log.txt
2016-08-10 22:34 - 2016-08-10 22:34 - 04747704 _____ (AO Kaspersky Lab) C:\Users\kone\Downloads\tdsskiller.exe
2016-08-10 22:29 - 2016-08-10 22:29 - 07917270 _____ C:\Users\kone\Documents\clip0005.avi
2016-08-10 21:55 - 2016-08-10 21:55 - 16828928 _____ (Team Einherjar ) C:\Users\kone\Downloads\ZXG (2).exe
2016-08-10 18:36 - 2016-08-10 18:36 - 16826368 _____ (Microsoft Corporation) C:\Users\kone\Downloads\ZXG (1).exe
2016-08-10 17:08 - 2016-08-10 17:08 - 00602112 _____ (OldTimer Tools) C:\Users\kone\Downloads\OTL.exe
2016-08-10 17:08 - 2016-08-10 17:08 - 00000037 _____ C:\Users\kone\Downloads\file-not-found.txt
2016-08-10 16:48 - 2016-08-10 16:55 - 00000000 ____D C:\AdwCleaner
2016-08-10 16:47 - 2016-08-10 16:47 - 00000000 ____D C:\Users\kone\Downloads\adw
2016-08-10 16:46 - 2016-08-10 16:48 - 00002408 _____ C:\Users\kone\Desktop\Rkill.txt
2016-08-10 16:46 - 2016-08-10 16:46 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\kone\Downloads\rkill.exe
2016-08-10 14:31 - 2016-08-10 14:32 - 16826368 _____ (Microsoft Corporation) C:\Users\kone\Downloads\ZXG.exe
2016-08-10 12:59 - 2016-08-10 12:59 - 14677624 _____ C:\Users\kone\Documents\clip0004.avi
2016-08-10 12:27 - 2016-08-10 12:27 - 13915916 _____ C:\Users\kone\Documents\clip0003.avi
2016-08-10 12:21 - 2016-08-10 12:21 - 16826368 _____ (Team Einherjar ) C:\Users\kone\Downloads\Test (2).exe
2016-08-09 23:20 - 2016-08-09 23:20 - 11111838 _____ C:\Users\kone\Documents\clip0002.avi
2016-08-09 23:15 - 2016-08-09 23:16 - 26878056 _____ C:\Users\kone\Documents\clip0001.avi
2016-08-09 23:11 - 2016-08-09 23:11 - 00000961 _____ C:\Users\kone\Desktop\HyperCam 2.lnk
2016-08-09 23:11 - 2016-08-09 23:11 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HyperCam 2
2016-08-09 23:11 - 2016-08-09 23:11 - 00000000 ____D C:\Program Files (x86)\HyperCam 2
2016-08-09 23:10 - 2016-08-09 23:10 - 02807576 _____ C:\Users\kone\Downloads\HC2Setup.exe
2016-08-09 22:57 - 2016-08-09 22:58 - 16780800 _____ (Team Einherjar ) C:\Users\kone\Downloads\Test (1).exe
2016-08-09 14:25 - 2016-08-09 14:26 - 00000000 ____D C:\Users\kone\Downloads\ihime
2016-08-09 14:22 - 2016-08-09 14:22 - 07093624 _____ (VS Revo Group ) C:\Users\kone\Downloads\revosetup_v2.0.0.exe
2016-08-09 02:33 - 2016-08-09 02:33 - 00000000 ____D C:\Users\kone\AppData\Roaming\.mono
2016-08-09 02:33 - 2016-08-09 02:33 - 00000000 ____D C:\Users\kone\AppData\LocalLow\ProudCamelGames Presents
2016-08-09 02:33 - 2016-08-09 02:33 - 00000000 ____D C:\ProgramData\.mono
2016-08-09 02:30 - 2016-08-09 02:30 - 00000222 _____ C:\Users\kone\Desktop\Log Drive Runner.url
2016-08-09 01:16 - 2016-08-09 01:16 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2016-08-09 01:06 - 2016-08-09 01:19 - 00000000 ____D C:\ProgramData\HitmanPro
2016-08-09 01:06 - 2016-08-09 01:06 - 00000000 ____D C:\Program Files\HitmanPro
2016-08-09 01:05 - 2016-08-09 01:06 - 11438608 _____ (SurfRight B.V.) C:\Users\kone\Downloads\HitmanPro_x64.exe
2016-08-08 18:24 - 2016-08-10 20:31 - 00000000 ____D C:\Users\kone\AppData\Local\AM2R
2016-08-08 18:24 - 2016-08-08 18:24 - 00000000 ____D C:\Users\kone\Downloads\AM2R_10
2016-08-08 18:21 - 2016-08-08 18:24 - 75027881 _____ C:\Users\kone\Downloads\AM2R_10.zip
2016-08-08 13:07 - 2016-08-08 13:07 - 00597504 _____ (React) C:\Users\kone\Downloads\updater (1).exe
2016-08-08 12:44 - 2016-08-08 12:45 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-08 12:44 - 2015-07-18 16:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-08-08 12:44 - 2015-07-18 16:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-08-08 12:40 - 2016-08-08 12:40 - 01032213 _____ C:\Users\kone\Downloads\localized_code_post_gfx_mp (1).ff
2016-08-08 12:40 - 2016-08-08 12:40 - 00024597 _____ C:\Users\kone\Downloads\localized_code_pre_gfx_mp.ff
2016-08-08 12:39 - 2016-08-08 12:39 - 01032213 _____ C:\Users\kone\Downloads\localized_code_post_gfx_mp.ff
2016-08-08 12:37 - 2016-08-08 12:38 - 00024597 _____ C:\Users\kone\Downloads\code_pre_gfx_mp.ff
2016-08-08 12:31 - 2016-08-08 12:31 - 00001273 _____ C:\Users\Public\Desktop\Call OF Duty Modern Warfare 2.lnk
2016-08-08 12:31 - 2016-08-08 12:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black_Box
2016-08-08 12:27 - 2016-08-08 12:27 - 00000222 _____ C:\Users\kone\Desktop\Starbound.url
2016-08-08 11:57 - 2016-08-08 11:57 - 00000000 ____D C:\Program Files (x86)\Black_Box
2016-08-08 11:56 - 2016-08-08 11:56 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-08-08 11:56 - 2016-08-08 11:56 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-08-08 11:50 - 2016-08-08 11:54 - 00000000 ____D C:\Users\kone\Downloads\Call of Duty Modern Warfare 2 - Black Box
2016-08-08 00:55 - 2016-08-08 01:45 - 3926183936 ____R C:\Users\kone\Downloads\Call of Duty Modern Warfare 2 - Black Box.iso
2016-08-08 00:48 - 2014-11-13 15:38 - 00446976 _____ (RAD Game Tools, Inc.) C:\Users\kone\Downloads\Mss32.dll
2016-08-08 00:46 - 2016-08-08 00:47 - 58405083 _____ C:\Users\kone\Downloads\r431.zip
2016-08-08 00:44 - 2014-11-13 15:38 - 00446976 _____ (RAD Game Tools, Inc.) C:\Windows\system32\Mss32.dll
2016-08-08 00:43 - 2016-08-08 00:43 - 00224291 _____ C:\Users\kone\Downloads\mss32.zip
2016-08-08 00:43 - 2016-08-08 00:43 - 00000000 ____D C:\Users\kone\Downloads\mss32
2016-08-08 00:42 - 2016-08-08 00:44 - 00000000 ____D C:\Users\kone\Downloads\data
2016-08-08 00:42 - 2016-08-08 00:42 - 04197976 _____ (React) C:\Users\kone\Downloads\iw4m.exe
2016-08-08 00:42 - 2016-08-08 00:42 - 02118144 _____ (React) C:\Users\kone\Downloads\iw4m.dll
2016-08-08 00:42 - 2016-08-08 00:42 - 00000000 ____D C:\Users\kone\Downloads\zone
2016-08-08 00:41 - 2016-08-08 00:41 - 00597504 _____ (React) C:\Users\kone\Downloads\updater.exe
2016-08-07 23:52 - 2016-08-08 00:06 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-08-07 23:51 - 2016-08-07 23:51 - 16563352 _____ (Malwarebytes Corp.) C:\Users\kone\Downloads\mbar-1.09.3.1001.exe
2016-08-07 23:51 - 2016-08-07 23:51 - 00000000 ____D C:\Users\kone\Desktop\ar
2016-08-07 23:49 - 2016-08-07 23:49 - 00002786 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-08-07 23:49 - 2016-08-07 23:49 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-07 23:49 - 2016-08-07 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-07 23:49 - 2016-08-07 23:49 - 00000000 ____D C:\Program Files\CCleaner
2016-08-07 23:48 - 2016-08-07 23:48 - 00204496 _____ (Malwarebytes) C:\Users\kone\Downloads\startuplite-setup-1.07.exe
2016-08-07 23:47 - 2016-08-07 23:47 - 08136664 _____ (Piriform Ltd) C:\Users\kone\Downloads\ccsetup520.exe
2016-08-07 23:02 - 2016-08-07 23:02 - 00000000 ____D C:\Windows\system32\appmgmt
2016-08-07 22:51 - 2016-08-11 14:41 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-07 22:51 - 2016-08-07 23:51 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-08-07 22:51 - 2016-08-07 22:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-07 22:51 - 2016-08-07 22:52 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-08-07 22:51 - 2016-08-07 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-07 22:51 - 2016-08-07 22:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-07 22:51 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-08-07 22:51 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-08-07 22:49 - 2016-08-09 01:16 - 00000000 ____D C:\Users\kone\Downloads\Malwarebytes.Anti-Malware.Premium.v2.1.4.1018.MULTILINGUAL-CRD
2016-08-07 22:48 - 2016-08-07 22:48 - 00007209 _____ C:\Users\kone\Downloads\Malwarebytes.Anti-Malware.Premium.v2.1.4.1018.MULTILINGUAL-CRD.torrent
2016-08-07 22:47 - 2016-08-10 21:00 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2016-08-07 22:47 - 2016-08-07 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2016-08-07 22:47 - 2016-08-07 22:48 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2016-08-07 22:47 - 2016-08-07 22:47 - 00000000 ____D C:\Users\kone\Downloads\Malwarebytes Anti-Exploit 1.08.1.2563 + PiiPS [4realtorrent]
2016-08-07 22:46 - 2016-08-07 22:46 - 01829455 ____R C:\Users\kone\Downloads\Malwarebytes Anti-Exploit 1.08.1.2563 + PiiPS [4realtorrent].rar
2016-08-07 22:46 - 2016-08-07 22:46 - 00000325 _____ C:\Users\kone\Downloads\Malwarebytes Anti-Exploit 1.08.1.2563 PiiPS [4realtorrentz].torrent
2016-08-07 22:44 - 2016-08-09 01:16 - 00000000 ____D C:\Users\kone\Downloads\Windows Loader v2.2.2 by Dar
2016-08-07 22:42 - 2016-08-07 23:00 - 00000000 ____D C:\Users\kone\AppData\Local\Eltion
2016-08-07 22:42 - 2016-08-07 22:42 - 00001177 _____ C:\Users\Public\Desktop\Download file.lnk
2016-08-07 22:42 - 2016-08-07 22:42 - 00000953 _____ C:\Users\kone\Desktop\Install Registry Activation - Free Download.lnk
2016-08-07 22:40 - 2016-08-09 01:16 - 00000000 ____D C:\Users\kone\Downloads\Windows Loader 2.6
2016-08-07 22:40 - 2016-08-07 22:40 - 01204224 _____ C:\Users\kone\Downloads\Windows Loader 2.6.iso
2016-08-07 19:42 - 2016-08-07 19:43 - 00000000 ____D C:\Users\kone\Downloads\VisualBoyAdvance-M-WX-2.0.0-beta2
2016-08-07 19:42 - 2016-08-07 19:42 - 05324916 _____ C:\Users\kone\Downloads\1637 - Pokemon Leaf Green (U)(Independent).zip
2016-08-07 19:42 - 2016-08-07 19:42 - 02065500 _____ C:\Users\kone\Downloads\VisualBoyAdvance-M-WX-2.0.0-beta2.7z
2016-08-07 19:42 - 2016-08-07 19:42 - 00000000 ____D C:\Users\kone\Downloads\1637 - Pokemon Leaf Green (U)(Independent)
2016-08-07 14:36 - 2016-08-07 14:36 - 00000000 ____D C:\Users\kone\Downloads\lost.s01.e01.pilot.part.1.(2004).fin.1cd.(5747272)
2016-08-07 14:35 - 2016-08-07 14:35 - 00009946 _____ C:\Users\kone\Downloads\lost.s01.e01.pilot.part.1.(2004).fin.1cd.(5747272).zip
2016-08-07 14:34 - 2016-08-07 14:34 - 00008603 _____ C:\Users\kone\Downloads\lost.s01.e01.pilot.part.1.(2004).fin.1cd.(181901).zip
2016-08-07 14:34 - 2016-08-07 14:34 - 00000000 ____D C:\Users\kone\Downloads\lost.s01.e01.pilot.part.1.(2004).fin.1cd.(181901)
2016-08-07 14:30 - 2016-08-07 14:30 - 00010374 _____ C:\Users\kone\Downloads\lost.s01.e01.pilot.part.1.(2004).fin.1cd.(4265404).zip
2016-08-07 14:30 - 2016-08-07 14:30 - 00000000 ____D C:\Users\kone\Downloads\lost.s01.e01.pilot.part.1.(2004).fin.1cd.(4265404)
2016-08-06 04:42 - 2016-08-06 06:52 - 00000000 ____D C:\Users\kone\Downloads\Lost The Complete Series Season 1,2,3,4,5,6 + English Subs
2016-08-06 04:40 - 2016-08-06 04:40 - 00298022 _____ C:\Users\kone\Downloads\[kickass.immunicity.host].torrent
2016-08-06 04:34 - 2016-08-06 04:58 - 1280685613 ____R C:\Users\kone\Downloads\Deadpool.2016.HDRip.mkv
