Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

[HELP]Removing all infections from my computer(including potential rootkits)


  • This topic is locked This topic is locked
5 replies to this topic

#1 devm0

devm0

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 15 January 2014 - 09:58 AM

Please help me remove any and all infections on my computer. A few things I have noticed are that my computer's internet connection drops from 5 to 4 bars and sometimes from 5 to 2 bars, more than half the time I need to spam click the back button to visit the previous web page(page refreshes when I click the back button), the google search results look a little different but that might just be me, and sometimes my computer says that I don't have administrator privileges to copy certain files to folders. These all are signs of potential infections. I just wanted to add that I have removed quite a number of infections in the past month or two and that I have also used Malwarebytes Antirootkit to remove a few rootkits. I need help removing any and all infections and securing my computer. I need advice on how I should go about doing this. The following are the logs from Farbar Recovery Scan Tool which is what a malware response team member suggested a user use in place of DDS when the user was unable to run the DDS tool. Thank you so much for your time.

Attached Files


Edited by devm0, 15 January 2014 - 10:07 AM.


BC AdBot (Login to Remove)

 


#2 devm0

devm0
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 15 January 2014 - 09:59 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-01-2014 01
Windows 8.1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(McAfee, Inc.) C:\Program Files\mcafee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel) C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) \\?\C:\WINDOWS\system32\wbem\WMIADAP.EXE
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.16384_none_fa1dc1539b4180d8\TiWorker.exe
(McAfee, Inc.) C:\Program Files\mcafee\MAT\McPvTray.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [380544 2012-06-29] (Alcor Micro Corp.)
HKLM\...\Run: [SynLenovoGestureMgr] - C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-11-30] (Synaptics)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-07-17] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-07-17] (Lenovo(beijing) Limited)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [903384 2013-07-24] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] - C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-09] (NVIDIA Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7818040 2013-09-19] (Motorola Solutions, Inc.)
HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2013-09-03] (Adobe Systems Inc.)
HKLM-x32\...\Run: [mcpltui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\Adam\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\Adam\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
HKU\Administrator\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\Administrator\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
HKU\UpdatusUser.001\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
Startup: C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall SafeKey RunOnce.lnk
ShortcutTarget: Uninstall SafeKey RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (McAfee)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall SafeKey RunOnce.lnk
ShortcutTarget: Uninstall SafeKey RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (McAfee)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://home.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://home.lenovo.com
SearchScopes: HKLM - DefaultScope {A02587E1-CC13-4C5D-A0C0-0CDDA2F2D69D} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM - {A02587E1-CC13-4C5D-A0C0-0CDDA2F2D69D} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM-x32 - {A02587E1-CC13-4C5D-A0C0-0CDDA2F2D69D} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - DefaultScope {A02587E1-CC13-4C5D-A0C0-0CDDA2F2D69D} URL = 
SearchScopes: HKCU - {1B8E0E40-2200-44B1-9977-ECA32147B713} URL = http://search.yahoo.com/search?fr=mcafee&type=A011US0&p={SearchTerms}
SearchScopes: HKCU - {A02587E1-CC13-4C5D-A0C0-0CDDA2F2D69D} URL = 
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\MSC\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Nabil Sharif\AppData\Roaming\Mozilla\Firefox\Profiles\83wc0n5z.default
FF SearchEngineOrder.3: Bing 
FF Homepage: hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP
FF Keyword.URL: hxxp://www.bing.com/search?FORM=BDT3DF&PC=BDT3&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @mcafee.com/SAFFPlugin - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
FF Plugin HKCU: intel.com/AppUp - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll No File
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: Adblock Plus - C:\Users\Nabil Sharif\AppData\Roaming\Mozilla\Firefox\Profiles\83wc0n5z.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-20]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-12-02]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2013-12-02]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2013-12-02]
 
Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 [2014-01-12]
CHR Extension: (Google Drive) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 [2014-01-12]
CHR Extension: (YouTube) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2014-01-12]
CHR Extension: (Adblock Plus) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0 [2014-01-12]
CHR Extension: (Google Search) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2014-01-12]
CHR Extension: (Google Wallet) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2014-01-12]
CHR Extension: (Gmail) - C:\Users\Nabil Sharif\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 [2014-01-12]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2014-01-09]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
U2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-03-30] (Diskeeper Corporation)
U2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 Intel® Wireless Bluetooth® 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
U2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [193576 2012-08-12] (Intel Corporation)
U2 Lenovo Smart Update Service; C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe [66640 2012-07-18] (Lenovo)
U2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178048 2013-11-28] (McAfee, Inc.)
U2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
U2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1025232 2013-11-26] (McAfee, Inc.)
U2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
U2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
U2 MOBKbackup; C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [231224 2010-04-13] (McAfee, Inc.)
U2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
U2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
U2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
U2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 AMPPALR3; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
 
==================== Drivers (Whitelisted) ====================
 
U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
U3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
U3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
U1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-03-30] (Diskeeper Corporation)
U0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [95024 2012-03-30] (Diskeeper Corporation)
U3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-10] (Microsoft Corporation)
U3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-08-12] (Intel Corporation)
U3 LAD; C:\Windows\System32\drivers\LAD.sys [8704 2012-06-08] (TODO: <Company name>)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U2 McPvDrv; C:\Windows\system32\drivers\McPvDrv.sys [74560 2013-09-09] (McAfee, Inc.)
U2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
U2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
U0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69344 2013-11-04] (McAfee, Inc.)
U3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
U2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
U3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [411944 2013-11-26] (McAfee, Inc.)
U3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96112 2013-11-26] (McAfee, Inc.)
U2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
U1 MOBKFilter; C:\Windows\System32\DRIVERS\MOBK.sys [66040 2010-04-13] (Mozy, Inc.)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3345376 2013-10-09] (Intel Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-25] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-30] (Synaptics Incorporated)
U3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [204568 2013-10-28] (DEVGURU Co., LTD.(www.devguru.co.kr))
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-12-03] (Microsoft Corporation)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-08-22] (Microsoft Corporation)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
U3 MFE_RR; \??\C:\Users\NABILS~1\AppData\Local\Temp\mfe_rr.sys [x]
U4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [x]
U3 usb3Hub; \SystemRoot\System32\drivers\usb3Hub.sys [x]
U3 XHCIPort; \SystemRoot\System32\drivers\XHCIPort.sys [x]
 
