Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Memory


  • Please log in to reply
4 replies to this topic

#1 Rian Hanson

Rian Hanson

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 24 December 2013 - 05:51 PM

I'm concerned for my system, it seems that for some reason my laptop is eating a lot of memory. At the moment with this browser running it's at 43% and I have no idea what's going on. ._. It's my svchost.exe, my Anti-viruses have so far come up with nothing to help solve this problem. Also Merry Christmas, and I'll try a reboot to see what is going on.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8.1 x64
Ran by Nayru Roivas on Tue 12/24/2013 at 16:07:59.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\adawarebp
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 12/24/2013 at 16:16:02.44
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
I'm now using my ESET and seeing what it'll come up with. ESET found no threats so no log was produced.

Edited by Rian Hanson, 24 December 2013 - 08:10 PM.


BC AdBot (Login to Remove)

 


#2 Rian Hanson

Rian Hanson
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 24 December 2013 - 07:12 PM

I even pulled up Roguekiller and got this log for it. 

ogueKiller V8.7.13 _x64_ [Dec 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
 
Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : Nayru Roivas [Admin rights]
Mode : Remove -- Date : 12/24/2013 17:10:19
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 0 ¤¤¤
 
¤¤¤ Registry Entries : 6 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> DELETED
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> [0x2] The system cannot find the file specified. 
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
 
¤¤¤ Scheduled tasks : 0 ¤¤¤
 
¤¤¤ Startup Entries : 0 ¤¤¤
 
¤¤¤ Web browsers : 0 ¤¤¤
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤
 
¤¤¤ External Hives: ¤¤¤
 
¤¤¤ Infection :  ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
 
 
127.0.0.1       localhost
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] 84aff3fcae7d19d3d4af661641bcc299
[BSP] 8c35f24564ad96f9c5d696209e72a2d4 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!


#3 Rian Hanson

Rian Hanson
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 24 December 2013 - 08:05 PM

I also ran OTL and I got this beauty too. :X Not sure what I'm looking at here in accordance to my memory eating issue. 

 

OTL Extras logfile created on: 12/24/2013 5:51:37 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Nayru Roivas\Desktop
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
7.71 Gb Total Physical Memory | 3.35 Gb Available Physical Memory | 43.43% Memory free
15.46 Gb Paging File | 11.10 Gb Available in Paging File | 71.79% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 904.26 Gb Total Space | 756.63 Gb Free Space | 83.67% Space Free | Partition Type: NTFS
Drive D: | 583.78 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: RHEA | User Name: Nayru Roivas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" =  [binary data]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
 
========== Firewall Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01749CAF-1C2B-4FC0-A175-9B2F5708FAF9}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{0D054955-6C81-480C-B1C7-046D03A85959}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{19898B50-32D0-41BC-B4F2-1DB98B60ECF0}" = lport=445 | protocol=6 | dir=in | app=system | 
"{1B0C5923-05C4-410E-A84E-506E80F4A3E4}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{2430EB35-1792-40ED-AC7C-FCD9963C86FB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{3000A2F2-0D85-471D-9DD3-D73110E2F4ED}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{3646A761-4982-46AE-84AF-588BB82A6CEA}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{3DAAA17B-8185-425A-AA3E-DFBC0F8D4502}" = rport=139 | protocol=6 | dir=out | app=system | 
"{3DE49AD9-39D0-4C80-8F77-3996CB4ED03F}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{45CA024A-A666-40FE-851D-406B3E958045}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{4A979746-D214-42A3-806E-F65ADABBAA49}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{4C8F8F2E-83CB-4EC0-AA74-0049BB272EE4}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{50FD52D5-B03B-468C-BC4B-0E30BFEFE619}" = rport=138 | protocol=17 | dir=out | app=system | 
"{58BE0ED8-FA5C-4E2E-80EC-F29F77D89829}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{60030D3C-2DD2-476A-8D33-9AC26E3E1B07}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{6782C264-7BED-4D71-8F17-E2C7CFD8DCD1}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{6869792A-69A2-4C4A-AB6C-313A7A2383D4}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{730843AE-EEDB-4281-BCE1-2D6E75840717}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{7835BE14-7D3A-4409-862A-4241092E9A6E}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{79B7AC91-9B1F-4208-838B-4DCAF130A8FE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{7FB0149E-04FD-4CCB-A572-DF261A017233}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{81080674-46BE-4016-AC8E-8EFF8B7AE0F3}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{81D9F403-ABE7-47BC-8C8F-8805D84AFBA7}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{8438EE38-1815-45ED-BEA8-583EDDA97ED2}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{866C86DC-C460-43B2-82C4-17FBF5E3093B}" = rport=445 | protocol=6 | dir=out | app=system | 
"{87408284-2BA0-4BF4-93E7-E5723961B11F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{8DD6F9E9-B702-42F0-ADF7-6759846FD524}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{90D080BF-E6C0-48F9-B2B2-0D8C10C025B5}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | 
"{913B8415-42C2-4559-B631-F93AFBDF323C}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{9A659195-8EF5-44F6-901E-7754023082C7}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{9F5020BB-BA73-4E2B-B73E-2B5100041FF6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{A2EB4C45-6577-4281-89F8-06464265ABAD}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{A6525222-2E2A-4141-A341-F17C2D508551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{AF787907-3A64-4C6C-A4C8-B94EB88CAE27}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{AF97078D-2CE8-424B-9004-90DD0363B8FC}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{B26CBA39-0ADF-434D-A7B5-A125B1F2A52A}" = lport=138 | protocol=17 | dir=in | app=system | 
"{B445AD7A-408D-4827-906E-32705BC37360}" = rport=137 | protocol=17 | dir=out | app=system | 
"{BA1D4351-E33A-4CCF-9054-5CF9D47569C7}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{BCB70D90-BF81-430B-B35C-C1C81404E381}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{C2E8E8A4-8DC7-41A9-A172-4870B478FD4D}" = lport=137 | protocol=17 | dir=in | app=system | 
"{D5C88C69-4387-4B45-8487-A0A92D1C2EFD}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{E1BD9330-C053-4D78-A0A5-7239BC9C6336}" = lport=139 | protocol=6 | dir=in | app=system | 
"{E858FE51-C37D-4696-A621-3406C56E01BC}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{EE47DA7B-3D6E-4B89-AF5D-8372A0CEA7C3}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | 
"{EE7FCD3B-BD53-4141-9FAC-A57367898A61}" = lport=2869 | protocol=6 | dir=in | app=system | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{019CB030-BFB6-4D3F-A89D-FBCC821AB0EC}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | 
"{01C91954-D7F4-4353-BD38-A4F1CF4BB91A}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe | 
"{01CBC54C-B2B2-4092-B5FB-501366AD99CA}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{07EB8109-0C9F-43FC-9F84-BFC331433407}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe | 
"{0C26434D-45B5-4245-AC8E-C0B7562C971B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{0E70F690-CC49-4FC0-983C-D0A3A69B3D0F}" = dir=out | name=@{microsoft.bingfinance_3.0.1.299_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | 
"{105B9777-82B4-4FE6-AA10-16494E2A6422}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{1C7CDEEC-5986-47B4-9444-A61F803137BD}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\dragon age ii\bin_ship\dragonage2.exe | 
"{1D66930B-84AC-4242-BA4F-99895DDDCDCC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{1DCB1157-9C03-4D00-8507-8FC5FC465130}" = dir=out | name=sonicwall mobile connect | 
"{22811EEF-3DC0-46F2-B8DB-EE16325D2F64}" = dir=out | name=fresh paint | 
"{22B07D60-C5D0-4880-91ED-1560AB6DC558}" = dir=out | name=evernote touch | 
"{23FE3C62-B739-4B99-9B77-A5F09A926ADC}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | 
"{2442B66A-9B98-41FE-B4A4-93A5AF3768F8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{266DCDDF-1430-4BB2-8FEE-31D6C9B9FFDD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\ragnarok online 2\wplauncher.exe | 
"{2C026D59-077F-49B6-9D36-EF4B40C0AE8A}" = dir=out | name=@{microsoft.zunemusic_2.2.339.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | 
"{2DA3D3E4-B478-4165-9368-CF7C3D7EBA30}" = dir=out | name=@{microsoft.zunevideo_2.2.338.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | 
"{3241B5DC-20C5-4C87-86FC-979F7FF84BEC}" = dir=in | name=juniper networks junos pulse | 
"{324D6FB7-7C81-4F88-AAD9-A990D4FB2795}" = dir=in | app=c:\program files\intel corporation\intel widi\widiapp.exe | 
"{3349F75C-5683-4889-A589-1EBCA26A942D}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | 
"{35514EA6-8AF8-4C49-9D7E-CAC554BEE0AE}" = dir=out | name=windows_ie_ac_001 | 
"{36244EA8-F736-407B-8FF9-311FFA5F2034}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\dragon age ii\bin_ship\dragonage2.exe | 
"{3F2E6FCA-AAAA-4E5C-BE85-A19B3C33A790}" = dir=out | name=windows_ie_ac_001 | 
"{41081BCC-205F-4FEC-AE08-8DEBE32E7D32}" = protocol=17 | dir=in | app=c:\program files (x86)\vivox\c3\c3.exe | 
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn | 
"{45AB437F-9212-4EFC-8F2F-88B76CA87834}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe | 
"{4EFA323D-B749-42BB-9637-7AB3FB1D45F7}" = dir=out | name=juniper networks junos pulse | 
"{5029B845-FE1A-4304-9C7D-D8DF9BB24E3B}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{51F33A32-83B8-4B59-9660-97E45D052835}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\oblivion\oblivionlauncher.exe | 
"{53C43765-DAF0-4D01-A199-4053A02C405B}" = dir=out | name=merriam-webster dictionary | 
"{547B96F7-B9CC-4853-AFC0-DC871BBF780B}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2045\agent.exe | 
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{54E858E9-1205-40D0-AE37-0AF21F093C19}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe | 
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect | 
"{56D58F7B-6305-4C4D-AD04-86A7D2AF82C9}" = dir=out | name=photoeditor | 
"{5773E524-EF86-48E1-8183-E3BAAA83FFC4}" = dir=out | name=check point vpn | 
"{598C17F3-192F-4293-ADAD-401C1903A268}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | 
"{5B51AC73-6B21-4D6A-98B2-06BD04C76AF5}" = protocol=6 | dir=out | app=system | 
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect | 
"{5F63999A-ECB6-4889-BD9D-4F341FD795CB}" = dir=out | name=f5 vpn | 
"{6240191D-E92B-4BB1-990A-1E84EF24FFF3}" = dir=in | name=f5 vpn | 
"{6300DB16-523A-4C1A-A64A-AD28B4BCD35D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\daoriginslauncher.exe | 
"{634C0753-941C-4F50-A1B8-9F566E3E680F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe | 
"{64833A36-772E-4DD5-B8A5-3FBD3833F2D8}" = dir=in | name=evernote touch | 
"{6D240CC9-F919-4B83-994C-CDC3AF23A570}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2045\agent.exe | 
"{6FA0BD32-3971-46A0-93BB-564DABA4893A}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.1.337_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} | 
"{721AFD3B-53A2-492E-900F-1BE92CC708D2}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | 
"{728E49F9-D0E4-4A72-81A5-DAD19A16B17D}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} | 
"{72ACC372-4C23-45E3-985A-0FB9C2EE8C50}" = dir=out | name=chaton | 
"{72E8081E-81AE-49E7-8EA1-7569CC5B244A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{73FECC3C-58D4-4C19-8566-875CD70786D1}" = dir=out | name=stumbleupon | 
"{74EDBEE2-D372-4A17-AC61-2DDA6CFCB05D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{76180381-A819-408B-9BC3-F8D964C38C1A}" = dir=out | name=@{microsoft.bingsports_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | 
"{77F239EE-A687-4D34-9059-10315691A0B7}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{7A14FE27-1F0F-4E90-85EA-682099518EF2}" = dir=in | name=skype | 
"{7DBEEF5A-5B7C-4C48-8AAF-B94C9C4B8EF0}" = dir=out | name=@{microsoft.bingtravel_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | 
"{7EA9DE64-03BA-4514-858B-E725660CF0E1}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{7FA55BED-DDA4-49FE-8804-066F34338FAB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\morrowind\morrowind launcher.exe | 
"{8014E4C4-29DA-4FEF-B7DB-8B3E3BCB62DE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{80F1E50F-783D-4723-8057-3D04E3030E00}" = dir=out | name=jamie's recipes | 
"{824FBD12-B18A-4B3C-B398-B4CC67CA4468}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{83420063-A5E0-4EE1-80D3-3BF4182E21DD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fable the lost chapters\fable.exe | 
"{8376FE9C-FD1C-4F96-BA2D-FAF609B1F836}" = dir=out | name=shark dash | 
"{85E3784E-19AC-413A-96A8-A146EEC58F01}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{866BEDDA-EEC6-42FA-ABDB-21CC3913A958}" = dir=out | name=skype | 
"{87300790-9FEE-43FF-8D85-B8E9F9175901}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} | 
"{8C4825DB-AC78-4498-A625-08B6B519D6D4}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{8C845ADF-5D45-4A86-AABF-ACCFB32BFCB8}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{8F594217-B91B-4468-955A-87AE29E3A38F}" = dir=out | name=@{microsoft.bingnews_3.0.1.321_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/apptitle} | 
"{8FE95784-A48E-4FD0-A09A-7A15F148E70E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fable the lost chapters\fable.exe | 
"{91989755-AC70-4DD1-8DCD-02AEB7B941FD}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\vampire the masquerade - bloodlines\vampire.exe | 
"{929A2974-3100-4AD2-ABCA-5435F2BD9A64}" = dir=in | name=check point vpn | 
"{954BBC5A-9CA4-4ACF-94A4-A1DFFB3410C8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\creationkit.exe | 
"{95D0E541-7001-4B6C-9F78-083E453980CD}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{98563453-9A83-4700-AC41-31BD1330D965}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe | 
"{9A54EF5A-C9B2-42DE-9026-B809B1AF9714}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{9B3E8F95-F2C9-4858-8D5B-E81E6F96224B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\ragnarok online 2\wplauncher.exe | 
"{9D2C1F2E-1473-4A3F-811D-1D9E71E10211}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.1.335_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} | 
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{A10A36D4-E9DF-4B64-82C8-0B8C407FA03F}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | 
"{A1B0DB4B-93EF-43C9-A95E-F8862D988363}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daupdatersvc.service.exe | 
"{A2BF9B5A-3107-4FF4-A752-16FACD3475F4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{A3FB6876-F055-4F24-AE40-E883EED6E952}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\damned\damned.exe | 
"{A4031B89-BAF8-44F2-9900-A1466905DC30}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{AA0C82D7-8448-4A11-BF13-588717B20307}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{ABB3822D-2FF3-479C-90CB-144B5678B577}" = dir=out | name=@{microsoft.bingmaps_2.0.2210.2401_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | 
"{AEBD6521-C81F-4FC7-B2C0-486C0A9961A0}" = dir=out | name=@{microsoft.bingtravel_3.0.1.202_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | 
"{AF345D80-D10A-428B-AF79-F14732230CBB}" = dir=out | name=@{microsoft.bingweather_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | 
"{AFE269AA-C9EB-4397-A7D7-6B118A282A42}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | 
"{B04B67BF-AAF5-48D4-BF48-530C672B4517}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{B21853E0-D4F4-407E-873C-3C43869E26D3}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daupdatersvc.service.exe | 
"{B2329D3F-3DC3-487B-A679-79005C453734}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{B23A396D-5585-412B-960E-A4A1AF0782B0}" = protocol=6 | dir=in | app=c:\program files (x86)\vivox\c3\c3.exe | 
"{B3940E3C-8F86-493A-B158-FA172853FB35}" = dir=out | name=@{microsoft.bingsports_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | 
"{B511B441-14B4-49B6-AF70-F1A077B2754A}" = dir=out | name=@{microsoft.zunevideo_1.5.299.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | 
"{B6191DEE-9B8B-4F6E-9DAB-2DDA5CFB5369}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | 
"{B74622FF-5698-4BFD-99C0-0571C5F4F4E0}" = dir=out | name=s player | 
"{B7854FDB-F34E-41CB-B693-CBECAAB9F586}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd cinema\powerdvdcinema10.exe | 
"{BA030766-DF04-4DC3-BFBD-B1B0180F324D}" = dir=out | name=windows_ie_ac_001 | 
"{BA0AB35C-9FCC-4A83-9ABF-87639CFD15CB}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{BF03FB35-A07D-43C2-B898-D01BB50743F1}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{BF4054AF-4DA6-4AFC-ADCC-64BEF4E1AAE1}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\morrowind\morrowind launcher.exe | 
"{C043AF51-1D8A-4DF8-89F1-14F8625481DF}" = dir=out | name=norton studio | 
"{C054566D-F26E-4BE8-BDB1-7381E5743696}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{C8DAC8C3-C77A-44E7-AE09-5780D7CA1D4B}" = dir=in | name=pinball fx2 | 
"{C9135FBB-EF7B-4FA2-A71E-877971E28F08}" = dir=out | name=@{microsoft.zunemusic_1.5.214.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | 
"{C973115A-F51F-4DF7-8692-54F051A7D133}" = dir=out | name=s camera | 
"{CA6F5A91-E5F4-4E58-8DB4-45C8E100700A}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{CC7A0D89-5904-4167-813D-B480723E8CA7}" = dir=out | name=adera | 
"{D0337791-2897-4B61-B728-4ABF65C3E23B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{D18F80C9-9925-4E5A-A8A6-25F9597E83E9}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe | 
"{D3C5D7BF-E87E-4716-9407-BD4902C5F021}" = dir=out | name=kindle | 
"{D5D960D5-B6DD-48B7-B70C-60555006FDC2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\vampire the masquerade - bloodlines\vampire.exe | 
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn | 
"{D823E330-0002-4F56-8096-04EBD3B95B4F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{DB51C429-B671-4D35-B3D8-7063692ACA05}" = dir=out | name=pinball fx2 | 
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn | 
"{DB861051-1B40-4F6B-A979-54769B8076AC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\creationkit.exe | 
"{DD5C236B-EA5F-464F-B6F9-11F1A5DDFB3B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\daoriginslauncher.exe | 
"{DED8D7A2-1500-4F6F-9484-937621706701}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{DF96CA0F-4646-4BBD-A6EF-64E92BED788E}" = dir=in | name=sonicwall mobile connect | 
"{E097B408-C208-41F0-916B-E9326ACD087C}" = dir=out | name=netflix | 
"{E106802C-5B4F-446A-B286-29B697700020}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\damned\damned.exe | 
"{E503206C-59B5-4D2D-9D24-1E3E47CF53CC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\damned\damned.exe | 
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{EA0A8539-D631-4EED-A778-FB374A965E15}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\damned\damned.exe | 
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn | 
"{F05C773D-DE26-4A63-ACDC-58C3287BF06A}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{F0ED65B8-4A95-4124-B19B-F64C2B6F072C}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd10.exe | 
"{F357447C-A397-4CE4-A4CA-72D8F863ECBC}" = dir=out | name=s gallery | 
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client | 
"{F6DD3E5D-0120-4C06-8B60-7FECDF325C4C}" = dir=out | name=@{microsoft.bingfinance_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | 
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client | 
"{FE6D120F-4CAD-4A6A-91DB-B7B17820D7DD}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\oblivion\oblivionlauncher.exe | 
"TCP Query User{11B255FA-F1C9-4B34-A411-E7CD135C0B56}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe | 
"TCP Query User{174AEAE6-538B-4707-B00B-15334438B66D}C:\program files (x86)\steam\steam.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"TCP Query User{215B1223-F315-4612-9940-81E49FB33E17}C:\program files (x86)\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\guild wars 2\gw2.exe | 
"TCP Query User{28BCB922-BA12-4922-993C-6B075D6283BD}C:\users\nayru roivas\appdata\local\temp\gw2.exe" = protocol=6 | dir=in | app=c:\users\nayru roivas\appdata\local\temp\gw2.exe | 
"TCP Query User{28CCF0A3-F4BD-481D-BCF1-971EF6D47E59}C:\program files (x86)\vivox\c3\c3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\vivox\c3\c3.exe | 
"TCP Query User{34832444-F058-4199-B463-99B9EF8673B2}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe | 
"UDP Query User{3AA2C545-8BEE-4405-B6D2-77AD539F14C5}C:\program files (x86)\steam\steam.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"UDP Query User{3D324DDE-6DC3-44E0-B326-5E9DE8D60709}C:\program files (x86)\vivox\c3\c3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\vivox\c3\c3.exe | 
"UDP Query User{629D052E-B1CB-431D-B228-F2A1ADB12933}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe | 
"UDP Query User{9EA4A30F-CFF9-4123-B677-5713A10CEB82}C:\users\nayru roivas\appdata\local\temp\gw2.exe" = protocol=17 | dir=in | app=c:\users\nayru roivas\appdata\local\temp\gw2.exe | 
"UDP Query User{B76CECE0-FD24-4EBA-82BB-C9450BF8C95E}C:\program files (x86)\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\guild wars 2\gw2.exe | 
"UDP Query User{FEFEF4B3-C15C-4990-B2A5-5666FD40D19D}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========


