Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Default internet browser keeps opening randomly


  • Please log in to reply
49 replies to this topic

#1 ksathya86

ksathya86

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 02 January 2014 - 03:05 AM

I am using Windows 7.

While i am working on other application. My Default explorer keeps opening randomly and it doesnt let me do any work.

If I am in an explorer browsing on websites, it takes me back to the previous page automatically.

I also reformatted using my HP recovery manager which brings it back to factory default but still the issue still exists.

I tried different anti-virus, malware removal tools, adware removal tools. But nothing helped me to fix this issue.

 

Hoping, I would get a help from this forum.

 

Thanks!



BC AdBot (Login to Remove)

 


#2 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 03 January 2014 - 03:47 PM

Hi,

I have even tried erasing the hard disk. But the issue still exists.

 

Please help

 

-Sathya



#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,476 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:57 PM

Posted 06 January 2014 - 10:29 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
thisisujrt.gif Please download
Junkware Removal Tool to your Desktop.
  • Please close your security software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete, depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
  • Please post the contents of JRT.txt into your reply.
===

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

Download DDS by sUBs from one of the following links, if you no longer have it available. Save it to your desktop.

1: DDS.scr (Not recommended if you use Chrome to download this .scr file. Use the other options.)
2: DDS.pif
3: DDS.COM

Double click on the DDS icon, allow it to run.
A small box will open, with an explanation about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

dds_scr.gif

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please restart the computer before running this security check.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

#4 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 06 January 2014 - 05:07 PM

Hi Nasdaq,

 

Thanks! a lot for your response.

Very unfortunately, my system is not booting up. I am getting a black screen, it seems to be a hardware issue.

I am in the process of fixing that right now, it might take a 3-4 days. 

Can I respond you back on those steps once my hardware issue is resolved?

 

Sorry!, it was very unfortunate for me.

 

-Sathya



#5 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 06 January 2014 - 11:25 PM

Hi Nasdaq,

 

My hardware issue is fixed. Post that I followed your steps, below are the outputs.

 

Content of AdwCleaner[S1]:

# AdwCleaner v3.016 - Report created 06/01/2014 at 19:47:38

# Updated 23/12/2013 by Xplode

# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

# Username : satin - SATIN-HP

# Running from : C:\Users\satin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TQEBMIIV\adwcleaner.exe

# Option : Clean

***** [ Services ] *****

 

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Mobogenie

Folder Deleted : C:\Program Files (x86)\MyPC Backup

Folder Deleted : C:\Users\satin\AppData\Local\Mobogenie

Folder Deleted : C:\Users\satin\Documents\Mobogenie

File Deleted : C:\Users\satin\AppData\Roaming\Mozilla\Firefox\Profiles\5rsfd0kp.default\user.js

***** [ Shortcuts ] *****

 

***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd

Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Key Deleted : HKCU\Software\InstallCore

Key Deleted : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD

Key Deleted : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16421

 

-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\satin\AppData\Roaming\Mozilla\Firefox\Profiles\5rsfd0kp.default\prefs.js ]

 

*************************

AdwCleaner[R0].txt - [2354 octets] - [03/01/2014 11:32:24]

AdwCleaner[R1].txt - [2145 octets] - [06/01/2014 19:46:08]

AdwCleaner[S0].txt - [2104 octets] - [03/01/2014 11:33:50]

AdwCleaner[S1].txt - [2063 octets] - [06/01/2014 19:47:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2123 octets] ##########

 

 

Content of JRT.txt file:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.0.9 (01.01.2014:1)

OS: Windows 7 Home Premium x64

Ran by satin on Mon 01/06/2014 at 19:53:55.08

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

~~~ Services

 

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page

Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1244122937-2002930860-2771045045-1000\Software\Microsoft\Internet Explorer\Main\\Start Page

 

 

~~~ Registry Keys

 

 

~~~ Files

 

 

~~~ Folders

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Mon 01/06/2014 at 19:58:54.46

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Contents of DDS.txt :

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 9.0.8112.16421

Run by satin at 20:03:19 on 2014-01-06

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.2374 [GMT -8:00]

.

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\Hpservice.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files\IDT\WDM\AESTSr64.exe

C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

C:\Windows\SysWOW64\ezSharedSvcHost.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\explorer.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0oemBingBarSetup-Partner.EXE

C:\Windows\TEMP\IXP000.TMP\BBSetup.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com

uSearch Bar = Preserve

mWinlogon: Userinit = C:\Windows\System32\userinit.exe

TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -

mRunOnce: [wextract_cleanup0] rundll32.exe C:\Windows\System32\advpack.dll,DelNodeRunDLL32 "C:\Windows\TEMP\IXP000.TMP\"

mRunOnce: [!BingBar] "C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0oemBingBarSetup-Partner.EXE" /C:"BBSetup.exe cabLocation=.\BingBarPartnerConfig.cab ui=false ismu=2"

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: EnableShellExecuteHooks = dword:1

mPolicies-Explorer: NoDrives = dword:0

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

TCP: NameServer = 192.168.1.254

TCP: Interfaces\{02287939-7B8A-485C-8EBB-7DFB9076EB8B} : DHCPNameServer = 192.168.1.254

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\satin\AppData\Roaming\Mozilla\Firefox\Profiles\5rsfd0kp.default\

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

.

============= SERVICES / DRIVERS ===============

.

R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2014-1-3 89600]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-1-3 203776]

R2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]

R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe --> C:\Windows\System32\ezSharedSvcHost.exe [?]

R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]

R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2011-1-26 30520]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-1-3 13336]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-3 418376]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-3 701512]

R2 RoxioNow Service;RoxioNow Service;C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe [2010-11-26 399344]

R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2014-1-3 2656280]

R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]

R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2014-1-3 317440]

R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2014-1-3 12273408]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-1-3 25928]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-10 80384]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-10 181248]

R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2014-1-3 333928]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-1-3 428136]

R3 wdkmd;Intel WiDi KMD;C:\Windows\System32\drivers\WDKMD.sys [2011-2-16 42392]

S3 HPAuto;HP Auto;C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-2-16 682040]

S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-1-5 340240]

S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]

S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]

S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== Created Last 30 ================

.

2014-01-07 03:34:55 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll

2014-01-07 03:34:44 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A064E064-8EE1-4191-88F3-C980B6753B3A}\mpengine.dll

2014-01-03 23:52:56 -------- d-----w- C:\Users\satin\AppData\Roaming\Roxio Log Files

2014-01-03 23:47:47 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2014-01-03 23:47:47 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2014-01-03 23:46:13 -------- d-----w- C:\Users\satin\AppData\Local\Adobe

2014-01-03 21:21:58 -------- d-----w- C:\Users\satin\AppData\Local\Deployment

2014-01-03 21:21:58 -------- d-----w- C:\Users\satin\AppData\Local\Apps

2014-01-03 21:07:22 -------- d-----w- C:\Users\satin\AppData\Local\NPE

2014-01-03 20:46:42 -------- d-----w- C:\Program Files (x86)\RegistryNuke 2013

2014-01-03 20:32:23 -------- d-----w- C:\Users\satin\AppData\Local\Google

2014-01-03 20:30:39 -------- d-----w- C:\Users\satin\AppData\Roaming\Malwarebytes

2014-01-03 20:30:29 -------- d-----w- C:\ProgramData\Malwarebytes

2014-01-03 20:30:28 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2014-01-03 20:30:28 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-01-03 20:29:56 -------- d-----w- C:\Users\satin\AppData\Local\Programs

2014-01-03 20:22:09 -------- d-s---w- C:\$RECYCLE.BIN

2014-01-03 19:57:35 98816 ----a-w- C:\Windows\sed.exe

2014-01-03 19:57:35 208896 ----a-w- C:\Windows\MBR.exe

2014-01-03 19:55:14 -------- d-----w- C:\Users\satin\AppData\Local\CrashDumps

2014-01-03 19:37:49 -------- d-----w- C:\Windows\ERUNT

2014-01-03 19:32:19 -------- d-----w- C:\AdwCleaner

2014-01-03 19:24:44 8795216 ----a-w- C:\ProgramData\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE

2014-01-03 19:22:21 -------- d-----w- C:\Program Files\Enigma Software Group

2014-01-03 19:21:58 -------- d-----w- C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP

2014-01-03 19:21:56 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard

2014-01-03 19:15:18 -------- d-----w- C:\Users\satin\AppData\Local\ATI

2014-01-03 19:14:17 -------- d-----w- C:\Users\satin\AppData\Roaming\Intel Corporation

2014-01-03 19:14:17 -------- d-----w- C:\Users\satin\AppData\Roaming\hpqLog

2014-01-03 19:14:16 -------- d-----w- C:\Users\satin\AppData\Roaming\Synaptics

2014-01-03 19:13:34 -------- d-----w- C:\Users\satin\AppData\Local\RemEngine

2014-01-03 19:12:58 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll

2014-01-03 19:12:58 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

2014-01-03 19:12:58 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

2014-01-03 19:12:58 1031680 ----a-w- C:\Windows\System32\rdpcore.dll

2014-01-03 19:10:48 -------- d-----w- C:\Users\satin\AppData\Local\Hewlett-Packard

2014-01-03 19:10:35 -------- d-----w- C:\Users\satin\AppData\Local\Hewlett-Packard_Company

2014-01-03 19:09:07 -------- d-----w- C:\Users\satin\AppData\Local\VirtualStore

2014-01-03 18:31:13 -------- d-----w- C:\Program Files (x86)\Microsoft

2014-01-03 18:30:13 29480 ----a-w- C:\Windows\SysWow64\msxml3a.dll

2014-01-03 18:29:11 -------- d-----w- C:\ProgramData\Downloaded Installations

2014-01-03 18:28:52 -------- d-----w- C:\Windows\System32\drivers\NISx64\1205000.07D

2014-01-03 18:28:52 -------- d-----w- C:\Windows\System32\drivers\NISx64

2014-01-03 18:28:50 -------- d-----w- C:\ProgramData\Norton

2014-01-03 18:28:32 -------- d-----w- C:\ProgramData\NortonInstaller

2014-01-03 18:28:17 -------- d-----w- C:\Program Files (x86)\Intel Corporation

2014-01-03 18:28:17 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation

2014-01-03 18:25:01 0 ----a-w- C:\Windows\ativpsrm.bin

2014-01-03 18:21:09 -------- d-----w- C:\Program Files (x86)\Cisco

2014-01-03 18:21:02 -------- d-----w- C:\Windows\HPQ

2014-01-03 18:20:38 -------- d-----w- C:\Program Files (x86)\Renesas Electronics

2014-01-03 18:19:52 -------- d-----w- C:\Program Files\Validity Sensors

2014-01-03 18:19:35 -------- d-----w- C:\Program Files\Synaptics

2014-01-03 18:16:14 -------- d-----w- C:\Program Files\ATI

2014-01-03 18:16:11 -------- d-----w- C:\Program Files (x86)\ATI Technologies

2014-01-03 18:14:45 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll

2014-01-03 18:14:43 -------- d-----w- C:\Intel

2014-01-03 18:08:42 1924480 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2014-01-03 18:08:31 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys

2014-01-03 18:08:31 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

2014-01-03 18:08:31 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

2014-01-03 18:08:31 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

2014-01-03 18:08:18 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll

2014-01-03 18:08:18 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll

2014-01-03 18:06:51 1395712 ----a-w- C:\Windows\System32\mfc42.dll

2014-01-03 18:06:51 1359872 ----a-w- C:\Windows\System32\mfc42u.dll

2014-01-03 18:06:51 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll

2014-01-03 18:06:51 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll

2014-01-03 18:06:37 642944 ----a-w- C:\Windows\System32\winload.efi

2014-01-03 18:06:37 605552 ----a-w- C:\Windows\System32\winload.exe

2014-01-03 18:06:37 566208 ----a-w- C:\Windows\System32\winresume.efi

2014-01-03 18:06:37 518672 ----a-w- C:\Windows\System32\winresume.exe

2014-01-03 18:06:37 20352 ----a-w- C:\Windows\System32\kdusb.dll

2014-01-03 18:06:37 19328 ----a-w- C:\Windows\System32\kd1394.dll

2014-01-03 18:06:37 17792 ----a-w- C:\Windows\System32\kdcom.dll

2014-01-03 18:06:23 976896 ----a-w- C:\Windows\System32\inetcomm.dll

2014-01-03 18:06:23 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll

2014-01-03 18:05:36 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe

2014-01-03 18:05:23 951680 ----a-w- C:\Windows\System32\drivers\ndis.sys

2014-01-03 18:05:09 961024 ----a-w- C:\Windows\System32\CPFilters.dll

2014-01-03 18:05:09 850944 ----a-w- C:\Windows\SysWow64\sbe.dll

2014-01-03 18:05:09 723968 ----a-w- C:\Windows\System32\EncDec.dll

2014-01-03 18:05:09 642048 ----a-w- C:\Windows\SysWow64\CPFilters.dll

2014-01-03 18:05:09 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll

2014-01-03 18:05:09 259072 ----a-w- C:\Windows\System32\mpg2splt.ax

2014-01-03 18:05:09 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax

2014-01-03 18:05:09 1118720 ----a-w- C:\Windows\System32\sbe.dll

2014-01-03 18:03:35 -------- d-----w- C:\Windows\ehome

.

==================== Find3M ====================

.

2014-01-03 18:07:52 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe

2014-01-03 18:07:52 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe

2014-01-03 18:07:52 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll

2014-01-03 18:07:40 467456 ----a-w- C:\Windows\System32\drivers\srv.sys

2014-01-03 18:07:40 411648 ----a-w- C:\Windows\System32\drivers\srv2.sys

2014-01-03 18:07:40 167936 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2014-01-03 18:07:16 46080 ----a-w- C:\Windows\System32\atmlib.dll

2014-01-03 18:07:16 367616 ----a-w- C:\Windows\System32\atmfd.dll

2014-01-03 18:07:16 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll

2014-01-03 18:07:16 294912 ----a-w- C:\Windows\SysWow64\atmfd.dll

2014-01-03 18:07:04 3135488 ----a-w- C:\Windows\System32\win32k.sys

2013-11-26 20:25:52 267936 ------w- C:\Windows\System32\MpSigStub.exe

.

============= FINISH: 20:03:54.44 ===============

 

 

Content of checkup.txt:

Results of screen317's Security Check version 0.99.78

Windows 7 Service Pack 1 x64 (UAC is enabled)

Internet Explorer 11

``````````````Antivirus/Firewall Check:``````````````

Windows Security Center service is not running! This report may not be accurate!

Windows Firewall Enabled!

WMI entry may not exist for antivirus; attempting automatic update.