========================== Drivers MD5 =======================
 
C:\Windows\System32\drivers\1394ohci.sys E1832BD9FD7E0FC2DC9FA5935DE3E8C1
C:\Windows\System32\drivers\3ware.sys AD508A1A46EC21B740AB31C28EFDFDB1
C:\Windows\System32\drivers\ACPI.sys 3D30878A269D934100FA5F972E53AF39
C:\Windows\System32\Drivers\acpiex.sys AC8279D229398BCF05C3154ADCA86813
C:\Windows\System32\drivers\acpipagr.sys A8970D9BF23CD309E0403978A1B58F3F
C:\Windows\System32\drivers\acpipmi.sys 111A89C99C5B4F1A7BCE5F643DD86F65
C:\Windows\System32\drivers\acpitime.sys 5758387D68A20AE7D3245011B07E36E7
C:\Windows\System32\drivers\AcpiVpc.sys 3B42D95D20CD2AACDB0564471AE43ED7
C:\Windows\System32\drivers\ADP80XX.SYS 7C1FDF1B48298CBA7CE4BDD4978951AD
C:\Windows\system32\drivers\afd.sys 239268BAB58EAE9A3FF4E08334C00451
C:\Windows\System32\drivers\agp440.sys 7DFAEBA9AD62D20102B576D5CAC45EC8
C:\Windows\System32\DRIVERS\ahcache.sys 8E8E34B7BA059050EED827410D0697A2
C:\Windows\System32\drivers\amdk8.sys 7589DE749DB6F71A68489DCE04158729
C:\Windows\System32\drivers\amdppm.sys B46D2D89AFF8A9490FA8C98C7A5616E3
C:\Windows\System32\drivers\amdsata.sys D2BF2F94A47D332814910FD47C6BBCD2
C:\Windows\System32\drivers\amdsbs.sys A8E04943C7BBA7219AA50400272C3C6E
C:\Windows\System32\drivers\amdxata.sys CEA5F4F27CFC08E3A44D576811B35F50
C:\Windows\System32\drivers\AMPPAL.sys 0C3D62CB6B8F2B3CC42369BAC0F58AD5
C:\Windows\system32\drivers\AmUStor.SYS C7BE7FBB9B6BDE11E12A0F204384C1D6
C:\Windows\system32\drivers\appid.sys 04951A9A937CBE28A2D3FEEA360B6D1F
C:\Windows\System32\drivers\arcsas.sys 65045784366F7EC5FB4E71BCF923187B
C:\Windows\System32\drivers\atapi.sys 74B14192CF79A72F7536B27CB8814FBD
C:\Windows\System32\drivers\bxvbda.sys A4A73F631FE2AA2826FBE4A399B04DEF
C:\Windows\System32\drivers\BasicDisplay.sys 8CC7F7E4AFCBA605921B137ED7992C68
C:\Windows\System32\drivers\BasicRender.sys 2748E116F8621A4DB0D39FCDD7318C01
C:\Windows\System32\drivers\bcmfn2.sys C1ABB0F7E3BEA48A0417BDF6FF14AB21
C:\Windows\System32\Drivers\Beep.sys EC19013E4CF87609534165DF897274D6
C:\Windows\System32\DRIVERS\bowser.sys 6B4FFFDDC618FCF64473CAA86E305697
C:\Windows\System32\drivers\BthAvrcpTg.sys A8F23D453A424FF4DE04989C4727ECC7
C:\Windows\system32\DRIVERS\BthEnum.sys 131F1C8573E7BFB41C54FBF5309CCD94
C:\Windows\System32\drivers\bthhfenum.sys 746B9F94214915AECDE4B7FEA5FF9664
C:\Windows\System32\drivers\BthHFHid.sys 71FE2A48E4C93DDB9798C024880B6C07
C:\Windows\system32\DRIVERS\BthLEEnum.sys FCD8BD17B7193CFFF18C332D1A381D7F
C:\Windows\System32\drivers\bthmodem.sys 07E33226AD218A2A162662A05CAFB52F
C:\Windows\system32\DRIVERS\bthpan.sys 3AFE71D80EDF5D4DE0C5731352905669
C:\Windows\System32\Drivers\BTHport.sys 10EDF9E0838BA4578FFFFF274632D454
C:\Windows\System32\Drivers\BTHUSB.sys 0E7FA34B975764C33B5DBC6F8C401627
C:\Windows\system32\DRIVERS\btmaux.sys 4428C299BE7B9841ECFA82044B69FA6A
C:\Windows\system32\DRIVERS\btmhsf.sys 7B31A8A9DC95B3634D896FD0F2814F19
C:\Windows\System32\DRIVERS\cdfs.sys 2FA6510E33F7DEFEC03658B74101A9B9
C:\Windows\System32\drivers\cdrom.sys C6796EA22B513E3457514D92DCDB1A3D
C:\Windows\System32\drivers\cfwids.sys C3EF5F5F169165C01DF8DB9F884D3F1C
C:\Windows\System32\drivers\circlass.sys BE9936EDD3267FAAFF94A7835867F00B
C:\Windows\System32\drivers\CLFS.sys 7F006813C2AFE622C13D7AF94F56CD07
C:\Windows\System32\drivers\CmBatt.sys EF6EF85DADC3184A10D8F2F7159973CB
C:\Windows\System32\Drivers\cng.sys 825BE21E6395E00698D8A23955A87972
C:\Windows\system32\drivers\CHDRT64.sys 5D48249A4C62A08C01BDA83260D1D30E
C:\Windows\System32\drivers\CompositeBus.sys 03AAED827C36F35D70900558B8274905
C:\Windows\System32\drivers\condrv.sys A1FF7DFBFBE164CF92603C651D304DD2
C:\Windows\System32\drivers\dam.sys 315BA4BC19316D72B2E037534E048B93
C:\Windows\System32\Drivers\dfsc.sys 5DB26D7E0216D0BF364A81D3829AD7B9
C:\Windows\system32\DRIVERS\ssudbus.sys 955FFE2B1D74A9E0E3E0E558E6A17F3B
C:\Windows\System32\drivers\disk.sys 4D40C9B33F738797CF50E77CB7C53E85
C:\Windows\System32\drivers\dmvsc.sys EB70A894708D1BC176AFD690FF06085F
C:\Windows\system32\drivers\drmkaud.sys DDC11A202207C0400CBE07315B8FDE5E
C:\Windows\System32\drivers\dxgkrnl.sys A3D1CB64DF885ACE126543E6D7067348
C:\Windows\System32\drivers\evbda.sys 114BCFDF367FF37C3F1B0A96AF542E4D
C:\Windows\System32\drivers\EhStorClass.sys 43531A5993380CC5113242C29D265FD9
C:\Windows\System32\drivers\EhStorTcgDrv.sys 6F8E738A9505A388B1157FDDE7B3101B
C:\Windows\System32\drivers\errdev.sys DFFFAE1442BA4076E18EED5E406FA0D3
C:\Windows\System32\DRIVERS\excfs.sys D2EAA04AF43154B62FA85B08BAD0A7CA
C:\Windows\System32\DRIVERS\excsd.sys E6082A6C109238A725D83184724C4A36
C:\Windows\System32\Drivers\exfat.sys 7729D294A555C7AEB281ED8E4D0E01E4
C:\Windows\System32\Drivers\fastfat.sys 7C4E0D5900B2A1D11EDD626D6DDB937B
C:\Windows\System32\drivers\fdc.sys 5D8402613E778B3BD45E687A8372710B
C:\Windows\System32\drivers\fileinfo.sys 957A7A8F5ACCAF23DD9DFF6DAA393CE5
C:\Windows\System32\drivers\filetrace.sys A1A66C4FDAFD6B0289523232AFB7D8AF
C:\Windows\System32\drivers\flpydisk.sys BE743083CF7063C486A4398E3AEFE59A
C:\Windows\System32\drivers\fltmgr.sys 60D5067FCE6D9433D35E04C01D8538B3
C:\Windows\System32\drivers\FsDepends.sys 35005534E600E993A90B036E4E599F2B
C:\Windows\System32\Drivers\Fs_Rec.sys 09F460AFEDCA03F3BF6E07D1CCC9AC42
C:\Windows\System32\DRIVERS\fvevol.sys 83E1F0983B02A6F8EC764D18E24ECF10
C:\Windows\System32\drivers\fxppm.sys 9591D0B9351ED489EAFD9D1CE52A8015
C:\Windows\System32\drivers\gagp30kx.sys FC3EF65EE20D39F8749C2218DBA681CA
C:\Windows\System32\drivers\vmgencounter.sys 0BF5CAD281E25F1418E5B8875DC5ADD1
C:\Windows\System32\Drivers\msgpioclx.sys FDA72810CA2F8409D9B31E833C448E34
C:\Windows\system32\drivers\HdAudio.sys 56F69F7C25FB67C970997D7066DBC593
C:\Windows\System32\drivers\HDAudBus.sys 03909BDBFF0DCACCABF2B2D4ADEE44DC
C:\Windows\System32\drivers\HidBatt.sys 10A70BC1871CD955D85CD88372724906
C:\Windows\System32\drivers\hidbth.sys 1EA1B4FABB8CC348E73CA90DBA22E104
C:\Windows\System32\drivers\hidi2c.sys C241A8BAFBBFC90176EA0F5240EACC17
C:\Windows\System32\drivers\hidir.sys 9BDDEE26255421017E161CCB9D5EDA95
C:\Windows\System32\drivers\hidusb.sys F31397220D9687E11EB448649AA6E038
C:\Windows\System32\drivers\HipShieldK.sys 29F981739E50305128022CBE10B3659C
C:\Windows\System32\drivers\HpSAMD.sys A6AACEA4C785789BDA5912AD1FEDA80D
C:\Windows\System32\drivers\HTTP.sys 3502776E366C913D49C0DA928AE3E6CB
C:\Windows\System32\drivers\hwpolicy.sys 90656C0B3864804B090434EFC582404F
C:\Windows\System32\drivers\hyperkbd.sys 6D6F9E3BF0484967E52F7E846BFF1CA1
C:\Windows\system32\DRIVERS\HyperVideo.sys 907C870F8C31F8DDD6F090857B46AB25
C:\Windows\System32\drivers\i8042prt.sys 84CFC5EFA97D0C965EDE1D56F116A541
C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 5D90E32E36CE5D4C535D17CE08AEAF05
C:\Windows\System32\drivers\iaLPSSi_I2C.sys DD05E7E80F52ADE9AEB292819920F32C
C:\Windows\System32\drivers\iaStorA.sys 6C91E425ACE29594BD574DE38AC9B76D
C:\Windows\System32\drivers\iaStorAV.sys 08BFE413B0B4AA8DFA4B5684CE06D3DC
C:\Windows\System32\drivers\iaStorV.sys A2200C3033FA4EF249FC096A7A7D02A2
C:\Windows\system32\DRIVERS\iBtFltCoex.sys 23E22B130EFE5A225E279467BE146317
C:\Windows\system32\DRIVERS\igdkmd64.sys 4F6363C26B4A3DDBC9FAFCBA68602B01
C:\Windows\system32\drivers\intelaud.sys 4011430BC9DA46ADFAE9915EFEC312FB
C:\Windows\system32\DRIVERS\IntcDAud.sys F5495B38BFB9149925F54F65AB40EFBF
C:\Windows\System32\drivers\intelide.sys 4E448FCFFD00E8D657CD9E48D3E47157
C:\Windows\System32\drivers\intelpep.sys 139CFCDCD36B1B1782FD8C0014AC9B0E
C:\Windows\System32\drivers\intelppm.sys 47E74A8E53C7C24DCE38311E1451C1D9
C:\Windows\System32\DRIVERS\ipfltdrv.sys 9DB76D7F9E4E53EFE5DD8C53DE837514
C:\Windows\System32\drivers\IPMIDrv.sys 9949A3C7590B8C536C05312205079A82
C:\Windows\System32\drivers\ipnat.sys E23D32BAF152FBE35F18C6A2AB8EF271
C:\Windows\System32\drivers\irenum.sys AE44C526AB5F8A487D941CEB57B10C97
C:\Windows\System32\drivers\irstrtdv.sys 4D9B9A794F22415B8C3E0CCFBE61BC7A
C:\Windows\System32\drivers\isapnp.sys 8AFEEA3955AA43616A60F133B1D25F21
C:\Windows\System32\drivers\msiscsi.sys 034D4BD9DC67C64F3A4C8A049B5173BF
C:\Windows\System32\drivers\iwdbus.sys EE03564B7FAFE2E44EDA33D52E83B4A3
C:\Windows\System32\drivers\kbdclass.sys 8BE92376799B6B44D543E8D07CDCF885
C:\Windows\System32\drivers\kbdhid.sys FB6E47E569D4872ABEB506BE03A45FBA
C:\Windows\system32\DRIVERS\kdnic.sys 813871C7D402A05F2E3A7075F9584A05
C:\Windows\System32\Drivers\ksecdd.sys ADDECBCC777665BD113BED437E602AB0
C:\Windows\System32\Drivers\ksecpkg.sys 7296EA420134EAC390798B3232D066A4
C:\Windows\system32\drivers\ksthunk.sys 11AFB527AA370B1DAFD5C36F35F6D45F
C:\Windows\System32\drivers\LAD.sys 61959D7B5A83C524909325AE751F19F9
C:\Windows\System32\DRIVERS\LhdX64.sys BE166935083F9C38EDFDC21B9A7A679B
C:\Windows\system32\DRIVERS\lltdio.sys C09010B3680860131631F53E8FE7BAD8
C:\Windows\System32\drivers\lsi_sas.sys C755AE4635457AA2A11F79C0DF857ABC
C:\Windows\System32\drivers\lsi_sas2.sys ADAC09CBE7A2040B7F68B5E5C9A75141
C:\Windows\System32\drivers\lsi_sas3.sys 04D1274BB9BBCCF12BD12374002AA191
C:\Windows\System32\drivers\lsi_sss.sys 327469EEF3833D0C584B7E88A76AEC0C
C:\Windows\system32\drivers\luafv.sys 5EF604B0698F4FA962778285E8C5F1F2
C:\Windows\system32\drivers\McPvDrv.sys F4BE81C919FC0A012F5357E3911D4B67
C:\Windows\System32\drivers\megasas.sys EB5C03A070F30D64A6DF80E53B22F53F
C:\Windows\System32\drivers\megasr.sys F6F13533196DE7A582D422B0241E4363
C:\Windows\System32\drivers\HECIx64.sys 772A1DEEDFDBC244183B5C805D1B7D85
C:\Windows\System32\drivers\mfeapfk.sys 895040402C88062B6E1F722AF01A1667
C:\Windows\System32\drivers\mfeavfk.sys B796F6230CF956FC95C6766BF845B3F3
C:\Windows\System32\drivers\mfeelamk.sys 15D02973B14AC639DDBA18353B57F484
C:\Windows\System32\drivers\mfefirek.sys 017664D9DC24B62C368E568011BD2D0A
C:\Windows\System32\drivers\mfehidk.sys 238CBB4E02CD1B20A12A683F7AB5AF05
C:\Windows\system32\DRIVERS\mfencbdc.sys FDB02B0C2865DBDE9571D57D3ABC6A6B
C:\Windows\system32\DRIVERS\mfencrk.sys C3EE053D6A0CCD75C07FADC73D7BA4E4
C:\Windows\System32\drivers\mfewfpk.sys 1477459C6A9BDE33474B45A32B92D59B
C:\Windows\System32\DRIVERS\MOBK.sys 3800C23D0D90C59AAFCDEFDC82B5C4AF
C:\Windows\System32\drivers\modem.sys 8B38C44F69259987C95135C9627E2378
C:\Windows\System32\drivers\monitor.sys 601589000CC90F0DF8DA2CC254A3CCC9
C:\Windows\System32\drivers\mouclass.sys CEAC6D40FE887CE8406C2393CF97DE06
C:\Windows\System32\drivers\mouhid.sys 02D98BF804084E9A0D69D1C69B02CCA9
C:\Windows\System32\drivers\mountmgr.sys 515549560D481138E6E21AF7C6998E56
C:\Windows\System32\drivers\mpsdrv.sys F170510BE94CF45E3C6274578F6204B2
C:\Windows\system32\drivers\mrxdav.sys 59DCEC7499095DE5AED741358037AE2D
C:\Windows\System32\DRIVERS\mrxsmb.sys 6129EDB793A4255B1E2FB41773AC9D9A