#4 Rian Hanson

Rian Hanson
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 24 December 2013 - 08:06 PM

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1334eac7-d6ef-4177-8780-05c963853cd3}" = Intel® PRO/Wireless Driver
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{22B32087-797D-4A1B-AFA7-072C87580ADC}" = Help Desk
"{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}" = Apple Mobile Device Support
"{302600C1-6BDF-4FD1-1309-148929CC1385}" = Intel® PROSet/Wireless Software for Bluetooth® Technology
"{3C28BFD4-90C7-3138-87EF-418DC16E9598}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106
"{3EA6AB5D-D434-4ACA-9609-48F1319518EF}" = ExpressCache
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5AF4E09F-5C9B-3AAF-B731-544D3DC821DD}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6097158B-0184-4140-BEC3-7885794D2571}" = Intel® WiDi
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{89B0ECE0-A41F-4A45-98D9-D54C74338117}" = ESET NOD32 Antivirus
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 331.82
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 331.82
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 10.10.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 10.10.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 10.10.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.12
"{CFEA455B-E368-45B2-A01E-1C3A6C0F06B6}" = S Agent
"{D035AE8C-1161-4C90-908F-3380C1BE4B12}" = Infineon TPM Professional Package
"{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}" = iTunes
"{D61F48DA-627B-404E-9315-32A651B18B64}" = Intel® PROSet/Wireless WiFi Software
"{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}" = iCloud
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"{F842F8B0-6942-4930-821F-543E976B2C66}" = MSVCRT110_amd64
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"9F04C462DAB591BDCCE784F77E4D4F1736010B92" = Windows Driver Package - Samsung Electronics Co. Ltd. (RadioHIDMini) HIDClass  (07/27/2012 20.57.1.735)
"WinRAR archiver" = WinRAR 5.00 beta 7 (64-bit)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02F04AFA-243D-4E6A-9556-60F8D2539547}" = Support Center FAQ
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{1057511B-F8FE-4230-9ED3-AB949A57EE4A}" = Windows Live PIMT Platform
"{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}" = Recovery
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{29315CEC-E6CE-4394-84DC-6F862E8D9A52}" = Windows Live UX Platform
"{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"{2D416A80-0BB1-4D8B-B770-7BE8F53D5937}" = Windows Live UX Platform Language Pack
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{40F4FF7A-B214-4453-B973-080B09CED019}" = Absolute Reminder
"{40F55150-F43D-4C9F-9A00-1A0A6F1EB7F0}" = Movie Maker
"{422CA4EC-0570-4392-A174-10B56F5184C0}" = C3
"{46316411-80D8-4F68-8118-696E05FCE199}" = Windows Live Essentials
"{4689F012-C8E3-4F6E-BDEF-13671D53A6DC}" = Windows Live UX Platform Language Pack
"{46B14AF1-EDFA-4088-AB2B-22A8128A1C54}" = Photo Common
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4D565319-8B91-41CB-961C-0DDC86101AC5}" = Dragon Age™ II
"{4F9A382F-4478-4036-905C-F77DF2EA0370}" = Windows Live SOXE
"{4FA8F084-C42F-45E1-B7E5-E0C8A1083DC5}" = Windows Live SOXE Definitions
"{52E5DE60-C96B-42CC-9A37-FE04725940AE}" = Settings
"{5CC4C963-F772-4766-BFF2-DE551E205EE9}" = Photo Common
"{5D4E117D-FC6A-4FB8-81E3-BEFFAE2F7BE6}" = User Guide
"{60A1253C-2D51-4166-95C2-52E9CF4F8D64}" = Photo Gallery
"{62E2BBFA-BE97-42CD-AE89-A4EEF7F36992}" = The Elder Scrolls Arena
"{64DF7404-9D46-44AF-AFA1-A2F8D5648C2D}" = Windows Live Photo Common
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6e8f74e0-43bd-4dce-8477-6ff6828acc07}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76EE8FE7-1957-4C51-9074-4930A8CFB1AF}" = Windows Live Installer
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78F35489-621D-4FFD-BCE7-2C7C3897E47C}" = Windows Live
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{803D4B7D-71CD-46B9-8F89-8BFD73920FAF}" = Windows Live UX Platform Language Pack
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{959BC6D1-38C8-441F-9466-9ECCD4E68413}" = Galería de fotos
"{97373E60-D071-418A-87F1-A969EEEEBDAC}" = Windows Live Essentials
"{9846E46F-07E0-4BDF-985A-E3FBA8C15877}" = Movie Maker
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B2E55F8-5BA8-4A45-9682-ACB6F2CC0DA5}" = Photo Gallery
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A407FC22-36BF-4C82-A516-59D94BC505A9}" = System Requirements Lab Detection
"{A6C48A9F-694A-4234-B3AA-62590B668927}" = Intel® Manageability Engine Firmware Recovery Agent
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.04)
"{BA73469B-D8C7-4FE3-B33C-1340D09F0709}" = Windows Live Communications Platform
"{C325F588-D6B1-4A7F-B6A2-914C75DDA348}" = Morrowind
"{c9967fbd-e3c3-4ed0-992a-5b33260f2944}" = Intel® PROSet/Wireless Software
"{D531FC91-6F4E-49A7-B912-15289D05B6F8}" = Photo Common
"{D71BC54E-A4E6-4E06-866C-FD6EE16EA187}" = Movie Maker
"{DA06101F-FD76-4BF0-88BD-B26A197005E3}" = SW Update
"{DB3C800B-081B-4146-B4E3-EFB5B77AA913}" = TES Construction Set
"{DBDD570E-0952-475F-9453-AB88F3DD5659}" = Python 2.7.5
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1DA4302-1C06-4533-AF6D-9D68B01FCB34}" = Movie Maker
"{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}" = GameStop App
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3FCB08B-E752-444D-86A0-0634A4F3B23D}" = System Requirements Lab CYRI
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel® SDK for OpenCL - CPU Only Runtime Package
"{FE8DFDD0-A543-4A83-B7A9-C411138194D5}" = Galerie de photos
"Dragon Age 2" = Dragon Age 2
"Dragon Age 2 Black Emporium DLC" = Dragon Age 2 Black Emporium DLC
"Free Window Registry Repair" = Free Window Registry Repair
"GameStop App" = GameStop App
"Google Chrome" = Google Chrome
"Guild Wars" = Guild Wars
"Guild Wars 2" = Guild Wars 2
"InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"Intel AppUp(SM) center 33070" = Intel AppUp(SM) center
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Origin" = Origin
"RegTweaker_is1" = RegTweaker version 3.2.2
"Secunia PSI" = Secunia PSI (3.0.0.9015)
"SpeedFan" = SpeedFan (remove only)
"Steam App 202480" = Creation Kit
"Steam App 204030" = Fable - The Lost Chapters
"Steam App 22320" = The Elder Scrolls III: Morrowind
"Steam App 22330" = The Elder Scrolls IV: Oblivion 
"Steam App 231060" = Ragnarok Online 2
"Steam App 251170" = Damned
"Steam App 2600" = Vampire: The Masquerade - Bloodlines
"Steam App 47810" = Dragon Age: Origins - Ultimate Edition
"Steam App 72850" = The Elder Scrolls V: Skyrim
"WinLiveSuite" = Windows Live Essentials
"Xerox PhotoCafe" = Xerox PhotoCafe
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dragon Age Awakening Redesigned" = Dragon Age Awakening Redesigned
"Dragon Age Redesigned © Morrigan" = Dragon Age Redesigned © Morrigan
"Dragon Age Redesigned Oghren©" = Dragon Age Redesigned Oghren©
"Dragon Age Redesigned©" = Dragon Age Redesigned©
"Dragon Age Redesigned©  Zevran" = Dragon Age Redesigned©  Zevran
"Dragon Age Redesigned© Leliana" = Dragon Age Redesigned© Leliana
"Dragon Age Redesigned© Sten" = Dragon Age Redesigned© Sten
"Dragon Age Redesigned© Wynne" = Dragon Age Redesigned© Wynne
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 12/24/2013 7:51:43 PM | Computer Name = Rhea | Source = Application Hang | ID = 1002
Description = The program c3.exe version 0.5.2.2143 stopped interacting with Windows
 and was closed. To see if more information about the problem is available, check
 the problem history in the Action Center control panel.    Process ID: 19dc    Start Time:
 01cf0103060771ff    Termination Time: 4294967295    Application Path: C:\Program Files 
(x86)\Vivox\C3\c3.exe    Report Id: 55a2f151-6cf6-11e3-bea0-c48508d9cb8b    Faulting package
 full name:     Faulting package-relative application ID:   
 
