Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

A few days ago I had some strange behavior on my laptop


  • This topic is locked This topic is locked
14 replies to this topic

#1 Milway

Milway

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 22 March 2014 - 03:16 PM

Hi,

 

A few days ago I had some strange behavior on my laptop, I couldn't open any of my antivirus software that I have, McAffee (which I trash already) and Malwarebytes. Every time I tried to open any of the software mentioned, I got errors windows or blank windows… more less errors everywhere. Windows 7 became very unstable after that, so I decide to do a clean installation, now things are working normal, but at the back of my head I am wondering if this was some type of infection.

 

I would appreciate if someone could help me to check on this, please.     


Edited by Milway, 22 March 2014 - 04:21 PM.


BC AdBot (Login to Remove)

 


m

#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,549 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:42 PM

Posted 27 March 2014 - 03:20 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/528363 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:09:42 PM

Posted 28 March 2014 - 07:38 PM

Hello Milway, and  :welcome: to the Virus/Trojan/Spyware/Malware Removal forum.

I am oneof4, and I am here to help you!

  • I ask that you refrain from running tools other than those I suggest to you while I am cleaning up your computer. The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received and do not proceed if you need clarification.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please do not re-run any programs I suggest. If you encounter problems please stop and tell me about it. When your computer is clean I will alert you of such. I will also provide you with detailed suggestions for prevention.
  • At the top right-center of the topic you will see a button called Follow this topic. If you click on this, another page will open. Please choose Instantly for notification and then clicking on Follow this topic you will be advised when we respond to your topic and facilitate the cleaning of your machine.
  • If after 5 days you have not replied to this topic, I will assume it has been abandoned, and I will close it.
  • I would also like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. :heart: Please be courteous and appreciative for the assistance provided!
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. Your computer fix will be based on the current condition of your computer! Any changes might delay my ability to help you.

==========
 

Since you already reformatted and reinstalled Windows, any infection that you MAY have had is now gone.  However, if you would like, we can run a couple of scans to quickly see the current state of things.  If you are open to this then please proceed with the following two scans:

 

==========

We need to see some information about what is happening in your machine.  Please perform the following scans:

Download Security Check by screen317 from http://screen317.spywareinfoforum.org/SecurityCheck.exe
or http://screen317.changelog.fr/SecurityCheck.exe
.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

==========
 
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note
: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

Best Regards,
oneof4.


#4 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 29 March 2014 - 01:44 PM

Hi Oneof4,

 

Thanks for taking the time to look after my issue  :).

 

Ok here are the logs.

 

Checkup

 