C:\Windows\System32\DRIVERS\mrxsmb10.sys 295771B092D4F7FCF2B62F80CCD14320
C:\Windows\System32\DRIVERS\mrxsmb20.sys AAF56E4E84D35411B4E446C445732DFE
C:\Windows\system32\DRIVERS\bridge.sys 4E888019078AC363076A5433E89AA4F8
C:\Windows\System32\Drivers\Msfs.sys D13329FBF8345B28AB30F44CC247DC08
C:\Windows\System32\drivers\msgpiowin32.sys C6B474E46F9E543B875981ED3FFE6ADD
C:\Windows\System32\drivers\mshidkmdf.sys 65C92EB9D08DB5C69F28C7FFD4E84E31
C:\Windows\System32\drivers\mshidumdf.sys 52299F086AC2DAFD100DD5DC4A8614BA
C:\Windows\System32\drivers\msisadrv.sys 36D92AF3343C3A3E57FEF11C449AEA4C
C:\Windows\system32\drivers\MSKSSRV.sys A9BBBD2BAE6142253B9195E949AC2E8D
C:\Windows\system32\DRIVERS\mslldp.sys 375E44168F2DFB91A68B8A3F619C5A7C
C:\Windows\system32\drivers\MSPCLOCK.sys 7B2128EB875DCBC006E6A913211006D6
C:\Windows\system32\drivers\MSPQM.sys 1E88171579B218115C7A772F8DE04BD8
C:\Windows\System32\Drivers\MsRPC.sys BBE2A455053E63BECBF42C2F9B21FAE0
C:\Windows\System32\drivers\mssmbios.sys 8D6B7D515C5CBCDB75B928A0B73C3C5E
C:\Windows\system32\drivers\MSTEE.sys 115019AE01E0EB9C048530D2928AB4A2
C:\Windows\System32\drivers\MTConfig.sys 96D604A35070360F0DD4A7A8AF410B5E
C:\Windows\System32\Drivers\mup.sys 619CA29326B82372621DB2C0964D8365
C:\Windows\System32\drivers\mvumis.sys B8C35C94DCB2DFEAF03BB42131F2F77F
C:\Windows\system32\DRIVERS\nwifi.sys CF8B989D89D6807B887690F2CF24EFD9
C:\Windows\System32\drivers\ndis.sys AD9086052A5E5153AF43FE74138A4B27
C:\Windows\system32\DRIVERS\ndiscap.sys C6BB12BC35D1637CA17AE16D3A4725EB
C:\Windows\system32\DRIVERS\NdisImPlatform.sys 9F1DA20E943BE7AA4ED5F3E1EBA78B37
C:\Windows\system32\DRIVERS\ndistapi.sys 9423421E735BD5394351E0C47C76BB92
C:\Windows\system32\DRIVERS\ndisuio.sys B832B35055BA2B7B4181861FF94D8E59
C:\Windows\System32\drivers\NdisVirtualBus.sys 1F58E48EF75F34C35D8E93A0DC535CFE
C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A
C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A
C:\Windows\System32\Drivers\NDProxy.sys A5BD69A8812FA79D1A487691DD3FB244
C:\Windows\System32\drivers\Ndu.sys 5A072F0B90C29C5233D78BE33EF5ED78
C:\Windows\System32\DRIVERS\netbios.sys A83D67D347A684F10B7D3019C8A6380C
C:\Windows\System32\DRIVERS\netbt.sys 0217532E19A748F0E5D569307363D5FD
C:\Windows\system32\DRIVERS\netvsc63.sys 70414DB660BFBB7BD58FCE8EA4364E1B
C:\Windows\system32\DRIVERS\Netwew00.sys 75B9B86878CC159FBC40C4F9202ADBE3
C:\Windows\System32\Drivers\Npfs.sys 8F44A2F57C9F1A19AC9C6288C10FB351
C:\Windows\System32\drivers\npsvctrig.sys CBDB4F0871C88DF930FC0E8588CA67FC
C:\Windows\System32\drivers\nsiproxy.sys E490B459978CB87779E84C761D22B827
C:\Windows\System32\Drivers\Ntfs.sys 4412D565C0278C401575E11072C7DCE3
C:\Windows\System32\Drivers\Null.sys EF1B290FC9F0E47CC0B537292BEE5904
C:\Windows\system32\DRIVERS\nvlddmkm.sys F554291C0A11F5B713B54C5886D4AA31
C:\Windows\System32\DRIVERS\nvpciflt.sys 3F403A74349FCE04DF8D7BE24E6A02BD
C:\Windows\System32\drivers\nvraid.sys BC6B5942AFF25EBAF62DE43C3807EDF8
C:\Windows\System32\drivers\nvstor.sys 1F43ABFFAC3D6CA356851D517392966E
C:\Windows\System32\drivers\nv_agp.sys 6934A936A7369DFE37B7DBA93F5E5E49
C:\Windows\System32\drivers\parport.sys 764B1121867B2D9B31C491668AC72B2B
C:\Windows\System32\drivers\partmgr.sys EF0C1749C9A8CEE9A457473D433CC00F
C:\Windows\System32\drivers\pci.sys C0D3F3BC1C84B4BA746D9847314C1164
C:\Windows\System32\drivers\pciide.sys 346E38FCC6859A727DD28AFAD1F0AFF4
C:\Windows\System32\drivers\pcmcia.sys 4D3BDCC1C7B40C9D7B6AD990E6DEC397
C:\Windows\System32\drivers\pcw.sys BF28771D1436C88BE1D297D3098B0F7D
C:\Windows\System32\drivers\pdc.sys B9D968D8E2B0F9C6301CEB39CFC9B9E4
C:\Windows\System32\drivers\peauth.sys BA50CC0BD19004AAB88BE37338B6FA0D
C:\Windows\System32\drivers\processr.sys ECD373F9571C745894367CC2635EA44F
C:\Windows\system32\DRIVERS\pacer.sys 8528BB05E4D4E25945F78B00B2555FB7
C:\Windows\system32\drivers\qwavedrv.sys 3FB466684609A4329858CF2EBD62E0FD
C:\Windows\System32\DRIVERS\rasacd.sys 2C56F0EE27E4EF70CA4B4983D3638905
C:\Windows\system32\DRIVERS\raspppoe.sys 5247F308C4103CDC4FE12AE1D235800A
C:\Windows\System32\DRIVERS\rdbss.sys B939A2A0F9D6C6C186721E268EB6FA93
C:\Windows\System32\drivers\rdpbus.sys 6B21EBF892CD8CACB71669B35AB5DE32
C:\Windows\System32\drivers\rdpdr.sys 680C1DAE268B6FB67FA21B389A8B79EF
C:\Windows\System32\drivers\rdpvideominiport.sys 858776908AF838E3790F3261B799CDA6
C:\Windows\System32\drivers\rdyboost.sys 847C6A08912C3515807049C93E526D65
C:\Windows\System32\Drivers\ReFS.sys 036746D54347FD2D0385668E2A4064E4
C:\Windows\system32\DRIVERS\rfcomm.sys 02307C86CB24769306B0DFA0C751952E
C:\Windows\system32\DRIVERS\rspndr.sys 2D05A5508F4685412F2B89E8C2189ABC
C:\Windows\system32\DRIVERS\Rt630x64.sys 19764658C1468C2C0CEF133D28414A6B
C:\Windows\System32\drivers\vms3cap.sys 1A063730F221B2746FF00457AE17E4F0
C:\Windows\System32\drivers\sbp2port.sys C624A1B32211C3166EDB3F4AB02A30B7
C:\Windows\System32\DRIVERS\scfilter.sys ABD0237B15DBD2B4695F4B7D734A58F7
C:\Windows\System32\drivers\sdbus.sys 2F9A3380B8C0380E5608E29C7AA66899
C:\Windows\System32\drivers\sdstor.sys 4EAF4DCF9DBD9A56952A58F56D61C005
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\SerCx.sys DB2FF24CE0BDD15FE75870AFE312BA89
C:\Windows\System32\drivers\SerCx2.sys 0044B31F93946D5D41982314381FE431
C:\Windows\System32\drivers\serenum.sys 3CD600C089C1251BEEB4CD4CD5164F9E
C:\Windows\System32\drivers\serial.sys D864381BC9C725FAB01D94C060660166
C:\Windows\System32\drivers\sermouse.sys 0BD2B65DCE756FDE95A2E5CCCBF7705D
C:\Windows\System32\drivers\sfloppy.sys 472B7A5AC181C050888DB454663DD764
C:\Windows\System32\drivers\SiSRaid2.sys 2F518D13DD6F3053837FE606F1A2EA1F
C:\Windows\System32\drivers\sisraid4.sys 1AC9A200A9C49C4508F04AAFFCA34A3F
C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys 5CDEF3A06AEA1B510F3F4B09340247D5
C:\Windows\System32\drivers\spaceport.sys F6EBE514D13ECE7EDC23440039CDF9AB
C:\Windows\System32\drivers\SpbCx.sys F337BE11071818FC3F5DC2940B6BDE34
C:\Windows\System32\DRIVERS\srv.sys 2B78788A1485F9B99A578A299DF42C02
C:\Windows\System32\DRIVERS\srv2.sys C1AE59C0B0817236EC083A91C396005A
C:\Windows\System32\DRIVERS\srvnet.sys 77195C32175FC63D6054EBA5A066D727
C:\Windows\system32\DRIVERS\ssudmdm.sys BB94A5E2CEE5FD83BA5A72A37AECADDF
C:\Windows\system32\DRIVERS\ssudserd.sys 05B2F42D53A8A089453A2B9D2406034F
C:\Windows\System32\drivers\stexstor.sys 366DEA74BBA65B362BCCFC6FC2ADFD8B
C:\Windows\System32\drivers\storahci.sys 0ED2E318ABB68C1A35A8B8038BDB4C90
C:\Windows\System32\DRIVERS\vmstorfl.sys 7A08CEE1535F5A448215634C5EA74E50
C:\Windows\System32\drivers\stornvme.sys 6B06E2D11E604BE2B1A406C4CB3B90DE
C:\Windows\System32\drivers\storvsc.sys 548759755BC73DAD663250239D7E0B9F
C:\Windows\System32\drivers\swenum.sys 84E0F5D41C138C5CC975137A2A98F6D3
C:\Windows\system32\DRIVERS\SynTP.sys 95FFE1C1C55B2E9CE45CCC7CFE25D2C3
C:\Windows\System32\drivers\tcpip.sys 6617F44D2432C529B2249A0498B6B40A
C:\Windows\system32\DRIVERS\tcpip.sys 6617F44D2432C529B2249A0498B6B40A
C:\Windows\System32\drivers\tcpipreg.sys 33A7D83EEB15431773A6E186CFAABA21
C:\Windows\system32\DRIVERS\tdx.sys FFF28F9F6823EB1756C60F1649560BBF
C:\Windows\System32\drivers\terminpt.sys 232D185D2337F141311D0CF1983E1431
C:\Windows\system32\drivers\tpm.sys 82F909359600D3603FE852DB7F135626
C:\Windows\System32\drivers\tsusbflt.sys BF8F54CA37E9C9D6582C31C5761F8C93
C:\Windows\System32\drivers\TsUsbGD.sys E0088068DCE2EE82897027DDB8E05254
C:\Windows\system32\DRIVERS\tunnel.sys C8E0E78B5D284C2FF59BDFFDAF997242
C:\Windows\System32\drivers\uagp35.sys F6EEAD052943B5A3104C1405BB856C54
C:\Windows\System32\drivers\uaspstor.sys FE6067B1FD4E63650C667B33D080565B
C:\Windows\System32\drivers\ucx01000.sys 5D1B430EA11064C56E7C8F84B90DEB6A
C:\Windows\System32\DRIVERS\udfs.sys 1EC649F112896FAE33250F0B97AC5D0B
C:\Windows\System32\drivers\UEFI.sys 9578691F297E1B1F519970FE6D47CB21
C:\Windows\System32\drivers\uliagpkx.sys 5EAB5117DDB24FC4D39E6FFFCF1837B9
C:\Windows\System32\drivers\umbus.sys DA34C39A18E60E7C3FA0630566408034
C:\Windows\System32\drivers\umpass.sys AE8294875E5446E359B1E8035D40C05E
C:\Windows\system32\drivers\usbaudio.sys 755A90F1C949B8260D7670AEF6DB4912
C:\Windows\System32\drivers\usbccgp.sys 433ECDE01A52691FA7ACA51C10C09B70
C:\Windows\System32\drivers\usbcir.sys B3D6457D841A0CAEF4C52D88621715F2
C:\Windows\System32\drivers\usbehci.sys 5477D6E27C7D266EF8C152B9A25ADE5E
C:\Windows\System32\drivers\usbhub.sys DF56C2C04EFA328D7A66B69007130266
C:\Windows\System32\drivers\UsbHub3.sys C0E33820326199CE3CFD3B9F27F81D99
C:\Windows\System32\drivers\usbohci.sys 3019097FB6C985EF24C058090FF3BDBD
C:\Windows\System32\drivers\usbprint.sys 4D655E3B684BE9B0F7FFD8A2935C348C
C:\Windows\system32\DRIVERS\usb80236.sys F3F90825C416B264D016AA9D02C244C4
C:\Windows\System32\drivers\USBSTOR.SYS B1230E9813B5C7E762DF27756AA23917
C:\Windows\System32\drivers\usbuhci.sys BA4FA655E0FC577DB7436FC963932CE4
C:\Windows\System32\Drivers\usbvideo.sys 18F744E8CCEB2670040EBAF7AD77B8C6
C:\Windows\System32\drivers\USBXHCI.SYS 3B44CB989757428208CCFCC028C13110
C:\Windows\System32\drivers\vdrvroot.sys FEB26E3B8345A7E8D62F945C4AE86562
C:\Windows\System32\drivers\VerifierExt.sys A026EDEAA5EECAE0B08E2748B616D4BD
C:\Windows\System32\drivers\vhdmp.sys 041D3EF364E624DBB2703A64A5AADF89
C:\Windows\System32\drivers\viaide.sys 06D38968028E9AB19DE9B618C7B6D199
C:\Windows\System32\drivers\vmbus.sys C6305BDFC4F7CE51F72BB072C03D4ACE
C:\Windows\System32\drivers\VMBusHID.sys DA40BEA0A863CE768C940CA9723BF81F
C:\Windows\System32\drivers\volmgr.sys 55D7D963DE85162F1C49721E502F9744
C:\Windows\System32\drivers\volmgrx.sys CCB9E901F7254BF96D28EB1B0E5329B7
C:\Windows\System32\drivers\volsnap.sys 9F9CE33B50611A1C61A46B8911E0B30B
C:\Windows\System32\drivers\vpci.sys 01355C98B5C3ED1EC446743CDA848FCE
C:\Windows\System32\drivers\vsmraid.sys 4539F45F9F4C9757A86A56C949421E07
C:\Windows\System32\drivers\vstxraid.sys 0849B7260F26FE05EA56DED0672E2F4B
C:\Windows\System32\drivers\vwifibus.sys BE970C369E43B509C1EDA2B8FA7CECB0
C:\Windows\system32\DRIVERS\vwififlt.sys 6B26AD573CCDD5209DF4397438B76354
C:\Windows\system32\DRIVERS\vwifimp.sys 0B48E0DFB44EE475F4FD8A8EE599AF30
C:\Windows\System32\drivers\wacompen.sys 0910AB9ED404C1434E2D0376C2AD5D8B
C:\Windows\system32\drivers\WdBoot.sys 694B28DE12AD47031FFB4B052662131A
C:\Windows\System32\drivers\Wdf01000.sys CB6C63FF8342B467E2EF76E98D5B934D
C:\Windows\system32\drivers\WdFilter.sys 0B99529A3BECC3528D865DDECB62503B
C:\Windows\System32\Drivers\WdNisDrv.sys 282E7D46310338FF4A6B7680440EB0DA
C:\Windows\System32\DRIVERS\wfplwfs.sys 2E3E82D7B1076B90F4E228A8EF17B261
C:\Windows\System32\drivers\wimmount.sys 867BCC69ED9C31C501465EB0E8BA9DFA
C:\Windows\system32\DRIVERS\WinUsb.sys AC263C2F66405589528995AA41040599