[ System Events ]
Error - 12/24/2013 7:58:26 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 7:58:56 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 7:59:26 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 7:59:56 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 8:13:13 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 8:13:43 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 8:14:13 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 8:14:43 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 8:51:46 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
Error - 12/24/2013 8:52:16 PM | Computer Name = Rhea | Source = DCOM | ID = 10010
Description = 
 
 
< End of report >

Edited by Rian Hanson, 24 December 2013 - 10:20 PM.


#5 Rian Hanson

Rian Hanson
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 24 December 2013 - 08:09 PM

Here's the extra that came with it. :X Would at least I'd like to know if anything is wrong with my laptop.

 

OTL logfile created on: 12/24/2013 5:51:37 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Nayru Roivas\Desktop
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
7.71 Gb Total Physical Memory | 3.35 Gb Available Physical Memory | 43.43% Memory free
15.46 Gb Paging File | 11.10 Gb Available in Paging File | 71.79% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 904.26 Gb Total Space | 756.63 Gb Free Space | 83.67% Space Free | Partition Type: NTFS
Drive D: | 583.78 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: RHEA | User Name: Nayru Roivas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013/12/24 17:51:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Nayru Roivas\Desktop\OTL.exe
PRC - [2013/12/11 12:40:36 | 001,823,656 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2013/12/11 12:40:36 | 000,569,768 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2013/12/03 19:48:06 | 000,863,184 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/11/29 09:57:02 | 002,273,056 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2013/11/29 09:56:51 | 001,370,912 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013/11/08 13:46:18 | 001,028,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013/09/15 14:34:06 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
PRC - [2013/09/12 12:06:22 | 001,337,752 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2013/08/26 14:18:28 | 001,137,016 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2013/04/04 14:50:32 | 000,887,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2012/08/24 04:45:28 | 001,593,976 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
PRC - [2012/08/24 04:45:24 | 000,076,920 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
PRC - [2012/08/24 04:45:16 | 002,623,096 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\sSettings.exe
PRC - [2012/08/15 04:41:26 | 000,097,392 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
PRC - [2012/08/05 05:07:02 | 001,141,656 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Infineon\Security Platform Software\IFXSPMGT.exe
PRC - [2012/08/05 05:05:46 | 000,332,696 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Infineon\Security Platform Software\PSDrt.exe
PRC - [2012/08/05 05:04:30 | 000,212,888 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Infineon\Security Platform Software\IfxPsdSv.exe
PRC - [2012/08/05 05:01:38 | 001,208,728 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Infineon\Security Platform Software\SpTNA.exe
PRC - [2012/08/05 04:37:16 | 000,994,200 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Infineon\Security Platform Software\IFXTCS.exe
PRC - [2012/07/17 18:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 18:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/17 18:10:24 | 000,128,896 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2012/07/17 18:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013/12/11 12:40:38 | 001,135,016 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2013/12/03 19:48:04 | 000,399,312 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppgooglenaclpluginchrome.dll
MOD - [2013/12/03 19:48:03 | 013,586,896 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
MOD - [2013/12/03 19:48:02 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
MOD - [2013/12/03 19:47:11 | 000,702,416 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
MOD - [2013/12/03 19:47:11 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll
MOD - [2013/12/03 19:47:08 | 001,619,408 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
MOD - [2013/11/14 04:58:09 | 000,013,088 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll
MOD - [2013/11/06 14:48:12 | 020,625,832 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2013/11/06 14:48:10 | 000,691,200 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
MOD - [2013/09/14 01:51:02 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
MOD - [2013/09/14 01:50:36 | 001,242,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
MOD - [2013/06/14 16:49:12 | 001,100,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
MOD - [2013/06/14 16:49:12 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
MOD - [2013/06/14 16:49:12 | 000,124,416 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll
MOD - [2012/08/24 04:45:28 | 000,110,712 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
MOD - [2012/08/24 04:45:22 | 000,211,064 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
MOD - [2012/08/24 04:45:18 | 000,029,816 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
MOD - [2012/08/24 04:45:12 | 000,091,768 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
MOD - [2012/08/24 04:45:10 | 000,026,232 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2013/12/10 01:31:26 | 003,395,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/12/10 01:31:26 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2013/12/10 01:31:26 | 000,533,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013/12/10 01:31:26 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/11/29 09:56:40 | 015,128,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013/11/07 20:41:17 | 001,302,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2013/09/29 21:03:28 | 001,555,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/09/29 21:03:28 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/09/29 21:03:27 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2013/09/29 21:03:27 | 000,261,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/09/12 12:06:22 | 001,337,752 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2013/08/28 16:24:04 | 003,378,416 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2013/08/28 16:23:48 | 000,273,136 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2013/08/28 16:23:40 | 000,626,416 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2013/08/28 16:23:20 | 000,149,744 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2013/08/22 05:32:01 | 000,346,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2013/08/22 05:32:00 | 000,023,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/08/22 05:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 04:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 04:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 04:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 04:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 04:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 03:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 03:04:53 | 000,716,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/08/22 03:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 02:59:26 | 000,832,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2013/08/22 02:58:42 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/08/22 02:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 02:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 02:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 02:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 02:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 02:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 02:40:14 | 000,398,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2013/08/22 02:39:33 | 000,198,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/08/22 02:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 02:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/08/17 01:09:12 | 000,102,224 | ---- | M] (Condusiv Technologies) [Auto | Running] -- C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe -- (ExpressCache)
SRV:64bit: - [2012/04/19 22:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2013/12/21 00:02:54 | 000,279,000 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/12/11 12:40:36 | 000,569,768 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/11/29 09:56:51 | 001,370,912 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2013/11/04 05:42:10 | 001,228,504 | ---- | M] (Secunia) [Auto | Stopped] -- C:\Program Files (x86)\Secunia\PSI\psia.exe -- (Secunia PSI Agent)
SRV - [2013/11/04 05:42:08 | 000,660,184 | ---- | M] (Secunia) [Auto | Stopped] -- C:\Program Files (x86)\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2013/10/21 21:07:30 | 003,018,800 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Stopped] -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe -- (SWUpdateService)
SRV - [2013/09/29 21:03:26 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/09/18 22:38:44 | 000,157,128 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe -- (Intel®
SRV - [2013/09/05 07:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/08/26 14:18:50 | 001,157,496 | ---- | M] (Motorola Solutions, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2013/08/26 14:18:28 | 001,137,016 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2013/08/22 05:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/21 20:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/21 19:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/06/14 06:07:20 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Program Files (x86)\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe -- (DAUpdaterSvc)
SRV - [2012/08/24 04:45:28 | 001,593,976 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe -- (Easy Launcher)
SRV - [2012/08/05 05:07:02 | 001,141,656 | ---- | M] (Infineon Technologies AG) [Auto | Running] -- C:\Program Files (x86)\Infineon\Security Platform Software\IFXSPMGT.exe -- (IFXSpMgtSrv)
SRV - [2012/08/05 05:04:30 | 000,212,888 | ---- | M] (Infineon Technologies AG) [Auto | Running] -- C:\Program Files (x86)\Infineon\Security Platform Software\IfxPsdSv.exe -- (PersonalSecureDriveService)
SRV - [2012/08/05 04:37:16 | 000,994,200 | ---- | M] (Infineon Technologies AG) [Auto | Running] -- C:\Program Files (x86)\Infineon\Security Platform Software\IFXTCS.exe -- (IFXTCS)
SRV - [2012/07/17 18:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 18:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/17 18:10:24 | 000,128,896 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe -- (Intel®
SRV - [2012/07/17 18:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2013/12/21 00:02:44 | 004,216,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/12/14 16:34:54 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2013/12/14 16:34:54 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2013/12/10 01:31:26 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013/12/10 01:30:18 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/11/14 04:58:16 | 000,032,544 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2013/11/10 19:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013/11/09 04:55:11 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/11/04 05:42:02 | 000,018,456 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\psi_mf_amd64.sys -- (PSI)
DRV:64bit: - [2013/11/01 04:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/10/30 17:58:59 | 000,372,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/10/30 10:03:12 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013/10/25 18:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013/10/08 22:12:46 | 003,345,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:64bit: - [2013/09/29 21:03:25 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/09/29 21:03:25 | 000,236,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/09/29 21:03:25 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013/09/29 20:51:06 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013/09/29 20:51:01 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/09/29 20:51:01 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpials.sys -- (acpials)
DRV:64bit: - [2013/09/17 15:17:38 | 000,239,320 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013/09/17 15:17:38 | 000,168,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2013/09/17 15:17:38 | 000,157,432 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2013/09/05 16:37:40 | 001,390,904 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2013/08/22 06:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 06:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 05:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 05:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 05:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 05:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 05:43:48 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/08/22 05:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 05:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 05:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 05:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 05:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 05:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 05:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 05:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 05:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 05:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 05:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 05:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 05:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 05:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 05:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 05:43:33 | 000,189,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/08/22 05:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 05:43:32 | 000,078,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2013/08/22 05:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 05:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 05:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 05:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 05:41:08 | 000,054,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2013/08/22 05:39:44 | 000,377,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2013/08/22 05:39:15 | 000,924,512 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2013/08/22 05:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 05:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 05:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 05:34:22 | 000,265,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/08/22 05:34:22 | 000,124,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2013/08/22 05:31:28 | 000,034,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/08/22 04:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 04:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 04:39:28 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2013/08/22 04:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 04:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 04:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 04:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 04:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 04:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 04:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 04:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 04:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 04:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 04:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 04:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 04:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 04:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 04:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 04:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 04:36:37 | 000,224,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2013/08/22 04:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 04:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 04:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 04:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 01:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/12 16:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/09 17:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 11:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 12:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 07:46:17 | 000,591,360 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2013/04/23 13:24:26 | 000,069,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2013/04/11 02:13:20 | 000,165,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2013/01/11 19:02:34 | 000,064,624 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/10/09 18:48:48 | 000,188,896 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xHCIPort.sys -- (XHCIPort)
DRV:64bit: - [2012/10/09 18:48:48 | 000,047,072 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usb3Hub.sys -- (usb3Hub)
DRV:64bit: - [2012/10/09 05:03:18 | 000,325,488 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/08/17 01:09:24 | 000,103,248 | ---- | M] (Condusiv Technologies) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\excsd.sys -- (excsd)
DRV:64bit: - [2012/08/17 01:09:24 | 000,023,376 | ---- | M] (Condusiv Technologies) [File_System | System | Running] -- C:\Windows\SysNative\drivers\excfs.sys -- (excfs)
DRV:64bit: - [2012/07/30 19:22:00 | 000,645,952 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/07/27 05:00:03 | 000,023,408 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioHIDMini.sys -- (RadioHIDMini)
DRV:64bit: - [2012/06/24 18:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
DRV:64bit: - [2012/06/18 15:40:50 | 000,342,528 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2012/02/03 06:44:00 | 000,044,576 | ---- | M] (Infineon Technologies AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\psd.sys -- (PersonalSecureDrive)
DRV - [2012/12/29 13:59:38 | 000,028,664 | ---- | M] (Almico Software) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {8527E414-53DC-4444-AE14-C329EE72F74C}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{8527E414-53DC-4444-AE14-C329EE72F74C}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{8527E414-53DC-4444-AE14-C329EE72F74C}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://samsung13.msn.com
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2013/12/08 16:34:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013/12/08 16:34:23 | 000,000,000 | ---D | M]
 