2016-08-06 04:34 - 2016-08-06 04:55 - 00000000 ____D C:\Users\kone\Downloads\Warcraft.2016.1080p
2016-08-06 04:34 - 2016-08-06 04:34 - 00391109 _____ C:\Users\kone\Downloads\Deadpool 2016 HDRip FinSub.torrent
2016-08-06 04:34 - 2016-08-06 04:34 - 00090375 _____ C:\Users\kone\Downloads\Warcraft.2016.1080p.HDTC.6CH.ShAaNiG FinSub.torrent
2016-08-06 02:15 - 2016-08-06 02:15 - 00000000 ____D C:\Users\kone\Downloads\MegamanXMavericksFuryDemo3
2016-08-06 02:13 - 2016-08-06 02:15 - 110423595 _____ C:\Users\kone\Downloads\MegamanXMavericksFuryDemo3.rar
2016-08-05 23:26 - 2016-08-05 23:26 - 00000000 ____D C:\Users\kone\Downloads\JoyToKey_en
2016-08-05 23:25 - 2016-08-05 23:25 - 00926935 _____ C:\Users\kone\Downloads\JoyToKey_en.zip
2016-08-05 21:58 - 2016-08-11 13:29 - 00000000 ____D C:\Users\kone\AppData\Roaming\vlc
2016-08-05 21:58 - 2016-08-05 21:58 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-08-05 21:58 - 2016-08-05 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-05 21:57 - 2016-08-05 21:57 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-08-05 21:54 - 2016-08-05 21:55 - 30533688 _____ C:\Users\kone\Downloads\vlc-2.2.4-win32.exe
2016-08-05 04:18 - 2016-08-10 22:44 - 00000000 ____D C:\Users\kone\Downloads\source_of_light_by_atomic_reindeer_games_v3
2016-08-05 04:16 - 2016-08-05 04:18 - 239222921 _____ C:\Users\kone\Downloads\source_of_light_by_atomic_reindeer_games_v3.zip
2016-08-05 03:46 - 2016-08-05 03:46 - 00000000 ____D C:\Users\kone\Downloads\x360ce
2016-08-05 03:46 - 2016-08-05 03:46 - 00000000 ____D C:\ProgramData\X360CE
2016-08-05 03:45 - 2016-08-05 03:46 - 00000000 ____D C:\Users\kone\Downloads\asd
2016-08-05 03:45 - 2016-08-05 03:45 - 01519567 _____ C:\Users\kone\Downloads\x360ce.zip
2016-08-05 03:38 - 2016-08-05 03:39 - 00000000 ____D C:\Users\kone\AppData\Local\MMZXG
2016-08-04 10:31 - 2016-08-04 10:39 - 1469916598 ____R C:\Users\kone\Downloads\Tappajan näköinen mies.mkv
2016-08-04 10:31 - 2016-08-04 10:31 - 00014288 _____ C:\Users\kone\Downloads\Tappajan näköinen mies (2016).torrent
2016-08-04 10:30 - 2016-08-11 11:26 - 00000000 ___SD C:\Users\kone\AppData\LocalLow\Temp
2016-08-04 10:30 - 2016-08-11 11:26 - 00000000 ____D C:\Users\kone\AppData\Roaming\uTorrent
2016-08-04 10:30 - 2016-08-04 10:30 - 00002596 _____ C:\Users\kone\Desktop\µTorrent.lnk
2016-08-04 10:30 - 2016-08-04 10:30 - 00002596 _____ C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-08-04 10:29 - 2016-08-04 10:29 - 02370560 _____ (BitTorrent Inc.) C:\Users\kone\Downloads\uTorrent.exe
2016-08-04 09:31 - 2016-08-04 09:31 - 16788480 _____ ( ) C:\Users\kone\Downloads\Test.exe
2016-08-04 09:25 - 2016-08-04 09:25 - 00000600 _____ C:\Users\kone\AppData\Roaming\winscp.rnd
2016-08-04 03:16 - 2016-08-04 03:16 - 00000000 ____D C:\Users\kone\Downloads\WinSCP-5.9-Portable
2016-08-04 03:15 - 2016-08-04 03:16 - 07476995 _____ C:\Users\kone\Downloads\WinSCP-5.9-Portable.zip
2016-08-04 03:14 - 2016-08-04 03:14 - 00006108 _____ C:\Users\kone\Downloads\glth.theme
2016-08-02 20:44 - 2016-08-02 20:44 - 00000000 ____D C:\Users\kone\AppData\Local\Hero_Siege
2016-08-02 20:41 - 2016-08-02 20:41 - 00000222 _____ C:\Users\kone\Desktop\Hero Siege.url
2016-07-31 02:34 - 2016-07-31 02:34 - 00001342 _____ C:\Users\kone\Desktop\mirc – Pikakuvake.lnk
2016-07-27 20:51 - 2016-08-11 11:26 - 00000000 ____D C:\Users\kone\AppData\Roaming\Skype
2016-07-27 20:51 - 2016-07-27 20:51 - 00002707 _____ C:\Users\Public\Desktop\Skype.lnk
2016-07-27 20:51 - 2016-07-27 20:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-27 20:51 - 2016-07-27 20:51 - 00000000 ____D C:\Users\kone\Tracing
2016-07-27 20:51 - 2016-07-27 20:51 - 00000000 ____D C:\ProgramData\Skype
2016-07-27 20:51 - 2016-07-27 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-07-27 20:50 - 2016-07-27 20:50 - 01463416 _____ (Skype Technologies S.A.) C:\Users\kone\Downloads\SkypeSetup.exe
2016-07-24 01:09 - 2016-08-10 21:36 - 00000000 ____D C:\Users\kone\AppData\Roaming\TS3Client
2016-07-24 01:08 - 2016-07-24 01:08 - 00001162 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-07-24 01:08 - 2016-07-24 01:08 - 00001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-07-24 01:08 - 2016-07-24 01:08 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2016-07-24 01:06 - 2016-07-24 01:07 - 29873064 _____ (TeamSpeak Systems GmbH) C:\Users\kone\Downloads\TeamSpeak3-Client-win32-3.0.19.4.exe
2016-07-23 16:22 - 2016-07-23 16:22 - 00000424 _____ C:\Users\kone\Downloads\savedgame.mmu
2016-07-23 15:55 - 2016-07-23 16:21 - 00000000 ____D C:\Users\kone\AppData\Local\AM2R_Demo
2016-07-23 15:55 - 2016-07-23 15:55 - 00000000 ____D C:\Users\kone\Downloads\am2r_demo141
2016-07-23 15:54 - 2016-07-23 15:54 - 48576600 _____ C:\Users\kone\Downloads\am2r_demo141.zip
2016-07-21 21:26 - 2016-08-11 14:07 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-21 21:26 - 2016-07-21 21:26 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-21 21:26 - 2016-07-21 21:26 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-21 21:26 - 2016-07-21 21:26 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-21 21:26 - 2016-07-21 21:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-07-21 21:26 - 2016-07-21 21:26 - 00000000 ____D C:\Windows\system32\Macromed
2016-07-21 21:26 - 2016-07-21 21:26 - 00000000 ____D C:\Users\kone\AppData\Roaming\Macromedia
2016-07-21 21:26 - 2016-07-21 21:26 - 00000000 ____D C:\Users\kone\AppData\Roaming\Adobe
2016-07-21 21:26 - 2016-07-21 21:26 - 00000000 ____D C:\Users\kone\AppData\Local\Macromedia
2016-07-21 21:26 - 2016-07-21 21:26 - 00000000 ____D C:\Users\kone\AppData\Local\Adobe
2016-07-21 21:24 - 2016-07-21 21:30 - 00000000 ____D C:\Users\kone\AppData\Local\Mozilla
2016-07-21 21:24 - 2016-07-21 21:24 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-21 21:24 - 2016-07-21 21:24 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-21 21:24 - 2016-07-21 21:24 - 00000000 ____D C:\Users\kone\AppData\Roaming\Mozilla
2016-07-21 21:23 - 2016-07-21 21:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-21 21:23 - 2016-07-21 21:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-21 21:23 - 2016-07-21 21:23 - 00242288 _____ C:\Users\kone\Downloads\Firefox Setup Stub 47.0.1.exe
2016-07-21 21:23 - 2016-07-21 21:23 - 00026577 _____ C:\Users\kone\Downloads\leethax (1) (1) (1).xpi
2016-07-21 21:22 - 2016-07-21 21:22 - 00026577 _____ C:\Users\kone\Downloads\leethax (1) (1).xpi
2016-07-21 21:21 - 2016-07-21 21:21 - 00026577 _____ C:\Users\kone\Downloads\leethax.xpi
2016-07-21 21:21 - 2016-07-21 21:21 - 00026577 _____ C:\Users\kone\Downloads\leethax (1).xpi
2016-07-21 14:34 - 2016-07-21 14:34 - 00002076 _____ C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OldSchool RuneScape.lnk
2016-07-21 14:34 - 2016-07-21 14:34 - 00002046 _____ C:\Users\kone\Desktop\OldSchool RuneScape.lnk
2016-07-21 14:34 - 2016-07-21 14:34 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OldSchool RuneScape
2016-07-21 14:33 - 2016-07-21 14:34 - 24018944 _____ C:\Users\kone\Downloads\OldSchool.msi
2016-07-21 14:32 - 2016-08-04 01:19 - 00000024 _____ C:\Users\kone\jagexappletviewer.preferences
2016-07-21 14:32 - 2016-08-04 01:16 - 00000043 _____ C:\Users\kone\jagex_cl_runescape_LIVE.dat
2016-07-21 14:32 - 2016-07-21 14:32 - 00002076 _____ C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
2016-07-21 14:32 - 2016-07-21 14:32 - 00002046 _____ C:\Users\kone\Desktop\RuneScape.lnk
2016-07-21 14:32 - 2016-07-21 14:32 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2016-07-21 14:31 - 2016-07-21 14:31 - 24223744 _____ C:\Users\kone\Downloads\RuneScape.msi
2016-07-15 22:41 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-07-15 22:41 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-07-15 22:41 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-07-15 22:41 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-07-15 22:41 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-07-15 22:41 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-07-15 22:41 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-07-15 22:41 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-07-15 22:41 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-07-15 22:41 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-07-15 22:41 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-07-15 22:41 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-07-15 22:41 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-07-15 22:41 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-07-15 22:41 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-07-15 22:41 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-07-15 22:41 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-07-15 22:41 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-07-15 22:41 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-07-15 22:41 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-07-15 22:41 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-07-15 22:41 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-07-15 22:41 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-07-15 22:41 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-07-15 22:41 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-07-15 22:41 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-07-15 22:41 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-07-15 22:41 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-07-15 22:41 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-07-15 22:41 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-07-15 22:41 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-07-15 22:41 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-07-15 22:41 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-07-15 22:41 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-07-15 22:41 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-07-15 22:41 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-07-15 22:41 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-07-15 22:41 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-07-15 22:41 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-07-15 22:41 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-07-15 22:41 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-07-15 22:41 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-07-15 22:41 