C:\Windows\System32\drivers\wmiacpi.sys 2834D9D3B4F554A39C72F00EA3F0E128
C:\Windows\System32\DRIVERS\wpcfltr.sys E746BCDBA2E02CF6B8D6B26FB167FBE0
C:\Windows\System32\drivers\WpdUpFltr.sys 9F2904B55F6CECCD1A8D986B5CE2609A
C:\Windows\system32\drivers\ws2ifsl.sys AE072B0339D0A18E455DC21666CAD572
C:\Windows\system32\DRIVERS\wsvd.sys 72B4E9DF6456C43C42A1419B09486045
C:\Windows\System32\drivers\WudfPf.sys 2FEAE33E9B2B56104596E1BA444405A9
C:\Windows\System32\drivers\WUDFRd.sys 19240C13F526125554B5370566F21A0A
C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A
C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A
C:\Windows\system32\DRIVERS\WUDFRd.sys 19240C13F526125554B5370566F21A0A
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-01-15 09:05 - 2014-01-15 09:05 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Malwarebytes
2014-01-15 09:04 - 2014-01-15 09:04 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Nabil Sharif\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-15 09:04 - 2014-01-15 09:04 - 00001132 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-15 09:04 - 2014-01-15 09:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-15 09:04 - 2014-01-15 09:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-15 09:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-15 08:59 - 2014-01-15 08:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Nabil Sharif\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-15 08:58 - 2014-01-15 08:58 - 00080456 _____ (Malwarebytes Corporation) C:\Users\Nabil Sharif\Downloads\mbam-clean-1.60.2.0003.exe
2014-01-15 08:16 - 2014-01-15 08:39 - 00019612 _____ C:\Users\Nabil Sharif\Desktop\Addition.txt
2014-01-15 08:15 - 2014-01-15 09:07 - 00047596 _____ C:\Users\Nabil Sharif\Desktop\FRST.txt
2014-01-15 08:15 - 2014-01-15 08:14 - 02076160 _____ (Farbar) C:\Users\Nabil Sharif\Desktop\FRST64.exe
2014-01-15 08:14 - 2014-01-15 08:14 - 00000000 ____D C:\FRST
2014-01-15 08:07 - 2014-01-15 08:07 - 00001402 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-15 08:07 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2014-01-15 07:58 - 2014-01-15 08:21 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\mbar
2014-01-14 23:02 - 2014-01-14 23:03 - 00000296 _____ C:\Users\Nabil Sharif\Desktop\RootkitRemover_20140114_230211.log
2014-01-14 22:43 - 2014-01-14 22:43 - 00014541 _____ C:\Users\Nabil Sharif\Desktop\hijackthis.log
2014-01-14 22:16 - 2014-01-14 22:16 - 00000000 _____ C:\Users\Nabil Sharif\Documents\hijackthis.txt
2014-01-14 21:49 - 2014-01-14 22:34 - 00000000 ____D C:\Program Files\stinger
2014-01-14 21:31 - 2014-01-14 21:31 - 00908624 _____ C:\Users\Nabil Sharif\Desktop\gsusp_7FD3774B235E_011414_213153.zip
2014-01-14 21:30 - 2014-01-14 21:31 - 00001123 _____ C:\Users\Nabil Sharif\Desktop\GetSusp.xml
2014-01-14 21:28 - 2014-01-14 21:28 - 00016680 _____ (McAfee, Inc.) C:\WINDOWS\GetSusp.sys
2014-01-14 20:20 - 2014-01-14 20:20 - 00003039 _____ C:\Users\Nabil Sharif\Desktop\HiJackThis.lnk
2014-01-14 20:20 - 2014-01-14 20:20 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-01-14 20:20 - 2014-01-14 20:20 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-14 20:17 - 2014-01-14 20:17 - 00377856 _____ C:\Users\Nabil Sharif\Desktop\wkllbiqd.exe
2014-01-14 20:12 - 2013-11-18 00:28 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Nabil Sharif\Desktop\TDSSKiller.exe
2014-01-14 20:09 - 2014-01-14 20:09 - 00000000 ____D C:\WINDOWS\pss
2014-01-14 19:32 - 2013-12-08 19:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-14 19:32 - 2013-11-27 10:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-14 19:32 - 2013-11-27 06:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-14 19:32 - 2013-11-27 05:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-14 19:32 - 2013-11-27 04:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-14 19:32 - 2013-11-27 03:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-14 19:32 - 2013-11-27 03:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-14 19:32 - 2013-11-27 03:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-14 19:32 - 2013-11-27 03:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-14 19:32 - 2013-11-27 03:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-14 19:32 - 2013-11-27 03:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-12 22:55 - 2014-01-12 22:55 - 00000000 ___RD C:\Sandbox
2014-01-12 15:02 - 2014-01-15 09:04 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-12 15:01 - 2014-01-15 09:04 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-12 15:01 - 2014-01-15 08:12 - 00000942 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-12 15:01 - 2014-01-12 17:07 - 00003914 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-12 15:01 - 2014-01-12 17:07 - 00003678 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-12 13:53 - 2014-01-12 13:37 - 00000698 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20140112-135324.backup
2014-01-12 12:57 - 2014-01-12 12:53 - 00000741 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20140112-125737.backup
2014-01-12 12:54 - 2014-01-14 21:18 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 03357024 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\evbda.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 03345376 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwew00.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 02011488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 01390904 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmhsf.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 01299648 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00994144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00924512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00839488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00782360 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfehidk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00782176 _____ (PMC-Sierra) C:\WINDOWS\system32\Drivers\adp80xx.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00651248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAV.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00647736 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00591360 _____ (Realtek                                            ) C:\WINDOWS\system32\Drivers\Rt630x64.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00575840 _____ (LSI Corporation, Inc.) C:\WINDOWS\system32\Drivers\megasr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00564520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00531296 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00519576 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfefirek.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00478048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00464184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00412000 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorV.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00411944 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfencbdc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00374112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00366432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00343696 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfewfpk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00342528 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00337760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00311120 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeavfk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00305504 _____ (VIA Corporation) C:\WINDOWS\system32\Drivers\VSTXRAID.SYS.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00265056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00259424 _____ (AMD Technologies Inc.) C:\WINDOWS\system32\Drivers\amdsbs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00217952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudserd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00197704 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00179792 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeapfk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scsiport.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00168800 _____ (VIA Technologies Inc.,Ltd) C:\WINDOWS\system32\Drivers\vsmraid.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00168288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvstor.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00162344 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\AmpPal.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00150368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvraid.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00140600 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmaux.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00124768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NV_AGP.SYS.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00121184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00114016 _____ (PMC-Sierra, Inc.) C:\WINDOWS\system32\Drivers\arcsas.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00109408 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00108896 _____ (LSI) C:\WINDOWS\system32\Drivers\3ware.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00107288 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00102376 _____ ("CyberLink) C:\WINDOWS\system32\Drivers\wsvd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00101728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00100992 _____ (Alcor Micro, Corp.) C:\WINDOWS\system32\Drivers\AmUStor.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00099320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_I2C.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00096112 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfencrk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00095024 _____ (Diskeeper Corporation) C:\WINDOWS\system32\Drivers\excsd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00093536 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas2.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00090944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00088928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc63.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipfltdrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00082784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorClass.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00082784 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sss.