[2013/08/03 03:25:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nayru Roivas\AppData\Roaming\mozilla\Extensions
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - Extension: Google Drive = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: WOT = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.4.4_0\
CHR - Extension: YouTube = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Qualys BrowserCheck for Windows = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk\1.9.20.1_0\
CHR - Extension: Google Wallet = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\Nayru Roivas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2013/12/06 16:59:43 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (QuickNet BHO) - {EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7} - C:\Program Files (x86)\RegTweaker\key.dll (QuickNet)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CLMLServer_For_P2G8] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
O4 - HKLM..\Run: [CLVirtualDrive] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameStop Now.lnk = C:\Program Files (x86)\GameStop App\Now\GameStopNow.exe (GameStop Corp.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 206.169.38.2 206.169.38.3 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C2CB91F-2A3D-4B07-9D62-A6190B679C93}: DhcpNameServer = 206.169.38.2 206.169.38.3 192.168.1.1
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) -  File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/03/25 18:03:42 | 000,024,576 | R--- | M] () - D:\AutoRunMorrowind.exe -- [ CDFS ]
O32 - AutoRun File - [2002/04/03 18:12:04 | 000,000,150 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013/12/24 17:51:17 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Nayru Roivas\Desktop\OTL.exe
[2013/12/24 17:18:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2013/12/24 17:09:08 | 000,188,896 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\xHCIPort.sys.bak
[2013/12/24 17:09:03 | 000,023,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WppRecorder.sys.bak
[2013/12/24 17:09:02 | 000,026,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WpdUpFltr.sys.bak
[2013/12/24 17:09:01 | 000,054,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys.bak
[2013/12/24 17:09:01 | 000,018,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wmilib.sys.bak
[2013/12/24 17:09:00 | 000,061,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\winhv.sys.bak
[2013/12/24 17:08:58 | 000,136,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys.bak
[2013/12/24 17:08:57 | 000,038,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\werkernel.sys.bak
[2013/12/24 17:08:56 | 000,124,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys.bak
[2013/12/24 17:08:55 | 000,060,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdfLdr.sys.bak
[2013/12/24 17:08:53 | 000,265,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys.bak
[2013/12/24 17:08:52 | 000,034,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys.bak
[2013/12/24 17:08:51 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\watchdog.sys.bak
[2013/12/24 17:08:47 | 000,305,504 | ---- | C] (VIA Corporation) -- C:\WINDOWS\SysNative\drivers\VSTXRAID.SYS.bak
[2013/12/24 17:08:44 | 000,069,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vpci.sys.bak
[2013/12/24 17:08:41 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vmgencounter.sys.bak
[2013/12/24 17:08:39 | 000,090,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vmbkmcl.sys.bak
[2013/12/24 17:08:38 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\videoprt.sys.bak
[2013/12/24 17:08:36 | 000,175,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\VerifierExt.sys.bak
[2013/12/24 17:08:36 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbrpm.sys.bak
[2013/12/24 17:08:35 | 000,032,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBCAMD2.sys.bak
[2013/12/24 17:08:33 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usb8023.sys.bak
[2013/12/24 17:08:32 | 000,047,072 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\usb3Hub.sys.bak
[2013/12/24 17:08:26 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys.bak
[2013/12/24 17:08:24 | 000,121,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tm.sys.bak
[2013/12/24 17:08:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tdi.sys.bak
[2013/12/24 17:08:19 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tape.sys.bak
[2013/12/24 17:08:19 | 000,021,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tbs.sys.bak
[2013/12/24 17:08:18 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stream.sys.bak
[2013/12/24 17:08:15 | 000,374,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys.bak
[2013/12/24 17:08:15 | 000,107,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storahci.sys.bak
[2013/12/24 17:08:14 | 000,031,072 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\SysNative\drivers\stexstor.sys.bak
[2013/12/24 17:08:10 | 000,072,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SpbCx.sys.bak
[2013/12/24 17:08:09 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\smclib.sys.bak
[2013/12/24 17:08:04 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx2.sys.bak
[2013/12/24 17:08:01 | 000,069,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx.sys.bak
[2013/12/24 17:08:00 | 000,170,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\scsiport.sys.bak
[2013/12/24 17:07:55 | 000,591,360 | ---- | C] (Realtek                                            ) -- C:\WINDOWS\SysNative\drivers\Rt630x64.sys.bak
[2013/12/24 17:07:53 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rootmdm.sys.bak
[2013/12/24 17:07:51 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\RNDISMP.sys.bak
[2013/12/24 17:07:50 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys.bak
[2013/12/24 17:07:48 | 000,924,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys.bak
[2013/12/24 17:07:47 | 000,027,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys.bak
[2013/12/24 17:07:37 | 000,023,408 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\RadioHIDMini.sys.bak
[2013/12/24 17:07:35 | 000,044,576 | ---- | C] (Infineon Technologies AG) -- C:\WINDOWS\SysNative\drivers\psd.sys.bak
[2013/12/24 17:07:35 | 000,018,456 | ---- | C] (Secunia) -- C:\WINDOWS\SysNative\drivers\psi_mf_amd64.sys.bak
[2013/12/24 17:07:31 | 000,086,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys.bak
[2013/12/24 17:07:24 | 000,039,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvvad64v.sys.bak
[2013/12/24 17:07:19 | 000,032,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvpciflt.sys.bak
[2013/12/24 17:07:09 | 003,345,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\NETwew00.sys.bak
[2013/12/24 17:07:08 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netvsc63.sys.bak
[2013/12/24 17:07:06 | 000,478,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys.bak
[2013/12/24 17:07:00 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Ndu.sys.bak
[2013/12/24 17:06:55 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\NdisVirtualBus.sys.bak
[2013/12/24 17:06:50 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\NdisImPlatform.sys.bak
[2013/12/24 17:06:44 | 000,063,840 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\SysNative\drivers\mvumis.sys.bak
[2013/12/24 17:06:40 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mslldp.sys.bak
[2013/12/24 17:06:38 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mshidumdf.sys.bak
[2013/12/24 17:06:36 | 000,146,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpioclx.sys.bak
[2013/12/24 17:06:27 | 000,117,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys.bak
[2013/12/24 17:06:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mcd.sys.bak
[2013/12/24 17:06:25 | 000,089,304 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys.bak
[2013/12/24 17:06:25 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys.bak
[2013/12/24 17:06:23 | 000,082,784 | ---- | C] (LSI Corporation) -- C:\WINDOWS\SysNative\drivers\lsi_sss.sys.bak
[2013/12/24 17:06:19 | 000,081,760 | ---- | C] (LSI Corporation) -- C:\WINDOWS\SysNative\drivers\lsi_sas3.sys.bak
[2013/12/24 17:06:18 | 000,093,536 | ---- | C] (LSI Corporation) -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys.bak
[2013/12/24 17:06:10 | 000,027,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iwdbus.sys.bak
[2013/12/24 17:06:09 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\irda.sys.bak
[2013/12/24 17:06:01 | 000,039,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\intelaud.sys.bak
[2013/12/24 17:06:00 | 000,342,528 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\SysNative\drivers\IntcDAud.sys.bak
[2013/12/24 17:05:59 | 004,185,600 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys.bak
[2013/12/24 17:05:57 | 000,069,088 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iBtFltCoex.sys.bak
[2013/12/24 17:05:54 | 000,651,248 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaStorAV.sys.bak
[2013/12/24 17:05:53 | 000,645,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaStorA.sys.bak
[2013/12/24 17:05:52 | 000,099,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaLPSSi_I2C.sys.bak
[2013/12/24 17:05:50 | 000,024,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaLPSSi_GPIO.sys.bak
[2013/12/24 17:05:49 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\HyperVideo.sys.bak
[2013/12/24 17:05:46 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hyperkbd.sys.bak
[2013/12/24 17:05:42 | 000,064,352 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys.bak
[2013/12/24 17:05:38 | 000,064,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\HECIx64.sys.bak
[2013/12/24 17:05:38 | 000,033,240 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\SysNative\drivers\GEARAspiWDM.sys.bak
[2013/12/24 17:05:35 | 000,428,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS.bak
[2013/12/24 17:05:32 | 000,030,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys.bak
[2013/12/24 17:05:26 | 000,103,248 | ---- | C] (Condusiv Technologies) -- C:\WINDOWS\SysNative\drivers\excsd.sys.bak
[2013/12/24 17:05:25 | 000,023,376 | ---- | C] (Condusiv Technologies) -- C:\WINDOWS\SysNative\drivers\excfs.sys.bak
[2013/12/24 17:05:10 | 003,357,024 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\evbda.sys.bak
[2013/12/24 17:05:09 | 000,325,488 | ---- | C] (ELAN Microelectronics Corp.) -- C:\WINDOWS\SysNative\drivers\ETD.sys.bak
[2013/12/24 17:05:08 | 000,157,432 | ---- | C] (ESET) -- C:\WINDOWS\SysNative\drivers\epfwwfpr.sys.bak
[2013/12/24 17:05:08 | 000,082,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\EhStorClass.sys.bak
[2013/12/24 17:05:04 | 000,168,256 | ---- | C] (ESET) -- C:\WINDOWS\SysNative\drivers\ehdrv.sys.bak
[2013/12/24 17:05:03 | 000,239,296 | ---- | C] (ESET) -- C:\WINDOWS\SysNative\drivers\edevmon.sys.bak
[2013/12/24 17:05:00 | 000,239,320 | ---- | C] (ESET) -- C:\WINDOWS\SysNative\drivers\eamonm.sys.bak
[2013/12/24 17:04:59 | 000,382,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys.bak
[2013/12/24 17:04:55 | 000,071,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpfve.sys.bak
[2013/12/24 17:04:54 | 000,033,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Dumpata.sys.bak
[2013/12/24 17:04:53 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dmvsc.sys.bak
[2013/12/24 17:04:52 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Dmpusbstor.sys.bak
[2013/12/24 17:04:51 | 000,036,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Diskdump.sys.bak
[2013/12/24 17:04:49 | 000,057,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys.bak
[2013/12/24 17:04:48 | 000,068,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\crashdmp.sys.bak
[2013/12/24 17:04:46 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\condrv.sys.bak
[2013/12/24 17:04:43 | 000,092,536 | ---- | C] (CyberLink) -- C:\WINDOWS\SysNative\drivers\CLVirtualDrive.sys.bak
[2013/12/24 17:04:41 | 000,377,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys.bak
[2013/12/24 17:04:39 | 000,337,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys.bak
[2013/12/24 17:04:35 | 000,531,296 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bxvbda.sys.bak
[2013/12/24 17:04:34 | 001,390,904 | ---- | C] (Motorola Solutions, Inc.) -- C:\WINDOWS\SysNative\drivers\btmhsf.sys.bak
[2013/12/24 17:04:29 | 000,017,624 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\bcmfn2.sys.bak
[2013/12/24 17:04:25 | 000,165,344 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\AmpPal.sys.bak
[2013/12/24 17:04:24 | 000,025,952 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\SysNative\drivers\amdxata.sys.bak
[2013/12/24 17:04:21 | 000,259,424 | ---- | C] (AMD Technologies Inc.) -- C:\WINDOWS\SysNative\drivers\amdsbs.sys.bak
[2013/12/24 17:04:20 | 000,079,200 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\SysNative\drivers\amdsata.sys.bak
[2013/12/24 17:04:19 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys.bak
[2013/12/24 17:04:13 | 000,782,176 | ---- | C] (PMC-Sierra) -- C:\WINDOWS\SysNative\drivers\adp80xx.sys.bak
[2013/12/24 17:04:12 | 000,079,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\acpiex.sys.bak
[2013/12/24 17:04:10 | 000,108,896 | ---- | C] (LSI) -- C:\WINDOWS\SysNative\drivers\3ware.sys.bak
[2013/12/24 17:02:08 | 000,117,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2013/12/24 17:00:30 | 000,089,304 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2013/12/24 17:00:11 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\Desktop\mbar
[2013/12/24 16:57:58 | 012,582,688 | ---- | C] (Malwarebytes Corp.) -- C:\Users\Nayru Roivas\Desktop\mbar-1.07.0.1008.exe
[2013/12/24 16:25:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/12/24 16:25:54 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2013/12/24 16:25:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/12/23 22:06:59 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/12/23 21:53:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegTweaker
[2013/12/23 21:53:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RegTweaker
[2013/12/23 21:36:59 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\LavasoftStatistics
[2013/12/23 21:28:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2013/12/23 19:59:33 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\NVIDIA
[2013/12/23 19:34:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2013/12/21 00:03:00 | 000,729,088 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\MetroIntelGenericUIFramework.dll
[2013/12/21 00:02:58 | 000,781,984 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiWinNextAgent64.dll
[2013/12/21 00:02:56 | 004,011,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiAAC64.dll
[2013/12/21 00:02:56 | 002,476,632 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiVAD64.exe
[2013/12/21 00:02:56 | 001,450,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiSecureSourceFilter64.dll
[2013/12/21 00:02:56 | 000,644,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiAudioFilter64.dll
[2013/12/21 00:02:56 | 000,601,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiMux64.dll
[2013/12/21 00:02:56 | 000,416,216 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiUMS64.exe
[2013/12/21 00:02:56 | 000,344,736 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiSilenceFilter64.dll
[2013/12/21 00:02:56 | 000,210,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiUtils64.dll
[2013/12/21 00:02:56 | 000,177,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiDDEAgent64.dll
[2013/12/21 00:02:56 | 000,128,672 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiMCUMD64.dll
[2013/12/21 00:02:56 | 000,094,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiLogServer64.dll
[2013/12/21 00:02:54 | 000,320,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelOpenCL64.dll
[2013/12/21 00:02:54 | 000,279,000 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
[2013/12/21 00:02:54 | 000,265,216 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelOpenCL32.dll
[2013/12/21 00:02:54 | 000,182,784 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxCoIn_v3379.dll
[2013/12/21 00:02:52 | 000,906,200 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxstarter.exe
[2013/12/21 00:02:52 | 000,527,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrplk.lrc
[2013/12/21 00:02:52 | 000,526,848 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrrus.lrc
[2013/12/21 00:02:52 | 000,526,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrrom.lrc
[2013/12/21 00:02:52 | 000,525,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrsky.lrc
[2013/12/21 00:02:52 | 000,525,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrptg.lrc
[2013/12/21 00:02:52 | 000,525,312 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrsve.lrc
[2013/12/21 00:02:52 | 000,525,312 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrslv.lrc
[2013/12/21 00:02:52 | 000,524,800 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrtrk.lrc
[2013/12/21 00:02:52 | 000,524,800 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrptb.lrc
[2013/12/21 00:02:52 | 000,524,288 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrnor.lrc
[2013/12/21 00:02:52 | 000,523,776 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrtha.lrc
[2013/12/21 00:02:52 | 000,346,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxTMM.dll
[2013/12/21 00:02:50 | 000,527,872 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrell.lrc
[2013/12/21 00:02:50 | 000,527,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrfra.lrc
[2013/12/21 00:02:50 | 000,527,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxresn.lrc
[2013/12/21 00:02:50 | 000,526,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrnld.lrc
[2013/12/21 00:02:50 | 000,526,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrita.lrc
[2013/12/21 00:02:50 | 000,525,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrhun.lrc