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-07-15 22:41 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-07-15 22:41 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-07-15 22:41 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-07-15 22:41 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-07-15 22:41 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-07-15 22:41 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-07-15 22:41 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-07-15 22:41 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-07-15 22:41 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-07-15 22:41 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-07-15 22:41 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-07-15 22:41 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-07-15 22:41 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-07-15 22:41 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-07-15 22:41 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-07-15 22:41 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-07-15 22:41 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-07-15 22:41 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-07-15 22:41 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-07-15 22:41 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-07-15 22:41 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-07-15 22:41 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-07-15 22:41 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-07-15 22:41 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-07-15 22:41 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-07-15 22:41 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-07-15 22:41 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-07-15 22:41 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-07-15 22:41 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-07-15 22:41 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-07-15 22:41 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-07-15 22:41 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-07-15 22:41 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-07-15 22:41 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-07-15 22:41 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-07-15 22:41 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-07-15 22:41 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-07-15 22:41 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-07-15 22:41 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-07-15 22:41 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-07-15 22:41 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-07-15 22:41 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-07-15 22:41 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-07-15 22:41 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-07-15 22:41 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-07-15 22:41 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-07-15 22:41 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-07-15 22:41 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-07-15 22:41 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-07-15 22:41 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-07-15 22:41 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-07-15 22:41 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-07-15 22:41 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-07-15 22:41 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-07-15 22:41 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-07-15 22:41 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-07-15 22:41 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-07-15 22:41 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-07-15 22:41 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-07-15 22:41 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-07-15 22:41 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-07-15 22:41 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-07-15 22:41 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-07-15 22:41 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-07-15 22:41 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-07-15 22:41 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-07-15 22:41 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-07-15 22:41 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-07-15 22:41 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-07-15 22:41 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-07-15 22:41 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-07-15 22:41 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-07-15 22:41 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-07-15 22:41 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-07-15 22:41 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-07-15 22:41 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-07-15 22:41 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-07-15 22:41 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-07-15 22:41 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-07-15 22:41 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-07-15 22:41 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-07-15 22:41 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-07-15 22:41 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-07-15 22:41 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-07-15 22:41 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-07-15 22:41 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-07-15 22:41 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-07-15 22:41 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-07-15 22:41 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-07-15 22:41 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-07-15 22:41 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-07-15 22:41 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-07-15 22:41 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-07-15 22:41 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-07-15 22:41 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-07-15 22:41 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-07-15 22:41 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-07-15 22:41 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-07-15 22:41 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-07-15 22:41 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-07-15 22:41 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-07-15 22:41 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-07-15 22:41 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-07-15 22:41 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-07-15 22:41 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-07-15 22:41 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-07-15 22:41 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-07-15 20:10 - 2016-07-15 20:10 - 00000000 ____D C:\Users\kone\Downloads\Mega Man Unlimited V131 2nd-gen SFX MOD
2016-07-15 20:08 - 2016-07-15 20:10 - 102097932 _____ C:\Users\kone\Downloads\Mega Man Unlimited V131 2nd-gen SFX MOD.zip
2016-07-15 19:31 - 2016-07-15 19:31 - 00000219 _____ C:\Users\kone\Desktop\Counter-Strike Global Offensive.url
2016-07-14 23:58 - 2016-07-14 23:58 - 00000222 _____ C:\Users\kone\Desktop\Mighty No. 9.url
2016-07-14 23:58 - 2016-07-14 23:58 - 00000222 _____ C:\Users\kone\Desktop\Mighty Gunvolt.url
2016-07-14 23:58 - 2016-07-14 23:58 - 00000222 _____ C:\Users\kone\Desktop\Mega Man Legacy Collection.url
2016-07-14 21:28 - 2016-08-11 14:38 - 00000600 _____ C:\Users\kone\AppData\Local\PUTTY.RND
2016-07-14 21:17 - 2016-07-14 21:17 - 00531368 _____ (Simon Tatham) C:\Users\kone\Downloads\putty.exe
2016-07-14 19:33 - 2016-07-14 19:33 - 00000000 ____D C:\Users\kone\AppData\Roaming\Megaman_dosremake
2016-07-14 19:32 - 2016-07-14 19:33 - 70325248 _____ ( ) C:\Users\kone\Downloads\Megaman dosremake 2.19.exe
2016-07-14 18:04 - 2016-07-14 18:04 - 00000000 ____D C:\Users\kone\Downloads\Decompiler
2016-07-14 18:03 - 2016-07-14 18:03 - 00138679 _____ C:\Users\kone\Downloads\Decompiler.zip
2016-07-14 17:24 - 2016-08-07 23:44 - 00000000 ____D C:\Users\kone\.oracle_jre_usage
2016-07-14 17:24 - 2016-07-14 17:25 - 00000000 ____D C:\Users\kone\RuneLoader
2016-07-14 17:24 - 2016-07-14 17:24 - 00000000 ____D C:\Users\kone\AppData\Roaming\Sun
2016-07-14 17:24 - 2016-07-14 17:24 - 00000000 ____D C:\Users\kone\AppData\LocalLow\Sun
2016-07-14 17:23 - 2016-08-07 23:45 - 00000000 ____D C:\ProgramData\Oracle
2016-07-14 17:23 - 2016-08-07 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-07-14 17:23 - 2016-08-07 23:45 - 00000000 ____D C:\Program Files\Java
2016-07-14 17:23 - 2016-08-07 23:44 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-07-14 17:23 - 2016-07-14 17:23 - 00000000 ____D C:\Users\kone\AppData\LocalLow\Oracle
2016-07-14 17:21 - 2016-07-14 17:22 - 57667136 _____ (Oracle Corporation) C:\Users\kone\Downloads\jre-8u91-windows-x64.exe
2016-07-14 17:21 - 2016-07-14 17:21 - 03514555 _____ () C:\Users\kone\Downloads\SwiftKit(Install).exe
2016-07-14 17:21 - 2016-07-14 17:21 - 00001007 _____ C:\Users\kone\Desktop\SwiftKit.lnk
2016-07-14 17:21 - 2016-07-14 17:21 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SwiftKit
2016-07-14 17:21 - 2016-07-14 17:21 - 00000000 ____D C:\ProgramData\SwiftKit
2016-07-14 17:21 - 2016-07-14 17:21 - 00000000 ____D C:\Program Files (x86)\SwiftKit
2016-07-14 17:21 - 2013-04-07 04:16 - 00203976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RICHTX32.OCX
2016-07-14 17:21 - 2013-04-07 04:16 - 00117507 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2016-07-14 17:21 - 2013-04-07 04:16 - 00109248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWINSCK.OCX
2016-07-14 17:18 - 2016-07-13 15:20 - 00176552 _____ (Oracle Corporation) C:\Users\kone\Downloads\java.exe
2016-07-14 17:17 - 2016-07-14 17:17 - 00000000 ____D C:\Users\kone\Downloads\java
2016-07-14 17:15 - 2016-07-14 17:15 - 00000000 ____D C:\Users\kone\Downloads\v2-RC-Launcher
2016-07-14 17:14 - 2016-07-14 17:15 - 02620903 _____ C:\Users\kone\Downloads\v2-RC-Launcher.jar
2016-07-13 22:45 - 2016-07-13 22:45 - 00000222 _____ C:\Users\kone\Desktop\Momodora III.url