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00081760 _____ (Silicon Integrated Systems) C:\WINDOWS\system32\Drivers\sisraid4.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00081760 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas3.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rspndr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00079712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpiex.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00079200 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdsata.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00074560 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\McPvDrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00072032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SpbCx.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00071896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00070112 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\cfwids.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00069344 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeelamk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00069088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iBtFltCoex.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00068960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stream.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mslldp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00066040 _____ (Mozy, Inc.) C:\WINDOWS\system32\Drivers\MOBK.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\GAGP30KX.SYS.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00064864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UAGP35.SYS.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00064352 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\Drivers\HpSAMD.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00063840 _____ (Marvell Semiconductor, Inc.) C:\WINDOWS\system32\Drivers\mvumis.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00062784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\HECIx64.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00061248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00057696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00056672 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\megasas.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbFlt.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00054304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00050016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00049984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\videoprt.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\qwavedrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00045888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00044896 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\Drivers\sisraid2.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00043800 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\irstrtdv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\condrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00036192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filetrace.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00034760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpata.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00033560 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBCAMD2.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RNDISMP.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00031072 _____ (Promise Technology, Inc.) C:\WINDOWS\system32\Drivers\stexstor.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00031032 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbrpm.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00026976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WpdUpFltr.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00025952 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdxata.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00024568 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00023344 _____ (Diskeeper Corporation) C:\WINDOWS\system32\Drivers\excfs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\Drivers\secdrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mcd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HyperVideo.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00021856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00021760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00021248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smclib.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00019808 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Drivers\viaide.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmilib.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00017624 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\bcmfn2.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisVirtualBus.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dmpusbstor.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00010856 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeclnrk.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidumdf.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00008704 _____ (TODO: <Company name>) C:\WINDOWS\system32\Drivers\LAD.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidkmdf.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00007936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mstee.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00006784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys.bak
2014-01-12 12:54 - 2014-01-14 21:18 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys.bak
2014-01-12 12:54 - 2014-01-12 12:54 - 00117464 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys.bak
2014-01-12 12:54 - 2014-01-12 12:54 - 00089304 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys.bak
2014-01-12 12:53 - 2014-01-12 12:53 - 00000059 ___RH C:\Users\Nabil Sharif\Downloads\GetSusp.opt
2014-01-12 12:50 - 2014-01-12 13:36 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\Sec
2014-01-12 12:44 - 2014-01-12 12:44 - 03810304 _____ C:\Users\Nabil Sharif\Desktop\RogueKiller.exe
2014-01-12 12:29 - 2014-01-12 12:29 - 01579552 _____ (McAfee Inc.) C:\Users\Nabil Sharif\Desktop\getsusp.exe
2014-01-12 12:29 - 2014-01-12 12:29 - 00782640 _____ (McAfee, Inc.) C:\Users\Nabil Sharif\Desktop\rootkitremover (1).exe
2014-01-12 12:08 - 2013-12-03 15:19 - 00000741 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20140112-120809.backup
2014-01-12 12:06 - 2014-01-12 12:06 - 00000000 ____D C:\Program Files (x86)\FileASSASSIN
2014-01-12 12:04 - 2014-01-12 14:44 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2014-01-12 12:04 - 2013-07-16 03:41 - 01858896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
2014-01-12 12:04 - 2013-07-16 03:41 - 01498960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100d.dll
2014-01-12 12:04 - 2013-07-16 03:41 - 01014096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100d.dll
2014-01-12 12:04 - 2013-07-16 03:41 - 00743248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp100d.dll
2014-01-12 11:59 - 2014-01-15 08:07 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-12 11:59 - 2014-01-15 08:07 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-12 11:58 - 2014-01-12 11:59 - 40658208 _____ (Safer-Networking Ltd.                                       ) C:\Users\Nabil Sharif\Desktop\spybot-2.2.exe
2014-01-12 11:48 - 2014-01-12 11:48 - 00002403 _____ C:\Users\Nabil Sharif\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2014-01-09 15:15 - 2014-01-09 15:22 - 00000000 ____D C:\Program Files (x86)\Dolby Home Theater v4
2014-01-09 15:15 - 2014-01-09 15:15 - 00002992 _____ C:\WINDOWS\System32\Tasks\Dolby Selector
2014-01-09 14:33 - 2011-09-01 15:23 - 00447104 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe
2014-01-09 14:13 - 2014-01-09 14:13 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2014-01-05 12:43 - 2014-01-05 12:43 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-04 13:49 - 2014-01-04 14:00 - 00000000 ____D C:\Users\Nabil Sharif\.gimp-2.8
2014-01-04 13:49 - 2014-01-04 13:49 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\gegl-0.2
2014-01-02 21:25 - 2014-01-03 06:18 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\BitTorrent
2014-01-02 20:33 - 2014-01-14 21:31 - 00000000 ____D C:\Program Files (x86)\Visual CertExam Suite
2013-12-31 18:12 - 2014-01-14 23:01 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\New folder
2013-12-31 12:58 - 2013-12-31 12:58 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-12-31 12:58 - 2013-12-31 12:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-12-31 12:58 - 2013-12-31 12:58 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-12-31 12:58 - 2013-12-31 12:58 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-12-31 12:58 - 2013-12-31 12:58 - 00000000 ____D C:\Program Files (x86)\Java
2013-12-29 14:20 - 2013-12-29 14:20 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\calibre-cache
2013-12-29 14:19 - 2013-12-29 22:49 - 00000000 ____D C:\Users\Nabil Sharif\Documents\Calibre Library
2013-12-29 14:19 - 2013-12-29 19:48 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\calibre
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-20 19:16 - 2013-12-20 19:16 - 00009762 _____ C:\WINDOWS\DPINST.LOG
2013-12-20 14:24 - 2013-12-20 14:24 - 00001170 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-20 14:24 - 2013-12-20 14:24 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Mozilla
2013-12-20 14:24 - 2013-12-20 14:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-19 15:46 - 2013-12-19 15:46 - 00000057 _____ C:\Users\Nabil Sharif\AppData\Roaming\mbam.context.scan
2013-12-19 14:57 - 2014-01-09 15:18 - 00003815 _____ C:\WINDOWS\setupact.log
2013-12-19 14:57 - 2014-01-02 20:47 - 00000356 _____ C:\WINDOWS\setuperr.log
2013-12-19 14:54 - 2013-12-19 14:54 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-19 13:12 - 2014-01-15 09:00 - 00047428 _____ C:\WINDOWS\PFRO.log
2013-12-17 12:08 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2013-12-17 12:08 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2013-12-17 12:08 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2013-12-17 12:08 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2013-12-17 12:08 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2013-12-17 12:08 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
 