[2013/12/21 00:02:50 | 000,525,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrhrv.lrc
[2013/12/21 00:02:50 | 000,525,312 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrfin.lrc
[2013/12/21 00:02:50 | 000,522,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrheb.lrc
[2013/12/21 00:02:50 | 000,517,632 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrjpn.lrc
[2013/12/21 00:02:50 | 000,516,096 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrkor.lrc
[2013/12/21 00:02:48 | 000,526,848 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrdeu.lrc
[2013/12/21 00:02:48 | 000,525,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrcsy.lrc
[2013/12/21 00:02:48 | 000,524,288 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrdan.lrc
[2013/12/21 00:02:48 | 000,521,728 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrara.lrc
[2013/12/21 00:02:48 | 000,514,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrcht.lrc
[2013/12/21 00:02:48 | 000,513,536 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrchs.lrc
[2013/12/21 00:02:48 | 000,493,056 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxdv32.dll
[2013/12/21 00:02:48 | 000,279,040 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcpl.cpl
[2013/12/21 00:02:48 | 000,243,712 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxdo.dll
[2013/12/21 00:02:48 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmrt64.dll
[2013/12/21 00:02:46 | 010,591,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdumdim64.dll
[2013/12/21 00:02:46 | 002,065,920 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmjit64.dll
[2013/12/21 00:02:46 | 001,815,040 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmjit32.dll
[2013/12/21 00:02:46 | 000,155,136 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igfx11cmrt64.dll
[2013/12/21 00:02:46 | 000,137,728 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmrt32.dll
[2013/12/21 00:02:46 | 000,133,632 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfx11cmrt32.dll
[2013/12/21 00:02:44 | 004,216,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys
[2013/12/21 00:02:44 | 003,207,680 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdrcl64.dll
[2013/12/21 00:02:44 | 002,882,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdrcl32.dll
[2013/12/21 00:02:42 | 026,002,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdfcl64.dll
[2013/12/21 00:02:40 | 020,974,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdfcl32.dll
[2013/12/21 00:02:40 | 000,329,216 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\igdbcl64.dll
[2013/12/21 00:02:40 | 000,290,816 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdbcl32.dll
[2013/12/21 00:02:38 | 011,673,600 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd10iumd32.dll
[2013/12/21 00:02:36 | 007,877,120 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\ig7icd64.dll
[2013/12/21 00:02:34 | 006,202,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\ig7icd32.dll
[2013/12/21 00:02:30 | 007,596,504 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxUIEx.exe
[2013/12/21 00:02:30 | 000,755,160 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxUIHotKeyMenu.exe
[2013/12/21 00:02:30 | 000,194,560 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\gfxSrvc.dll
[2013/12/21 00:02:28 | 000,530,904 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\DPTopologyApp.exe
[2013/12/21 00:02:26 | 000,396,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\CustomModeApp.exe
[2013/12/21 00:02:26 | 000,153,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\difx64.exe
[2013/12/19 21:36:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Damned
[2013/12/19 21:36:45 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 2.7
[2013/12/19 21:36:34 | 000,000,000 | ---D | C] -- C:\Python27
[2013/12/15 14:11:52 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\Documents\RIFT
[2013/12/15 14:07:07 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\RIFT
[2013/12/14 02:16:08 | 007,399,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2013/12/14 02:16:08 | 002,570,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2013/12/14 02:16:06 | 013,177,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2013/12/14 02:16:05 | 000,637,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2013/12/14 02:16:05 | 000,358,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2013/12/14 02:16:04 | 011,674,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2013/12/14 02:16:04 | 000,372,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2013/12/14 02:16:03 | 002,896,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2013/12/14 02:16:03 | 000,840,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2013/12/14 02:16:03 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcli.dll
[2013/12/14 02:16:03 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2013/12/14 02:16:03 | 000,479,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe
[2013/12/14 02:16:03 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2013/12/14 02:16:02 | 001,756,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2013/12/14 02:16:02 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2013/12/14 02:16:02 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2013/12/14 02:16:01 | 001,642,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2013/12/14 02:16:01 | 001,476,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2013/12/14 02:16:01 | 001,345,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2013/12/14 02:16:01 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2013/12/14 02:16:00 | 001,506,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2013/12/14 02:15:59 | 002,266,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2013/12/14 02:15:59 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2013/12/14 02:15:57 | 001,391,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2013/12/14 02:15:57 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2013/12/14 02:15:57 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx2.sys
[2013/12/14 02:15:57 | 000,086,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2013/12/14 02:15:56 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2013/12/14 02:15:56 | 000,922,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2013/12/14 02:15:56 | 000,325,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2013/12/14 02:15:56 | 000,039,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2013/12/14 02:15:56 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredentialMigrationHandler.dll
[2013/12/14 02:15:56 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredentialMigrationHandler.dll
[2013/12/14 02:15:55 | 001,843,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2013/12/14 02:15:55 | 001,816,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Display.dll
[2013/12/14 02:15:55 | 001,765,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2013/12/14 02:15:55 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcli.dll
[2013/12/14 02:15:55 | 000,516,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2013/12/14 02:15:54 | 001,302,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2013/12/14 02:15:54 | 000,382,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2013/12/14 02:15:54 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/12/14 02:15:53 | 002,143,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2013/12/14 02:15:53 | 001,765,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2013/12/14 02:15:53 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2013/12/14 02:15:53 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2013/12/11 23:30:57 | 000,075,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imagehlp.dll
[2013/12/11 23:30:56 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrrun.dll
[2013/12/11 23:30:56 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrrun.dll
[2013/12/11 23:30:55 | 001,341,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2013/12/11 23:30:54 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPhoto.dll
[2013/12/11 23:30:53 | 000,393,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPhoto.dll
[2013/12/11 23:30:52 | 004,105,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2013/12/11 23:30:52 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2013/12/11 23:30:46 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2013/12/11 23:30:42 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2013/12/11 23:30:41 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2013/12/11 23:30:41 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2013/12/11 23:30:41 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2013/12/11 23:30:41 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2013/12/11 23:30:38 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2013/12/11 23:30:38 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2013/12/11 23:30:38 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2013/12/10 01:33:57 | 000,000,000 | -HSD | C] -- C:\Recovery
[2013/12/10 01:32:51 | 000,872,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2013/12/10 01:32:51 | 000,698,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2013/12/10 01:32:41 | 001,286,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2013/12/10 01:32:41 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2013/12/10 01:32:41 | 000,977,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2013/12/10 01:32:41 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2013/12/10 01:32:41 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2013/12/10 01:32:27 | 018,577,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2013/12/10 01:32:27 | 013,925,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2013/12/10 01:32:04 | 002,801,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2013/12/10 01:32:04 | 000,869,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2013/12/10 01:32:03 | 001,085,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2013/12/10 01:31:27 | 001,399,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2013/12/10 01:31:27 | 001,373,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2013/12/10 01:31:27 | 001,231,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2013/12/10 01:31:27 | 001,204,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2013/12/10 01:31:27 | 001,067,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2013/12/10 01:31:27 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2013/12/10 01:31:27 | 000,883,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2013/12/10 01:31:27 | 000,518,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2013/12/10 01:31:27 | 000,481,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2013/12/10 01:31:27 | 000,380,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2013/12/10 01:31:27 | 000,338,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpclip.exe
[2013/12/10 01:31:26 | 006,639,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2013/12/10 01:31:26 | 005,769,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2013/12/10 01:31:26 | 004,599,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2013/12/10 01:31:26 | 003,395,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2013/12/10 01:31:26 | 002,617,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2013/12/10 01:31:26 | 002,328,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2013/12/10 01:31:26 | 002,295,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2013/12/10 01:31:26 | 002,134,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2013/12/10 01:31:26 | 002,065,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2013/12/10 01:31:26 | 001,704,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2013/12/10 01:31:26 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\workfolderssvc.dll
[2013/12/10 01:31:26 | 001,287,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll
[2013/12/10 01:31:26 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2013/12/10 01:31:26 | 001,147,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2013/12/10 01:31:26 | 001,011,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWorkspace.dll
[2013/12/10 01:31:26 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2013/12/10 01:31:26 | 000,909,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2013/12/10 01:31:26 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2013/12/10 01:31:26 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TSWorkspace.dll
[2013/12/10 01:31:26 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2013/12/10 01:31:26 | 000,761,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkfoldersControl.dll
[2013/12/10 01:31:26 | 000,708,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2013/12/10 01:31:26 | 000,699,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10level9.dll
[2013/12/10 01:31:26 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2013/12/10 01:31:26 | 000,631,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2013/12/10 01:31:26 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2013/12/10 01:31:26 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2013/12/10 01:31:26 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2013/12/10 01:31:26 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2013/12/10 01:31:26 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppReadiness.dll
[2013/12/10 01:31:26 | 000,465,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2013/12/10 01:31:26 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2013/12/10 01:31:26 | 000,391,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2013/12/10 01:31:26 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2013/12/10 01:31:26 | 000,345,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2013/12/10 01:31:26 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappcfg.dll
[2013/12/10 01:31:26 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapphost.dll
[2013/12/10 01:31:26 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapp3hst.dll
[2013/12/10 01:31:26 | 000,317,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2013/12/10 01:31:26 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcsvDevice.dll
[2013/12/10 01:31:26 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappcfg.dll
[2013/12/10 01:31:26 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2013/12/10 01:31:26 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapphost.dll
[2013/12/10 01:31:26 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapp3hst.dll
[2013/12/10 01:31:26 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\miutils.dll
[2013/12/10 01:31:26 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkFoldersShell.dll
[2013/12/10 01:31:26 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWfdProvider.dll
[2013/12/10 01:31:26 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\miutils.dll
[2013/12/10 01:31:26 | 000,171,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kd_02_8086.dll
[2013/12/10 01:31:26 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2013/12/10 01:31:26 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2013/12/10 01:31:26 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2013/12/10 01:31:26 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msched.dll
[2013/12/10 01:31:26 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shsetup.dll
[2013/12/10 01:31:26 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2013/12/10 01:31:26 | 000,104,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2013/12/10 01:31:26 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2013/12/10 01:31:26 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappgnui.dll
[2013/12/10 01:31:26 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shsetup.dll
[2013/12/10 01:31:26 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappgnui.dll
[2013/12/10 01:31:26 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2013/12/10 01:31:26 | 000,088,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2013/12/10 01:31:26 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWbPrxy.exe
[2013/12/10 01:31:26 | 000,057,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2013/12/10 01:31:26 | 000,054,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2013/12/10 01:31:26 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ftp.exe
[2013/12/10 01:31:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ftp.exe
[2013/12/10 01:31:26 | 000,044,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wldp.dll
[2013/12/10 01:31:26 | 000,031,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ploptin.dll
[2013/12/10 01:30:18 | 000,136,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys
[2013/12/10 01:30:14 | 001,943,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2013/12/10 01:20:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2013/12/10 01:20:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2013/12/10 01:20:20 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2013/12/10 01:20:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2013/12/10 01:19:49 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2013/12/10 01:19:49 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2013/12/10 01:19:49 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2013/12/10 01:19:47 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2013/12/10 01:19:47 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2013/12/10 01:19:46 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2013/12/10 01:13:42 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\SkyDrive
[2013/12/10 01:09:54 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Identities
[2013/12/10 00:45:21 | 000,000,000 | --SD | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft
[2013/12/10 00:45:21 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2013/12/10 00:45:21 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\Favorites