`````````Anti-malware/Other Utilities Check:`````````

Malwarebytes Anti-Malware version 1.75.0.1300

Mozilla Firefox (26.0)

````````Process Check: objlist.exe by Laurent````````

Malwarebytes Anti-Malware mbamservice.exe

Malwarebytes Anti-Malware mbamgui.exe

Malwarebytes' Anti-Malware mbamscheduler.exe

`````````````````System Health check`````````````````

Total Fragmentation on Drive C: 2%

````````````````````End of Log``````````````````````

 

 

 

After following those steps. I still have that issue. My browser keep opening new windows

 

Thanks! for the help

 

-Sathya

 

 

 

 



#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,476 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:57 PM

Posted 07 January 2014 - 08:27 AM

There are a few things I would like to remove.
Please run this tool.

Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop

IMPORTANT....

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Do not install any other programs until this if fixed.


How to : Disable Anti-virus and Firewall...
http://www.bleepingcomputer.com/forums/topic114351.html

Double click on ComboFix.exe & follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt
Note:
Do not mouse click ComboFix's window while it's running. That may cause it to stall


Note: If you have difficulty properly disabling your protective programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
==============

p.s.
Let me know which browser(s) is opening new tabs.

#7 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 07 January 2014 - 01:14 PM

Hi Nasdaq,

 

I am still having that issue.

If I am in working on other applications, it automatically keeps opening up multiple browser windows. I think it does opens up the default browser.

But If I am in browser and browsing some site, it automatically takes me to the home page of the browser.

I have this issue in all the browsers. As of now I have installed IE & Mozilla Firefox in my system.

I had google chrome earlier and I uninstallated it. Compared to any other browser, the issue in Chrome is more intense, it does opens hundreds of windows and it doesnt let me to work on any other applications. Infact it was very difficult for me to uninstall the chrome as it was continuously opening windows for every second.

 

Content of log:

 

ComboFix 14-01-04.03 - satin 01/07/2014 8:52.3.8 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.2608 [GMT -8:00]

Running from: c:\users\satin\Desktop\Reports\ComboFix.exe

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((( Files Created from 2013-12-07 to 2014-01-07 )))))))))))))))))))))))))))))))

.

.

2014-01-07 16:56 . 2014-01-07 16:56 -------- d-----w- c:\users\Default\AppData\Local\temp

2014-01-07 16:28 . 2014-01-07 16:28 -------- d-----w- c:\windows\SysWow64\Wat

2014-01-07 16:28 . 2014-01-07 16:28 -------- d-----w-a c:\windows\system32\Wat

2014-01-07 06:56 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe

2014-01-07 06:56 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe

2014-01-07 06:56 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL

2014-01-07 06:56 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL

2014-01-07 06:56 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll

2014-01-07 06:27 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui

2014-01-07 06:18 . 2014-01-07 06:18 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2014-01-07 06:06 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe

2014-01-07 06:06 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll

2014-01-07 06:06 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2014-01-07 06:06 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll

2014-01-07 06:06 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2014-01-07 06:06 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2014-01-07 06:06 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll

2014-01-07 06:04 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys

2014-01-07 06:04 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll

2014-01-07 06:04 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll

2014-01-07 04:37 . 2014-01-07 16:41 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A064E064-8EE1-4191-88F3-C980B6753B3A}\offreg.dll

2014-01-07 03:41 . 2011-05-04 05:25 2315776 ----a-w- c:\windows\system32\tquery.dll

2014-01-07 03:40 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll

2014-01-07 03:39 . 2012-11-22 05:44 800768 ----a-w- c:\windows\system32\usp10.dll

2014-01-07 03:38 . 2012-09-25 22:47 78336 ----a-w- c:\windows\SysWow64\synceng.dll

2014-01-07 03:37 . 2012-06-06 06:05 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll

2014-01-07 03:34 . 2013-12-16 09:54 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A064E064-8EE1-4191-88F3-C980B6753B3A}\mpengine.dll

2014-01-03 23:47 . 2014-01-03 23:47 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2014-01-03 23:47 . 2014-01-03 23:47 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2014-01-03 23:47 . 2014-01-03 23:47 -------- d-----w- c:\windows\system32\Macromed

2014-01-03 20:46 . 2010-01-01 08:20 -------- d-----w- c:\program files (x86)\RegistryNuke 2013

2014-01-03 20:32 . 2014-01-04 00:18 -------- d-----w- c:\program files (x86)\Google

2014-01-03 20:30 . 2014-01-03 20:30 -------- d-----w- c:\programdata\Malwarebytes

2014-01-03 20:30 . 2014-01-03 20:30 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2014-01-03 20:30 . 2013-04-04 22:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2014-01-03 19:37 . 2014-01-03 19:37 -------- d-----w- c:\windows\ERUNT

2014-01-03 19:32 . 2014-01-07 03:47 -------- d-----w- C:\AdwCleaner

2014-01-03 19:24 . 2014-01-03 19:24 8795216 ----a-w- c:\programdata\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE

2014-01-03 19:22 . 2014-01-03 19:22 -------- d-----w- c:\program files\Enigma Software Group

2014-01-03 19:21 . 2014-01-04 00:21 -------- d-----w- c:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP

2014-01-03 19:21 . 2014-01-03 19:21 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard

2014-01-03 19:12 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll

2014-01-03 19:12 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll

2014-01-03 19:12 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys

2014-01-03 19:08 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll

2014-01-03 19:08 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe

2014-01-03 19:08 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll

2014-01-03 19:08 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll

2014-01-03 19:08 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll

2014-01-03 19:08 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll

2014-01-03 19:08 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll

2014-01-03 19:08 . 2012-06-02 23:19 186752 ----a-w- c:\windows\system32\wuwebv.dll

2014-01-03 19:08 . 2012-06-02 23:15 36864 ----a-w- c:\windows\system32\wuapp.exe

2014-01-03 19:08 . 2010-01-01 08:12 -------- d-----w- c:\users\satin

2014-01-03 18:38 . 2014-01-03 18:38 -------- d-----w- c:\programdata\ATI

2014-01-03 18:31 . 2014-01-03 18:31 -------- d-----w- c:\program files (x86)\Microsoft

2014-01-03 18:31 . 2010-01-01 08:16 -------- d-----w- c:\programdata\CyberLink

2014-01-03 18:30 . 2014-01-03 18:30 29480 ----a-w- c:\windows\SysWow64\msxml3a.dll

2014-01-03 18:29 . 2014-01-03 18:29 -------- d-----w- c:\programdata\Downloaded Installations

2014-01-03 18:28 . 2014-01-04 00:44 -------- d-----w- c:\windows\system32\drivers\NISx64

2014-01-03 18:28 . 2014-01-04 00:47 -------- d-----w- c:\programdata\Norton

2014-01-03 18:28 . 2014-01-03 18:28 -------- d-----w- c:\program files (x86)\Common Files\Intel Corporation

2014-01-03 18:28 . 2014-01-03 18:28 -------- d-----w- c:\program files (x86)\Intel Corporation

2014-01-03 18:25 . 2014-01-03 18:25 0 ----a-w- c:\windows\ativpsrm.bin

2014-01-03 18:23 . 2014-01-03 18:26 -------- d-----w- c:\windows\Hewlett-Packard

2014-01-03 18:22 . 2014-01-03 18:22 -------- d-----w- c:\users\Public\Roaming

2014-01-03 18:22 . 2014-01-03 18:22 -------- d-----w- c:\users\Default\Roaming

2014-01-03 18:21 . 2014-01-03 18:28 -------- d-----w- c:\programdata\Intel

2014-01-03 18:21 . 2014-01-03 18:21 -------- d-----w- c:\program files (x86)\Cisco

2014-01-03 18:21 . 2014-01-03 18:21 -------- d-----w- c:\program files\Intel

2014-01-03 18:21 . 2014-01-03 18:22 -------- d-----w- c:\windows\HPQ

2014-01-03 18:20 . 2014-01-03 18:20 -------- d-----w- c:\program files (x86)\Renesas Electronics

2014-01-03 18:19 . 2014-01-03 18:19 -------- d-----w- c:\program files\Validity Sensors

2014-01-03 18:19 . 2014-01-03 18:19 -------- d-----w- c:\program files\Synaptics

2014-01-03 18:16 . 2014-01-03 18:16 -------- d-----w- c:\program files\ATI

2014-01-03 18:16 . 2014-01-03 18:17 -------- d-----w- c:\program files (x86)\ATI Technologies

2014-01-03 18:14 . 2014-01-03 18:18 -------- d-----w- c:\program files (x86)\Intel

2014-01-03 18:14 . 2010-12-23 19:09 53248 ----a-w- c:\windows\SysWow64\CSVer.dll

2014-01-03 18:14 . 2014-01-03 18:14 -------- d-----w- C:\Intel

2014-01-03 18:08 . 2014-01-03 18:08 90624 ----a-w- c:\windows\system32\drivers\bowser.sys

2014-01-03 18:07 . 2014-01-03 18:07 357888 ----a-w- c:\windows\system32\dnsapi.dll

2014-01-03 18:07 . 2014-01-03 18:07 30208 ----a-w- c:\windows\system32\dnscacheugc.exe

2014-01-03 18:07 . 2014-01-03 18:07 28672 ----a-w- c:\windows\SysWow64\dnscacheugc.exe

2014-01-03 18:07 . 2014-01-03 18:07 183296 ----a-w- c:\windows\system32\dnsrslvr.dll

2014-01-03 18:06 . 2014-01-03 18:06 1395712 ----a-w- c:\windows\system32\mfc42.dll

2014-01-03 18:06 . 2014-01-03 18:06 1359872 ----a-w- c:\windows\system32\mfc42u.dll

2014-01-03 18:06 . 2014-01-03 18:06 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll

2014-01-03 18:06 . 2014-01-03 18:06 1137664 ----a-w- c:\windows\SysWow64\mfc42.dll

2014-01-03 18:06 . 2014-01-03 18:06 642944 ----a-w- c:\windows\system32\winload.efi

2014-01-03 18:06 . 2014-01-03 18:06 605552 ----a-w- c:\windows\system32\winload.exe

2014-01-03 18:06 . 2014-01-03 18:06 566208 ----a-w- c:\windows\system32\winresume.efi

2014-01-03 18:06 . 2014-01-03 18:06 518672 ----a-w- c:\windows\system32\winresume.exe

2014-01-03 18:06 . 2014-01-03 18:06 20352 ----a-w- c:\windows\system32\kdusb.dll

2014-01-03 18:06 . 2014-01-03 18:06 19328 ----a-w- c:\windows\system32\kd1394.dll

2014-01-03 18:06 . 2014-01-03 18:06 17792 ----a-w- c:\windows\system32\kdcom.dll

2014-01-03 18:05 . 2014-01-03 18:05 267776 ----a-w- c:\windows\system32\FXSCOVER.exe

2014-01-03 18:05 . 2014-01-03 18:05 961024 ----a-w- c:\windows\system32\CPFilters.dll

2014-01-03 18:05 . 2014-01-03 18:05 850944 ----a-w- c:\windows\SysWow64\sbe.dll

2014-01-03 18:05 . 2014-01-03 18:05 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll

2014-01-03 18:05 . 2014-01-03 18:05 259072 ----a-w- c:\windows\system32\mpg2splt.ax

2014-01-03 18:05 . 2014-01-03 18:05 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax

2014-01-03 18:05 . 2014-01-03 18:05 1118720 ----a-w- c:\windows\system32\sbe.dll

2014-01-03 18:03 . 2014-01-07 16:28 -------- d-----w- c:\windows\ehome

2014-01-03 18:03 . 2014-01-03 18:03 -------- d-----w- c:\users\Default\AppData\Roaming\Media Center Programs

2014-01-03 18:03 . 2014-01-03 18:03 -------- d-----r- c:\users\Public\Recorded TV

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2014-01-03 19:09 . 2010-06-24 18:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-11-26 20:25 . 2010-11-21 03:27 267936 ------w- c:\windows\system32\MpSigStub.exe

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"EnableShellExecuteHooks"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]

"Userinit"="c:\windows\system32\userinit.exe"

.

R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe [x]

R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]

R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]

R2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys;c:\windows\SYSNATIVE\DRIVERS\sbapifs.sys [x]

R3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]

R3 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [x]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]

R3 MFE_RR;MFE_RR;c:\users\satin\AppData\Local\Temp\mfe_rr.sys;c:\users\satin\AppData\Local\Temp\mfe_rr.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]

R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]

R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]

R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]

S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]

S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x]

S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]

S2 RoxioNow Service;RoxioNow Service;c:\program files (x86)\Roxio\RoxioNow Player\RNowSvc.exe;c:\program files (x86)\Roxio\RoxioNow Player\RNowSvc.exe [x]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]

S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]

S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys;c:\windows\SYSNATIVE\DRIVERS\WDKMD.sys [x]

.

.

.

--------- X64 Entries -----------

.

.

------- Supplementary Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com

mLocal Page = c:\windows\system32\blank.htm

Trusted Zone: google.com\www

TCP: DhcpNameServer = 192.168.1.254

FF - ProfilePath - c:\users\satin\AppData\Roaming\Mozilla\Firefox\Profiles\5rsfd0kp.default\

.

- - - - ORPHANS REMOVED - - - -

.

Toolbar-Locked - (no file)

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

.

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Completion time: 2014-01-07 08:57:28

ComboFix-quarantined-files.txt 2014-01-07 16:57

ComboFix2.txt 2014-01-03 20:22

ComboFix3.txt 2014-01-03 20:02

.

Pre-Run: 695,589,384,192 bytes free

Post-Run: 695,660,953,600 bytes free

.

- - End Of File - - ABD2E9371CF9609CAE1A188434087072

 

Thanks!

-Sathya



#8 nasdaq

nasdaq

  • Malware Response Team
  • 40,476 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:57 PM

Posted 07 January 2014 - 01:47 PM

Open notepad and copy/paste the text in the quote box below into it:
 
Driver::
MFE_RR

ClearJavaCache::

Save this as CFScript.txt on your desktop.

CFScriptB-4.gif

Referring to the picture above, drag CFScript into ComboFix.exe
Then post the resultant log.
==

Restart the computer normally.

If the problem persists continue.

Click the StartBtn.gif button. In the Search box, type Command Prompt, and then, in the list of results, double-click Command Prompt.

at the cursor type:
ipconfig /flushdns <-- (A space between g and / is needed)

repeat with
ipconfig /renew

Then hit Enter, type Exit, hit the Enter key.

You may need to run CMD - Command Prompt on Vista - Windows 7/8 with Elevated Privilege
http://www.mydigitallife.info/2007/02/17/how-to-open-elevated-command-prompt-with-administrator-privileges-in-windows-vista/
<<<>>>

Restart the computer normally.
If the problem persists continue.

Launch Notepad, and copy/paste all the blue instructions below to it.
Save in: Desktop
File Name: fixme.reg
Save as Type: All files
Click: Save
 

Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]


Then, disconnect from the Internet!
Next,
Back on the Desktop, double-click on the fixme.reg file you just saved and click on Yes when asked to merge the information.

On a Vista or Windows 7 operating system right click on the fixme.reg file and run as Administrator.
===

If using a router it may also be corrupted, try this.

How to Reset a Router Back to the Factory Default Settings
http://www.ehow.com/how_2110924_reset-back-factory-default-settings.html

Then, please reconfigure it back to your preferred setting.. Below is the list of default username and password, should you don't know it ;)

http://www.routerpasswords.com/
http://www.phenoelit-us.org/dpl/dpl.html
===

Reset for Linksys, Netgear, D-Link and Belkin Routers
http://www.techsupportforum.com/2763-reset-for-linksys-netgear-d-link-and-belkin-routers/

How to Secure Your Wireless Router
http://www.ehow.com/how_2253625_secure-wireless-router.html

Keep me posted.

#9 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 08 January 2014 - 02:18 PM

Hi Nasdaq,

 

Just to keep you posted. 

Issue is intense in my system now and its not letting me to execute those steps as it keeps opening windows. 

I am still trying to execute those steps.

 

I will keep you posted.

 

Thanks!

-Sathya



#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,476 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:57 PM

Posted 09 January 2014 - 07:50 AM

Download correct tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a USB stick boot to safe mode and run it.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
===

How to boot to Safe Mode, Vista - Windows 7
http://www.computerhope.com/issues/chsafe.htm#03

#11 nasdaq

nasdaq

  • Malware Response Team
  • 40,476 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:57 PM

Posted 15 January 2014 - 09:33 AM

Are you still with me?

#12 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 16 January 2014 - 12:13 AM

Hi Nasdaq,

Apologise for the delayed response!
I have executed all the steps. Issue still exists
Content of log.txt

ComboFix 14-01-04.03 - satin 01/07/2014  18:15:21.4.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4044.2108 [GMT -8:00]
Running from: c:\users\satin\Desktop\ComboFix.exe
Command switches used :: c:\users\satin\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_MFE_RR
-------\Service_MFE_RR
.
.
(((((((((((((((((((((((((   Files Created from 2013-12-08 to 2014-01-08  )))))))))))))))))))))))))))))))
.
.
2014-01-08 02:18 . 2014-01-08 02:18    --------    d-----w-    c:\users\Default\AppData\Local\temp
2014-01-07 18:22 . 2013-10-15 02:00    28368    ----a-w-    c:\windows\system32\IEUDINIT.EXE
2014-01-07 16:28 . 2014-01-07 16:28    --------    d-----w-    c:\windows\SysWow64\Wat
2014-01-07 16:28 . 2014-01-07 16:28    --------    d-----w-    c:\windows\system32\Wat
2014-01-07 06:56 . 2013-05-10 04:30    167424    ----a-w-    c:\program files\Windows Media Player\wmplayer.exe
2014-01-07 06:56 . 2013-05-10 03:48    164864    ----a-w-    c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-01-07 06:56 . 2013-05-10 05:56    12625920    ----a-w-    c:\windows\system32\wmploc.DLL
2014-01-07 06:56 . 2013-05-10 04:56    12625408    ----a-w-    c:\windows\SysWow64\wmploc.DLL
2014-01-07 06:56 . 2013-05-10 05:56    14631424    ----a-w-    c:\windows\system32\wmp.dll
2014-01-07 06:27 . 2012-07-26 04:47    2560    ----a-w-    c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2014-01-07 06:06 . 2012-07-26 03:08    229888    ----a-w-    c:\windows\system32\WUDFHost.exe
2014-01-07 06:06 . 2012-07-26 03:08    84992    ----a-w-    c:\windows\system32\WUDFSvc.dll