2016-07-13 22:45 - 2016-07-13 22:45 - 00000000 ____D C:\Users\kone\AppData\LocalLow\Hyper Hippo Games
2016-07-13 22:42 - 2016-07-13 22:42 - 00000222 _____ C:\Users\kone\Desktop\RuneScape Idle Adventures.url
2016-07-13 21:09 - 2016-07-13 21:09 - 00000000 ____D C:\Users\kone\AppData\Roaming\Tap_Dungeon
2016-07-13 21:07 - 2016-07-13 21:07 - 00000222 _____ C:\Users\kone\Desktop\Sakura Clicker.url
2016-07-13 20:23 - 2016-07-13 20:23 - 00000000 ____D C:\Users\kone\AppData\LocalLow\HuniePot
2016-07-13 20:20 - 2016-07-13 20:20 - 00000222 _____ C:\Users\kone\Desktop\HunieCam Studio.url
2016-07-13 19:01 - 2016-08-09 02:30 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-13 19:01 - 2016-08-02 20:39 - 00000000 ____D C:\Users\kone\AppData\Local\ZKWREBORN
2016-07-13 19:01 - 2016-07-13 19:01 - 00000222 _____ C:\Users\kone\Desktop\Zombie Kill of the Week - Reborn.url
2016-07-13 18:26 - 2016-07-13 18:26 - 00000000 ____D C:\Users\kone\AppData\Local\Steam
2016-07-13 18:26 - 2016-07-13 18:26 - 00000000 ____D C:\Users\kone\AppData\Local\CEF
2016-07-13 18:24 - 2016-08-11 11:26 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-13 18:24 - 2016-07-13 18:24 - 00000963 _____ C:\Users\Public\Desktop\Steam.lnk
2016-07-13 18:24 - 2016-07-13 18:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-13 18:23 - 2016-07-23 13:28 - 00000000 ____D C:\Users\kone\AppData\Roaming\Gyazo
2016-07-13 18:22 - 2016-07-14 18:22 - 00000000 ____D C:\Program Files (x86)\Gyazo
2016-07-13 18:22 - 2016-07-13 18:22 - 01444992 _____ C:\Users\kone\Downloads\SteamSetup.exe
2016-07-13 18:22 - 2016-07-13 18:22 - 00003402 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachineDaily
2016-07-13 18:22 - 2016-07-13 18:22 - 00003276 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachine
2016-07-13 18:22 - 2016-07-13 18:22 - 00000982 _____ C:\Users\Public\Desktop\Gyazo.lnk
2016-07-13 18:22 - 2016-07-13 18:22 - 00000982 _____ C:\Users\Public\Desktop\Gyazo GIF.lnk
2016-07-13 18:22 - 2016-07-13 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2016-07-13 17:25 - 2016-07-13 17:25 - 00000000 ____D C:\Users\kone\Downloads\MegaManEndless
2016-07-13 17:24 - 2016-07-13 17:25 - 16367604 _____ C:\Users\kone\Downloads\MegaManEndless.zip
2016-07-13 16:16 - 2016-07-21 14:02 - 00000000 ____D C:\Users\kone\AppData\Roaming\WhatsApp
2016-07-13 16:16 - 2016-07-13 16:16 - 00002122 _____ C:\Users\kone\Desktop\WhatsApp.lnk
2016-07-13 16:16 - 2016-07-13 16:16 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2016-07-13 16:15 - 2016-07-13 16:16 - 00000000 ____D C:\Users\kone\AppData\Local\WhatsApp
2016-07-13 16:03 - 2016-07-13 16:04 - 69658896 _____ (WhatsApp) C:\Users\kone\Downloads\WhatsAppSetup.exe
2016-07-13 15:22 - 2016-08-11 13:58 - 00000043 _____ C:\Users\kone\jagex_cl_oldschool_LIVE.dat
2016-07-13 15:22 - 2016-07-21 14:32 - 00000000 ____D C:\Users\kone\jagexcache
2016-07-13 15:22 - 2016-07-13 17:24 - 00000024 ____R C:\Users\kone\random.dat
2016-07-13 15:20 - 2016-07-13 22:53 - 00000000 ____D C:\Users\kone\OSBuddy
2016-07-13 15:20 - 2016-07-13 15:20 - 00880432 _____ C:\Users\kone\Downloads\OSBuddy.exe
2016-07-13 14:48 - 2016-08-06 18:07 - 00002117 _____ C:\Users\kone\Desktop\Discord.lnk
2016-07-13 14:48 - 2016-08-06 18:07 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-07-13 14:48 - 2016-08-06 18:07 - 00000000 ____D C:\Users\kone\AppData\Roaming\discord
2016-07-13 14:48 - 2016-08-06 18:07 - 00000000 ____D C:\Users\kone\AppData\Local\Discord
2016-07-13 14:48 - 2016-07-13 14:48 - 15666720 _____ (Nota Inc. ) C:\Users\kone\Downloads\Gyazo-3.2.3.exe
2016-07-13 14:47 - 2016-07-13 16:16 - 00000000 ____D C:\Users\kone\AppData\Local\SquirrelTemp
2016-07-13 14:38 - 2016-07-13 14:38 - 48565944 _____ (Hammer & Chisel, Inc.) C:\Users\kone\Downloads\DiscordSetup.exe
2016-07-13 14:02 - 2016-08-02 22:30 - 00000000 ____D C:\Users\kone\AppData\Roaming\mIRC
2016-07-13 14:02 - 2016-07-13 14:02 - 00000000 ____D C:\Program Files (x86)\mIRC
2016-07-13 13:41 - 2016-07-13 13:41 - 00000000 ____D C:\Users\kone\Downloads\MMXMF_AlphaV1.23
2016-07-13 13:41 - 2016-07-13 13:41 - 00000000 ____D C:\Users\kone\AppData\Roaming\WinRAR
2016-07-13 13:40 - 2016-07-13 13:40 - 01961528 _____ C:\Users\kone\Downloads\wrar54b3.exe
2016-07-13 13:40 - 2016-07-13 13:40 - 00000000 ____D C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-13 13:40 - 2016-07-13 13:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-13 13:40 - 2016-07-13 13:40 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-07-13 13:39 - 2016-07-13 13:39 - 48313072 _____ C:\Users\kone\Downloads\MMXMF_AlphaV1.23.rar
2016-07-13 13:38 - 2016-07-13 00:57 - 52572510 ____N C:\Users\kone\Desktop\MegamanXMavericksFuryV1.22.rar
2016-07-13 00:42 - 2016-07-13 14:47 - 01330876 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-07-13 00:42 - 2016-07-13 00:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-07-13 00:42 - 2016-07-13 00:42 - 00000000 ____D C:\Users\kone\AppData\Roaming\Intel Corporation
2016-07-13 00:42 - 2016-07-13 00:42 - 00000000 ____D C:\Program Files\Intel
2016-07-13 00:41 - 2016-07-13 00:41 - 00000000 ____D C:\Users\kone\Intel
2016-07-13 00:40 - 2016-07-13 00:40 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-07-13 00:40 - 2016-07-13 00:40 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-07-13 00:40 - 2016-07-13 00:40 - 00000000 ____D C:\Program Files\Realtek
2016-07-13 00:39 - 2016-07-13 00:41 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-07-13 00:39 - 2016-07-13 00:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-07-13 00:39 - 2016-07-13 00:39 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-07-13 00:39 - 2000-01-01 03:00 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-07-13 00:39 - 2000-01-01 03:00 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 12975360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 12834736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-07-13 00:39 - 2000-01-01 03:00 - 05615552 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 05234952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 04430808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-07-13 00:39 - 2000-01-01 03:00 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 03182104 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02825944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02812632 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02789808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-07-13 00:39 - 2000-01-01 03:00 - 02501848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02421480 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01954478 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-07-13 00:39 - 2000-01-01 03:00 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01709272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01558720 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01499984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01360640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01298136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00995120 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00979280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00836240 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00650384 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00542352 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-07-13 00:39 - 2000-01-01 03:00 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00434832 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00329360 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00306288 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00250536 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00213432 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-07-13 00:39 - 2000-01-01 03:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 13031424 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 12858880 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 11175936 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 11049472 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 10812416 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 05905904 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 05361920 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-07-13 00:32 - 2000-01-01 03:00 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 01040384 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00963452 _____ C:\Windows\SysWOW64\igcodeckrng600.bin
2016-07-13 00:32 - 2000-01-01 03:00 - 00963452 _____ C:\Windows\system32\igcodeckrng600.bin
2016-07-13 00:32 - 2000-01-01 03:00 - 00931840 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00432128 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00429056 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00428544 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00410624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-07-13 00:32 - 2000-01-01 03:00 - 00330752 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2016-07-13 00:32 - 2000-01-01 03:00 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00272928 _____ C:\Windows\SysWOW64\igvpkrng600.bin
2016-07-13 00:32 - 2000-01-01 03:00 - 00272928 _____ C:\Windows\system32\igvpkrng600.bin