[2013/12/10 00:45:21 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\Documents
[2013/12/10 00:45:21 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\Desktop
[2013/12/10 00:45:21 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/12/10 00:45:21 | 000,000,000 | R--D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\AppData\Local\Temporary Internet Files
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Templates
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Start Menu
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\SendTo
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Recent
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\PrintHood
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\NetHood
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Documents\My Videos
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Documents\My Pictures
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Documents\My Music
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\My Documents
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Local Settings
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\AppData\Local\History
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Cookies
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\Application Data
[2013/12/10 00:45:21 | 000,000,000 | -HSD | C] -- C:\Users\Nayru Roivas\AppData\Local\Application Data
[2013/12/10 00:45:21 | 000,000,000 | -H-D | C] -- C:\Users\Nayru Roivas\AppData
[2013/12/10 00:45:21 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\Temp
[2013/12/10 00:45:21 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\Microsoft
[2013/12/10 00:45:21 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/12/10 00:37:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SRSLabs
[2013/12/10 00:37:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2013/12/10 00:37:15 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/12/10 00:37:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\NV
[2013/12/10 00:37:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\NV
[2013/12/10 00:37:13 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2013/12/10 00:37:07 | 001,065,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshext.dll
[2013/12/10 00:37:07 | 000,067,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshextr.dll
[2013/12/10 00:37:06 | 006,674,208 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll
[2013/12/10 00:37:06 | 003,490,080 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll
[2013/12/10 00:37:06 | 002,559,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll
[2013/12/10 00:37:06 | 000,219,424 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll
[2013/12/10 00:37:06 | 000,063,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll
[2013/12/10 00:36:49 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2013/12/10 00:36:42 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/12/10 00:36:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2013/12/10 00:36:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2013/12/10 00:36:30 | 000,064,000 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2013/12/10 00:36:30 | 000,060,416 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2013/12/10 00:35:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/12/09 21:27:17 | 030,361,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglv64.dll
[2013/12/09 21:27:17 | 022,951,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglv32.dll
[2013/12/09 21:27:17 | 018,293,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvwgf2umx.dll
[2013/12/09 21:27:17 | 018,208,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvd3dumx.dll
[2013/12/09 21:27:17 | 015,862,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvwgf2um.dll
[2013/12/09 21:27:17 | 015,218,504 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvd3dum.dll
[2013/12/09 21:27:17 | 011,514,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvopencl.dll
[2013/12/09 21:27:17 | 009,691,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll
[2013/12/09 21:27:17 | 009,619,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvopencl.dll
[2013/12/09 21:27:17 | 003,132,704 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll
[2013/12/09 21:27:17 | 003,125,024 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvenc.dll
[2013/12/09 21:27:17 | 002,947,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
[2013/12/09 21:27:17 | 002,747,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvenc.dll
[2013/12/09 21:27:17 | 001,884,448 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispco6433182.dll
[2013/12/09 21:27:17 | 001,511,712 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispgenco6433182.dll
[2013/12/09 21:27:17 | 001,436,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvumdshimx.dll
[2013/12/09 21:27:17 | 001,242,400 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvumdshim.dll
[2013/12/09 21:27:17 | 000,707,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll
[2013/12/09 21:27:17 | 000,657,184 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll
[2013/12/09 21:27:17 | 000,609,568 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll
[2013/12/09 21:27:17 | 000,562,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll
[2013/12/09 21:27:17 | 000,479,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll
[2013/12/09 21:27:17 | 000,405,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncodeAPI.dll
[2013/12/09 21:27:17 | 000,317,472 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglshim64.dll
[2013/12/09 21:27:17 | 000,266,984 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglshim32.dll
[2013/12/09 21:27:17 | 000,168,616 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvinitx.dll
[2013/12/09 21:27:17 | 000,141,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvinit.dll
[2013/12/09 21:27:17 | 000,032,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvpciflt.sys
[2013/12/09 21:27:16 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2013/12/09 21:27:16 | 011,600,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll
[2013/12/09 21:27:15 | 025,257,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcompiler.dll
[2013/12/09 21:27:15 | 003,069,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll
[2013/12/09 21:27:15 | 002,697,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll
[2013/12/09 21:17:39 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2013/12/09 21:17:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2013/12/09 21:17:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2013/12/09 20:54:43 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\Documents\Tumblr_files
[2013/12/08 20:05:25 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\Secunia PSI
[2013/12/08 20:05:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Secunia
[2013/12/08 20:00:24 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\qualys
[2013/12/08 19:41:31 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013/12/08 19:40:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2013/12/08 19:40:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2013/12/08 19:36:58 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\Adobe
[2013/12/08 16:34:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013/12/08 16:34:23 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013/12/08 16:34:23 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/12/07 17:19:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2013/12/07 17:11:50 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/12/06 16:50:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2013/12/05 18:10:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2013/12/05 18:09:53 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2013/12/05 18:09:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2013/12/05 13:59:59 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\CrashDumps
[2013/12/04 21:06:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2013/12/04 21:04:10 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\Desktop\ANTI-VIRUS STUFF
[2013/12/02 15:43:05 | 000,039,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvvad64v.sys
[2013/12/02 15:43:05 | 000,035,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvaudcap64v.dll
[2013/12/02 15:43:05 | 000,032,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvaudcap32v.dll
[2013/11/30 18:12:16 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\Skyrim
[2013/11/30 18:07:07 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\Documents\Nexus Mod Manager
[2013/11/30 18:07:07 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\Black_Tree_Gaming
[2013/11/30 18:06:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
[2013/11/30 18:06:35 | 000,000,000 | ---D | C] -- C:\Program Files\Nexus Mod Manager
[2013/11/30 02:54:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\directx
[2013/11/30 01:14:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2013/11/28 14:47:25 | 000,000,000 | ---D | C] -- C:\Games
[2013/11/28 14:40:06 | 000,000,000 | ---D | C] -- C:\ARENA
[2013/11/28 13:59:43 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Local\DOSBox
[2013/11/28 13:59:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
[2013/11/28 13:58:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.74
[2013/11/28 13:56:00 | 000,000,000 | ---D | C] -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2013/11/28 13:55:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2013/06/26 18:02:48 | 002,063,240 | ---- | C] (Samsung Electronics) -- C:\ProgramData\MakeMarkerFile.exe
[2012/08/25 18:33:05 | 001,782,152 | ---- | C] (Samsung Electronics) -- C:\ProgramData\ExpressCacheRun.exe
[3 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]
[14 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
[2013/12/24 17:51:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Nayru Roivas\Desktop\OTL.exe
[2013/12/24 17:16:00 | 000,000,360 | ---- | M] () -- C:\WINDOWS\tasks\Xerox PhotoCafe Communicator.job
[2013/12/24 17:11:01 | 000,000,928 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/24 17:09:08 | 000,188,896 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\xHCIPort.sys.bak
[2013/12/24 17:09:04 | 000,023,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WppRecorder.sys.bak
[2013/12/24 17:09:03 | 000,026,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WpdUpFltr.sys.bak
[2013/12/24 17:09:02 | 000,054,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys.bak
[2013/12/24 17:09:01 | 000,018,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wmilib.sys.bak
[2013/12/24 17:09:00 | 000,061,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\winhv.sys.bak
[2013/12/24 17:08:59 | 000,136,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys.bak
[2013/12/24 17:08:58 | 000,038,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\werkernel.sys.bak
[2013/12/24 17:08:57 | 000,124,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys.bak
[2013/12/24 17:08:56 | 000,060,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdfLdr.sys.bak
[2013/12/24 17:08:55 | 000,265,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys.bak
[2013/12/24 17:08:52 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\watchdog.sys.bak
[2013/12/24 17:08:52 | 000,034,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys.bak
[2013/12/24 17:08:48 | 000,305,504 | ---- | M] (VIA Corporation) -- C:\WINDOWS\SysNative\drivers\VSTXRAID.SYS.bak
[2013/12/24 17:08:47 | 000,000,000 | -HS- | M] () -- C:\DkHyperbootSync
[2013/12/24 17:08:45 | 000,069,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vpci.sys.bak
[2013/12/24 17:08:42 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vmgencounter.sys.bak
[2013/12/24 17:08:40 | 000,090,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\vmbkmcl.sys.bak
[2013/12/24 17:08:39 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\videoprt.sys.bak
[2013/12/24 17:08:37 | 000,175,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\VerifierExt.sys.bak
[2013/12/24 17:08:36 | 000,032,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBCAMD2.sys.bak
[2013/12/24 17:08:36 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbrpm.sys.bak
[2013/12/24 17:08:35 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usb8023.sys.bak
[2013/12/24 17:08:33 | 000,047,072 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\usb3Hub.sys.bak
[2013/12/24 17:08:27 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys.bak
[2013/12/24 17:08:26 | 000,121,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tm.sys.bak
[2013/12/24 17:08:23 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tdi.sys.bak
[2013/12/24 17:08:20 | 000,021,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tbs.sys.bak
[2013/12/24 17:08:19 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stream.sys.bak
[2013/12/24 17:08:19 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tape.sys.bak
[2013/12/24 17:08:16 | 000,374,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys.bak
[2013/12/24 17:08:15 | 000,107,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storahci.sys.bak
[2013/12/24 17:08:15 | 000,031,072 | ---- | M] (Promise Technology, Inc.) -- C:\WINDOWS\SysNative\drivers\stexstor.sys.bak
[2013/12/24 17:08:11 | 000,072,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SpbCx.sys.bak
[2013/12/24 17:08:10 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\smclib.sys.bak
[2013/12/24 17:08:05 | 000,146,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx2.sys.bak
[2013/12/24 17:08:04 | 000,069,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx.sys.bak
[2013/12/24 17:08:01 | 000,170,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\scsiport.sys.bak
[2013/12/24 17:07:56 | 000,591,360 | ---- | M] (Realtek                                            ) -- C:\WINDOWS\SysNative\drivers\Rt630x64.sys.bak
[2013/12/24 17:07:54 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rootmdm.sys.bak
[2013/12/24 17:07:52 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\RNDISMP.sys.bak
[2013/12/24 17:07:51 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys.bak
[2013/12/24 17:07:50 | 000,924,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys.bak
[2013/12/24 17:07:47 | 000,027,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys.bak
[2013/12/24 17:07:38 | 000,023,408 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\RadioHIDMini.sys.bak
[2013/12/24 17:07:36 | 000,018,456 | ---- | M] (Secunia) -- C:\WINDOWS\SysNative\drivers\psi_mf_amd64.sys.bak
[2013/12/24 17:07:35 | 000,044,576 | ---- | M] (Infineon Technologies AG) -- C:\WINDOWS\SysNative\drivers\psd.sys.bak
[2013/12/24 17:07:33 | 000,086,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys.bak
[2013/12/24 17:07:24 | 000,039,200 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvvad64v.sys.bak
[2013/12/24 17:07:20 | 000,032,544 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvpciflt.sys.bak
[2013/12/24 17:07:10 | 003,345,376 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\NETwew00.sys.bak
[2013/12/24 17:07:09 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netvsc63.sys.bak
[2013/12/24 17:07:07 | 000,478,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys.bak
[2013/12/24 17:07:01 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Ndu.sys.bak
[2013/12/24 17:06:56 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\NdisVirtualBus.sys.bak
[2013/12/24 17:06:51 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\NdisImPlatform.sys.bak
[2013/12/24 17:06:44 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\SysNative\drivers\mvumis.sys.bak
[2013/12/24 17:06:40 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mslldp.sys.bak
[2013/12/24 17:06:39 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mshidumdf.sys.bak
[2013/12/24 17:06:37 | 000,146,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpioclx.sys.bak
[2013/12/24 17:06:28 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mcd.sys.bak
[2013/12/24 17:06:27 | 000,117,464 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys.bak
[2013/12/24 17:06:27 | 000,089,304 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys.bak
[2013/12/24 17:06:25 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys.bak
[2013/12/24 17:06:24 | 000,082,784 | ---- | M] (LSI Corporation) -- C:\WINDOWS\SysNative\drivers\lsi_sss.sys.bak
[2013/12/24 17:06:23 | 000,081,760 | ---- | M] (LSI Corporation) -- C:\WINDOWS\SysNative\drivers\lsi_sas3.sys.bak
[2013/12/24 17:06:19 | 000,093,536 | ---- | M] (LSI Corporation) -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys.bak
[2013/12/24 17:06:11 | 000,027,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iwdbus.sys.bak
[2013/12/24 17:06:09 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\irda.sys.bak
[2013/12/24 17:06:02 | 000,039,320 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\intelaud.sys.bak
[2013/12/24 17:06:01 | 000,342,528 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\SysNative\drivers\IntcDAud.sys.bak
[2013/12/24 17:06:00 | 004,185,600 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys.bak
[2013/12/24 17:05:59 | 000,069,088 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iBtFltCoex.sys.bak
[2013/12/24 17:05:56 | 000,651,248 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaStorAV.sys.bak
[2013/12/24 17:05:54 | 000,645,952 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaStorA.sys.bak
[2013/12/24 17:05:53 | 000,099,320 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaLPSSi_I2C.sys.bak
[2013/12/24 17:05:51 | 000,024,568 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaLPSSi_GPIO.sys.bak
[2013/12/24 17:05:50 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\HyperVideo.sys.bak
[2013/12/24 17:05:47 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hyperkbd.sys.bak