==================== One Month Modified Files and Folders =======
 
2014-01-15 09:07 - 2014-01-15 08:15 - 00047596 _____ C:\Users\Nabil Sharif\Desktop\FRST.txt
2014-01-15 09:07 - 2013-12-03 13:33 - 01121338 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-15 09:06 - 2013-09-01 11:18 - 00000000 __RSD C:\Users\Nabil Sharif\Documents\McAfee Vaults
2014-01-15 09:05 - 2014-01-15 09:05 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Malwarebytes
2014-01-15 09:04 - 2014-01-15 09:04 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Nabil Sharif\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-15 09:04 - 2014-01-15 09:04 - 00001132 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-15 09:04 - 2014-01-15 09:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-15 09:04 - 2014-01-15 09:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-15 09:04 - 2014-01-12 15:02 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-15 09:04 - 2014-01-12 15:01 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-15 09:01 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-15 09:00 - 2013-12-19 13:12 - 00047428 _____ C:\WINDOWS\PFRO.log
2014-01-15 09:00 - 2013-12-04 14:14 - 00651800 _____ C:\Users\Public\CAFADEBUG.log
2014-01-15 09:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-15 09:00 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-15 08:59 - 2014-01-15 08:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Nabil Sharif\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-15 08:58 - 2014-01-15 08:58 - 00080456 _____ (Malwarebytes Corporation) C:\Users\Nabil Sharif\Downloads\mbam-clean-1.60.2.0003.exe
2014-01-15 08:39 - 2014-01-15 08:16 - 00019612 _____ C:\Users\Nabil Sharif\Desktop\Addition.txt
2014-01-15 08:21 - 2014-01-15 07:58 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\mbar
2014-01-15 08:21 - 2013-12-03 12:20 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-15 08:16 - 2013-12-02 17:00 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-15 08:14 - 2014-01-15 08:15 - 02076160 _____ (Farbar) C:\Users\Nabil Sharif\Desktop\FRST64.exe
2014-01-15 08:14 - 2014-01-15 08:14 - 00000000 ____D C:\FRST
2014-01-15 08:12 - 2014-01-12 15:01 - 00000942 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-15 08:09 - 2013-12-02 16:58 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1094451017-331186128-1527876733-1003
2014-01-15 08:07 - 2014-01-15 08:07 - 00001402 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-15 08:07 - 2014-01-12 11:59 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-15 08:07 - 2014-01-12 11:59 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-15 06:10 - 2013-12-03 08:55 - 00000434 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1094451017-331186128-1527876733-1003.job
2014-01-15 05:36 - 2013-12-03 08:55 - 00000434 _____ C:\WINDOWS\Tasks\update-sys.job
2014-01-15 00:13 - 2013-09-29 23:04 - 00865408 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-14 23:17 - 2013-12-04 12:22 - 00003982 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1AA980B2-6E4A-4803-A226-1E79AEEE6594}
2014-01-14 23:03 - 2014-01-14 23:02 - 00000296 _____ C:\Users\Nabil Sharif\Desktop\RootkitRemover_20140114_230211.log
2014-01-14 23:01 - 2013-12-31 18:12 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\New folder
2014-01-14 22:43 - 2014-01-14 22:43 - 00014541 _____ C:\Users\Nabil Sharif\Desktop\hijackthis.log
2014-01-14 22:34 - 2014-01-14 21:49 - 00000000 ____D C:\Program Files\stinger
2014-01-14 22:19 - 2013-12-03 13:41 - 00000000 ____D C:\Users\Nabil Sharif
2014-01-14 22:16 - 2014-01-14 22:16 - 00000000 _____ C:\Users\Nabil Sharif\Documents\hijackthis.txt
2014-01-14 21:38 - 2013-12-02 16:50 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\Packages
2014-01-14 21:31 - 2014-01-14 21:31 - 00908624 _____ C:\Users\Nabil Sharif\Desktop\gsusp_7FD3774B235E_011414_213153.zip
2014-01-14 21:31 - 2014-01-14 21:30 - 00001123 _____ C:\Users\Nabil Sharif\Desktop\GetSusp.xml
2014-01-14 21:31 - 2014-01-02 20:33 - 00000000 ____D C:\Program Files (x86)\Visual CertExam Suite
2014-01-14 21:28 - 2014-01-14 21:28 - 00016680 _____ (McAfee, Inc.) C:\WINDOWS\GetSusp.sys
2014-01-14 21:18 - 2014-01-12 12:54 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 03357024 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\evbda.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 03345376 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwew00.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 02011488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 01390904 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmhsf.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 01299648 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00994144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00924512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00839488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00782360 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfehidk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00782176 _____ (PMC-Sierra) C:\WINDOWS\system32\Drivers\adp80xx.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00651248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAV.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00647736 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00591360 _____ (Realtek                                            ) C:\WINDOWS\system32\Drivers\Rt630x64.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00575840 _____ (LSI Corporation, Inc.) C:\WINDOWS\system32\Drivers\megasr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00564520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00531296 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00519576 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfefirek.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00478048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00464184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00412000 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorV.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00411944 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfencbdc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00374112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00366432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00343696 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfewfpk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00342528 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00337760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00311120 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeavfk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00305504 _____ (VIA Corporation) C:\WINDOWS\system32\Drivers\VSTXRAID.SYS.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00265056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00259424 _____ (AMD Technologies Inc.) C:\WINDOWS\system32\Drivers\amdsbs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00217952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudserd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00197704 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00179792 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeapfk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scsiport.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00168800 _____ (VIA Technologies Inc.,Ltd) C:\WINDOWS\system32\Drivers\vsmraid.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00168288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvstor.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00162344 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\AmpPal.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00150368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvraid.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00140600 _____ (Motorola Solutions, Inc.) C:\WINDOWS\system32\Drivers\btmaux.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00124768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NV_AGP.SYS.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00121184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00114016 _____ (PMC-Sierra, Inc.) C:\WINDOWS\system32\Drivers\arcsas.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00109408 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00108896 _____ (LSI) C:\WINDOWS\system32\Drivers\3ware.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00107288 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00102376 _____ ("CyberLink) C:\WINDOWS\system32\Drivers\wsvd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00101728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00100992 _____ (Alcor Micro, Corp.) C:\WINDOWS\system32\Drivers\AmUStor.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00099320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_I2C.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00096112 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfencrk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00095024 _____ (Diskeeper Corporation) C:\WINDOWS\system32\Drivers\excsd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00093536 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas2.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00090944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00088928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc63.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipfltdrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00082784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorClass.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00082784 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sss.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00081760 _____ (Silicon Integrated Systems) C:\WINDOWS\system32\Drivers\sisraid4.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00081760 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas3.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rspndr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00079712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpiex.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00079200 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdsata.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00074560 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\McPvDrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00072032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SpbCx.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00071896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00070112 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\cfwids.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00069344 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeelamk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00069088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iBtFltCoex.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00068960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stream.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mslldp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00066040 _____ (Mozy, Inc.) C:\WINDOWS\system32\Drivers\MOBK.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\GAGP30KX.SYS.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00064864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UAGP35.SYS.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00064352 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\Drivers\HpSAMD.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00063840 _____ (Marvell Semiconductor, Inc.) C:\WINDOWS\system32\Drivers\mvumis.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00062784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\HECIx64.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00061248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00057696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00056672 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\megasas.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbFlt.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00054304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00050016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00049984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\videoprt.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\qwavedrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00045888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00044896 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\Drivers\sisraid2.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00043800 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\irstrtdv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\condrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00036192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filetrace.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00034760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpata.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00033560 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBCAMD2.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RNDISMP.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00031072 _____ (Promise Technology, Inc.) C:\WINDOWS\system32\Drivers\stexstor.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00031032 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbrpm.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00026976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WpdUpFltr.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00025952 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdxata.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00024568 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00023344 _____ (Diskeeper Corporation) C:\WINDOWS\system32\Drivers\excfs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\Drivers\secdrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mcd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HyperVideo.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00021856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00021760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00021248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smclib.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00019808 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Drivers\viaide.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmilib.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00017624 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\bcmfn2.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisVirtualBus.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dmpusbstor.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00010856 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeclnrk.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidumdf.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00008704 _____ (TODO: <Company name>) C:\WINDOWS\system32\Drivers\LAD.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidkmdf.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00007936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mstee.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00006784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys.bak
2014-01-14 21:18 - 2014-01-12 12:54 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys.bak
2014-01-14 20:51 - 2013-12-02 22:36 - 00000000 ____D C:\Program Files (x86)\Notepad++
2014-01-14 20:32 - 2013-12-02 21:26 - 00000000 ____D C:\Program Files (x86)\McAfee
2014-01-14 20:25 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-14 20:20 - 2014-01-14 20:20 - 00003039 _____ C:\Users\Nabil Sharif\Desktop\HiJackThis.lnk
2014-01-14 20:20 - 2014-01-14 20:20 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-01-14 20:20 - 2014-01-14 20:20 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-14 20:17 - 2014-01-14 20:17 - 00377856 _____ C:\Users\Nabil Sharif\Desktop\wkllbiqd.exe
2014-01-14 20:09 - 2014-01-14 20:09 - 00000000 ____D C:\WINDOWS\pss
2014-01-14 19:51 - 2013-12-02 18:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-14 19:50 - 2013-12-02 18:06 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-14 18:48 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-12 22:55 - 2014-01-12 22:55 - 00000000 ___RD C:\Sandbox
2014-01-12 17:07 - 2014-01-12 15:01 - 00003914 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-12 17:07 - 2014-01-12 15:01 - 00003678 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-12 15:02 - 2013-12-02 17:03 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\Google
2014-01-12 15:02 - 2013-12-02 17:03 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-12 14:44 - 2014-01-12 12:04 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2014-01-12 14:41 - 2013-12-04 00:09 - 00000231 _____ C:\WINDOWS\wininit.ini
2014-01-12 13:37 - 2014-01-12 13:53 - 00000698 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20140112-135324.backup
2014-01-12 13:36 - 2014-01-12 12:50 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\Sec
2014-01-12 12:59 - 2013-12-02 16:50 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\VirtualStore
2014-01-12 12:54 - 2014-01-12 12:54 - 00117464 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys.bak
2014-01-12 12:54 - 2014-01-12 12:54 - 00089304 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys.bak
2014-01-12 12:53 - 2014-01-12 12:57 - 00000741 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20140112-125737.backup
2014-01-12 12:53 - 2014-01-12 12:53 - 00000059 ___RH C:\Users\Nabil Sharif\Downloads\GetSusp.opt
2014-01-12 12:46 - 2013-12-08 22:38 - 00001082 _____ C:\Users\Nabil Sharif\Desktop\Notepad++.lnk
2014-01-12 12:46 - 2013-12-08 22:38 - 00001082 _____ C:\Users\Administrator\Desktop\Notepad++.lnk
2014-01-12 12:46 - 2013-12-08 22:38 - 00001082 _____ C:\Users\Adam\Desktop\Notepad++.lnk
2014-01-12 12:44 - 2014-01-12 12:44 - 03810304 _____ C:\Users\Nabil Sharif\Desktop\RogueKiller.exe
2014-01-12 12:29 - 2014-01-12 12:29 - 01579552 _____ (McAfee Inc.) C:\Users\Nabil Sharif\Desktop\getsusp.exe
2014-01-12 12:29 - 2014-01-12 12:29 - 00782640 _____ (McAfee, Inc.) C:\Users\Nabil Sharif\Desktop\rootkitremover (1).exe
2014-01-12 12:27 - 2013-12-15 08:03 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\ROM stuff = BCKUP
2014-01-12 12:13 - 2013-12-04 16:00 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\CrashDumps
2014-01-12 12:06 - 2014-01-12 12:06 - 00000000 ____D C:\Program Files (x86)\FileASSASSIN
2014-01-12 11:59 - 2014-01-12 11:58 - 40658208 _____ (Safer-Networking Ltd.                                       ) C:\Users\Nabil Sharif\Desktop\spybot-2.2.exe
2014-01-12 11:48 - 2014-01-12 11:48 - 00002403 _____ C:\Users\Nabil Sharif\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2014-01-11 17:51 - 2013-12-02 22:21 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-10 07:52 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-09 15:52 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-09 15:22 - 2014-01-09 15:15 - 00000000 ____D C:\Program Files (x86)\Dolby Home Theater v4
2014-01-09 15:18 - 2013-12-19 14:57 - 00003815 _____ C:\WINDOWS\setupact.log
2014-01-09 15:15 - 2014-01-09 15:15 - 00002992 _____ C:\WINDOWS\System32\Tasks\Dolby Selector
2014-01-09 14:13 - 2014-01-09 14:13 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2014-01-09 14:13 - 2013-12-03 13:32 - 00000000 ____D C:\Program Files\CONEXANT
2014-01-06 17:31 - 2013-08-22 10:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 17:31 - 2013-08-22 10:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 13:05 - 2013-12-03 13:32 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-05 12:53 - 2013-12-03 19:57 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Skype
2014-01-05 12:43 - 2014-01-05 12:43 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-05 12:43 - 2013-12-03 19:57 - 00000000 ____D C:\ProgramData\Skype
2014-01-05 08:59 - 2013-12-07 21:21 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2014-01-05 08:59 - 2013-12-07 21:21 - 00000000 ____D C:\WINDOWS\system32\NV
2014-01-04 14:00 - 2014-01-04 13:49 - 00000000 ____D C:\Users\Nabil Sharif\.gimp-2.8
2014-01-04 13:49 - 2014-01-04 13:49 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\gegl-0.2
2014-01-03 06:18 - 2014-01-02 21:25 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\BitTorrent
2014-01-02 20:47 - 2013-12-19 14:57 - 00000356 _____ C:\WINDOWS\setuperr.log
2014-01-02 10:14 - 2013-11-24 18:57 - 00000000 ____D C:\Users\Nabil Sharif\Desktop\Eclipse Diff Langs
2013-12-31 12:58 - 2013-12-31 12:58 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-12-31 12:58 - 2013-12-31 12:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-12-31 12:58 - 2013-12-31 12:58 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-12-31 12:58 - 2013-12-31 12:58 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-12-31 12:58 - 2013-12-31 12:58 - 00000000 ____D C:\Program Files (x86)\Java
2013-12-31 12:58 - 2013-12-03 08:46 - 00000000 ____D C:\ProgramData\Oracle
2013-12-29 22:49 - 2013-12-29 14:19 - 00000000 ____D C:\Users\Nabil Sharif\Documents\Calibre Library
2013-12-29 19:48 - 2013-12-29 14:19 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\calibre
2013-12-29 14:20 - 2013-12-29 14:20 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\calibre-cache
2013-12-25 22:52 - 2013-12-08 22:39 - 00000877 _____ C:\Users\Nabil Sharif\Desktop\Sublime Text 2.lnk
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-10-03 23:43 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-10-03 23:42 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-10-03 23:42 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-10-03 23:42 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-10-03 23:42 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-10-03 23:42 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-10-03 23:42 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-20 19:16 - 2013-12-20 19:16 - 00009762 _____ C:\WINDOWS\DPINST.LOG
2013-12-20 19:16 - 2013-12-03 13:49 - 00000000 ____D C:\Users\Default\AppData\Roaming\Intel
2013-12-20 19:16 - 2013-12-03 13:49 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Intel
2013-12-20 19:16 - 2013-12-02 16:50 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Intel
2013-12-20 19:16 - 2013-07-17 02:07 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Intel
2013-12-20 19:16 - 2013-07-17 02:01 - 00000000 ____D C:\Program Files\Intel
2013-12-20 19:16 - 2013-07-17 01:55 - 00000000 ____D C:\ProgramData\Intel
2013-12-20 19:09 - 2013-12-03 08:43 - 00000000 ____D C:\Program Files\WinRAR
2013-12-20 19:09 - 2013-08-22 09:44 - 05429600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-20 14:25 - 2013-12-02 16:58 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\Mozilla
2013-12-20 14:24 - 2013-12-20 14:24 - 00001170 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-20 14:24 - 2013-12-20 14:24 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Mozilla
2013-12-20 14:24 - 2013-12-20 14:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 14:24 - 2013-12-02 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-19 15:46 - 2013-12-19 15:46 - 00000057 _____ C:\Users\Nabil Sharif\AppData\Roaming\mbam.context.scan
2013-12-19 15:00 - 2013-12-07 21:23 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\NVIDIA Corporation
2013-12-19 15:00 - 2013-12-07 21:22 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Local\NVIDIA
2013-12-19 15:00 - 2013-12-03 13:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-19 15:00 - 2013-12-03 13:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-19 14:57 - 2013-12-03 13:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-19 14:54 - 2013-12-19 14:54 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-19 14:52 - 2013-12-03 08:55 - 00000059 _____ C:\Users\Nabil Sharif\AppData\Local\UserProducts.xml
2013-12-19 12:50 - 2013-12-02 16:50 - 00000000 ____D C:\Users\Nabil Sharif\AppData\Roaming\Adobe
2013-12-19 12:49 - 2013-12-02 18:11 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-17 10:50 - 2013-12-02 21:23 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
 