2016-07-13 00:32 - 2000-01-01 03:00 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00223664 _____ C:\Windows\system32\Gfxres.th-TH.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00210106 _____ C:\Windows\system32\Gfxres.el-GR.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00194245 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00175104 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2016-07-13 00:32 - 2000-01-01 03:00 - 00166170 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00163421 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00159008 _____ C:\Windows\system32\Gfxres.he-IL.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00149682 _____ C:\Windows\system32\Gfxres.it-IT.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00148042 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00147393 _____ C:\Windows\system32\Gfxres.de-DE.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00147288 _____ C:\Windows\system32\Gfxres.es-ES.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00146004 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00145491 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00144645 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00144260 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00144020 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00143932 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00142882 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00142877 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00142717 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00142289 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00142008 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00141838 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00141049 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00137889 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00137784 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00137141 _____ C:\Windows\system32\Gfxres.da-DK.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00132623 _____ C:\Windows\system32\Gfxres.en-US.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2016-07-13 00:32 - 2000-01-01 03:00 - 00126300 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00124650 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2016-07-13 00:32 - 2000-01-01 03:00 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3223.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00098304 _____ C:\Windows\system32\igdde64.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00077312 _____ C:\Windows\SysWOW64\igdde32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00017090 _____ C:\Windows\system32\iglhxs64.vp
2016-07-13 00:32 - 2000-01-01 03:00 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00009728 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2016-07-13 00:32 - 2000-01-01 03:00 - 00000268 _____ C:\Windows\system32\GfxUI.exe.config
2016-07-13 00:30 - 2016-07-13 00:30 - 00981592 _____ (SlimWare Utilities, Inc.) C:\Users\kone\Downloads\SlimDrivers-setup.exe
2016-07-13 00:24 - 2016-08-09 02:45 - 00002189 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-13 00:24 - 2016-08-09 02:45 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-13 00:23 - 2016-08-11 14:40 - 00001008 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-13 00:23 - 2016-07-29 01:35 - 00004004 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-13 00:23 - 2016-07-29 01:35 - 00003752 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-13 00:23 - 2016-07-29 01:35 - 00001004 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-13 00:23 - 2016-07-13 14:45 - 00000000 ____D C:\Users\kone\AppData\Local\Google
2016-07-13 00:23 - 2016-07-13 00:24 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-13 00:23 - 2016-07-13 00:23 - 00000000 ____D C:\Users\kone\AppData\Local\Deployment
2016-07-13 00:23 - 2016-07-13 00:23 - 00000000 ____D C:\Users\kone\AppData\Local\Apps\2.0
2016-07-13 00:19 - 2016-07-13 00:42 - 00000000 ____D C:\ProgramData\Intel
2016-07-13 00:19 - 2016-07-13 00:33 - 00000000 ____D C:\Program Files (x86)\Intel
2016-07-13 00:19 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2016-07-13 00:19 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-07-13 00:19 - 2012-03-21 23:39 - 00020992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-07-13 00:19 - 2012-03-21 23:32 - 00017920 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-07-13 00:17 - 2016-07-13 00:18 - 00000000 ____D C:\Users\kone\Downloads\Intel_GMA_win7_64_152612
2016-07-13 00:16 - 2016-07-13 00:16 - 159611905 _____ C:\Users\kone\Downloads\Intel_GMA_win7_64_152612.zip
2016-07-13 00:16 - 2016-07-13 00:16 - 03685514 _____ C:\Users\kone\Downloads\SDI_R468.zip
2016-07-13 00:16 - 2016-07-13 00:16 - 00000000 ____D C:\Users\kone\Downloads\SDI_R468
2016-07-13 00:15 - 2016-06-21 12:13 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-07-13 00:05 - 2016-07-13 00:05 - 00000000 ____D C:\Program Files\DIFX
2016-07-13 00:04 - 2016-07-13 00:04 - 00000000 ____D C:\Users\kone\Documents\Wireless_18.11.0_Ds64
2016-07-13 00:01 - 2016-07-13 00:01 - 00057560 _____ C:\Users\kone\AppData\Local\GDIPFONTCACHEV1.DAT
2016-07-13 00:01 - 2016-07-13 00:01 - 00000000 ____D C:\Users\kone\Documents\Wireless_17.1.0_Ds32
2016-07-13 00:00 - 2016-07-13 00:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-07-12 23:58 - 2016-07-12 23:58 - 00001431 _____ C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-07-12 23:58 - 2016-07-12 23:58 - 00001397 _____ C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-07-12 23:57 - 2016-08-08 12:33 - 00000000 ____D C:\Users\kone\AppData\Local\VirtualStore
2016-07-12 23:57 - 2016-07-27 20:51 - 00000000 ____D C:\Users\kone
2016-07-12 23:57 - 2016-07-12 23:57 - 00000020 ___SH C:\Users\kone\ntuser.ini
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Public\Documents\Omat videotiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Public\Documents\Omat musiikkitiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Public\Documents\Omat kuvatiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Verkkoympäristö
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Tulostinympäristö
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Omat tiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Mallit
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Käynnistä-valikko
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Documents\Omat videotiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Documents\Omat musiikkitiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\Documents\Omat kuvatiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\kone\AppData\Roaming\Microsoft\Windows\Start Menu\Ohjelmat
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Verkkoympäristö
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Tulostinympäristö
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Omat tiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Mallit
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Käynnistä-valikko
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Documents\Omat videotiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Documents\Omat musiikkitiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\Documents\Omat kuvatiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Ohjelmat
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default User\Documents\Omat videotiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default User\Documents\Omat musiikkitiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default User\Documents\Omat kuvatiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Ohjelmat
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\ProgramData\Työpöytä
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\ProgramData\Tiedostot
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\ProgramData\Suosikit
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Ohjelmat
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\ProgramData\Mallit
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\ProgramData\Käynnistä-valikko
2016-07-12 23:57 - 2016-07-12 23:57 - 00000000 _SHDL C:\Program Files\Common Files\Järjestelmä
2016-07-12 23:57 - 2009-07-14 12:11 - 00000000 ____D C:\Users\kone\AppData\Roaming\Media Center Programs
2016-07-12 23:56 - 2016-08-07 23:50 - 00000000 ____D C:\Windows\Panther
2016-07-12 23:46 - 2016-07-12 23:46 - 00000000 ____D C:\Windows.old.000
2016-07-12 23:04 - 2016-07-12 23:04 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-07-12 23:04 - 2016-07-12 23:04 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-07-12 23:02 - 2016-07-12 23:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-10 17:04 - 2009-07-14 07:45 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-10 17:04 - 2009-07-14 07:45 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-10 17:02 - 2009-07-14 12:01 - 00482108 _____ C:\Windows\system32\perfh00B.dat
2016-08-10 17:02 - 2009-07-14 12:01 - 00101666 _____ C:\Windows\system32\perfc00B.dat
2016-08-10 17:02 - 2009-07-14 08:13 - 01356244 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-10 17:02 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\inf
2016-08-10 16:57 - 2009-07-14 08:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-07 23:24 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\Branding
2016-07-13 00:18 - 2012-05-21 12:13 - 00090112 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v2761.dll
2016-07-13 00:18 - 2012-05-21 12:03 - 00963912 _____ C:\Windows\SysWOW64\igkrng600.bin
2016-07-13 00:18 - 2012-05-21 12:03 - 00963912 _____ C:\Windows\system32\igkrng600.bin
2016-07-13 00:18 - 2012-05-21 10:38 - 01981696 _____ C:\Windows\system32\iglhxa64.cpa
2016-07-13 00:18 - 2012-05-21 10:38 - 00524800 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-07-13 00:18 - 2012-05-21 10:38 - 00519680 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-07-13 00:18 - 2012-05-21 10:38 - 00059425 _____ C:\Windows\system32\iglhxo64.vp
2016-07-13 00:18 - 2012-05-21 10:38 - 00059398 _____ C:\Windows\system32\iglhxg64.vp
2016-07-13 00:18 - 2012-05-21 10:38 - 00059230 _____ C:\Windows\system32\iglhxc64.vp
2016-07-13 00:18 - 2012-05-21 10:38 - 00059104 _____ C:\Windows\system32\iglhxc64_dev.vp
2016-07-13 00:18 - 2012-05-21 10:38 - 00058796 _____ C:\Windows\system32\iglhxg64_dev.vp
2016-07-13 00:18 - 2012-05-21 10:38 - 00058109 _____ C:\Windows\system32\iglhxo64_dev.vp
2016-07-13 00:18 - 2012-05-21 10:38 - 00001074 _____ C:\Windows\system32\iglhxa64.vp
2016-07-13 00:17 - 2012-05-21 12:03 - 00261208 _____ C:\Windows\SysWOW64\igfcg600m.bin
2016-07-13 00:17 - 2012-05-21 12:03 - 00261208 _____ C:\Windows\system32\igfcg600m.bin
2016-07-13 00:17 - 2012-05-21 12:03 - 00145804 _____ C:\Windows\SysWOW64\igcompkrng600.bin
2016-07-13 00:17 - 2012-05-21 12:03 - 00145804 _____ C:\Windows\system32\igcompkrng600.bin
2016-07-13 00:17 - 2012-05-21 10:38 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-07-12 23:57 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\rescache
2016-07-12 23:57 - 2009-07-14 06:20 - 00000000 ____D C:\Program Files\Windows NT
2016-07-12 23:56 - 2009-07-14 08:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-07-12 23:04 - 2009-07-14 08:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-12 23:04 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-07-12 22:58 - 2009-07-14 12:11 - 00000000 ____D C:\Windows\CSC
2016-07-12 22:58 - 2009-07-14 07:45 - 00274896 _____ C:\Windows\system32\FNTCACHE.DAT