2014-01-07 06:06 . 2012-07-26 03:08    45056    ----a-w-    c:\windows\system32\WUDFCoinstaller.dll
2014-01-07 06:06 . 2012-07-26 03:08    194048    ----a-w-    c:\windows\system32\WUDFPlatform.dll
2014-01-07 06:06 . 2012-07-26 02:26    87040    ----a-w-    c:\windows\system32\drivers\WUDFPf.sys
2014-01-07 06:06 . 2012-07-26 02:26    198656    ----a-w-    c:\windows\system32\drivers\WUDFRd.sys
2014-01-07 06:06 . 2012-07-26 03:08    744448    ----a-w-    c:\windows\system32\WUDFx.dll
2014-01-07 06:04 . 2012-03-01 06:46    23408    ----a-w-    c:\windows\system32\drivers\fs_rec.sys
2014-01-07 06:04 . 2012-03-01 06:28    5120    ----a-w-    c:\windows\system32\wmi.dll
2014-01-07 06:04 . 2012-03-01 05:29    5120    ----a-w-    c:\windows\SysWow64\wmi.dll
2014-01-07 03:41 . 2011-05-04 05:25    2315776    ----a-w-    c:\windows\system32\tquery.dll
2014-01-07 03:40 . 2013-04-25 23:30    1505280    ----a-w-    c:\windows\SysWow64\d3d11.dll
2014-01-07 03:39 . 2012-11-22 05:44    800768    ----a-w-    c:\windows\system32\usp10.dll
2014-01-07 03:38 . 2012-09-25 22:47    78336    ----a-w-    c:\windows\SysWow64\synceng.dll
2014-01-07 03:37 . 2012-06-06 06:05    495616    ----a-w-    c:\program files\Common Files\System\ado\msadox.dll
2014-01-07 03:34 . 2013-12-16 09:54    10315576    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{A064E064-8EE1-4191-88F3-C980B6753B3A}\mpengine.dll
2014-01-03 23:47 . 2014-01-03 23:47    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-03 23:47 . 2014-01-03 23:47    692616    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-03 23:47 . 2014-01-03 23:47    --------    d-----w-    c:\windows\system32\Macromed
2014-01-03 20:46 . 2010-01-01 08:20    --------    d-----w-    c:\program files (x86)\RegistryNuke 2013
2014-01-03 20:32 . 2014-01-04 00:18    --------    d-----w-    c:\program files (x86)\Google
2014-01-03 20:30 . 2014-01-03 20:30    --------    d-----w-    c:\programdata\Malwarebytes
2014-01-03 20:30 . 2014-01-03 20:30    --------    d-----w-    c:\program files (x86)\Malwarebytes' Anti-Malware
2014-01-03 20:30 . 2013-04-04 22:50    25928    ----a-w-    c:\windows\system32\drivers\mbam.sys
2014-01-03 19:37 . 2014-01-03 19:37    --------    d-----w-    c:\windows\ERUNT
2014-01-03 19:32 . 2014-01-07 03:47    --------    d-----w-    C:\AdwCleaner
2014-01-03 19:24 . 2014-01-03 19:24    8795216    ----a-w-    c:\programdata\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE
2014-01-03 19:22 . 2014-01-03 19:22    --------    d-----w-    c:\program files\Enigma Software Group
2014-01-03 19:21 . 2014-01-04 00:21    --------    d-----w-    c:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2014-01-03 19:21 . 2014-01-03 19:21    --------    d-----w-    c:\program files (x86)\Common Files\Wise Installation Wizard
2014-01-03 19:12 . 2012-02-17 06:38    1031680    ----a-w-    c:\windows\system32\rdpcore.dll
2014-01-03 19:12 . 2012-02-17 05:34    826880    ----a-w-    c:\windows\SysWow64\rdpcore.dll
2014-01-03 19:12 . 2012-02-17 04:57    23552    ----a-w-    c:\windows\system32\drivers\tdtcp.sys
2014-01-03 19:08 . 2012-06-02 22:19    2428952    ----a-w-    c:\windows\system32\wuaueng.dll
2014-01-03 19:08 . 2012-06-02 22:19    57880    ----a-w-    c:\windows\system32\wuauclt.exe
2014-01-03 19:08 . 2012-06-02 22:19    44056    ----a-w-    c:\windows\system32\wups2.dll
2014-01-03 19:08 . 2012-06-02 22:15    2622464    ----a-w-    c:\windows\system32\wucltux.dll
2014-01-03 19:08 . 2012-06-02 22:19    38424    ----a-w-    c:\windows\system32\wups.dll
2014-01-03 19:08 . 2012-06-02 22:19    701976    ----a-w-    c:\windows\system32\wuapi.dll
2014-01-03 19:08 . 2012-06-02 22:15    99840    ----a-w-    c:\windows\system32\wudriver.dll
2014-01-03 19:08 . 2012-06-02 23:19    186752    ----a-w-    c:\windows\system32\wuwebv.dll
2014-01-03 19:08 . 2012-06-02 23:15    36864    ----a-w-    c:\windows\system32\wuapp.exe
2014-01-03 19:08 . 2010-01-01 08:12    --------    d-----w-    c:\users\satin
2014-01-03 18:38 . 2014-01-03 18:38    --------    d-----w-    c:\programdata\ATI
2014-01-03 18:31 . 2014-01-03 18:31    --------    d-----w-    c:\program files (x86)\Microsoft
2014-01-03 18:31 . 2010-01-01 08:16    --------    d-----w-    c:\programdata\CyberLink
2014-01-03 18:30 . 2014-01-03 18:30    29480    ----a-w-    c:\windows\SysWow64\msxml3a.dll
2014-01-03 18:29 . 2014-01-03 18:29    --------    d-----w-    c:\programdata\Downloaded Installations
2014-01-03 18:28 . 2014-01-04 00:44    --------    d-----w-    c:\windows\system32\drivers\NISx64
2014-01-03 18:28 . 2014-01-04 00:47    --------    d-----w-    c:\programdata\Norton
2014-01-03 18:28 . 2014-01-03 18:28    --------    d-----w-    c:\program files (x86)\Common Files\Intel Corporation
2014-01-03 18:28 . 2014-01-03 18:28    --------    d-----w-    c:\program files (x86)\Intel Corporation
2014-01-03 18:25 . 2014-01-03 18:25    0    ----a-w-    c:\windows\ativpsrm.bin
2014-01-03 18:23 . 2014-01-03 18:26    --------    d-----w-    c:\windows\Hewlett-Packard
2014-01-03 18:22 . 2014-01-03 18:22    --------    d-----w-    c:\users\Public\Roaming
2014-01-03 18:22 . 2014-01-03 18:22    --------    d-----w-    c:\users\Default\Roaming
2014-01-03 18:21 . 2014-01-03 18:28    --------    d-----w-    c:\programdata\Intel
2014-01-03 18:21 . 2014-01-03 18:21    --------    d-----w-    c:\program files (x86)\Cisco
2014-01-03 18:21 . 2014-01-03 18:21    --------    d-----w-    c:\program files\Intel
2014-01-03 18:21 . 2014-01-03 18:22    --------    d-----w-    c:\windows\HPQ
2014-01-03 18:20 . 2014-01-03 18:20    --------    d-----w-    c:\program files (x86)\Renesas Electronics
2014-01-03 18:19 . 2014-01-03 18:19    --------    d-----w-    c:\program files\Validity Sensors
2014-01-03 18:19 . 2014-01-03 18:19    --------    d-----w-    c:\program files\Synaptics
2014-01-03 18:16 . 2014-01-03 18:16    --------    d-----w-    c:\program files\ATI
2014-01-03 18:16 . 2014-01-03 18:17    --------    d-----w-    c:\program files (x86)\ATI Technologies
2014-01-03 18:14 . 2014-01-03 18:18    --------    d-----w-    c:\program files (x86)\Intel
2014-01-03 18:14 . 2010-12-23 19:09    53248    ----a-w-    c:\windows\SysWow64\CSVer.dll
2014-01-03 18:14 . 2014-01-03 18:14    --------    d-----w-    C:\Intel
2014-01-03 18:08 . 2014-01-03 18:08    90624    ----a-w-    c:\windows\system32\drivers\bowser.sys
2014-01-03 18:07 . 2014-01-03 18:07    357888    ----a-w-    c:\windows\system32\dnsapi.dll
2014-01-03 18:07 . 2014-01-03 18:07    30208    ----a-w-    c:\windows\system32\dnscacheugc.exe
2014-01-03 18:07 . 2014-01-03 18:07    28672    ----a-w-    c:\windows\SysWow64\dnscacheugc.exe
2014-01-03 18:07 . 2014-01-03 18:07    183296    ----a-w-    c:\windows\system32\dnsrslvr.dll
2014-01-03 18:06 . 2014-01-03 18:06    1395712    ----a-w-    c:\windows\system32\mfc42.dll
2014-01-03 18:06 . 2014-01-03 18:06    1359872    ----a-w-    c:\windows\system32\mfc42u.dll
2014-01-03 18:06 . 2014-01-03 18:06    1164288    ----a-w-    c:\windows\SysWow64\mfc42u.dll
2014-01-03 18:06 . 2014-01-03 18:06    1137664    ----a-w-    c:\windows\SysWow64\mfc42.dll
2014-01-03 18:06 . 2014-01-03 18:06    642944    ----a-w-    c:\windows\system32\winload.efi
2014-01-03 18:06 . 2014-01-03 18:06    605552    ----a-w-    c:\windows\system32\winload.exe
2014-01-03 18:06 . 2014-01-03 18:06    566208    ----a-w-    c:\windows\system32\winresume.efi
2014-01-03 18:06 . 2014-01-03 18:06    518672    ----a-w-    c:\windows\system32\winresume.exe
2014-01-03 18:06 . 2014-01-03 18:06    20352    ----a-w-    c:\windows\system32\kdusb.dll
2014-01-03 18:06 . 2014-01-03 18:06    19328    ----a-w-    c:\windows\system32\kd1394.dll
2014-01-03 18:06 . 2014-01-03 18:06    17792    ----a-w-    c:\windows\system32\kdcom.dll
2014-01-03 18:05 . 2014-01-03 18:05    267776    ----a-w-    c:\windows\system32\FXSCOVER.exe
2014-01-03 18:05 . 2014-01-03 18:05    961024    ----a-w-    c:\windows\system32\CPFilters.dll
2014-01-03 18:05 . 2014-01-03 18:05    850944    ----a-w-    c:\windows\SysWow64\sbe.dll
2014-01-03 18:05 . 2014-01-03 18:05    642048    ----a-w-    c:\windows\SysWow64\CPFilters.dll
2014-01-03 18:05 . 2014-01-03 18:05    259072    ----a-w-    c:\windows\system32\mpg2splt.ax
2014-01-03 18:05 . 2014-01-03 18:05    199680    ----a-w-    c:\windows\SysWow64\mpg2splt.ax
2014-01-03 18:05 . 2014-01-03 18:05    1118720    ----a-w-    c:\windows\system32\sbe.dll
2014-01-03 18:03 . 2014-01-07 16:28    --------    d-----w-    c:\windows\ehome
2014-01-03 18:03 . 2014-01-03 18:03    --------    d-----w-    c:\users\Default\AppData\Roaming\Media Center Programs
2014-01-03 18:03 . 2014-01-03 18:03    --------    d-----r-    c:\users\Public\Recorded TV
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-03 19:09 . 2010-06-24 18:33    22240    ----a-w-    c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-11-26 20:25 . 2010-11-21 03:27    267936    ------w-    c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\system32\userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys;c:\windows\SYSNATIVE\DRIVERS\sbapifs.sys [x]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe [x]
R3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
R3 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 RoxioNow Service;RoxioNow Service;c:\program files (x86)\Roxio\RoxioNow Player\RNowSvc.exe;c:\program files (x86)\Roxio\RoxioNow Player\RNowSvc.exe [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys;c:\windows\SYSNATIVE\DRIVERS\WDKMD.sys [x]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [BU]
.
.
--------- X64 Entries -----------
.
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\system32\blank.htm
Trusted Zone: google.com\www
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\satin\AppData\Roaming\Mozilla\Firefox\Profiles\5rsfd0kp.default\
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2014-01-07  18:23:10 - machine was rebooted
ComboFix-quarantined-files.txt  2014-01-08 02:23
ComboFix2.txt  2014-01-07 16:57
ComboFix3.txt  2014-01-03 20:22
ComboFix4.txt  2014-01-03 20:02
.
Pre-Run: 694,454,169,600 bytes free
Post-Run: 693,894,430,720 bytes free
.
- - End Of File - - FDA2742F94ADCDB06CCA81B797E965CC
 



#13 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 16 January 2014 - 12:29 AM

Content of FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-01-2014 05
Ran by satin (administrator) on SATIN-HP on 11-01-2014 11:36:49
Running from C:\Users\satin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)
==================== Processes (Whitelisted) =================
==================== Registry (Whitelisted) ==================
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x82C7558B5A0BCF01
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll No File
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://vpn.itcinfotech.com/dana-cached/sc/JuniperSetupClient.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\satin\AppData\Roaming\Mozilla\Firefox\Profiles\5rsfd0kp.default
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\satin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 [2014-01-07]
CHR Extension: (Google Drive) - C:\Users\satin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 [2014-01-07]
CHR Extension: (YouTube) - C:\Users\satin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2014-01-07]
CHR Extension: (Google Search) - C:\Users\satin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2014-01-07]
CHR Extension: (Google Wallet) - C:\Users\satin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2014-01-07]
CHR Extension: (Gmail) - C:\Users\satin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 [2014-01-07]

==================== Services (Whitelisted) =================
S3 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
S2 HP Health Check Service; "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" [x]
S3 hpqwmiex; "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe" [x]
==================== Drivers (Whitelisted) ====================
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 clwvd; system32\DRIVERS\clwvd.sys [x]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-11 11:36 - 2014-01-11 11:36 - 00004916 _____ C:\Users\satin\Desktop\FRST.txt
2014-01-11 11:36 - 2014-01-11 11:29 - 02076672 _____ (Farbar) C:\Users\satin\Desktop\FRST64.exe
2014-01-11 11:33 - 2014-01-11 11:33 - 00000000 ____D C:\FRST
2014-01-10 10:07 - 2014-01-10 10:07 - 00262144 _____ C:\Windows\Minidump\011014-23400-01.dmp
2014-01-10 10:00 - 2014-01-10 10:00 - 00001020 _____ C:\Users\satin\Desktop\fixme.reg
2014-01-10 09:55 - 2014-01-10 10:07 - 420345566 _____ C:\Windows\MEMORY.DMP
2014-01-10 09:55 - 2014-01-10 10:07 - 00000000 ____D C:\Windows\Minidump
2014-01-10 09:55 - 2014-01-10 09:55 - 00262144 _____ C:\Windows\Minidump\011014-31824-01.dmp
2014-01-08 09:15 - 2013-11-26 03:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-08 09:15 - 2013-11-26 02:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-08 09:15 - 2013-11-26 02:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-08 09:15 - 2013-11-26 02:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-08 09:15 - 2013-11-26 01:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-08 09:15 - 2013-11-26 01:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-08 09:15 - 2013-11-26 01:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-08 09:15 - 2013-11-26 01:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-08 09:15 - 2013-11-26 01:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-08 09:15 - 2013-11-26 01:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-08 09:15 - 2013-11-26 01:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-08 09:15 - 2013-11-26 01:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-08 09:15 - 2013-11-26 01:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-08 09:15 - 2013-11-26 01:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-08 09:15 - 2013-11-26 00:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-08 09:15 - 2013-11-26 00:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-08 09:15 - 2013-11-26 00:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-08 09:15 - 2013-11-26 00:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-08 09:15 - 2013-11-26 00:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-08 09:15 - 2013-11-26 00:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-08 09:15 - 2013-11-26 00:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-08 09:15 - 2013-11-26 00:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-08 09:15 - 2013-11-25 23:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-08 09:15 - 2013-11-25 23:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-08 09:15 - 2013-11-25 23:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-08 09:15 - 2013-11-25 23:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-08 09:15 - 2013-11-25 22:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-08 09:15 - 2013-11-25 22:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-08 09:15 - 2013-11-25 22:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
 


2014-01-08 09:15 - 2013-11-25 22:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-08 09:15 - 2013-11-25 22:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-07 20:39 - 2014-01-07 20:39 - 00819184 _____ (Google Inc.) C:\Users\satin\Downloads\ChromeSetup(1).exe
2014-01-07 20:35 - 2014-01-07 20:35 - 00819184 _____ (Google Inc.) C:\Users\satin\Downloads\ChromeSetup.exe
2014-01-07 18:31 - 2013-11-23 10:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-07 18:31 - 2013-11-23 09:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-07 18:31 - 2011-02-24 22:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-01-07 18:31 - 2011-02-24 21:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-01-07 18:23 - 2014-01-07 18:23 - 00021603 _____ C:\ComboFix.txt
2014-01-07 18:23 - 2013-04-16 23:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-01-07 18:23 - 2013-04-16 22:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-01-07 18:23 - 2012-02-10 22:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-01-07 18:23 - 2012-02-10 22:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-01-07 18:23 - 2011-03-24 19:29 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-07 18:23 - 2011-03-24 19:29 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-07 18:23 - 2011-03-24 19:29 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-07 18:23 - 2011-03-24 19:29 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-07 18:23 - 2011-03-24 19:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-07 18:23 - 2011-03-24 19:29 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-07 18:23 - 2011-03-24 19:28 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-07 18:23 - 2011-03-10 22:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-01-07 18:23 - 2011-03-10 22:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-01-07 18:23 - 2011-03-10 22:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-01-07 18:23 - 2011-03-10 22:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-01-07 18:23 - 2011-03-10 22:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-01-07 18:23 - 2011-03-10 22:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-01-07 18:23 - 2011-03-10 22:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-01-07 18:23 - 2011-03-10 22:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-01-07 18:23 - 2011-03-10 21:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-01-07 18:23 - 2011-03-10 21:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-01-07 18:23 - 2011-03-10 20:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-01-07 18:13 - 2014-01-07 08:48 - 05160001 ____R (Swearware) C:\Users\satin\Desktop\ComboFix.exe
2014-01-07 10:22 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-07 10:21 - 2014-01-07 10:21 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-07 10:21 - 2014-01-07 10:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-07 10:21 - 2014-01-07 10:21 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-07 10:21 - 2014-01-07 10:21 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-07 10:21 - 2014-01-07 10:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-07 10:21 - 2014-01-07 10:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-07 10:21 - 2014-01-07 10:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-07 08:52 - 2011-06-25 22:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-07 08:52 - 2009-04-19 20:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-07 08:52 - 2000-08-30 16:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-07 08:52 - 2000-08-30 16:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-06 22:56 - 2013-05-09 21:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-06 22:56 - 2013-05-09 21:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-06 22:56 - 2013-05-09 20:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-06 22:56 - 2013-05-09 20:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-06 22:42 - 2014-01-07 10:22 - 00015542 _____ C:\Windows\IE11_main.log