[2013/12/24 17:05:43 | 000,064,352 | ---- | M] (Hewlett-Packard Company) -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys.bak
[2013/12/24 17:05:39 | 000,064,624 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\HECIx64.sys.bak
[2013/12/24 17:05:38 | 000,033,240 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\SysNative\drivers\GEARAspiWDM.sys.bak
[2013/12/24 17:05:36 | 000,428,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS.bak
[2013/12/24 17:05:32 | 000,030,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys.bak
[2013/12/24 17:05:27 | 000,103,248 | ---- | M] (Condusiv Technologies) -- C:\WINDOWS\SysNative\drivers\excsd.sys.bak
[2013/12/24 17:05:26 | 000,023,376 | ---- | M] (Condusiv Technologies) -- C:\WINDOWS\SysNative\drivers\excfs.sys.bak
[2013/12/24 17:05:24 | 003,357,024 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\evbda.sys.bak
[2013/12/24 17:05:10 | 000,325,488 | ---- | M] (ELAN Microelectronics Corp.) -- C:\WINDOWS\SysNative\drivers\ETD.sys.bak
[2013/12/24 17:05:09 | 000,157,432 | ---- | M] (ESET) -- C:\WINDOWS\SysNative\drivers\epfwwfpr.sys.bak
[2013/12/24 17:05:08 | 000,168,256 | ---- | M] (ESET) -- C:\WINDOWS\SysNative\drivers\ehdrv.sys.bak
[2013/12/24 17:05:08 | 000,082,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\EhStorClass.sys.bak
[2013/12/24 17:05:04 | 000,239,296 | ---- | M] (ESET) -- C:\WINDOWS\SysNative\drivers\edevmon.sys.bak
[2013/12/24 17:05:03 | 000,239,320 | ---- | M] (ESET) -- C:\WINDOWS\SysNative\drivers\eamonm.sys.bak
[2013/12/24 17:05:00 | 000,382,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys.bak
[2013/12/24 17:04:56 | 000,071,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpfve.sys.bak
[2013/12/24 17:04:55 | 000,033,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Dumpata.sys.bak
[2013/12/24 17:04:53 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dmvsc.sys.bak
[2013/12/24 17:04:53 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Dmpusbstor.sys.bak
[2013/12/24 17:04:52 | 000,036,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Diskdump.sys.bak
[2013/12/24 17:04:49 | 000,057,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys.bak
[2013/12/24 17:04:48 | 000,068,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\crashdmp.sys.bak
[2013/12/24 17:04:48 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\condrv.sys.bak
[2013/12/24 17:04:45 | 000,092,536 | ---- | M] (CyberLink) -- C:\WINDOWS\SysNative\drivers\CLVirtualDrive.sys.bak
[2013/12/24 17:04:43 | 000,377,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys.bak
[2013/12/24 17:04:40 | 000,337,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys.bak
[2013/12/24 17:04:37 | 000,531,296 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bxvbda.sys.bak
[2013/12/24 17:04:35 | 001,390,904 | ---- | M] (Motorola Solutions, Inc.) -- C:\WINDOWS\SysNative\drivers\btmhsf.sys.bak
[2013/12/24 17:04:31 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\bcmfn2.sys.bak
[2013/12/24 17:04:26 | 000,165,344 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\SysNative\drivers\AmpPal.sys.bak
[2013/12/24 17:04:25 | 000,025,952 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\SysNative\drivers\amdxata.sys.bak
[2013/12/24 17:04:24 | 000,259,424 | ---- | M] (AMD Technologies Inc.) -- C:\WINDOWS\SysNative\drivers\amdsbs.sys.bak
[2013/12/24 17:04:21 | 000,079,200 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\SysNative\drivers\amdsata.sys.bak
[2013/12/24 17:04:20 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys.bak
[2013/12/24 17:04:16 | 000,782,176 | ---- | M] (PMC-Sierra) -- C:\WINDOWS\SysNative\drivers\adp80xx.sys.bak
[2013/12/24 17:04:13 | 000,079,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\acpiex.sys.bak
[2013/12/24 17:04:12 | 000,108,896 | ---- | M] (LSI) -- C:\WINDOWS\SysNative\drivers\3ware.sys.bak
[2013/12/24 17:02:08 | 000,117,464 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2013/12/24 17:01:14 | 000,089,304 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2013/12/24 16:58:11 | 012,582,688 | ---- | M] (Malwarebytes Corp.) -- C:\Users\Nayru Roivas\Desktop\mbar-1.07.0.1008.exe
[2013/12/24 16:25:59 | 000,001,121 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/12/24 16:06:56 | 000,863,592 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2013/12/24 16:06:56 | 000,731,650 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2013/12/24 16:06:56 | 000,135,726 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2013/12/24 16:01:51 | 000,002,205 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/12/24 16:01:38 | 000,000,924 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/24 16:01:22 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/12/24 15:59:20 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/12/24 15:59:14 | 2326,601,727 | -HS- | M] () -- C:\hiberfil.sys
[2013/12/21 00:03:00 | 000,729,088 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\MetroIntelGenericUIFramework.dll
[2013/12/21 00:02:58 | 000,781,984 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiWinNextAgent64.dll
[2013/12/21 00:02:56 | 004,011,168 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiAAC64.dll
[2013/12/21 00:02:56 | 002,476,632 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiVAD64.exe
[2013/12/21 00:02:56 | 001,450,656 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiSecureSourceFilter64.dll
[2013/12/21 00:02:56 | 000,644,768 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiAudioFilter64.dll
[2013/12/21 00:02:56 | 000,601,760 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiMux64.dll
[2013/12/21 00:02:56 | 000,416,216 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiUMS64.exe
[2013/12/21 00:02:56 | 000,344,736 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiSilenceFilter64.dll
[2013/12/21 00:02:56 | 000,210,592 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiUtils64.dll
[2013/12/21 00:02:56 | 000,177,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiDDEAgent64.dll
[2013/12/21 00:02:56 | 000,128,672 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiMCUMD64.dll
[2013/12/21 00:02:56 | 000,094,368 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelWiDiLogServer64.dll
[2013/12/21 00:02:54 | 000,320,512 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\IntelOpenCL64.dll
[2013/12/21 00:02:54 | 000,279,000 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
[2013/12/21 00:02:54 | 000,265,216 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\IntelOpenCL32.dll
[2013/12/21 00:02:54 | 000,182,784 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxCoIn_v3379.dll
[2013/12/21 00:02:54 | 000,002,940 | ---- | M] () -- C:\WINDOWS\SysNative\iglhxs64.vp
[2013/12/21 00:02:52 | 000,906,200 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxstarter.exe
[2013/12/21 00:02:52 | 000,527,360 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrplk.lrc
[2013/12/21 00:02:52 | 000,526,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrrus.lrc
[2013/12/21 00:02:52 | 000,526,336 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrrom.lrc
[2013/12/21 00:02:52 | 000,525,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrsky.lrc
[2013/12/21 00:02:52 | 000,525,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrptg.lrc
[2013/12/21 00:02:52 | 000,525,312 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrsve.lrc
[2013/12/21 00:02:52 | 000,525,312 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrslv.lrc
[2013/12/21 00:02:52 | 000,524,800 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrtrk.lrc
[2013/12/21 00:02:52 | 000,524,800 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrptb.lrc
[2013/12/21 00:02:52 | 000,524,288 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrnor.lrc
[2013/12/21 00:02:52 | 000,523,776 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrtha.lrc
[2013/12/21 00:02:52 | 000,346,624 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxTMM.dll
[2013/12/21 00:02:52 | 000,066,560 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxsrvc.dll
[2013/12/21 00:02:50 | 009,081,856 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxress.dll
[2013/12/21 00:02:50 | 000,527,872 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrell.lrc
[2013/12/21 00:02:50 | 000,527,360 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrfra.lrc
[2013/12/21 00:02:50 | 000,527,360 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxresn.lrc
[2013/12/21 00:02:50 | 000,526,336 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrnld.lrc
[2013/12/21 00:02:50 | 000,526,336 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrita.lrc
[2013/12/21 00:02:50 | 000,525,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrhun.lrc
[2013/12/21 00:02:50 | 000,525,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrhrv.lrc
[2013/12/21 00:02:50 | 000,525,312 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrfin.lrc
[2013/12/21 00:02:50 | 000,522,240 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrheb.lrc
[2013/12/21 00:02:50 | 000,517,632 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrjpn.lrc
[2013/12/21 00:02:50 | 000,516,096 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrkor.lrc
[2013/12/21 00:02:48 | 000,624,640 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxdev.dll
[2013/12/21 00:02:48 | 000,548,864 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxpph.dll
[2013/12/21 00:02:48 | 000,526,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrdeu.lrc
[2013/12/21 00:02:48 | 000,525,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrcsy.lrc
[2013/12/21 00:02:48 | 000,524,288 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrdan.lrc
[2013/12/21 00:02:48 | 000,521,728 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrara.lrc
[2013/12/21 00:02:48 | 000,514,048 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrcht.lrc
[2013/12/21 00:02:48 | 000,513,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxrchs.lrc
[2013/12/21 00:02:48 | 000,493,056 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxdv32.dll
[2013/12/21 00:02:48 | 000,279,040 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcpl.cpl
[2013/12/21 00:02:48 | 000,243,712 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxdo.dll
[2013/12/21 00:02:48 | 000,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmrt64.dll
[2013/12/21 00:02:48 | 000,029,696 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxexps.dll
[2013/12/21 00:02:48 | 000,025,600 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxexps32.dll
[2013/12/21 00:02:48 | 000,012,288 | ---- | M] ( ) -- C:\WINDOWS\SysNative\IGFXDEVLib.dll
[2013/12/21 00:02:46 | 010,591,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdumdim64.dll
[2013/12/21 00:02:46 | 004,471,808 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdusc64.dll
[2013/12/21 00:02:46 | 003,557,376 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdusc32.dll
[2013/12/21 00:02:46 | 002,065,920 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfxcmjit64.dll
[2013/12/21 00:02:46 | 001,815,040 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmjit32.dll
[2013/12/21 00:02:46 | 000,155,136 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igfx11cmrt64.dll
[2013/12/21 00:02:46 | 000,137,728 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfxcmrt32.dll
[2013/12/21 00:02:46 | 000,133,632 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igfx11cmrt32.dll
[2013/12/21 00:02:44 | 009,870,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdumdim32.dll
[2013/12/21 00:02:44 | 004,216,320 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys
[2013/12/21 00:02:44 | 003,207,680 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdrcl64.dll
[2013/12/21 00:02:44 | 002,882,048 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdrcl32.dll
[2013/12/21 00:02:44 | 000,347,648 | ---- | M] () -- C:\WINDOWS\SysNative\igdmd64.dll
[2013/12/21 00:02:44 | 000,280,064 | ---- | M] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2013/12/21 00:02:42 | 026,002,432 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdfcl64.dll
[2013/12/21 00:02:40 | 020,974,592 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdfcl32.dll
[2013/12/21 00:02:40 | 000,329,216 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igdbcl64.dll
[2013/12/21 00:02:40 | 000,290,816 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igdbcl32.dll
[2013/12/21 00:02:40 | 000,222,208 | ---- | M] () -- C:\WINDOWS\SysNative\igdde64.dll
[2013/12/21 00:02:40 | 000,182,272 | ---- | M] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013/12/21 00:02:40 | 000,160,256 | ---- | M] () -- C:\WINDOWS\SysNative\igdail64.dll
[2013/12/21 00:02:40 | 000,142,848 | ---- | M] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2013/12/21 00:02:38 | 012,297,728 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\igd10iumd64.dll
[2013/12/21 00:02:38 | 011,673,600 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\igd10iumd32.dll
[2013/12/21 00:02:36 | 007,877,120 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\ig7icd64.dll
[2013/12/21 00:02:34 | 006,202,368 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysWow64\ig7icd32.dll
[2013/12/21 00:02:30 | 007,596,504 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxUIEx.exe
[2013/12/21 00:02:30 | 000,755,160 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\GfxUIHotKeyMenu.exe
[2013/12/21 00:02:30 | 000,267,407 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.th-TH.resources
[2013/12/21 00:02:30 | 000,224,256 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\hccutils.dll
[2013/12/21 00:02:30 | 000,194,560 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\gfxSrvc.dll
[2013/12/21 00:02:30 | 000,175,571 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.tr-TR.resources
[2013/12/21 00:02:30 | 000,173,276 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.sk-SK.resources
[2013/12/21 00:02:30 | 000,173,059 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.sv-SE.resources
[2013/12/21 00:02:30 | 000,168,215 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.sl-SI.resources
[2013/12/21 00:02:30 | 000,154,805 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.zh-TW.resources
[2013/12/21 00:02:30 | 000,152,993 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.zh-CN.resources
[2013/12/21 00:02:28 | 002,384,896 | ---- | M] () -- C:\WINDOWS\SysNative\GfxRes.dll
[2013/12/21 00:02:28 | 000,530,904 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\DPTopologyApp.exe
[2013/12/21 00:02:28 | 000,253,466 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.el-GR.resources
[2013/12/21 00:02:28 | 000,235,401 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.ru-RU.resources
[2013/12/21 00:02:28 | 000,201,128 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.ar-SA.resources
[2013/12/21 00:02:28 | 000,198,725 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.ja-JP.resources
[2013/12/21 00:02:28 | 000,192,758 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.he-IL.resources
[2013/12/21 00:02:28 | 000,180,936 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.ko-KR.resources
[2013/12/21 00:02:28 | 000,180,850 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.it-IT.resources
[2013/12/21 00:02:28 | 000,178,473 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.es-ES.resources
[2013/12/21 00:02:28 | 000,178,290 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.fr-FR.resources
[2013/12/21 00:02:28 | 000,178,123 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.de-DE.resources
[2013/12/21 00:02:28 | 000,176,838 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.ro-RO.resources
[2013/12/21 00:02:28 | 000,175,862 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.hu-HU.resources
[2013/12/21 00:02:28 | 000,175,067 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.nl-NL.resources
[2013/12/21 00:02:28 | 000,174,802 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.pl-PL.resources
[2013/12/21 00:02:28 | 000,174,269 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.pt-BR.resources
[2013/12/21 00:02:28 | 000,173,792 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.fi-FI.resources
[2013/12/21 00:02:28 | 000,172,833 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.pt-PT.resources
[2013/12/21 00:02:28 | 000,172,554 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.cs-CZ.resources
[2013/12/21 00:02:28 | 000,171,691 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.hr-HR.resources
[2013/12/21 00:02:28 | 000,166,833 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.nb-NO.resources
[2013/12/21 00:02:28 | 000,166,220 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.da-DK.resources
[2013/12/21 00:02:28 | 000,161,534 | ---- | M] () -- C:\WINDOWS\SysNative\Gfxres.en-US.resources
[2013/12/21 00:02:26 | 000,396,760 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\CustomModeApp.exe
[2013/12/21 00:02:26 | 000,153,048 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\difx64.exe
[2013/12/19 19:07:18 | 000,000,222 | ---- | M] () -- C:\Users\Nayru Roivas\Desktop\Damned.url
[2013/12/17 01:30:33 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2013/12/14 16:34:54 | 000,039,320 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\intelaud.sys
[2013/12/14 16:34:54 | 000,027,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iwdbus.sys