==================== Files in the root of some directories =======

2016-08-04 09:25 - 2016-08-04 09:25 - 0000600 _____ () C:\Users\kone\AppData\Roaming\winscp.rnd
2016-07-14 21:28 - 2016-08-11 14:38 - 0000600 _____ () C:\Users\kone\AppData\Local\PUTTY.RND
2016-07-13 00:40 - 2016-07-13 00:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\kone\AppData\Local\Temp\libeay32.dll
C:\Users\kone\AppData\Local\Temp\msvcr120.dll
C:\Users\kone\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-08-09 15:20

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-08-2016 01
Ran by kone (2016-08-11 14:58:13)
Running from C:\Users\kone\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-07-12 20:57:18)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Järjestelmänvalvoja (S-1-5-21-289190271-1102116975-569571379-500 - Administrator - Disabled)
kone (S-1-5-21-289190271-1102116975-569571379-1000 - Administrator - Enabled) => C:\Users\kone
Vieras (S-1-5-21-289190271-1102116975-569571379-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Call OF Duty Modern Warfare 2 version 1.0 (HKLM-x32\...\{DPMW29C8-BE29-1C28-488D-01E96A0ECD54}_is1) (Version: 1.0 - Black_Box)
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Discord (HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\Discord) (Version: 0.0.295 - Hammer & Chisel, Inc.)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gyazo 3.2.3 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HandBrake 0.10.5 (HKLM-x32\...\HandBrake) (Version: 0.10.5 - )
Hero Siege (HKLM\...\Steam App 269210) (Version: - Elias Viglione)
HunieCam Studio (HKLM\...\Steam App 426000) (Version: - HuniePot)
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.29.01 - Hyperionics Technology LLC)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3223 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Log Drive Runner (HKLM\...\Steam App 464040) (Version: - Proud Camel Games)
Malwarebytes Anti-Exploit version 1.8.1.2572 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.8.1.2572 - Malwarebytes)
Malwarebytes Anti-Malware versio 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mega Man Legacy Collection (HKLM\...\Steam App 363440) (Version: - Capcom)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Mighty Gunvolt (HKLM\...\Steam App 394600) (Version: - INTI CREATES CO., LTD.)
Mighty No. 9 (HKLM\...\Steam App 314710) (Version: - Comcept)
Momodora III (HKLM\...\Steam App 302790) (Version: - rdein)
Mozilla Firefox 47.0.1 (x86 fi) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 fi)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1 - Mozilla)
OldSchool RuneScape Launcher 1.2.7 (HKLM-x32\...\{FEDDCE73-34B8-4980-90B8-8619A78C902C}) (Version: 1.2.7 - Jagex Ltd)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7464 - Realtek Semiconductor Corp.)
RuneScape Launcher 1.2.7 (HKLM-x32\...\{FA52A2D0-298E-4D40-8BB7-39928627EA6A}) (Version: 1.2.7 - Jagex Ltd)
RuneScape: Idle Adventures (HKLM\...\Steam App 452780) (Version: - Hyper Hippo Games)
Sakura Clicker (HKLM\...\Steam App 383080) (Version: - Winged Cloud)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SwiftKit (HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\SwiftKit) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
WhatsApp (HKU\S-1-5-21-289190271-1102116975-569571379-1000\...\WhatsApp) (Version: 0.2.1061 - WhatsApp)
Windowsin ohjainpaketti - Intel (NETwNs64) net (04/30/2015 15.11.0.9) (HKLM\...\3A0A5AE912CC81290DB2E472F7DC4CF387C36211) (Version: 04/30/2015 15.11.0.9 - Intel)
Windowsin ohjainpaketti - Intel (NETwNs64) net (04/30/2015 15.17.0.1) (HKLM\...\6215B44C20BCFEEA55D04A5A510C7994E3C7E28F) (Version: 04/30/2015 15.17.0.1 - Intel)
Windowsin ohjainpaketti - Intel (NETwNs64) net (06/22/2015 18.11.0.8) (HKLM\...\95D750361316F93378C278E0FD6B87A7DBA8E680) (Version: 06/22/2015 18.11.0.8 - Intel)
WinRAR 5.40 beta 3 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.3 - win.rar GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Zombie Kill of the Week - Reborn (HKLM\...\Steam App 342300) (Version: - Still Running)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1C976AA4-16E1-484B-AD09-3AE18F9A841D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-13] (Google Inc.)
Task: {236FF967-A054-4C1D-A75D-9903EAADB7BB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate [Argument = $(Arg0)]
Task: {2BE4193A-982A-4186-A57B-CBD24C2B7BB7} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-13] ()
Task: {39E4735A-BFD8-46EB-A7B7-BB7E8E0A1FBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-13] (Google Inc.)
Task: {54F37D1D-93FF-44FF-A78D-EE20F6884D42} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-13] ()
Task: {753185BA-30CD-48F6-9F42-EDA09A9A22C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {AB55756C-6D28-4FC4-9516-85405873BBA2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-21] (Adobe Systems Incorporated)
Task: {D3BE75FF-2743-4D3B-886C-6F3D68C3AD91} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec [Argument = /RestartRecording]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2012-05-21 10:38 - 2016-07-13 00:17 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-07-13 22:42 - 2016-07-13 22:42 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1035.dll
2016-08-09 02:45 - 2016-08-03 02:41 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-09 02:45 - 2016-08-03 02:40 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2016-08-09 02:45 - 2016-08-03 02:04 - 31541952 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll
2016-08-06 18:07 - 2016-08-01 13:11 - 01950392 _____ () C:\Users\kone\AppData\Local\Discord\app-0.0.295\ffmpeg.dll
2016-08-06 18:07 - 2016-08-06 18:07 - 01043640 _____ () \\?\C:\Users\kone\AppData\Roaming\discord\0.0.295\modules\discord_voice\discord_voice.node
2016-08-06 18:07 - 2016-08-06 18:07 - 03784376 _____ () \\?\C:\Users\kone\AppData\Roaming\discord\0.0.295\modules\discord_voice\libdiscord.dll
2016-08-06 18:07 - 2016-08-06 18:07 - 00887992 _____ () \\?\C:\Users\kone\AppData\Roaming\discord\0.0.295\modules\discord_utils\discord_utils.node
2016-08-06 18:07 - 2016-08-01 13:11 - 02230456 _____ () C:\Users\kone\AppData\Local\Discord\app-0.0.295\libglesv2.dll
2016-08-06 18:07 - 2016-08-01 13:11 - 00088760 _____ () C:\Users\kone\AppData\Local\Discord\app-0.0.295\libegl.dll
2016-08-10 16:58 - 2016-08-10 16:58 - 00170496 _____ () \\?\C:\Users\kone\AppData\Local\Temp\55CC.tmp.node
2016-07-13 18:25 - 2016-08-03 01:08 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-07-13 18:25 - 2016-08-03 01:10 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-07-13 18:25 - 2016-08-03 01:09 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-07-13 18:25 - 2016-08-03 01:09 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-07-13 18:25 - 2016-08-03 03:00 - 02320160 _____ () C:\Program Files (x86)\Steam\video.dll
2016-07-13 18:25 - 2016-02-09 02:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-07-13 18:25 - 2016-02-09 02:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-07-13 18:25 - 2016-02-09 02:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-07-13 18:25 - 2016-02-09 02:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-07-13 18:25 - 2016-02-09 02:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-07-13 18:25 - 2016-08-03 02:59 - 00831776 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-07-13 18:25 - 2016-07-07 01:00 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-07-13 18:25 - 2016-06-14 22:14 - 49826080 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-07-13 18:25 - 2015-09-25 02:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 05:34 - 2009-06-11 00:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-289190271-1102116975-569571379-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\kone\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{25945A88-B76A-4641-84BC-921107A3320E}C:\users\kone\downloads\sdi_r468\sdi_r468\sdi_x64_r468.exe] => (Allow) C:\users\kone\downloads\sdi_r468\sdi_r468\sdi_x64_r468.exe
FirewallRules: [UDP Query User{31F5B062-95CF-46B4-872C-7E0432A70CA5}C:\users\kone\downloads\sdi_r468\sdi_r468\sdi_x64_r468.exe] => (Allow) C:\users\kone\downloads\sdi_r468\sdi_r468\sdi_x64_r468.exe
FirewallRules: [{091DCB6B-CD51-4BC6-939D-79DD22084557}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{D7CE9EC6-43C7-4147-9591-7425E23792F3}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{BD7169AB-54B5-461B-847C-4ED353B692EC}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{50344EF4-1480-4DCC-B83C-57B268C07925}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A1D3CB1-CBB6-4AFD-AD44-9CFF28DE9D32}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2564AB50-5A64-4EA9-BB21-C40B1CA7148F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{77EE76F1-C69F-4FBF-AB7B-F108224D9F17}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3B49C254-DD5F-469F-980E-328D5695574D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zombie Kill of the Week - Reborn\Reborn.exe
FirewallRules: [{61DF23FE-8BEC-4C18-8E03-E6E6DF69CC75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zombie Kill of the Week - Reborn\Reborn.exe
FirewallRules: [{E6F690B2-F549-48DE-BE38-E8A8FA22396F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HunieCam Studio\HunieCamStudio.exe
FirewallRules: [{2C3F177A-F453-4142-9A84-5B6E4BD763E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HunieCam Studio\HunieCamStudio.exe
FirewallRules: [{B9CE7010-4588-4263-9711-7F10898CCFB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{767D9745-291F-455C-AB02-BE1C2FB690E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{E48BC4C1-CEA7-48DA-A6CE-EA8C164592C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RuneScape Idle Adventures\idle-adventures.exe
FirewallRules: [{07B30634-33EF-4AC4-BD04-4360701AB1F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RuneScape Idle Adventures\idle-adventures.exe
FirewallRules: [{04C810E4-A628-47E6-9076-57FCA4B7A25E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Momodora III\Momodora3.exe
FirewallRules: [{6F1C263B-B035-43AD-9D2E-251C2463B971}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Momodora III\Momodora3.exe
FirewallRules: [{FDBC7F38-EE34-46BC-8291-02F9C06D16C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Suzy\Proteus.exe
FirewallRules: [{449A0D02-22EF-4518-BCDC-4BDD3D299241}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Suzy\Proteus.exe
FirewallRules: [{E9E4F487-F647-44E3-9DA2-ADB4944683DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mighty Gunvolt\MightyGunvolt.exe
FirewallRules: [{C88071D5-24F4-4353-AB13-D8219D2393CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mighty Gunvolt\MightyGunvolt.exe
FirewallRules: [{0BF2A45F-01B8-4440-9941-09F906179E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mighty No. 9\Binaries\Win32\MN9Game.exe
FirewallRules: [{1A44FBD4-5D07-44B2-B1B9-71DFDB963A26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mighty No. 9\Binaries\Win32\MN9Game.exe
FirewallRules: [{A89F5824-2FED-4EAE-8610-6CAE22D642CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{54904547-2D8C-4307-8878-E15F4CB3F05B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{FB159260-2CE0-4D5D-8088-A0972494263F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6AED3EA9-F364-4B0B-9C41-2F9E918B397C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{13AACF99-B6DC-4CAA-AA6D-F7B969D272E6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{4F82AE65-4452-41D6-A4E3-595AFE6CEF71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{E0E49EC5-10D7-4EA5-A116-7535E7A1FB14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{125467AB-FB6E-45F8-AD08-68DA34624E70}] => (Allow) C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A30BCFBD-8D37-4C97-AE55-4B52AA38788E}] => (Allow) C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FB719A49-7FEA-4F6E-951A-0B9BF218A096}] => (Allow) C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B0FF015A-C544-4F3E-8ACC-9FAA16CF3EB2}] => (Allow) C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8156B58D-5BF9-48B7-8570-D21A008BFDD3}] => (Allow) C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{429FEAAC-46CF-4314-A944-D43022E3F808}] => (Allow) C:\Users\kone\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C1D07771-3AFF-467E-9954-B9E77AE94882}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{245131E4-E6D8-407B-AA89-1C8577744BBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{BD99BB1A-87CC-472E-80B3-8C1135E4E0FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{49819E85-F3F3-4E02-B98A-C693BA2B1EB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{82EA8D9E-A69A-4BCB-A4F6-C1482C557290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{4E94A318-DA58-4272-B8E6-29E41F5965A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{3439E750-C713-440E-9CFF-7713239E9914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{F33654E3-6C12-477E-B680-7F524742FEC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{BFEC790F-D0D2-4A16-B165-2F76631266C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Log Drive Runner\LogDriveRunner.exe
FirewallRules: [{012F9553-49A0-4988-8ADE-6D2673E5B9C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Log Drive Runner\LogDriveRunner.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: BCM20702A0
Description: BCM20702A0
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Yksinkertainen PCI-tietoliikenneohjain
Description: Yksinkertainen PCI-tietoliikenneohjain
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Ethernet-sovitin
Description: Ethernet-sovitin
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x000002dc,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,000000000210EE10.72). hr = 0x80070005, Käyttö estetty.
.