2014-01-06 22:18 - 2014-01-06 22:18 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-06 22:16 - 2014-01-06 22:23 - 00011283 _____ C:\Windows\IE10_main.log
2014-01-06 22:06 - 2012-07-25 19:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-01-06 22:06 - 2012-07-25 19:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-01-06 22:06 - 2012-07-25 19:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-01-06 22:06 - 2012-07-25 19:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-01-06 22:06 - 2012-07-25 19:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-01-06 22:06 - 2012-07-25 18:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-01-06 22:06 - 2012-07-25 18:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-01-06 22:06 - 2012-06-02 06:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-01-06 22:04 - 2012-02-29 22:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-01-06 22:04 - 2012-02-29 22:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-01-06 22:04 - 2012-02-29 21:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-01-06 20:29 - 2014-01-06 20:29 - 00000000 ____D C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Juniper Networks
2014-01-06 20:27 - 2014-01-06 20:28 - 00000000 ____D C:\Users\satin\AppData\Roaming\Juniper Networks
2014-01-06 20:04 - 2014-01-06 20:04 - 00005131 _____ C:\Users\satin\Desktop\attach.txt
2014-01-06 20:04 - 2014-01-06 20:03 - 00015185 _____ C:\Users\satin\Desktop\dds.txt
2014-01-06 19:58 - 2014-01-06 19:58 - 00001361 _____ C:\Users\satin\Desktop\JRT.txt
2014-01-06 19:47 - 2014-01-07 08:58 - 00000000 ____D C:\Users\satin\Desktop\Reports
2014-01-06 19:45 - 2014-01-06 19:46 - 00003298 _____ C:\Users\satin\Desktop\steps.txt
2014-01-06 19:42 - 2013-10-29 18:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-06 19:42 - 2013-10-29 18:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-06 19:42 - 2013-07-08 21:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-01-06 19:42 - 2013-07-08 20:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-01-06 19:42 - 2013-07-04 04:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-01-06 19:42 - 2013-07-04 03:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-01-06 19:42 - 2013-02-14 22:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-01-06 19:42 - 2013-02-14 22:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-06 19:42 - 2013-02-14 22:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-01-06 19:42 - 2013-02-14 20:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-01-06 19:42 - 2013-02-14 20:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-01-06 19:42 - 2013-02-14 19:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-01-06 19:42 - 2012-10-09 10:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-01-06 19:42 - 2012-10-09 10:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-01-06 19:42 - 2012-10-09 09:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-01-06 19:42 - 2012-10-09 09:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-01-06 19:42 - 2012-01-04 02:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-01-06 19:42 - 2012-01-04 00:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-01-06 19:42 - 2011-11-19 06:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-01-06 19:42 - 2011-11-19 06:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-01-06 19:42 - 2011-10-25 21:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-01-06 19:42 - 2011-10-25 21:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-01-06 19:42 - 2011-10-25 20:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-01-06 19:42 - 2011-10-25 20:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-01-06 19:42 - 2011-06-15 21:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-01-06 19:42 - 2011-06-15 20:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-01-06 19:42 - 2011-06-15 02:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-01-06 19:42 - 2011-06-15 02:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-01-06 19:42 - 2011-06-15 02:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-01-06 19:42 - 2011-06-15 02:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-01-06 19:42 - 2011-06-15 00:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-01-06 19:42 - 2011-06-15 00:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-01-06 19:42 - 2011-06-15 00:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-01-06 19:42 - 2011-06-15 00:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-01-06 19:42 - 2011-06-15 00:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-01-06 19:42 - 2011-04-08 22:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-01-06 19:42 - 2011-04-08 21:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-01-06 19:41 - 2013-11-11 18:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-06 19:41 - 2013-11-11 18:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-06 19:41 - 2013-10-29 17:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-06 19:41 - 2013-10-18 18:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-06 19:41 - 2013-10-18 17:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-06 19:41 - 2013-10-05 12:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-01-06 19:41 - 2013-10-05 11:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-01-06 19:41 - 2013-10-03 18:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-06 19:41 - 2013-10-03 18:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-06 19:41 - 2013-10-03 18:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-06 19:41 - 2013-10-03 18:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-06 19:41 - 2013-10-03 17:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-01-06 19:41 - 2013-10-03 17:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-06 19:41 - 2013-10-03 17:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-01-06 19:41 - 2013-10-03 17:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-01-06 19:41 - 2013-09-27 17:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-01-06 19:41 - 2013-09-24 18:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-01-06 19:41 - 2013-09-24 18:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-01-06 19:41 - 2013-09-24 18:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-01-06 19:41 - 2013-09-24 18:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-01-06 19:41 - 2013-09-24 18:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-01-06 19:41 - 2013-09-24 18:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-01-06 19:41 - 2013-09-24 18:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-01-06 19:41 - 2013-09-24 18:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-01-06 19:41 - 2013-09-24 17:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-01-06 19:41 - 2013-09-24 17:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-01-06 19:41 - 2013-09-24 17:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-01-06 19:41 - 2013-09-24 17:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-01-06 19:41 - 2013-09-24 17:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-01-06 19:41 - 2013-08-04 18:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-01-06 19:41 - 2013-07-08 21:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-01-06 19:41 - 2013-07-08 21:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-01-06 19:41 - 2013-07-08 20:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-01-06 19:41 - 2013-07-08 20:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-01-06 19:41 - 2013-07-04 04:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-01-06 19:41 - 2013-06-05 21:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-01-06 19:41 - 2013-06-05 21:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-01-06 19:41 - 2013-06-05 21:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-01-06 19:41 - 2013-06-05 21:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-01-06 19:41 - 2013-06-05 20:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-01-06 19:41 - 2013-06-05 20:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-01-06 19:41 - 2013-06-05 20:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-01-06 19:41 - 2013-06-05 19:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-01-06 19:41 - 2013-06-05 19:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-01-06 19:41 - 2013-06-05 19:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-01-06 19:41 - 2013-04-12 06:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-01-06 19:41 - 2013-03-18 21:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-01-06 19:41 - 2013-03-18 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-01-06 19:41 - 2013-02-26 22:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-01-06 19:41 - 2013-02-26 21:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-01-06 19:41 - 2011-12-29 22:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-01-06 19:41 - 2011-12-29 21:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-01-06 19:41 - 2011-11-16 22:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-01-06 19:41 - 2011-11-16 21:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-01-06 19:41 - 2011-07-08 18:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-01-06 19:41 - 2011-05-03 21:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-01-06 19:41 - 2011-05-03 21:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-01-06 19:41 - 2011-05-03 21:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-01-06 19:41 - 2011-05-03 21:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-01-06 19:41 - 2011-05-03 21:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-01-06 19:41 - 2011-05-03 21:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-01-06 19:41 - 2011-05-03 21:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-01-06 19:41 - 2011-05-03 21:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-01-06 19:41 - 2011-05-03 21:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-01-06 19:41 - 2011-05-03 20:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-01-06 19:41 - 2011-05-03 20:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-01-06 19:41 - 2011-05-03 20:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-01-06 19:41 - 2011-05-03 20:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-01-06 19:41 - 2011-05-03 20:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-01-06 19:41 - 2011-05-03 20:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-01-06 19:41 - 2011-05-03 20:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-01-06 19:41 - 2011-05-03 20:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-01-06 19:41 - 2011-05-03 20:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-01-06 19:41 - 2011-04-26 18:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-01-06 19:41 - 2011-04-26 18:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-01-06 19:40 - 2013-08-01 18:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-01-06 19:40 - 2013-08-01 18:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-01-06 19:40 - 2013-08-01 18:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 18:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-01-06 19:40 - 2013-08-01 17:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 17:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-01-06 19:40 - 2013-08-01 16:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-01-06 19:40 - 2013-08-01 16:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 16:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 16:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-01-06 19:40 - 2013-08-01 16:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-01-06 19:40 - 2013-07-25 01:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-01-06 19:40 - 2013-07-25 00:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-01-06 19:40 - 2013-07-12 02:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-01-06 19:40 - 2013-07-12 02:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-01-06 19:40 - 2013-07-08 21:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-01-06 19:40 - 2013-07-08 20:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-01-06 19:40 - 2013-07-04 04:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-06 19:40 - 2013-07-04 04:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-06 19:40 - 2013-07-04 03:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-06 19:40 - 2013-07-04 03:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-06 19:40 - 2013-07-04 02:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-06 19:40 - 2013-07-02 20:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-01-06 19:40 - 2013-07-02 20:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-01-06 19:40 - 2013-06-25 14:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-01-06 19:40 - 2013-06-03 22:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-01-06 19:40 - 2013-06-03 20:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-01-06 19:40 - 2013-04-25 15:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-01-06 19:40 - 2013-03-31 14:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-01-06 19:40 - 2013-02-11 20:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-01-06 19:40 - 2012-11-28 14:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-01-06 19:40 - 2012-11-28 14:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-01-06 19:40 - 2012-11-28 14:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-01-06 19:40 - 2012-11-01 21:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-01-06 19:40 - 2012-11-01 21:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-01-06 19:40 - 2012-10-31 21:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-01-06 19:40 - 2012-10-31 21:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-01-06 19:40 - 2012-10-31 20:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-01-06 19:40 - 2012-10-31 20:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-01-06 19:40 - 2012-10-03 09:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-01-06 19:40 - 2012-10-03 09:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-01-06 19:40 - 2012-10-03 09:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-01-06 19:40 - 2012-10-03 09:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-01-06 19:40 - 2012-10-03 09:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-01-06 19:40 - 2012-10-03 09:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-01-06 19:40 - 2012-10-03 08:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-01-06 19:40 - 2012-10-03 08:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-01-06 19:40 - 2012-10-03 08:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-01-06 19:40 - 2012-10-03 08:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-01-06 19:40 - 2012-08-22 10:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-01-06 19:40 - 2012-08-21 13:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-01-06 19:40 - 2012-07-04 12:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-01-06 19:40 - 2012-04-30 21:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-01-06 19:40 - 2012-04-25 21:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-01-06 19:40 - 2012-04-25 21:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-01-06 19:40 - 2012-04-25 21:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-01-06 19:40 - 2012-01-12 23:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-01-06 19:40 - 2011-04-22 14:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-01-06 19:40 - 2010-06-25 19:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-01-06 19:40 - 2010-06-25 19:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-01-06 19:39 - 2013-09-07 18:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-01-06 19:39 - 2013-09-07 18:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-01-06 19:39 - 2013-09-07 18:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-01-06 19:39 - 2013-08-28 18:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-01-06 19:39 - 2013-08-28 18:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-01-06 19:39 - 2013-08-28 18:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-01-06 19:39 - 2013-08-28 18:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-01-06 19:39 - 2013-08-28 18:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-01-06 19:39 - 2013-08-28 17:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-01-06 19:39 - 2013-08-28 17:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-01-06 19:39 - 2013-08-28 17:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-01-06 19:39 - 2013-08-28 17:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-01-06 19:39 - 2013-08-28 17:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-01-06 19:39 - 2013-08-28 17:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-01-06 19:39 - 2013-08-28 16:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-01-06 19:39 - 2013-08-28 16:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-01-06 19:39 - 2013-08-28 16:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-01-06 19:39 - 2013-08-28 16:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-01-06 19:39 - 2013-06-14 20:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-01-06 19:39 - 2012-12-07 05:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-01-06 19:39 - 2012-12-07 05:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-01-06 19:39 - 2012-12-07 04:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-01-06 19:39 - 2012-12-07 04:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-01-06 19:39 - 2012-12-07 03:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-01-06 19:39 - 2012-12-07 03:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-01-06 19:39 - 2012-12-07 03:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-01-06 19:39 - 2012-12-07 03:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-01-06 19:39 - 2012-12-07 03:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-01-06 19:39 - 2012-12-07 03:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-01-06 19:39 - 2012-12-07 03:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-01-06 19:39 - 2012-12-07 03:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-01-06 19:39 - 2012-12-07 02:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-01-06 19:39 - 2012-11-29 21:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-01-06 19:39 - 2012-11-29 21:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-01-06 19:39 - 2012-11-29 21:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-01-06 19:39 - 2012-11-29 15:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2014-01-06 19:39 - 2012-11-29 15:15 - 00420064 _____ C:\Windows\system32\locale.nls