 Results of screen317's Security Check version 0.99.81  

 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
McAfee Anti-Virus and Anti-Spyware   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Free Internet Window Washer  
 TuneUp Utilities    
 TuneUp Utilities Language Pack (es-ES) 
 Adobe Flash Player 12.0.0.77  
 Google Chrome 33.0.1750.154  
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 3% 
````````````````````End of Log`````````````````````` 
 
 
_______________________________________
 
FRST
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by redsky (administrator) on REDSKY-PC on 29-03-2014 18:32:40
Running from C:\Users\redsky\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(McAfee, Inc.) C:\Windows\system32\mfevtps.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesApp64.exe
() C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Filipe Lourenço) C:\Program Files (x86)\BatteryCare\BatteryCare.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [FreeFallProtection] - C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-17] ()
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2186856 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NVHotkey] - C:\Windows\system32\nvHotkey.dll [540992 2011-11-04] (NVIDIA Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-12] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [mcpltui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-01-28] (McAfee, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2156409024-2694004433-613143568-1000\...\Run: [BatteryCare] - C:\Program Files (x86)\BatteryCare\BatteryCare.exe [740864 2012-12-03] (Filipe Lourenço)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll ()
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKCU - WOT - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 89.101.160.4 89.101.160.5
 
Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-29]
CHR Extension: (Google Drive) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-29]
CHR Extension: (WOT) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-03-29]
CHR Extension: (YouTube) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-29]
CHR Extension: (Adblock Plus) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-03-29]
CHR Extension: (Google Search) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-29]
CHR Extension: (Google Wallet) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-29]
CHR Extension: (Gmail) - C:\Users\redsky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-29]
 
==================== Services (Whitelisted) =================
 
S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [236016 2010-10-29] (CyberLink)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-01-28] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1025712 2014-01-21] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-01-27] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [185792 2014-01-27] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-06-25] ()
S3 TuneUp.Defrag; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe [607048 2014-03-23] (TuneUp Software)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [1394504 2009-12-10] (TuneUp Software)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3325232 2012-06-25] (Intel® Corporation)
 
==================== Drivers (Whitelisted) ====================
 
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-01-27] (McAfee, Inc.)
R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [180272 2014-01-27] (McAfee, Inc.)
R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311600 2014-01-27] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [520696 2014-01-27] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [783864 2014-01-27] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [422712 2014-01-21] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [96592 2014-01-21] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344688 2014-01-27] (McAfee, Inc.)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [249152 2011-11-04] (NVIDIA Corporation)
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [768680 2013-06-26] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2013-06-26] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29352 2013-06-26] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2013-06-26] (Microsoft Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [11856 2009-10-14] (TuneUp Software)
S3 WinRing0_1_2_0; C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [14544 2008-07-26] (OpenLibSys.org)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-03-29 18:32 - 2014-03-29 18:33 - 00011771 _____ () C:\Users\redsky\Downloads\FRST.txt
2014-03-29 18:32 - 2014-03-29 18:32 - 00000000 ____D () C:\FRST
2014-03-29 18:31 - 2014-03-29 18:31 - 02157056 _____ (Farbar) C:\Users\redsky\Downloads\FRST64.exe