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x00000970,(null),0,REG_BINARY,000000000A21DF60.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Kirjoitustoiminnon nimi: MSSearch Service Writer
Kirjoitustoiminnon esiintymän tunnus: {e7c1f0cd-bb49-4833-aa43-e85eeaddad76}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x00000970,(null),0,REG_BINARY,000000000A21DF60.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Kirjoitustoiminnon nimi: MSSearch Service Writer
Kirjoitustoiminnon esiintymän tunnus: {e7c1f0cd-bb49-4833-aa43-e85eeaddad76}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x00000840,(null),0,REG_BINARY,0000000000F6DEE0.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Kirjoitustoiminnon nimi: WMI Writer
Kirjoitustoiminnon esiintymän tunnus: {d97f8e27-34d7-495a-9e73-26615910965e}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x000001d0,SYSTEM\CurrentControlSet\Services\VSS\Diag\COM+ REGDB Writer,0,REG_BINARY,000000000219F520.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Kirjoitustoiminnon nimi: COM+ REGDB Writer
Kirjoitustoiminnon esiintymän tunnus: {cb5a8db6-3aab-41b1-904a-eb7e156281f4}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x00000840,(null),0,REG_BINARY,0000000000F6DEE0.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Kirjoitustoiminnon nimi: WMI Writer
Kirjoitustoiminnon esiintymän tunnus: {d97f8e27-34d7-495a-9e73-26615910965e}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x000002b8,(null),0,REG_BINARY,0000000003B8E540.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {e8132975-6f93-4464-a53e-1050253ae220}
Kirjoitustoiminnon nimi: System Writer
Kirjoitustoiminnon esiintymän tunnus: {75ca5250-e5b1-4d1d-abf8-4b0d4c6b6dac}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x000001c4,SYSTEM\CurrentControlSet\Services\VSS\Diag\Registry Writer,0,REG_BINARY,000000000175E9A0.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Kirjoitustoiminnon nimi: Registry Writer
Kirjoitustoiminnon esiintymän tunnus: {8f22599d-40c2-434c-882c-d029dd344486}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x00000208,SYSTEM\CurrentControlSet\Services\VSS\Diag\Shadow Copy Optimization Writer,0,REG_BINARY,000000000226EE60.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Kirjoitustoiminnon nimi: Shadow Copy Optimization Writer
Kirjoitustoiminnon esiintymän tunnus: {9f7ab4e7-fd73-4a4d-8de0-4bee69e7626e}

Error: (08/09/2016 01:16:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Aseman tilannevedospalvelun virhe: Odottamaton virhe kutsuttaessa toimintoa RegSetValueExW(0x000002b8,(null),0,REG_BINARY,0000000003B8E540.72). hr = 0x80070005, Käyttö estetty.
.


Toiminto:
BackupShutdown-tapahtuma

Sijainti:
Suorituskonteksti: Writer
Kirjoitustoiminnon luokkatunnus: {e8132975-6f93-4464-a53e-1050253ae220}
Kirjoitustoiminnon nimi: System Writer
Kirjoitustoiminnon esiintymän tunnus: {75ca5250-e5b1-4d1d-abf8-4b0d4c6b6dac}


System errors:
=============
Error: (08/11/2016 03:17:23 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:17:20 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:17:17 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:17:14 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:15:58 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:15:25 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:15:22 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:15:17 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:15:11 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.