2014-01-06 19:39 - 2012-11-21 21:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-01-06 19:39 - 2012-11-21 20:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-01-06 19:39 - 2012-08-10 16:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-06 19:39 - 2012-08-10 15:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-06 19:39 - 2012-04-27 19:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-01-06 19:39 - 2012-04-07 04:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-01-06 19:39 - 2012-04-07 03:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-01-06 19:39 - 2012-03-16 23:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-01-06 19:39 - 2011-08-16 21:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-01-06 19:39 - 2011-08-16 21:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-01-06 19:39 - 2011-08-16 20:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-01-06 19:39 - 2011-08-16 20:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-01-06 19:39 - 2011-04-28 19:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-01-06 19:39 - 2011-04-28 19:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-01-06 19:39 - 2011-04-28 19:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-01-06 19:38 - 2013-10-11 18:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-06 19:38 - 2013-10-11 18:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-06 19:38 - 2013-10-11 18:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-06 19:38 - 2013-10-11 18:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-06 19:38 - 2013-10-11 17:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-06 19:38 - 2013-10-11 17:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-06 19:38 - 2013-10-11 17:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-06 19:38 - 2013-10-11 17:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-06 19:38 - 2013-10-02 18:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-01-06 19:38 - 2013-10-02 18:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
 


2014-01-06 19:38 - 2013-08-01 04:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-01-06 19:38 - 2013-07-25 18:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-01-06 19:38 - 2013-07-25 18:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-01-06 19:38 - 2013-07-25 17:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-01-06 19:38 - 2013-07-25 17:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-01-06 19:38 - 2013-07-20 02:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-06 19:38 - 2013-07-20 02:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-06 19:38 - 2013-05-12 21:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-01-06 19:38 - 2013-05-12 19:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-01-06 19:38 - 2013-05-12 19:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-01-06 19:38 - 2013-05-12 19:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-01-06 19:38 - 2013-05-09 21:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-01-06 19:38 - 2013-05-09 19:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-01-06 19:38 - 2013-04-25 21:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-01-06 19:38 - 2013-04-25 20:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-01-06 19:38 - 2013-04-09 22:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-01-06 19:38 - 2013-01-23 22:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-01-06 19:38 - 2013-01-02 22:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-06 19:38 - 2012-11-22 19:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-01-06 19:38 - 2012-09-25 14:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-01-06 19:38 - 2012-09-25 14:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-01-06 19:38 - 2012-08-22 10:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-06 19:38 - 2012-07-04 14:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-01-06 19:38 - 2012-07-04 14:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-01-06 19:38 - 2012-07-04 14:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-01-06 19:38 - 2012-07-04 13:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-01-06 19:38 - 2012-07-04 13:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-01-06 19:38 - 2012-05-13 21:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-01-06 19:38 - 2012-05-05 00:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-01-06 19:38 - 2012-05-04 23:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-01-06 19:38 - 2011-12-16 00:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-01-06 19:38 - 2011-12-15 23:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-01-06 19:38 - 2011-10-14 22:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-01-06 19:38 - 2011-10-14 21:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-01-06 19:38 - 2011-08-26 21:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-01-06 19:38 - 2011-08-26 21:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-01-06 19:38 - 2011-08-26 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-01-06 19:38 - 2011-08-26 20:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-01-06 19:38 - 2011-05-24 03:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-01-06 19:38 - 2011-05-24 02:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-01-06 19:38 - 2011-05-24 02:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-01-06 19:38 - 2011-05-24 02:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-01-06 19:38 - 2011-05-24 02:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-01-06 19:38 - 2011-05-02 21:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-01-06 19:38 - 2011-05-02 20:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-01-06 19:38 - 2011-02-18 02:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-01-06 19:38 - 2011-02-17 21:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-01-06 19:38 - 2011-02-03 03:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-01-06 19:37 - 2013-10-11 18:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-01-06 19:37 - 2013-10-11 18:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-01-06 19:37 - 2013-10-11 18:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-01-06 19:37 - 2013-10-11 18:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-01-06 19:37 - 2013-10-11 18:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-01-06 19:37 - 2013-08-27 17:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-01-06 19:37 - 2012-06-05 22:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-01-06 19:37 - 2012-06-05 21:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-01-03 15:52 - 2014-01-03 15:52 - 00000000 ____D C:\Users\satin\AppData\Roaming\Roxio Log Files
2014-01-03 15:47 - 2014-01-03 15:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-03 15:47 - 2014-01-03 15:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-03 15:47 - 2014-01-03 15:47 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-03 15:46 - 2014-01-03 15:47 - 00000000 ____D C:\Users\satin\AppData\Local\Adobe
2014-01-03 15:41 - 2014-01-03 15:50 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
2014-01-03 15:41 - 2014-01-03 15:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
2014-01-03 15:41 - 2014-01-03 15:50 - 00016464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
2014-01-03 15:41 - 2014-01-03 15:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 12273408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdpmd64.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 12273408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 09259520 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 08507392 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs64.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 03286016 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 01924480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 01659776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 01524816 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 01485312 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\VSTDPV6.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 01403440 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 01311232 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL664.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00753664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00740864 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\VSTCNXT6.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00654928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00530496 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00521728 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00491088 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00468480 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00459248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00439320 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00428136 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt64win7.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00408960 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvm62x64.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00376192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00366976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00363392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00339536 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00334208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00317440 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00301056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00295808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00292864 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\VSTAZL6.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00289664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00288640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00286720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00284736 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00273792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00270848 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\b57nd60a.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00223248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00220752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00215936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00213888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00194128 _____ (AMD Technologies Inc.) C:\Windows\system32\Drivers\amdsbs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00184960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00184704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00182864 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00181248 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3xhc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00179072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00174200 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00171392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00161872 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00155520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00155008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00152960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00140672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00128592 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00122960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00115776 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00114752 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_fc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00106560 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00103808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00097856 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00095616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00094592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00087632 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00082872 _____ (GFI Software) C:\Windows\system32\Drivers\sbapifs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00080464 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00080384 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3hub.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00078720 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00075136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00073280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00072832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00071552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00070224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00068864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00065600 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas2.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00065088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00064592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00064080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00063360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00061008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00060496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00055376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00055128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00051264 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcw.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00049216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00048720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00044112 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00043584 _____ (Silicon Integrated Systems Corp.) C:\Windows\system32\Drivers\sisraid2.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00043320 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\Accelerometer.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00042392 _____ (Intel Corporation) C:\Windows\system32\Drivers\WDKMD.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00042064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\discache.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00039504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00036432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00035392 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00032320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00031232 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw85cir.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00031104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
 


2014-01-03 15:41 - 2014-01-03 15:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00030008 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\hpdskflt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00028736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00028240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00027776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbatt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024656 _____ (Promise Technology) C:\Windows\system32\Drivers\stexstor.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpbus.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00023104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00022096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00021584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00021056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00020544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00019008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00017664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00017488 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00017488 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00016960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00015440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00015440 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00015424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00014720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwf.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00012496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00012352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00011136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPREFMP.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mshidkmdf.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00008064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00006784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\beep.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
2014-01-03 15:41 - 2014-01-03 15:49 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
2014-01-03 15:40 - 2014-01-03 15:50 - 00000000 ____D C:\Users\satin\Desktop\RK_Quarantine
2014-01-03 15:16 - 2014-01-03 15:16 - 00000528 _____ C:\Windows\system32\Drivers\kgpcpy.cfg
2014-01-03 14:02 - 2014-01-03 14:02 - 00782640 _____ (McAfee, Inc.) C:\Users\satin\Downloads\rootkitremover.exe
2014-01-03 14:02 - 2014-01-03 14:02 - 00000310 _____ C:\Users\satin\Downloads\RootkitRemover_20140103_140218.log
2014-01-03 13:57 - 2014-01-03 13:57 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\satin\Downloads\tdsskiller.exe
2014-01-03 13:57 - 2014-01-03 13:57 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\satin\Desktop\iexplorer.com.exe
2014-01-03 13:26 - 2014-01-03 14:59 - 00000680 _____ C:\Windows\SysWOW64\Drivers\kgpfr2.cfg
2014-01-03 13:21 - 2014-01-03 13:21 - 00000000 ____D C:\Users\satin\AppData\Local\Apps\2.0
2014-01-03 13:21 - 2010-01-01 00:10 - 00000000 ____D C:\Users\satin\AppData\Local\Deployment
2014-01-03 13:07 - 2014-01-03 13:17 - 00000000 ____D C:\Users\satin\AppData\Local\NPE
2014-01-03 12:48 - 2014-01-03 12:48 - 00000020 _____ C:\Windows\tpcsd
2014-01-03 12:46 - 2010-01-01 00:20 - 00000000 ____D C:\Program Files (x86)\RegistryNuke 2013
2014-01-03 12:42 - 2014-01-08 08:48 - 00256288 _____ C:\Windows\PFRO.log
2014-01-03 12:42 - 2014-01-07 08:30 - 00275712 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-03 12:37 - 2014-01-10 10:07 - 00001434 _____ C:\Windows\setupact.log
2014-01-03 12:37 - 2014-01-03 12:37 - 00000000 _____ C:\Windows\setuperr.log
2014-01-03 12:37 - 2010-01-01 00:11 - 00057560 _____ C:\Users\satin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-03 12:32 - 2014-01-08 09:54 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-03 12:32 - 2014-01-07 20:40 - 00000000 ____D C:\Users\satin\AppData\Local\Google
2014-01-03 12:30 - 2014-01-03 12:30 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-03 12:30 - 2014-01-03 12:30 - 00000000 ____D C:\Users\satin\AppData\Roaming\Malwarebytes
2014-01-03 12:30 - 2014-01-03 12:30 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-03 12:30 - 2014-01-03 12:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-03 12:30 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-03 11:57 - 2014-01-07 18:23 - 00000000 ____D C:\Qoobox