Some content of TEMP:
====================
C:\Users\Nabil Sharif\AppData\Local\Temp\ntdll_dump.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
==================== BCD ================================
 
Firmware Boot Manager
---------------------
identifier              {fwbootmgr}
displayorder            {bootmgr}
                        {da15e644-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e645-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e64b-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e648-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e646-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e647-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e649-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e64a-eeb2-11e2-b6a8-806e6f6e6963}
                        {da15e64c-eeb2-11e2-b6a8-806e6f6e6963}
                        {4493a55d-fb71-11e2-be7a-806e6f6e6963}
timeout                 0
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume4
path                    \EFI\Microsoft\Boot\bootmgfw.efi
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {4be771bb-5bb0-11e3-8d87-b3379775d87d}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30
 
Firmware Application (101fffff)
-------------------------------
identifier              {4493a55d-fb71-11e2-be7a-806e6f6e6963}
description             PCI LAN: EFI Network (IPv6)
 
Firmware Application (101fffff)
-------------------------------
identifier              {a4b94c59-eeab-11e2-be6d-806e6f6e6963}
device                  partition=\Device\HarddiskVolume5
path                    \EFI\Microsoft\Boot\lrsBootMgr.efi
description             Lenovo Recovery System
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e641-eeb2-11e2-b6a8-806e6f6e6963}
description             Setup
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e642-eeb2-11e2-b6a8-806e6f6e6963}
description             Boot Menu
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e643-eeb2-11e2-b6a8-806e6f6e6963}
description             Diagnostic Splash
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e644-eeb2-11e2-b6a8-806e6f6e6963}
description             ATA HDD: ST1000LM024 HN-M101MBB                  
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e645-eeb2-11e2-b6a8-806e6f6e6963}
description             ATA SSD1: RDM-II XM020C024G                       
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e646-eeb2-11e2-b6a8-806e6f6e6963}
description             RAID DEVICE2:
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e647-eeb2-11e2-b6a8-806e6f6e6963}
description             RAID DEVICE1:
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e648-eeb2-11e2-b6a8-806e6f6e6963}
description             ATAPI CD:
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e649-eeb2-11e2-b6a8-806e6f6e6963}
description             USB HDD:
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e64a-eeb2-11e2-b6a8-806e6f6e6963}
description             USB FDD:
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e64b-eeb2-11e2-b6a8-806e6f6e6963}
description             USB CD:
 