Error: (08/11/2016 03:08:43 AM) (Source: Disk) (EventID: 7) (User: )
Description: Virheellinen lohko laitteessa \Device\Harddisk0\DR0.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 74%
Total physical RAM: 6056.67 MB
Available physical RAM: 1567.8 MB
Total Virtual: 12111.54 MB
Available Virtual: 6502.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:464.78 GB) (Free:144.48 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 383EB633)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================



User avatar

Aura
Global Moderator
Global Moderator
Posts: 220
Joined: Fri Sep 11, 2015 1:38 am
Location: Québec, Canada

#2 Re: PC Checkup

Postby Aura » Thu Aug 11, 2016 8:47 pm

Hi IcyTower :)

My name is Aura and I'll be assisting you with your malware issue. Since we'll be working together, you can call me Aura or Yoan, which is my real name, it's up to you! Now that we've broke the ice, I'll just ask you a few things during the time we'll be working together to clean your system and get it back to an operational state.
  • As you'll notice, the logs we are asking for here are quite lenghty, so it's normal for me to not reply exactly after you post them. This is because I need some time to analyse them and then act accordingly. However, I'll always reply within 24 hours, 48 hours at most if something unexpected happens;
  • As long as I'm assisting you on WHF, in this thread, I'll ask you to not seek assistance anywhere else for any issue related to the system we are working on. If you have an issue, question, etc. about your computer, please ask it in this thread and I'll assist you;
  • The same principle applies to any modifications you make to your system, I would like you to ask me before you do any manipulations that aren't in the instructions I posted. This is to ensure that we are operating in sync and I know exactly what's happening on your system;
  • If you aren't sure about an instruction I'm giving you, ask me about it. This is to ensure that the clean-up process goes without any issue. I'll answer you and even give you more precise instructions/explanations if you need. There's no shame in asking questions here, better be safe than sorry!;
  • If you don't reply to your thread within 3 days, I'll bump this thread to let you know that I'm waiting for you. If you don't reply after 5 days, it'll be closed. If you return after that period, you can send me a PM to get it unlocked and we'll continue where we left off;
  • Since malware can work quickly, we want to get rid of them as fast as we can, before they make unknown changes to the system. This being said, I would appreciate if you could reply to this thread within 24 hours of me posting. This way, we'll have a good clean-up rhythm and the chances of complications will be reduced;
  • I'm against any form of pirated, illegal and counterfeit software and material. So if you have any installed on your system, I'll ask you to uninstall them right now. You don't have to tell me if you indeed had some or not, I'll give you the benefit of the doubt. Plus, this would be against WHF's rules;
  • In the end, you are the one asking for assistance here. So if you wish to go a different way during the clean-up, like format and reinstall Windows, you are free to do so. I would appreciate you to let me know about it first, and if you need, I can also assist you in the process;
  • I would appreciate if you were to stay with me until the end, which means, until I declare your system clean. Just because your system isn't behaving weirdly anymore, or is running better than before, it doesn't mean that the infection is completely gone;
    This being said, I have a full time job, and I also have night classes on Mondays and Wednesdays, which means that if you reply during these two days, it'll take longer for me to reply to you. Don't worry, you'll be my first priority as soon as I get home and have time to look at your thread;
This being said, it's time to clean-up some malware, so let's get started, shall we? :)

I noticed that you have a lot of pirated content on your system. I won't list them for you as I'm sure you're well aware of it, so if you want me to continue help you with the clean-up, I'll ask you to uninstall every single pirated programs you have, and get rid of any copyrighted material you obtained illegally.

Meanwhile, is there anything that makes you believe you are infected? The only thing I see is an hijacked startup page in Google Chrome (by delta-search) that could probably be solved simply by removing it manually from the settings, and reset Google Chrome.




Topic author
IcyTower
Newbie
Newbie
Posts: 4
Joined: Thu Aug 11, 2016 11:35 am

#3 Re: PC Checkup

Postby IcyTower » Fri Aug 12, 2016 3:27 pm

Hi =)

I have now deleted all illegal copyright material. And i restored also chrome settings and removed delta. Is my PC now clean and safe?



User avatar

Aura
Global Moderator
Global Moderator
Posts: 220
Joined: Fri Sep 11, 2015 1:38 am
Location: Québec, Canada

#4 Re: PC Checkup

Postby Aura » Fri Aug 12, 2016 7:48 pm

We can run a few additional scans just to make sure there's nothing, even though in my book I don't think you are infected.

ImageJunkware Removal Tool (JRT)
  • Download Junkware Removal Tool (JRT) and move it to your Desktop;
  • Right-click on JRT.exe and select ImageRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users);
  • Press on any key to launch the scan and let it complete;
    Image
    [size=x-small]Credits : BleepingComputer.com[/size]
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

ImageAdwCleaner - Fix Mode
  • Download AdwCleaner and move it to your Desktop;
  • Right-click on AdwCleaner.exe and select ImageRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users);
  • Accept the EULA (I accept), let the database update, then click on Scan;
  • Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Cleaning button. This will kill all the active processes;
    Image
  • Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it;
  • After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply;

ImageMalwarebytes Anti-Malware - Clean Mode
  • Download and install the free version of Malwarebytes Anti-Malware
    Note: It's your choice if you want to enable the free trial of Malwarebytes Premium or not. Enabling it will give you real-time protection from the program, as well as access to all the Premium features.
    Note: If you have Malwarebytes already installed, you don't need to install it again. Simply start from the next bullet point;
  • Once Malwarebytes is installed, launch it and let it update his database. You might have to click on the Update Now button;
  • Once the database update is complete, click on the Scan tab, then select the Threat Scan button and click on Start Scan;
  • Let the scan run, the time required to complete the scan depends of your system and computer specs;
  • Once the scan is complete, make sure that the checkbox by Threat is checked (it means that every item detected is checked), then click on the Remove Selected button;
    Image
  • Click on Save Results after the deletion (in the bottom-right corner) and select Copy to clipboard. Paste the content in your next reply;

Your next reply(ies) should therefore contain:
  • Copy/pasted JRT log;
  • Copy/pasted AdwCleaner clean log;
  • Copy/pasted Malwarebytes clean log;




Topic author
IcyTower
Newbie
Newbie
Posts: 4
Joined: Thu Aug 11, 2016 11:35 am

#5 Re: PC Checkup

Postby IcyTower » Fri Aug 12, 2016 10:45 pm

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 7 Ultimate x64
Ran by kone (Administrator) on la 13.08.2016 at 0:45:35,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 19

Successfully deleted: C:\ProgramData\1471016187.bdinstall.bin (File)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CT2XZB0L (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FRF1L23O (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FRH3JI8G (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JS1GF1ZD (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\kone\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V60TYTDS (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CT2XZB0L (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FRF1L23O (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FRH3JI8G (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JS1GF1ZD (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V60TYTDS (Temporary Internet Files Folder)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on la 13.08.2016 at 0:48:39,42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1700 Bytes] ##########
# AdwCleaner v5.201 - Logfile created 13/08/2016 at 01:05:09
# Updated 30/06/2016 by ToolsLib
# Database : 2016-08-12.4 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (X64)
# Username : kone - KONE-PC
# Running from : C:\Users\kone\Desktop\AdwCleaner.exe
# Option : Scan
# Support : https://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLL ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\adawarebp
Key Found : HKU\S-1-5-21-289190271-1102116975-569571379-1000\Software\AppDataLow\Software\adawarebp

***** [ Web browsers ] *****

[C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : delta-search.com
[C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : dchublist.com
[C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : sakura-clicker.en.softonic.com
[C:\Users\kone\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Found : hxxp://www1.delta-search.com/?affID=119 ... FF44B59A81

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1949 bytes] - [10/08/2016 16:55:59]
C:\AdwCleaner\AdwCleaner[S1].txt - [1966 bytes] - [10/08/2016 16:51:57]
C:\AdwCleaner\AdwCleaner[S2].txt - [3254 bytes] - [13/08/2016 00:52:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [3327 bytes] ##########

Malwarebytes Anti-Malware
www.malwarebytes.org

Tarkistuksen päivämäärä: 13.8.2016
Tarkistuksen kellonaika: 1:12
Lokitiedosto: scanni.txt
Järjestelmänvalvoja: Kyllä

Versio: 2.2.1.1043
Haittaohjelmien tietokanta: v2016.08.12.10
Rootkittien tietokanta: v2016.08.09.01
Lisenssi: Ilmainen
Haittaohjelmasuoja: Pois käytöstä
Haitallisten verkkosivujen esto: Pois käytöstä
Itsepuolustus: Pois käytöstä

Käyttöjärjestelmä: Windows 7 Service Pack 1
Prosessori: x64
Tiedostojärjestelmä: NTFS
Käyttäjä: kone

Tarkistuksen tyyppi: Kattava tarkistus
Tulos: Valmis
Kohteita tarkistettu: 288167
Aikaa kulunut: 17 minuutti(a), 56 sekuntti(a)

Muisti: Käytössä
Käynnistys: Käytössä
Tiedostojärjestelmä: Käytössä
Pakkaukset: Käytössä
Rootkitit: Käytössä
Heuristiikka: Käytössä
Mahdollisesti haitalliset ohjelmat: Käytössä
Mahdollisesti haitalliset muutokset: Käytössä

Prosessit: 0
(Haitallisia kohteita ei löydetty)

Moduulit: 0
(Haitallisia kohteita ei löydetty)

Rekisteriavain: 0
(Haitallisia kohteita ei löydetty)

Rekisteriarvot: 0
(Haitallisia kohteita ei löydetty)

Reksiteritiedot: 0
(Haitallisia kohteita ei löydetty)

Kansiot: 0
(Haitallisia kohteita ei löydetty)

Tiedostot: 0
(Haitallisia kohteita ei löydetty)

Fyysiset sektorit: 0
(Haitallisia kohteita ei löydetty)


(end)



User avatar

Aura
Global Moderator
Global Moderator
Posts: 220
Joined: Fri Sep 11, 2015 1:38 am
Location: Québec, Canada

#6 Re: PC Checkup

Postby Aura » Sun Aug 14, 2016 8:13 am

Alright so there was only 2 actual detections, and they belong to Ad-Aware Browsing Protection, which is a legitimate program though often considered as a PUP. The various folder deletions in JRT were temporary Internet folders, so nothing to worry about.

This pretty much confirms the fact that you aren't infected, as I don't see any obvious signs in your logs that would make me believe that.




Topic author
IcyTower
Newbie
Newbie
Posts: 4
Joined: Thu Aug 11, 2016 11:35 am

#7 Re: PC Checkup

Postby IcyTower » Sun Aug 14, 2016 1:36 pm

Thanks for helping me Aura =) Now i know where i must ask help if i need :)



User avatar

Aura
Global Moderator
Global Moderator
Posts: 220
Joined: Fri Sep 11, 2015 1:38 am
Location: Québec, Canada

#8 Re: PC Checkup

Postby Aura » Sun Aug 14, 2016 4:02 pm

No problem Icy, you're welcome :)




Return to “Malware Removal”

Who is online

Users browsing this forum: No registered users and 1 guest