2014-01-03 11:57 - 2014-01-07 18:18 - 00000000 ____D C:\Windows\erdnt
2014-01-03 11:57 - 2010-11-07 09:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-03 11:57 - 2000-08-30 16:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-03 11:57 - 2000-08-30 16:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-03 11:57 - 2000-08-30 16:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-03 11:55 - 2014-01-08 11:15 - 00000000 ____D C:\Users\satin\AppData\Local\CrashDumps
2014-01-03 11:37 - 2014-01-03 11:37 - 00000000 ____D C:\Windows\ERUNT
2014-01-03 11:32 - 2014-01-06 19:47 - 00000000 ____D C:\AdwCleaner
2014-01-03 11:22 - 2014-01-03 11:22 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-03 11:22 - 2014-01-03 11:22 - 00000000 _____ C:\autoexec.bat
2014-01-03 11:21 - 2014-01-03 16:21 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2014-01-03 11:15 - 2014-01-03 11:15 - 00000000 ____D C:\Users\satin\AppData\Roaming\ATI
2014-01-03 11:15 - 2014-01-03 11:15 - 00000000 ____D C:\Users\satin\AppData\Local\ATI
2014-01-03 11:14 - 2014-01-03 15:26 - 00000000 ____D C:\Users\satin\AppData\Roaming\hpqLog
2014-01-03 11:14 - 2014-01-03 11:14 - 00003820 _____ C:\Windows\System32\Tasks\SetupManager
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Synaptics
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Macromedia
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Intel Corporation
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Adobe
2014-01-03 11:13 - 2014-01-10 10:27 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B86FA9F9-2A43-4E0A-9426-D27BC157CF34}
2014-01-03 11:13 - 2014-01-07 18:07 - 00001417 _____ C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-03 11:13 - 2014-01-07 08:33 - 00000000 ___RD C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-03 11:13 - 2014-01-07 08:33 - 00000000 ___RD C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-03 11:13 - 2014-01-03 11:13 - 00000000 ____D C:\Users\satin\AppData\Local\RemEngine
2014-01-03 11:12 - 2012-02-16 22:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-01-03 11:12 - 2012-02-16 21:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-01-03 11:12 - 2012-02-16 20:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-01-03 11:11 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Hewlett-Packard
2014-01-03 11:10 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Local\Hewlett-Packard_Company
2014-01-03 11:10 - 2014-01-03 11:13 - 00000000 ____D C:\Users\satin\AppData\Local\Hewlett-Packard
2014-01-03 11:10 - 2014-01-03 10:28 - 00002128 _____ C:\Users\Public\Desktop\Snapfish.lnk
2014-01-03 11:09 - 2014-01-03 11:09 - 00000000 ____D C:\Users\satin\AppData\Local\VirtualStore
2014-01-03 11:08 - 2014-01-03 11:08 - 00000020 ___SH C:\Users\satin\ntuser.ini
2014-01-03 11:08 - 2014-01-03 11:08 - 00000000 ____D C:\Users\satin\AppData\Roaming\Intel
2014-01-03 11:08 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-01-03 11:08 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-01-03 11:08 - 2012-06-02 14:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-01-03 11:08 - 2012-06-02 14:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-01-03 11:08 - 2012-06-02 14:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-01-03 11:08 - 2012-06-02 14:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-01-03 11:08 - 2012-06-02 14:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-01-03 11:08 - 2012-06-02 14:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-01-03 11:08 - 2012-06-02 14:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-01-03 11:08 - 2010-01-01 00:12 - 00000000 ____D C:\Users\satin
2014-01-03 11:08 - 2009-07-13 20:54 - 00000000 ___RD C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-03 11:08 - 2009-07-13 20:49 - 00000000 ___RD C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-03 10:38 - 2014-01-03 10:38 - 00000000 ____D C:\ProgramData\ATI
2014-01-03 10:31 - 2010-01-01 00:16 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-03 10:30 - 2014-01-03 10:30 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-03 10:29 - 2014-01-03 10:29 - 00000000 ____D C:\ProgramData\Downloaded Installations
2014-01-03 10:28 - 2014-01-03 16:47 - 00000000 ____D C:\ProgramData\Norton
2014-01-03 10:28 - 2014-01-03 16:44 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2014-01-03 10:28 - 2014-01-03 10:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WDKMD_01009.Wdf
2014-01-03 10:28 - 2014-01-03 10:28 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2014-01-03 10:25 - 2014-01-03 10:25 - 00000593 _____ C:\Windows\system32\ndCPrepLog
2014-01-03 10:25 - 2014-01-03 10:25 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-03 10:23 - 2014-01-03 10:26 - 00000000 ____D C:\Windows\Hewlett-Packard
2014-01-03 10:21 - 2014-01-03 10:28 - 00000000 ____D C:\ProgramData\Intel
2014-01-03 10:21 - 2014-01-03 10:22 - 00000000 ____D C:\Windows\HPQ
2014-01-03 10:21 - 2014-01-03 10:21 - 00000000 ____D C:\Program Files\Intel
2014-01-03 10:21 - 2014-01-03 10:21 - 00000000 ____D C:\Program Files (x86)\Cisco
2014-01-03 10:20 - 2014-01-03 10:20 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wbf_vfs_0018_01_09_00.Wdf
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____D C:\Program Files\Validity Sensors
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____D C:\Program Files\Synaptics
2014-01-03 10:18 - 2014-01-03 10:21 - 00000000 ____D C:\Program Files\Common Files\Intel
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Windows\SysWOW64\sda
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Windows\system32\SRSLabs
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Program Files\IDT
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-03 10:18 - 2011-03-11 02:23 - 06351872 _____ (IDT, Inc.) C:\Windows\system32\IDTNGUI.exe
2014-01-03 10:18 - 2011-03-11 02:23 - 04642816 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 03293184 _____ (IDT, Inc.) C:\Windows\system32\IDTNHP.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 01523712 _____ (IDT, Inc.) C:\Windows\system32\IDTNC64.cpl
2014-01-03 10:18 - 2011-03-11 02:23 - 01500672 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 01128448 _____ (IDT, Inc.) C:\Windows\sttray64.exe
2014-01-03 10:18 - 2011-03-11 02:23 - 01020416 _____ (IDT, Inc.) C:\Windows\system32\IDTNX.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 00652288 ____N (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 00521728 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-01-03 10:18 - 2011-03-11 02:23 - 00431616 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 00221184 _____ (IDT, Inc.) C:\Windows\system32\HPToneCtrls64.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 00220160 _____ (IDT, Inc.) C:\Windows\system32\staco64.dll
2014-01-03 10:18 - 2011-03-11 02:23 - 00212480 _____ (IDT, Inc.) C:\Windows\system32\IDTNJ.exe
2014-01-03 10:18 - 2011-02-16 17:11 - 00428136 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-01-03 10:18 - 2011-02-16 17:11 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-01-03 10:18 - 2011-02-16 17:11 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll
2014-01-03 10:18 - 2011-01-12 16:10 - 09888360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2014-01-03 10:18 - 2011-01-12 16:10 - 00333928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2014-01-03 10:18 - 2010-04-01 14:11 - 00162304 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2014-01-03 10:18 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTEC64.dll
2014-01-03 10:18 - 2009-03-03 01:58 - 00068608 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2014-01-03 10:18 - 2009-03-03 01:47 - 00090624 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTCo64.dll
2014-01-03 10:16 - 2014-01-03 10:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2014-01-03 10:16 - 2014-01-03 10:16 - 00000000 ____D C:\Program Files\ATI
2014-01-03 10:16 - 2011-01-12 22:03 - 00003155 _____ C:\Windows\SysWOW64\atipblup.dat
2014-01-03 10:16 - 2011-01-12 22:03 - 00003155 _____ C:\Windows\system32\atipblup.dat
2014-01-03 10:15 - 2011-03-15 10:28 - 09259520 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-03 10:15 - 2011-03-15 10:26 - 22518272 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-03 10:15 - 2011-03-15 10:06 - 17397248 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-03 10:15 - 2011-03-15 10:02 - 00680960 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-01-03 10:15 - 2011-03-15 10:02 - 00152384 _____ C:\Windows\system32\atiapfxx.blb
2014-01-03 10:15 - 2011-03-15 10:02 - 00143360 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-03 10:15 - 2011-03-15 10:01 - 00796160 _____ (ATI Technologies Inc. ) C:\Windows\system32\aticfx64.dll
2014-01-03 10:15 - 2011-03-15 09:59 - 00480256 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-03 10:15 - 2011-03-15 09:59 - 00462848 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-01-03 10:15 - 2011-03-15 09:58 - 00203776 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-03 10:15 - 2011-03-15 09:57 - 00423424 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2014-01-03 10:15 - 2011-03-15 09:57 - 00356352 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll
2014-01-03 10:15 - 2011-03-15 09:57 - 00278528 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\Oemdspif.dll
2014-01-03 10:15 - 2011-03-15 09:57 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-03 10:15 - 2011-03-15 09:56 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2014-01-03 10:15 - 2011-03-15 09:56 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2014-01-03 10:15 - 2011-03-15 09:56 - 00016384 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-03 10:15 - 2011-03-15 09:54 - 04277760 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-03 10:15 - 2011-03-15 09:46 - 05044224 _____ (ATI Technologies Inc. ) C:\Windows\system32\atidxx64.dll
2014-01-03 10:15 - 2011-03-15 09:39 - 07025152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-03 10:15 - 2011-03-15 09:39 - 00051200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-03 10:15 - 2011-03-15 09:39 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-03 10:15 - 2011-03-15 09:39 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-03 10:15 - 2011-03-15 09:39 - 00044032 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-03 10:15 - 2011-03-15 09:38 - 05619200 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-03 10:15 - 2011-03-15 09:37 - 04294656 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-01-03 10:15 - 2011-03-15 09:35 - 03239936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-01-03 10:15 - 2011-03-15 09:35 - 01912832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll
2014-01-03 10:15 - 2011-03-15 09:35 - 01208320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll
2014-01-03 10:15 - 2011-03-15 09:32 - 00788800 _____ C:\Windows\system32\atiumd6a.cap
2014-01-03 10:15 - 2011-03-15 09:31 - 05438976 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2014-01-03 10:15 - 2011-03-15 09:31 - 00058880 _____ (AMD) C:\Windows\system32\coinst.dll
2014-01-03 10:15 - 2011-03-15 09:28 - 03471872 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-01-03 10:15 - 2011-03-15 09:27 - 00788800 _____ C:\Windows\SysWOW64\atiumdva.cap
2014-01-03 10:15 - 2011-03-15 09:25 - 00360448 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-01-03 10:15 - 2011-03-15 09:25 - 00258048 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-03 10:15 - 2011-03-15 09:25 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-03 10:15 - 2011-03-15 09:24 - 00301056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-03 10:15 - 2011-03-15 09:24 - 00039936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-01-03 10:15 - 2011-03-15 09:24 - 00039936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-03 10:15 - 2011-03-15 09:24 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-03 10:15 - 2011-03-15 09:24 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-03 10:15 - 2011-03-15 09:23 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-03 10:15 - 2011-03-15 09:23 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-03 10:15 - 2011-03-15 09:23 - 00031232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-03 10:15 - 2011-03-15 09:23 - 00028672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-01-03 10:15 - 2011-03-15 09:16 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-03 10:15 - 2011-03-15 09:16 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-03 10:15 - 2011-03-15 09:16 - 00052736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-03 10:15 - 2011-03-15 09:16 - 00052736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-03 10:15 - 2011-02-01 17:01 - 00227586 _____ C:\Windows\system32\atiicdxx.dat
2014-01-03 10:15 - 2011-01-27 09:29 - 00013476 _____ C:\Windows\system32\iglhxs64.vp
2014-01-03 10:15 - 2011-01-27 09:15 - 04368920 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-01-03 10:15 - 2011-01-27 09:15 - 00509976 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-01-03 10:15 - 2011-01-27 09:15 - 00418328 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-01-03 10:15 - 2011-01-27 09:15 - 00391704 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-01-03 10:15 - 2011-01-27 09:15 - 00239128 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-01-03 10:15 - 2011-01-27 09:15 - 00179736 _____ C:\Windows\system32\difx64.exe
2014-01-03 10:15 - 2011-01-27 09:15 - 00167960 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-01-03 10:15 - 2011-01-27 08:57 - 12273408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdpmd64.sys
2014-01-03 10:15 - 2011-01-27 08:57 - 12273408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-01-03 10:15 - 2011-01-27 08:57 - 07470080 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2014-01-03 10:15 - 2011-01-27 08:55 - 00960940 _____ C:\Windows\SysWOW64\igkrng600.bin
2014-01-03 10:15 - 2011-01-27 08:55 - 00960940 _____ C:\Windows\system32\igkrng600.bin
2014-01-03 10:15 - 2011-01-27 08:55 - 00213332 _____ C:\Windows\SysWOW64\igfcg600m.bin
2014-01-03 10:15 - 2011-01-27 08:55 - 00213332 _____ C:\Windows\system32\igfcg600m.bin
2014-01-03 10:15 - 2011-01-27 08:55 - 00145804 _____ C:\Windows\SysWOW64\igcompkrng600.bin
2014-01-03 10:15 - 2011-01-27 08:55 - 00145804 _____ C:\Windows\system32\igcompkrng600.bin
2014-01-03 10:15 - 2011-01-27 08:51 - 05689344 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-01-03 10:15 - 2011-01-27 08:48 - 00575488 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2014-01-03 10:15 - 2011-01-27 08:47 - 07386112 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2014-01-03 10:15 - 2011-01-27 08:44 - 06068224 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-01-03 10:15 - 2011-01-27 08:38 - 19591680 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-01-03 10:15 - 2011-01-27 08:30 - 14292992 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2014-01-03 10:15 - 2011-01-27 08:26 - 00208335 _____ C:\Windows\system32\Gfxres.th-TH.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00135119 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00133868 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00132422 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00130414 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00127599 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00116413 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2014-01-03 10:15 - 2011-01-27 08:26 - 00115195 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00283648 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00283136 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-01-03 10:15 - 2011-01-27 08:25 - 00195681 _____ C:\Windows\system32\Gfxres.el-GR.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00180246 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00154366 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00151350 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00147392 _____ C:\Windows\system32\Gfxres.he-IL.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00138635 _____ C:\Windows\system32\Gfxres.it-IT.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00137000 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00136226 _____ C:\Windows\system32\Gfxres.de-DE.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00136172 _____ C:\Windows\system32\Gfxres.es-ES.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00134081 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00133321 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00132876 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00132861 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00132299 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00131897 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00131711 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00131456 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00131290 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00127367 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00127109 _____ C:\Windows\system32\Gfxres.da-DK.resources
2014-01-03 10:15 - 2011-01-27 08:25 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-01-03 10:15 - 2011-01-27 08:25 - 00122646 _____ C:\Windows\system32\Gfxres.en-US.resources
2014-01-03 10:15 - 2011-01-27 08:24 - 00380928 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-01-03 10:15 - 2011-01-27 08:24 - 00335872 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-01-03 10:15 - 2011-01-27 08:24 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-01-03 10:15 - 2011-01-27 08:24 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-01-03 10:15 - 2011-01-27 08:23 - 00385024 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-01-03 10:15 - 2011-01-27 08:23 - 00144896 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-01-03 10:15 - 2011-01-27 08:23 - 00109056 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2014-01-03 10:15 - 2011-01-27 08:23 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-01-03 10:15 - 2011-01-27 08:22 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-01-03 10:15 - 2011-01-27 08:22 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-01-03 10:15 - 2011-01-27 08:22 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-01-03 10:15 - 2011-01-27 08:18 - 00024576 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-01-03 10:15 - 2011-01-27 08:17 - 00288768 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 01991936 _____ C:\Windows\system32\iglhxa64.cpa
2014-01-03 10:15 - 2011-01-27 08:11 - 00368640 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00364032 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00142848 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00122368 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00095744 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00086528 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-01-03 10:15 - 2011-01-27 08:11 - 00060254 _____ C:\Windows\system32\iglhxg64.vp