Firmware Application (101fffff)
-------------------------------
identifier              {da15e64c-eeb2-11e2-b6a8-806e6f6e6963}
description             PCI LAN: EFI Network (IPv4)
 
Windows Boot Loader
-------------------
identifier              {4be771b8-5bb0-11e3-8d87-b3379775d87d}
device                  ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{4be771b9-5bb0-11e3-8d87-b3379775d87d}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{4be771b9-5bb0-11e3-8d87-b3379775d87d}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.efi
description             Windows 8.1
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {4be771bd-5bb0-11e3-8d87-b3379775d87d}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {4be771bb-5bb0-11e3-8d87-b3379775d87d}
nx                      OptIn
bootmenupolicy          Standard
bootlog                 Yes
 
Windows Boot Loader
-------------------
identifier              {4be771bd-5bb0-11e3-8d87-b3379775d87d}
device                  ramdisk=[\Device\HarddiskVolume8]\Recovery\WindowsRE\Winre.wim,{4be771be-5bb0-11e3-8d87-b3379775d87d}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  Recovery
osdevice                ramdisk=[\Device\HarddiskVolume8]\Recovery\WindowsRE\Winre.wim,{4be771be-5bb0-11e3-8d87-b3379775d87d}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Windows Boot Loader
-------------------
identifier              {620aea47-fb71-11e2-be7a-681729778598}
device                  ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{620aea48-fb71-11e2-be7a-681729778598}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  en-us
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{620aea48-fb71-11e2-be7a-681729778598}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes
 
Resume from Hibernate
---------------------
identifier              {4be771b6-5bb0-11e3-8d87-b3379775d87d}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {4be771b8-5bb0-11e3-8d87-b3379775d87d}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Resume from Hibernate
---------------------
identifier              {4be771bb-5bb0-11e3-8d87-b3379775d87d}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {4be771bd-5bb0-11e3-8d87-b3379775d87d}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Resume from Hibernate
---------------------
identifier              {620aea49-fb71-11e2-be7a-681729778598}
device                  partition=C:
path                    \windows\system32\winresume.efi
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {620aea47-fb71-11e2-be7a-681729778598}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume4
path                    \EFI\Microsoft\Boot\memtest.efi
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes
 
EMS Settings
------------
identifier              {emssettings}
bootems                 No
 
Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200
 
RAM Defects
-----------
identifier              {badmemory}
 
Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}
 
Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}
 
Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200
 
Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}
 
Device options
--------------
identifier              {4be771b9-5bb0-11e3-8d87-b3379775d87d}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume3
ramdisksdipath          \Recovery\WindowsRE\boot.sdi
 
Device options
--------------
identifier              {4be771ba-5bb0-11e3-8d87-b3379775d87d}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi
 
Device options
--------------
identifier              {4be771be-5bb0-11e3-8d87-b3379775d87d}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume8
ramdisksdipath          \Recovery\WindowsRE\boot.sdi
 
Device options
--------------
identifier              {620aea48-fb71-11e2-be7a-681729778598}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume3
ramdisksdipath          \Recovery\WindowsRE\boot.sdi
 
Device options
--------------
identifier              {620aea4b-fb71-11e2-be7a-681729778598}
description             Windows Setup
ramdisksdidevice        partition=C:
ramdisksdipath          \$WINDOWS.~BT\Sources\SafeOS\boot.sdi
 
Setup Ramdisk Options
---------------------
identifier              {ramdiskoptions}
description             Ramdisk options
ramdisksdidevice        boot
ramdisksdipath          \boot\boot.sdi
 
 
 
LastRegBack: 2014-01-14 19:49
 
==================== End Of Log ============================

Edited by devm0, 15 January 2014 - 10:01 AM.


#3 devm0

devm0
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 15 January 2014 - 10:02 AM

==================== ADDITIONAL LOG[PLEASE READ] ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2014 01
Boot Mode: Normal
 
==================== Security Center ========================
 
AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
 
==================== Installed Programs ======================
 
Adobe Acrobat X Pro - English, Français, Deutsch (x32 Version: 10.1.8 - Adobe Systems)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (x32 Version: 3.2.3042.61510 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.2.3042.61510 - Alcor Micro Corp.) Hidden
Conexant HD Audio (Version: 8.65.3.53 - Conexant)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (Version:  - Microsoft)
Dolby Config (Version: 1.0.0.0 - Conexant Systems)
Dolby Digital Plus Home Theater (Version: 7.3.2.2 - Dolby Laboratories Inc)
Dolby Home Theater v4 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)
DolbyGUI (Version:  - Conexant Systems)
Energy Management (x32 Version: 8.0.2.3 - Lenovo)
Energy Management (x32 Version: 8.0.2.3 - Lenovo) Hidden
ExpressCache (Version: 1.0.86 - Diskeeper Corporation)
FileASSASSIN (x32 Version: 1.06 - Malwarebytes)
Google Chrome (x32 Version: 31.0.1650.63 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HiJackThis (x32 Version: 1.0.0 - Trend Micro)
Intel® Processor Graphics (x32 Version: 10.18.10.3379 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 3.1.1309.0390 - Intel Corporation)
Intel® Rapid Start Technology (x32 Version: 2.1.0.1002 - Intel Corporation)
Intel® Rapid Storage Technology (x32 Version: 11.6.0.1030 - Intel Corporation)
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java SE Development Kit 7 Update 45 (64-bit) (Version: 1.7.0.450 - Oracle)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (x32 Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo Smart Update (x32 Version: 1.5.75 - Lenovo Corporation)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden
LenovoDrv_x64 (Version: 1.0.00 - Lenovo)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee All Access – Total Protection (x32 Version: 12.8.903 - McAfee, Inc.)
McAfee Online Backup (Version: 1.16.4.0 - McAfee, Inc.) Hidden
McAfee Online Backup (x32 Version:  - McAfee, Inc.) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Motion Control (Version: 1.1.2.43 - Lenovo)
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Notepad++ (x32 Version: 6.5.2 - Notepad++ Team)
NVIDIA Control Panel 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Samsung Kies (x32 Version: 2.6.1.13105_6 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.1.13105_6 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (x32 Version: 2.2.25 - Safer-Networking Ltd.)
Sublime Text 2.0.2 (Version:  - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 16.3.4.0 - Synaptics Incorporated)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553092) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition (Version:  - Microsoft)
Windows Driver Package - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Windows Driver Package - Lenovo Corporation (LAD) System  (06/08/2012 1.0.0.3) (Version: 06/08/2012 1.0.0.3 - Lenovo Corporation)
WinRAR 5.01 (64-bit) (Version: 5.01.0 - win.rar GmbH)
 
==================== Restore Points  =========================
 
11-01-2014 22:50:36 Removed Skype™ 6.11
15-01-2014 00:49:53 Windows Update
 
==================== Hosts content: ==========================
 
2013-08-22 08:25 - 2014-01-14 21:50 - 00000698 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {0169B4A8-8CFD-4024-B4AA-CA68EAED4911} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2013-09-27] ()
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {12DE1FD8-2D2A-4DB6-8C36-909854514F78} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-11-30] (Synaptics Incorporated)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {25ADD94E-A43B-4883-A8C2-F099D4B80FFE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B5B6240-B515-4830-AC57-FF063FDC666C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {5EC41C18-18BB-4FBE-A230-3F79F296C267} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AF5214A-165B-4521-8D3A-7C8E81692C46} - System32\Tasks\update-S-1-5-21-1094451017-331186128-1527876733-1003 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2013-09-27] ()
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {7788135C-45D1-4BD9-A83C-394E51B079CD} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8A73B5C5-29B7-481E-B007-E26715F0D5F0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-12] (Adobe Systems Incorporated)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {BCA425EB-B6B5-4776-8E31-5CE5493577FC} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {BE3F52B9-FBCE-474F-93EF-FFBC17E8763E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-14] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D190F0D3-3EEA-49D9-9E63-0F4539CFCFDF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-12] (Google Inc.)
Task: {D75082A1-371E-461A-8820-1FA7DFDE98F7} - System32\Tasks\Microsoft\Windows\SysResetLogSuccess => Rundll32.exe ResetEng.dll,RjvLogSuccessEntryPoint
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {ECACE79F-C583-4E94-8DD9-DB19F6C67338} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-12] (Google Inc.)
Task: {F48E07B1-29FB-4E5A-B122-6EE777AB041A} - System32\Tasks\Intel® Rapid Start Technology Manager => C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [2012-08-12] (Intel)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1094451017-331186128-1527876733-1003.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-09-05 02:36 - 2013-11-14 06:58 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-12-03 13:34 - 2013-11-11 10:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2010-04-13 20:11 - 2010-04-13 20:11 - 00083256 _____ () C:\Program Files (x86)\McAfee Online Backup\librs2.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-10-03 23:42 - 2013-10-03 23:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-15 08:07 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-01-15 08:07 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-01-15 08:07 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-01-15 08:07 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-01-15 08:07 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Could not start eventlog service, could not read events.
 
The requested service has already been started.
 
More help is available by typing NET HELPMSG 2182.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 34%
Total physical RAM: 8050.64 MB
Available physical RAM: 5246.99 MB
Total Pagefile: 9330.64 MB
Available Pagefile: 6474.42 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB
 
==================== Drives ================================
 
Drive c: (Windows8_OS) (Fixed) (Total:854.54 GB) (Free:801.34 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:21.35 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 22 GB) (Disk ID: 4CF2974C)
 
Partition: GPT Partition Type
========================================================
Disk: 1 (Size: 932 GB) (Disk ID: 4CF2974F)
 
Partition: GPT Partition Type
==================== End Of Log ============================


#4 devm0

devm0
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 15 January 2014 - 10:06 AM

HIJACKTHIS LOG
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:04:45 AM, on 1/15/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.16384)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Global Startup: Motion Control.lnk = C:\Program Files (x86)\Lenovo\MotionControl\MotionControl.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Users\Nabil Sharif\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (file missing) (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Unknown owner - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (file missing)
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel® Integrated Clock Controller Service - Intel® ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Wireless Bluetooth® 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel® Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\windows\SysWOW64\irstrtsv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Smart Update Service - Lenovo - C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Online Backup (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 14093 bytes


#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,668 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 20 January 2014 - 10:00 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/520919 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#6 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,668 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 25 January 2014 - 10:05 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users