[2013/12/13 02:04:17 | 000,335,784 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2013/12/13 02:02:28 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2013/12/10 01:32:51 | 000,872,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2013/12/10 01:32:51 | 000,698,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2013/12/10 01:32:41 | 001,286,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2013/12/10 01:32:41 | 001,217,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2013/12/10 01:32:41 | 000,977,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2013/12/10 01:32:41 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2013/12/10 01:32:41 | 000,225,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2013/12/10 01:32:27 | 018,577,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2013/12/10 01:32:27 | 013,925,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2013/12/10 01:32:04 | 002,801,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2013/12/10 01:32:04 | 000,869,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2013/12/10 01:32:03 | 001,085,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2013/12/10 01:31:27 | 001,399,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2013/12/10 01:31:27 | 001,373,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2013/12/10 01:31:27 | 001,231,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2013/12/10 01:31:27 | 001,204,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2013/12/10 01:31:27 | 001,067,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2013/12/10 01:31:27 | 000,888,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2013/12/10 01:31:27 | 000,883,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2013/12/10 01:31:27 | 000,518,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2013/12/10 01:31:27 | 000,481,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2013/12/10 01:31:27 | 000,380,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2013/12/10 01:31:27 | 000,338,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpclip.exe
[2013/12/10 01:31:26 | 006,639,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2013/12/10 01:31:26 | 005,769,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2013/12/10 01:31:26 | 004,599,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2013/12/10 01:31:26 | 003,395,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2013/12/10 01:31:26 | 002,617,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2013/12/10 01:31:26 | 002,328,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2013/12/10 01:31:26 | 002,295,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2013/12/10 01:31:26 | 002,134,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2013/12/10 01:31:26 | 002,065,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2013/12/10 01:31:26 | 001,704,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2013/12/10 01:31:26 | 001,584,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\workfolderssvc.dll
[2013/12/10 01:31:26 | 001,287,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll
[2013/12/10 01:31:26 | 001,160,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2013/12/10 01:31:26 | 001,147,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2013/12/10 01:31:26 | 001,011,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWorkspace.dll
[2013/12/10 01:31:26 | 000,920,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2013/12/10 01:31:26 | 000,909,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2013/12/10 01:31:26 | 000,830,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2013/12/10 01:31:26 | 000,795,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TSWorkspace.dll
[2013/12/10 01:31:26 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2013/12/10 01:31:26 | 000,761,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkfoldersControl.dll
[2013/12/10 01:31:26 | 000,708,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2013/12/10 01:31:26 | 000,699,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10level9.dll
[2013/12/10 01:31:26 | 000,656,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2013/12/10 01:31:26 | 000,631,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2013/12/10 01:31:26 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2013/12/10 01:31:26 | 000,607,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2013/12/10 01:31:26 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2013/12/10 01:31:26 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2013/12/10 01:31:26 | 000,533,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppReadiness.dll
[2013/12/10 01:31:26 | 000,465,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2013/12/10 01:31:26 | 000,411,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2013/12/10 01:31:26 | 000,391,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2013/12/10 01:31:26 | 000,385,528 | ---- | M] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2013/12/10 01:31:26 | 000,381,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2013/12/10 01:31:26 | 000,345,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2013/12/10 01:31:26 | 000,335,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappcfg.dll
[2013/12/10 01:31:26 | 000,331,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapphost.dll
[2013/12/10 01:31:26 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapp3hst.dll
[2013/12/10 01:31:26 | 000,317,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2013/12/10 01:31:26 | 000,286,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcsvDevice.dll
[2013/12/10 01:31:26 | 000,272,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappcfg.dll
[2013/12/10 01:31:26 | 000,270,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2013/12/10 01:31:26 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapphost.dll
[2013/12/10 01:31:26 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapp3hst.dll
[2013/12/10 01:31:26 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\miutils.dll
[2013/12/10 01:31:26 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkFoldersShell.dll
[2013/12/10 01:31:26 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWfdProvider.dll
[2013/12/10 01:31:26 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\miutils.dll
[2013/12/10 01:31:26 | 000,171,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kd_02_8086.dll
[2013/12/10 01:31:26 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2013/12/10 01:31:26 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2013/12/10 01:31:26 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2013/12/10 01:31:26 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msched.dll
[2013/12/10 01:31:26 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shsetup.dll
[2013/12/10 01:31:26 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2013/12/10 01:31:26 | 000,104,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2013/12/10 01:31:26 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2013/12/10 01:31:26 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappgnui.dll
[2013/12/10 01:31:26 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shsetup.dll
[2013/12/10 01:31:26 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappgnui.dll
[2013/12/10 01:31:26 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2013/12/10 01:31:26 | 000,088,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2013/12/10 01:31:26 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWbPrxy.exe
[2013/12/10 01:31:26 | 000,057,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2013/12/10 01:31:26 | 000,054,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2013/12/10 01:31:26 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ftp.exe
[2013/12/10 01:31:26 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ftp.exe
[2013/12/10 01:31:26 | 000,044,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wldp.dll
[2013/12/10 01:31:26 | 000,031,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ploptin.dll
[2013/12/10 01:30:18 | 000,136,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys
[2013/12/10 01:30:14 | 001,943,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2013/12/10 01:05:13 | 000,020,958 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2013/12/10 01:05:13 | 000,020,958 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2013/12/10 01:04:54 | 000,022,744 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2013/12/10 00:37:26 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/12/10 00:35:46 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_SensorsAlsDriver_01_11_00.Wdf
[2013/12/09 21:17:37 | 000,000,045 | ---- | M] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2013/12/09 20:54:43 | 000,406,247 | ---- | M] () -- C:\Users\Nayru Roivas\Documents\Tumblr.htm
[2013/12/08 20:05:19 | 000,001,116 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2013/12/06 16:59:43 | 000,000,027 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2013/12/03 17:05:48 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2013/12/03 17:05:48 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2013/11/30 18:40:04 | 000,002,309 | ---- | M] () -- C:\Users\Nayru Roivas\Desktop\Skyrim (SKSE).lnk
[2013/11/30 01:12:20 | 000,000,221 | ---- | M] () -- C:\Users\Nayru Roivas\Desktop\The Elder Scrolls V Skyrim.url
[2013/11/30 01:12:20 | 000,000,221 | ---- | M] () -- C:\Users\Nayru Roivas\Desktop\The Elder Scrolls III Morrowind.url
[2013/11/29 09:56:58 | 001,096,480 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvspcap64.dll
[2013/11/29 09:56:57 | 000,979,744 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvspcap.dll
[2013/11/28 13:59:00 | 000,001,928 | ---- | M] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2013/11/26 01:57:44 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2013/11/26 01:35:02 | 005,769,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2013/11/26 01:02:16 | 001,995,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2013/11/26 00:32:06 | 001,928,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2013/11/25 23:34:55 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2013/11/25 23:34:27 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[3 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]
[14 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013/12/24 17:08:47 | 000,000,000 | -HS- | C] () -- C:\DkHyperbootSync
[2013/12/24 16:25:59 | 000,001,121 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/12/21 00:02:54 | 000,002,940 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxs64.vp
[2013/12/21 00:02:48 | 000,012,288 | ---- | C] ( ) -- C:\WINDOWS\SysNative\IGFXDEVLib.dll
[2013/12/21 00:02:44 | 000,347,648 | ---- | C] () -- C:\WINDOWS\SysNative\igdmd64.dll
[2013/12/21 00:02:44 | 000,280,064 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2013/12/21 00:02:40 | 000,222,208 | ---- | C] () -- C:\WINDOWS\SysNative\igdde64.dll
[2013/12/21 00:02:40 | 000,182,272 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013/12/21 00:02:40 | 000,160,256 | ---- | C] () -- C:\WINDOWS\SysNative\igdail64.dll
[2013/12/21 00:02:40 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2013/12/21 00:02:30 | 000,267,407 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.th-TH.resources
[2013/12/21 00:02:30 | 000,175,571 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.tr-TR.resources
[2013/12/21 00:02:30 | 000,173,276 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sk-SK.resources
[2013/12/21 00:02:30 | 000,173,059 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sv-SE.resources
[2013/12/21 00:02:30 | 000,168,215 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sl-SI.resources
[2013/12/21 00:02:30 | 000,154,805 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.zh-TW.resources
[2013/12/21 00:02:30 | 000,152,993 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.zh-CN.resources
[2013/12/21 00:02:28 | 002,384,896 | ---- | C] () -- C:\WINDOWS\SysNative\GfxRes.dll
[2013/12/21 00:02:28 | 000,253,466 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.el-GR.resources
[2013/12/21 00:02:28 | 000,235,401 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ru-RU.resources
[2013/12/21 00:02:28 | 000,201,128 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ar-SA.resources
[2013/12/21 00:02:28 | 000,198,725 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ja-JP.resources
[2013/12/21 00:02:28 | 000,192,758 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.he-IL.resources
[2013/12/21 00:02:28 | 000,180,936 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ko-KR.resources
[2013/12/21 00:02:28 | 000,180,850 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.it-IT.resources
[2013/12/21 00:02:28 | 000,178,473 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.es-ES.resources
[2013/12/21 00:02:28 | 000,178,290 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.fr-FR.resources
[2013/12/21 00:02:28 | 000,178,123 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.de-DE.resources
[2013/12/21 00:02:28 | 000,176,838 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ro-RO.resources
[2013/12/21 00:02:28 | 000,175,862 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.hu-HU.resources
[2013/12/21 00:02:28 | 000,175,067 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.nl-NL.resources
[2013/12/21 00:02:28 | 000,174,802 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pl-PL.resources
[2013/12/21 00:02:28 | 000,174,269 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pt-BR.resources
[2013/12/21 00:02:28 | 000,173,792 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.fi-FI.resources
[2013/12/21 00:02:28 | 000,172,833 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pt-PT.resources
[2013/12/21 00:02:28 | 000,172,554 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.cs-CZ.resources
[2013/12/21 00:02:28 | 000,171,691 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.hr-HR.resources
[2013/12/21 00:02:28 | 000,166,833 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.nb-NO.resources
[2013/12/21 00:02:28 | 000,166,220 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.da-DK.resources
[2013/12/21 00:02:28 | 000,161,534 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.en-US.resources
[2013/12/19 19:07:18 | 000,000,222 | ---- | C] () -- C:\Users\Nayru Roivas\Desktop\Damned.url
[2013/12/13 02:02:28 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2013/12/10 01:31:26 | 000,385,528 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2013/12/10 01:09:56 | 000,001,442 | ---- | C] () -- C:\Users\Nayru Roivas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/12/10 01:04:54 | 000,022,744 | ---- | C] () -- C:\WINDOWS\SysNative\emptyregdb.dat
[2013/12/10 00:48:23 | 000,001,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2013/12/10 00:45:21 | 000,000,352 | ---- | C] () -- C:\Users\Nayru Roivas\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/12/10 00:45:21 | 000,000,334 | ---- | C] () -- C:\Users\Nayru Roivas\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/12/10 00:41:26 | 000,020,958 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2013/12/10 00:41:26 | 000,020,958 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2013/12/10 00:37:26 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2013/12/10 00:37:06 | 003,467,927 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin
[2013/12/10 00:35:46 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_SensorsAlsDriver_01_11_00.Wdf
[2013/12/09 21:27:17 | 000,357,152 | ---- | C] () -- C:\WINDOWS\SysNative\NvIFROpenGL.dll
[2013/12/09 21:27:17 | 000,314,656 | ---- | C] () -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll
[2013/12/09 21:27:17 | 000,023,754 | ---- | C] () -- C:\WINDOWS\SysNative\nvinfo.pb
[2013/12/09 21:17:37 | 000,000,045 | ---- | C] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2013/12/09 20:54:42 | 000,406,247 | ---- | C] () -- C:\Users\Nayru Roivas\Documents\Tumblr.htm
[2013/12/08 20:05:19 | 000,001,116 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2013/12/08 20:05:19 | 000,001,079 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2013/12/08 19:41:18 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013/12/02 23:28:11 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2013/11/30 18:40:04 | 000,002,309 | ---- | C] () -- C:\Users\Nayru Roivas\Desktop\Skyrim (SKSE).lnk
[2013/11/30 01:12:20 | 000,000,221 | ---- | C] () -- C:\Users\Nayru Roivas\Desktop\The Elder Scrolls V Skyrim.url
[2013/11/30 01:12:20 | 000,000,221 | ---- | C] () -- C:\Users\Nayru Roivas\Desktop\The Elder Scrolls III Morrowind.url
[2013/11/28 13:59:00 | 000,001,928 | ---- | C] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2013/10/28 19:27:21 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2013/08/22 08:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 08:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 07:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 00:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/21 20:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/21 20:17:46 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/08/21 16:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/21 16:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/07/28 09:54:58 | 000,001,073 | ---- | C] () -- C:\Users\Nayru Roivas\GameStop App.lnk
[2013/06/26 18:02:48 | 000,003,004 | ---- | C] () -- C:\ProgramData\MakeMarkerFile.xml
[2013/06/25 17:09:28 | 000,000,017 | ---- | C] () -- C:\Users\Nayru Roivas\AppData\Local\resmon.resmoncfg
[2013/06/14 04:43:23 | 000,003,522 | ---- | C] () -- C:\Users\Nayru Roivas\AppData\Roaming\AbsoluteReminder.xml
[2012/08/25 18:33:05 | 000,000,031 | ---- | C] () -- C:\ProgramData\ECReset_Partition.bat
[2012/04/19 21:59:44 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll
 
========== ZeroAccess Check ==========
 
[2013/12/19 21:35:10 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/12/10 01:32:27 | 021,196,664 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/12/10 01:32:27 | 018,642,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 02:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/21 19:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 02:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 199 bytes -> C:\Users\Nayru Roivas\SkyDrive:ms-properties
 
< End of report >





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users