2014-01-03 10:15 - 2011-01-27 08:11 - 00060226 _____ C:\Windows\system32\iglhxc64.vp
2014-01-03 10:15 - 2011-01-27 08:11 - 00060015 _____ C:\Windows\system32\iglhxo64.vp
2014-01-03 10:15 - 2011-01-27 08:11 - 00001090 _____ C:\Windows\system32\iglhxa64.vp
2014-01-03 10:15 - 2011-01-14 12:00 - 00030831 _____ C:\Windows\atiogl.xml
2014-01-03 10:15 - 2011-01-12 22:03 - 00003155 _____ C:\Windows\SysWOW64\atipblag.dat
2014-01-03 10:15 - 2011-01-12 22:03 - 00003155 _____ C:\Windows\system32\atipblag.dat
2014-01-03 10:15 - 2010-12-22 12:06 - 00008192 _____ C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-01-03 10:15 - 2010-10-15 01:28 - 00317440 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-01-03 10:15 - 2010-10-15 01:27 - 00014848 _____ (Intel® Corporation) C:\Windows\system32\IntcDAuC.dll
2014-01-03 10:15 - 2009-05-11 17:35 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-01-03 10:14 - 2014-01-03 10:18 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-03 10:14 - 2014-01-03 10:14 - 00000000 __RSH C:\Windows\SysWOW64\Drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_Q5CH1370HAX_E648941-001_4A_I1656_SHP_V10.31_BF.1B_T111005_W73-1_L409_M8140_J750_7Intel_86A7_92.00_#140103_N_(LM720AV)_XMOBILE_CN10_Z_2058C110000244720001620100.MRK
2014-01-03 10:14 - 2014-01-03 10:14 - 00000000 __RSH C:\Windows\system32\Drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_Q5CH1370HAX_E648941-001_4A_I1656_SHP_V10.31_BF.1B_T111005_W73-1_L409_M8140_J750_7Intel_86A7_92.00_#140103_N_(LM720AV)_XMOBILE_CN10_Z_2058C110000244720001620100.MRK
2014-01-03 10:14 - 2014-01-03 10:14 - 00000000 ____D C:\Intel
2014-01-03 10:14 - 2010-12-23 11:09 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-01-03 10:12 - 2014-01-11 11:27 - 01815674 _____ C:\Windows\WindowsUpdate.log
2014-01-03 10:11 - 2014-01-03 10:11 - 00000056 ____H C:\Windows\SysWOW64\ezsidmv.dat
2014-01-03 10:08 - 2014-01-03 10:08 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-01-03 10:07 - 2014-01-03 10:07 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-03 10:07 - 2014-01-03 10:07 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-03 10:07 - 2014-01-03 10:07 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-03 10:07 - 2014-01-03 10:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-01-03 10:07 - 2014-01-03 10:07 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-01-03 10:06 - 2014-01-03 10:06 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-01-03 10:06 - 2014-01-03 10:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-01-03 10:06 - 2014-01-03 10:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-01-03 10:06 - 2014-01-03 10:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-01-03 10:06 - 2014-01-03 10:06 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-01-03 10:05 - 2014-01-03 10:05 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-01-03 10:05 - 2014-01-03 10:05 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-01-03 10:03 - 2014-01-03 10:03 - 00000000 ___RD C:\Users\Public\Recorded TV
2014-01-03 10:03 - 2009-06-10 12:30 - 00048265 _____ C:\Windows\HomePremium.xml

==================== One Month Modified Files and Folders =======

2014-01-11 11:36 - 2014-01-11 11:36 - 00004916 _____ C:\Users\satin\Desktop\FRST.txt
2014-01-11 11:33 - 2014-01-11 11:33 - 00000000 ____D C:\FRST
2014-01-11 11:29 - 2014-01-11 11:36 - 02076672 _____ (Farbar) C:\Users\satin\Desktop\FRST64.exe
2014-01-11 11:27 - 2014-01-03 10:12 - 01815674 _____ C:\Windows\WindowsUpdate.log
2014-01-10 10:27 - 2014-01-03 11:13 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B86FA9F9-2A43-4E0A-9426-D27BC157CF34}
2014-01-10 10:15 - 2009-07-13 20:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-10 10:15 - 2009-07-13 20:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-10 10:12 - 2009-07-13 21:13 - 00726316 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-10 10:07 - 2014-01-10 10:07 - 00262144 _____ C:\Windows\Minidump\011014-23400-01.dmp
2014-01-10 10:07 - 2014-01-10 09:55 - 420345566 _____ C:\Windows\MEMORY.DMP
2014-01-10 10:07 - 2014-01-10 09:55 - 00000000 ____D C:\Windows\Minidump
2014-01-10 10:07 - 2014-01-03 12:37 - 00001434 _____ C:\Windows\setupact.log
2014-01-10 10:07 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-10 10:00 - 2014-01-10 10:00 - 00001020 _____ C:\Users\satin\Desktop\fixme.reg
2014-01-10 09:55 - 2014-01-10 09:55 - 00262144 _____ C:\Windows\Minidump\011014-31824-01.dmp
2014-01-08 11:15 - 2014-01-03 11:55 - 00000000 ____D C:\Users\satin\AppData\Local\CrashDumps
2014-01-08 09:54 - 2014-01-03 12:32 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-08 08:48 - 2014-01-03 12:42 - 00256288 _____ C:\Windows\PFRO.log
2014-01-07 20:40 - 2014-01-03 12:32 - 00000000 ____D C:\Users\satin\AppData\Local\Google
2014-01-07 20:39 - 2014-01-07 20:39 - 00819184 _____ (Google Inc.) C:\Users\satin\Downloads\ChromeSetup(1).exe
2014-01-07 20:35 - 2014-01-07 20:35 - 00819184 _____ (Google Inc.) C:\Users\satin\Downloads\ChromeSetup.exe
2014-01-07 18:23 - 2014-01-07 18:23 - 00021603 _____ C:\ComboFix.txt
2014-01-07 18:23 - 2014-01-03 11:57 - 00000000 ____D C:\Qoobox
2014-01-07 18:20 - 2009-07-13 18:34 - 00000215 _____ C:\Windows\system.ini
2014-01-07 18:18 - 2014-01-03 11:57 - 00000000 ____D C:\Windows\erdnt
2014-01-07 18:18 - 2009-07-13 18:34 - 51904512 _____ C:\Windows\system32\config\SOFTWARE.bak
2014-01-07 18:18 - 2009-07-13 18:34 - 44040192 _____ C:\Windows\system32\config\COMPONENTS.bak
2014-01-07 18:18 - 2009-07-13 18:34 - 15990784 _____ C:\Windows\system32\config\SYSTEM.bak
2014-01-07 18:18 - 2009-07-13 18:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2014-01-07 18:18 - 2009-07-13 18:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2014-01-07 18:18 - 2009-07-13 18:34 - 00262144 _____ C:\Windows\system32\config\DEFAULT.bak
2014-01-07 18:07 - 2014-01-03 11:13 - 00001417 _____ C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 18:06 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-07 10:22 - 2014-01-06 22:42 - 00015542 _____ C:\Windows\IE11_main.log
2014-01-07 10:21 - 2014-01-07 10:21 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-07 10:21 - 2014-01-07 10:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-07 10:21 - 2014-01-07 10:21 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-07 10:21 - 2014-01-07 10:21 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-07 10:21 - 2014-01-07 10:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-07 10:21 - 2014-01-07 10:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-07 10:21 - 2014-01-07 10:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-07 10:21 - 2014-01-07 10:21 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-07 10:21 - 2014-01-07 10:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-07 08:58 - 2014-01-06 19:47 - 00000000 ____D C:\Users\satin\Desktop\Reports
2014-01-07 08:48 - 2014-01-07 18:13 - 05160001 ____R (Swearware) C:\Users\satin\Desktop\ComboFix.exe
2014-01-07 08:33 - 2014-01-03 11:13 - 00000000 ___RD C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 08:33 - 2014-01-03 11:13 - 00000000 ___RD C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 08:33 - 2009-07-13 21:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-07 08:31 - 2007-01-01 17:25 - 00000000 ____D C:\Windows\Panther
2014-01-07 08:30 - 2014-01-03 12:42 - 00275712 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-07 08:28 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-07 08:28 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-07 08:28 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2014-01-07 08:28 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2014-01-07 08:28 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\system32\zh-HK
2014-01-07 08:28 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\system32\tr-TR
2014-01-07 08:28 - 2009-07-13 19:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-06 22:23 - 2014-01-06 22:16 - 00011283 _____ C:\Windows\IE10_main.log
2014-01-06 22:18 - 2014-01-06 22:18 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
 


2014-01-06 22:18 - 2014-01-06 22:18 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-06 22:18 - 2014-01-06 22:18 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-06 20:29 - 2014-01-06 20:29 - 00000000 ____D C:\Users\satin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Juniper Networks
2014-01-06 20:28 - 2014-01-06 20:27 - 00000000 ____D C:\Users\satin\AppData\Roaming\Juniper Networks
2014-01-06 20:04 - 2014-01-06 20:04 - 00005131 _____ C:\Users\satin\Desktop\attach.txt
2014-01-06 20:03 - 2014-01-06 20:04 - 00015185 _____ C:\Users\satin\Desktop\dds.txt
2014-01-06 20:02 - 2009-07-13 19:20 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-06 19:58 - 2014-01-06 19:58 - 00001361 _____ C:\Users\satin\Desktop\JRT.txt
2014-01-06 19:47 - 2014-01-03 11:32 - 00000000 ____D C:\AdwCleaner
2014-01-06 19:46 - 2014-01-06 19:45 - 00003298 _____ C:\Users\satin\Desktop\steps.txt
2014-01-03 16:47 - 2014-01-03 10:28 - 00000000 ____D C:\ProgramData\Norton
2014-01-03 16:44 - 2014-01-03 10:28 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2014-01-03 16:30 - 2011-03-30 20:23 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2014-01-03 16:26 - 2011-03-30 20:32 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2014-01-03 16:21 - 2014-01-03 11:21 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2014-01-03 15:52 - 2014-01-03 15:52 - 00000000 ____D C:\Users\satin\AppData\Roaming\Roxio Log Files
2014-01-03 15:50 - 2014-01-03 15:41 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
2014-01-03 15:50 - 2014-01-03 15:41 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
2014-01-03 15:50 - 2014-01-03 15:41 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
2014-01-03 15:50 - 2014-01-03 15:41 - 00016464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
2014-01-03 15:50 - 2014-01-03 15:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
2014-01-03 15:50 - 2014-01-03 15:40 - 00000000 ____D C:\Users\satin\Desktop\RK_Quarantine
2014-01-03 15:49 - 2014-01-03 15:41 - 12273408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdpmd64.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 12273408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 09259520 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 08507392 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs64.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 03286016 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 01924480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 01659776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 01524816 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 01485312 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\VSTDPV6.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 01403440 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 01311232 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL664.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00753664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00740864 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\VSTCNXT6.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00654928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00530496 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00521728 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00491088 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00468480 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00459248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00439320 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00428136 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt64win7.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00408960 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvm62x64.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00376192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00366976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00363392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00339536 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00334208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00317440 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00301056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00295808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00292864 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\VSTAZL6.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00289664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00288640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00286720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00284736 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00273792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00270848 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\b57nd60a.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00223248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00220752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00215936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00213888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00194128 _____ (AMD Technologies Inc.) C:\Windows\system32\Drivers\amdsbs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00184960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00184704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00182864 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00181248 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3xhc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00179072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00174200 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00171392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00161872 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00155520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00155008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00152960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00140672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00128592 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00122960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00115776 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00114752 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_fc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00106560 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00103808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00097856 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00095616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00094592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00087632 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00082872 _____ (GFI Software) C:\Windows\system32\Drivers\sbapifs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00080464 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00080384 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3hub.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00078720 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00075136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00073280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00072832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00071552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00070224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00068864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00065600 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas2.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00065088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00064592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00064080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00063360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00061008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00060496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00055376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00055128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00051264 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcw.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00049216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00048720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00044112 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00043584 _____ (Silicon Integrated Systems Corp.) C:\Windows\system32\Drivers\sisraid2.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00043320 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\Accelerometer.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00042392 _____ (Intel Corporation) C:\Windows\system32\Drivers\WDKMD.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00042064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\discache.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00039504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00036432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00035392 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00032320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00031232 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw85cir.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00031104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00030008 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\hpdskflt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00028736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00028240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00027776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbatt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024656 _____ (Promise Technology) C:\Windows\system32\Drivers\stexstor.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpbus.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00023104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00022096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00021584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00021056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00020544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00019008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00017664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00017488 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00017488 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00016960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00015440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00015440 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00015424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00014720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwf.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00012496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00012352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00011136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPREFMP.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mshidkmdf.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00008064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00006784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\beep.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
2014-01-03 15:49 - 2014-01-03 15:41 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
2014-01-03 15:47 - 2014-01-03 15:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-03 15:47 - 2014-01-03 15:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-03 15:47 - 2014-01-03 15:47 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-03 15:47 - 2014-01-03 15:46 - 00000000 ____D C:\Users\satin\AppData\Local\Adobe
2014-01-03 15:30 - 2011-03-30 20:25 - 00000000 ____D C:\Program Files (x86)\HP Games
2014-01-03 15:30 - 2011-03-16 11:10 - 00000000 ____D C:\Program Files\Hewlett-Packard
2014-01-03 15:28 - 2011-03-30 20:25 - 00000000 ____D C:\ProgramData\WildTangent
2014-01-03 15:26 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\hpqLog
2014-01-03 15:16 - 2014-01-03 15:16 - 00000528 _____ C:\Windows\system32\Drivers\kgpcpy.cfg
2014-01-03 14:59 - 2014-01-03 13:26 - 00000680 _____ C:\Windows\SysWOW64\Drivers\kgpfr2.cfg
2014-01-03 14:02 - 2014-01-03 14:02 - 00782640 _____ (McAfee, Inc.) C:\Users\satin\Downloads\rootkitremover.exe
2014-01-03 14:02 - 2014-01-03 14:02 - 00000310 _____ C:\Users\satin\Downloads\RootkitRemover_20140103_140218.log
2014-01-03 13:57 - 2014-01-03 13:57 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\satin\Downloads\tdsskiller.exe
2014-01-03 13:57 - 2014-01-03 13:57 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\satin\Desktop\iexplorer.com.exe
2014-01-03 13:21 - 2014-01-03 13:21 - 00000000 ____D C:\Users\satin\AppData\Local\Apps\2.0
2014-01-03 13:17 - 2014-01-03 13:07 - 00000000 ____D C:\Users\satin\AppData\Local\NPE
2014-01-03 12:48 - 2014-01-03 12:48 - 00000020 _____ C:\Windows\tpcsd
2014-01-03 12:37 - 2014-01-03 12:37 - 00000000 _____ C:\Windows\setuperr.log
2014-01-03 12:30 - 2014-01-03 12:30 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-03 12:30 - 2014-01-03 12:30 - 00000000 ____D C:\Users\satin\AppData\Roaming\Malwarebytes
2014-01-03 12:30 - 2014-01-03 12:30 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-03 12:30 - 2014-01-03 12:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-03 12:02 - 2009-07-13 19:20 - 00000000 __RHD C:\Users\Default
2014-01-03 11:37 - 2014-01-03 11:37 - 00000000 ____D C:\Windows\ERUNT
2014-01-03 11:35 - 2011-03-30 20:31 - 00000000 ____D C:\ProgramData\RoxioNow
2014-01-03 11:22 - 2014-01-03 11:22 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-03 11:22 - 2014-01-03 11:22 - 00000000 _____ C:\autoexec.bat
2014-01-03 11:15 - 2014-01-03 11:15 - 00000000 ____D C:\Users\satin\AppData\Roaming\ATI
2014-01-03 11:15 - 2014-01-03 11:15 - 00000000 ____D C:\Users\satin\AppData\Local\ATI
2014-01-03 11:14 - 2014-01-03 11:14 - 00003820 _____ C:\Windows\System32\Tasks\SetupManager
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Synaptics
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Macromedia
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Intel Corporation
2014-01-03 11:14 - 2014-01-03 11:14 - 00000000 ____D C:\Users\satin\AppData\Roaming\Adobe
2014-01-03 11:14 - 2014-01-03 11:11 - 00000000 ____D C:\Users\satin\AppData\Roaming\Hewlett-Packard
2014-01-03 11:14 - 2014-01-03 11:10 - 00000000 ____D C:\Users\satin\AppData\Local\Hewlett-Packard_Company
2014-01-03 11:13 - 2014-01-03 11:13 - 00000000 ____D C:\Users\satin\AppData\Local\RemEngine
2014-01-03 11:13 - 2014-01-03 11:10 - 00000000 ____D C:\Users\satin\AppData\Local\Hewlett-Packard
2014-01-03 11:10 - 2011-03-30 20:37 - 00000000 ___RD C:\Program Files\Online Services
2014-01-03 11:10 - 2011-03-30 20:25 - 00000000 ___RD C:\Program Files (x86)\Online Services
2014-01-03 11:10 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2014-01-03 11:10 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2014-01-03 11:09 - 2014-01-03 11:09 - 00000000 ____D C:\Users\satin\AppData\Local\VirtualStore
2014-01-03 11:09 - 2011-02-10 11:23 - 00000000 ____D C:\SYSTEM.SAV
2014-01-03 11:09 - 2011-02-10 11:23 - 00000000 ____D C:\SWSetup
2014-01-03 11:09 - 2009-07-13 21:32 - 00000000 ____D C:\Windows\system32\restore
2014-01-03 11:09 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\system32\Recovery
2014-01-03 11:09 - 2007-01-01 17:32 - 00000000 ____D C:\Recovery
2014-01-03 11:08 - 2014-01-03 11:08 - 00000020 ___SH C:\Users\satin\ntuser.ini
2014-01-03 11:08 - 2014-01-03 11:08 - 00000000 ____D C:\Users\satin\AppData\Roaming\Intel
2014-01-03 11:06 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2014-01-03 10:38 - 2014-01-03 10:38 - 00000000 ____D C:\ProgramData\ATI
2014-01-03 10:37 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\system32\sysprep
2014-01-03 10:31 - 2011-02-16 10:51 - 00000000 ____D C:\HP
2014-01-03 10:30 - 2014-01-03 10:30 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-03 10:29 - 2014-01-03 10:29 - 00000000 ____D C:\ProgramData\Downloaded Installations
2014-01-03 10:29 - 2009-07-13 21:32 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2014-01-03 10:28 - 2014-01-03 11:10 - 00002128 _____ C:\Users\Public\Desktop\Snapfish.lnk
2014-01-03 10:28 - 2014-01-03 10:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WDKMD_01009.Wdf
2014-01-03 10:28 - 2014-01-03 10:28 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2014-01-03 10:28 - 2014-01-03 10:21 - 00000000 ____D C:\ProgramData\Intel
2014-01-03 10:26 - 2014-01-03 10:23 - 00000000 ____D C:\Windows\Hewlett-Packard
2014-01-03 10:25 - 2014-01-03 10:25 - 00000593 _____ C:\Windows\system32\ndCPrepLog
2014-01-03 10:25 - 2014-01-03 10:25 - 00000000 _____ C:\Windows\ativpsrm.bin
2014-01-03 10:22 - 2014-01-03 10:21 - 00000000 ____D C:\Windows\HPQ
2014-01-03 10:21 - 2014-01-03 10:21 - 00000000 ____D C:\Program Files\Intel
2014-01-03 10:21 - 2014-01-03 10:21 - 00000000 ____D C:\Program Files (x86)\Cisco
2014-01-03 10:21 - 2014-01-03 10:18 - 00000000 ____D C:\Program Files\Common Files\Intel
2014-01-03 10:20 - 2014-01-03 10:20 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wbf_vfs_0018_01_09_00.Wdf
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____D C:\Program Files\Validity Sensors
2014-01-03 10:19 - 2014-01-03 10:19 - 00000000 ____D C:\Program Files\Synaptics
2014-01-03 10:19 - 2009-07-13 21:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Windows\SysWOW64\sda
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Windows\system32\SRSLabs
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Program Files\IDT
2014-01-03 10:18 - 2014-01-03 10:18 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-03 10:18 - 2014-01-03 10:14 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-03 10:17 - 2014-01-03 10:16 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2014-01-03 10:16 - 2014-01-03 10:16 - 00000000 ____D C:\Program Files\ATI
2014-01-03 10:14 - 2014-01-03 10:14 - 00000000 __RSH C:\Windows\SysWOW64\Drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_Q5CH1370HAX_E648941-001_4A_I1656_SHP_V10.31_BF.1B_T111005_W73-1_L409_M8140_J750_7Intel_86A7_92.00_#140103_N_(LM720AV)_XMOBILE_CN10_Z_2058C110000244720001620100.MRK
2014-01-03 10:14 - 2014-01-03 10:14 - 00000000 __RSH C:\Windows\system32\Drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_Q5CH1370HAX_E648941-001_4A_I1656_SHP_V10.31_BF.1B_T111005_W73-1_L409_M8140_J750_7Intel_86A7_92.00_#140103_N_(LM720AV)_XMOBILE_CN10_Z_2058C110000244720001620100.MRK
2014-01-03 10:14 - 2014-01-03 10:14 - 00000000 ____D C:\Intel
2014-01-03 10:11 - 2014-01-03 10:11 - 00000056 ____H C:\Windows\SysWOW64\ezsidmv.dat
2014-01-03 10:08 - 2014-01-03 10:08 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-01-03 10:07 - 2014-01-03 10:07 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-03 10:07 - 2014-01-03 10:07 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-03 10:07 - 2014-01-03 10:07 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-03 10:07 - 2014-01-03 10:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-01-03 10:07 - 2014-01-03 10:07 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-01-03 10:06 - 2014-01-03 10:06 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-01-03 10:06 - 2014-01-03 10:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-01-03 10:06 - 2014-01-03 10:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-01-03 10:06 - 2014-01-03 10:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-01-03 10:06 - 2014-01-03 10:06 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-01-03 10:06 - 2014-01-03 10:06 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-01-03 10:05 - 2014-01-03 10:05 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-01-03 10:05 - 2014-01-03 10:05 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-01-03 10:05 - 2014-01-03 10:05 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-01-03 10:05 - 2011-03-30 20:10 - 00000012 _____ C:\Windows\CSUP.txt
2014-01-03 10:03 - 2014-01-03 10:03 - 00000000 ___RD C:\Users\Public\Recorded TV
2014-01-03 10:03 - 2009-07-13 21:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2014-01-03 10:03 - 2009-07-13 21:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2014-01-03 10:03 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Microsoft Games
2014-01-03 10:03 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\DVD Maker
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-07 18:48
==================== End Of Log ============================
 


Content of Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-01-2014 05
Ran by satin at 2014-01-11 11:37:18
Running from C:\Users\satin\Desktop
Boot Mode: Safe Mode (minimal)
==========================================================
=================== Security Center ========================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (Version: 3.0.816.0 - ATI Technologies, Inc.)
Bing Bar (x32 Version: 7.3.124.0 - Microsoft Corporation)
Blio (x32 Version: 2.2.6699 - K-NFB Reading Technology, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (x32 Version: 2011.0315.958.16016 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0315.958.16016 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0315.958.16016 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0315.958.16016 - ATI) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2011.0315.958.16016 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Czech (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Danish (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Dutch (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help English (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Finnish (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help French (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help German (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Japanese (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Korean (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Russian (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Swedish (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Thai (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
CCC Help Turkish (x32 Version: 2011.0315.0957.16016 - ATI) Hidden
ccc-utility64 (Version: 2011.0315.958.16016 - ATI) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Energy Star Digital Logo (x32 Version: 1.0.1 - Hewlett-Packard)
ESU for Microsoft Windows 7 (x32 Version: 1.0.0 - Hewlett-Packard)
HP Auto (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Client Services (Version: 1.1.12938.3539 - Hewlett-Packard) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HPAsset component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
IDT Audio (x32 Version: 1.0.6329.0 - IDT)
Intel PROSet Wireless (Version:  - ) Hidden
Intel® Display Audio Driver (x32 Version: 6.14.00.3074 - Intel Corporation)
Intel® Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 14.0.2000 - Intel Corporation)
Intel® Rapid Storage Technology (x32 Version: 10.1.2.1004 - Intel Corporation)
Intel® Wireless Display (Version:  - )
Intel® Wireless Display (x32 Version: 2.0.30.0 - Intel Corporation)
Juniper Networks Host Checker (HKCU Version: 7.1.15.25271 - Juniper Networks)
Juniper Networks, Inc. Setup Client (HKCU Version: 7.1.15.36013 - Juniper Networks, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.) Hidden
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
PlayReady PC Runtime x86 (x32 Version: 1.3.0 - Microsoft Corporation)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller Driver (x32 Version: 7.41.216.2011 - Realtek)
Realtek PCIE Card Reader (x32 Version: 6.1.7600.74 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 2.0.0 - Hewlett-Packard) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
RoxioNow Player (x32 Version: 1.9.5.103 - RoxioNow)
Synaptics Pointing Device Driver (Version: 15.2.4.4 - Synaptics Incorporated)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Validity WBF DDK (Version: 4.3.118.0 - Validity Sensors, Inc.)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

01-01-2010 08:16:05 Configured PowerDVD
04-01-2014 00:21:18 Removed SpyHunter
04-01-2014 00:26:21 Removed HP Setup Manager.
04-01-2014 00:27:33 Removed HP SimplePass 2011.
04-01-2014 00:28:40 Removed HP Quick Launch
04-01-2014 00:29:12 Removed HP Software Framework
04-01-2014 00:29:49 Removed HP Support Assistant.
04-01-2014 00:30:36 Removed HP Setup
04-01-2014 00:33:02 Removed Microsoft Silverlight
07-01-2014 03:34:20 Windows Update
07-01-2014 06:02:18 Windows Update
07-01-2014 16:34:36 Windows Update
07-01-2014 18:19:04 Windows Update
08-01-2014 16:52:47 Windows Update

==================== Hosts content: ==========================

2009-07-13 18:34 - 2014-01-07 18:20 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0A2C2217-83D7-43DB-ADED-1DB5438564C3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe
Task: {370AA101-F6AA-4DE3-B707-5BDCBD281AA2} - System32\Tasks\SetupManager => C:\Program Files (x86)\Hewlett-Packard\Setup Manager\toaster.exe
Task: {C15A018A-1CD6-4640-8030-537080E4B8FF} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1244122937-2002930860-2771045045-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {F73EAF5D-A7E1-4927-A74C-43BF7958F454} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1244122937-2002930860-2771045045-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe

==================== Loaded Modules (whitelisted) =============


==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Faulty Device Manager Devices =============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/11/2014 11:34:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/10/2014 10:08:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/10/2014 09:59:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/10/2014 09:56:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/08/2014 10:02:01 AM) (Source: Application Error) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.9600.16428, time stamp: 0x525b664c
Faulting module name: aticfx32.dll, version: 8.17.10.1070, time stamp: 0x4d7f717a
Exception code: 0xc0000005
Fault offset: 0x00033e83
Faulting process id: 0x1034
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report Id: IEXPLORE.EXE3

Error: (01/08/2014 09:40:02 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/08/2014 09:38:32 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/08/2014 08:49:17 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 06:25:57 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 06:19:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/11/2014 11:36:35 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:30 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:30 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:29 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:20 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:16 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:15 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:36:15 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:35:37 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/11/2014 11:35:23 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (01/11/2014 11:34:34 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/10/2014 10:08:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/10/2014 09:59:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/10/2014 09:56:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/08/2014 10:02:01 AM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.16428525b664caticfx32.dll8.17.10.10704d7f717ac000000500033e83103401cf0c9ac29f29d1C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\aticfx32.dllf86c9dbd-788e-11e3-90bf-101f74152e01

Error: (01/08/2014 09:40:02 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/08/2014 09:38:32 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/08/2014 08:49:17 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 06:25:57 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/07/2014 06:19:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Percentage of memory in use: 22%
Total physical RAM: 4043.86 MB
Available physical RAM: 3151.89 MB
Total Pagefile: 8085.9 MB
Available Pagefile: 7212.62 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:683.53 GB) (Free:646.08 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:14.81 GB) (Free:1.64 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: D75DD1D9)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=684 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== End Of Log ============================

-Sathya
 



#14 nasdaq

nasdaq

  • Malware Response Team
  • 40,476 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:57 PM

Posted 16 January 2014 - 10:30 AM

Run this tool and let me know what problem persists.

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset Registry Permissions
Reset File Permissions
Register System Files
Repair WMI
Repair Windows Firewall
Repair Internet Explorer
Repair MDAC & MS Jet
Repair Hosts File
Remove Policies Set By Infections
Repair Icons
Repair Winsock & DNS Cache
Remove Temp Files
Repair Proxy Settings
Unhide Non System Files
Repair Windows Updates
Repair CD/DVD Missing/Not Working
  • Checkmark Restart System When Finished option
  • click the Start button
  • System should restart after repair


#15 ksathya86

ksathya86
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 17 January 2014 - 01:23 PM

Hi Nasdaq,

 

I have executed those steps. 

Issue still exists.

 

Thanks!

-Sathya






3 user(s) are reading this topic

0 members, 3 guests, 0 anonymous users