2014-03-29 18:30 - 2014-03-29 18:30 - 00000838 _____ () C:\Users\redsky\Desktop\checkup.txt
2014-03-29 18:27 - 2014-03-29 18:27 - 00987448 _____ () C:\Users\redsky\Downloads\SecurityCheck.exe
2014-03-29 15:29 - 2004-08-25 10:13 - 01540096 _____ () C:\Users\redsky\Desktop\hsr3.0setup.iso
2014-03-29 00:29 - 2014-03-29 00:29 - 01319613 _____ () C:\Users\redsky\Desktop\hsr3.0cdromsetup.exe
2014-03-29 00:20 - 2014-03-29 00:20 - 00001320 _____ () C:\Users\redsky\Desktop\DTI Surface Scanner.lnk
2014-03-29 00:20 - 2014-03-29 00:20 - 00000000 ____D () C:\Program Files (x86)\DTI Data
2014-03-29 00:19 - 2014-03-29 00:19 - 02306140 _____ (DTI Data ) C:\Users\redsky\Downloads\windows_surface_scanner.exe
2014-03-29 00:09 - 2014-03-29 00:09 - 00488141 _____ () C:\Users\redsky\Downloads\extension_1_7_4.crx
2014-03-29 00:05 - 2014-03-29 00:05 - 00000000 ____D () C:\Users\redsky\AppData\Local\CrashDumps
2014-03-29 00:04 - 2014-03-29 18:09 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-29 00:04 - 2014-03-29 15:28 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-29 00:04 - 2014-03-29 00:04 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-29 00:04 - 2014-03-29 00:04 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-28 23:59 - 2014-03-29 00:00 - 00001605 _____ () C:\DelFix.txt
2014-03-28 23:16 - 2014-03-28 23:16 - 00000000 ____D () C:\ProgramData\Citrix
2014-03-28 23:11 - 2014-03-28 23:11 - 00000000 ____D () C:\Users\redsky\AppData\Local\Citrix
2014-03-28 23:11 - 2014-03-28 23:11 - 00000000 ____D () C:\Program Files (x86)\Citrix
2014-03-28 22:19 - 2014-03-28 22:30 - 00000000 ____D () C:\Program Files (x86)\Ss-Tools
2014-03-27 22:23 - 2014-03-27 22:23 - 00000000 _____ () C:\asc_rdflag
2014-03-27 22:06 - 2014-03-27 22:23 - 00000000 _____ () C:\Windows\system32\config\SYSTEM.iobit
2014-03-27 22:03 - 2014-03-27 22:03 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\IObit
2014-03-26 21:40 - 2014-03-26 21:40 - 00000000 ____D () C:\Users\redsky\Documents\PC Activator
2014-03-26 21:17 - 2014-03-26 23:10 - 00000000 ____D () C:\Users\redsky\Documents\Anti-Malware
2014-03-25 22:33 - 2014-03-26 11:11 - 00000000 ____D () C:\Windows\erdnt
2014-03-25 22:07 - 2014-03-25 22:07 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2014-03-25 21:59 - 2014-03-28 23:52 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2014
2014-03-25 21:59 - 2014-03-28 23:52 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2014-03-25 21:57 - 2014-03-25 21:58 - 16578402 _____ ( ) C:\Users\redsky\Desktop\DLLSuite_Setup.exe
2014-03-25 21:47 - 2014-03-26 10:31 - 00117464 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-25 21:46 - 2014-03-26 10:31 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-25 19:50 - 2014-03-25 19:50 - 210692794 _____ () C:\Users\redsky\Desktop\back.reg
2014-03-25 18:55 - 2014-03-25 18:55 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-03-25 18:46 - 2014-03-29 17:57 - 00000728 _____ () C:\Windows\setupact.log
2014-03-25 18:46 - 2014-03-29 15:28 - 00003736 _____ () C:\Windows\PFRO.log
2014-03-24 22:51 - 2014-03-26 11:23 - 00000000 ____D () C:\Windows\ERUNT
2014-03-24 22:00 - 2014-03-24 22:00 - 00278831 _____ () C:\Users\redsky\Downloads\wireless.exe
2014-03-24 20:52 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2014-03-24 02:03 - 2014-03-29 15:33 - 00001844 _____ () C:\Users\Public\Desktop\McAfee Internet Security.lnk
2014-03-24 02:02 - 2014-03-24 02:02 - 00000000 ____D () C:\Program Files (x86)\McAfee.com
2014-03-24 02:01 - 2014-03-25 18:46 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-03-24 02:01 - 2014-03-24 02:02 - 00000000 ____D () C:\Program Files\McAfee
2014-03-24 02:01 - 2014-03-24 02:01 - 00000000 ____D () C:\Program Files\McAfee.com
2014-03-24 01:50 - 2014-03-24 21:58 - 00000000 ____D () C:\ProgramData\McAfee
2014-03-24 01:50 - 2014-03-24 20:47 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-03-24 01:50 - 2014-01-27 08:37 - 00185792 _____ (McAfee, Inc.) C:\Windows\system32\mfevtps.exe
2014-03-24 00:46 - 2014-03-24 00:46 - 00000000 ____D () C:\Program Files (x86)\Repair File
2014-03-24 00:27 - 2014-03-24 00:27 - 00091259 _____ () C:\Users\redsky\Downloads\msls31.zip
2014-03-24 00:06 - 2014-03-24 00:06 - 00000385 _____ () C:\Users\redsky\AppData\Roaminguser_gensett.xml
2014-03-23 23:18 - 2014-03-23 23:18 - 00000684 ____H () C:\bdr-cf01
2014-03-23 23:18 - 2014-03-23 23:18 - 00000000 ____D () C:\ProgramData\BDLogging
2014-03-23 23:17 - 2014-03-23 23:18 - 00253404 ____H () C:\bdr-ld01
2014-03-23 23:17 - 2014-03-23 23:18 - 00009216 ____H () C:\bdr-ld01.mbr
2014-03-23 23:17 - 2014-03-23 23:18 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Bitdefender
2014-03-23 23:17 - 2013-09-24 15:38 - 46879860 ____H () C:\bdr-im01.gz
2014-03-23 23:17 - 2013-08-13 12:38 - 03271472 ____H () C:\bdr-bz01
2014-03-23 23:15 - 2014-03-23 23:15 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\QuickScan
2014-03-23 20:25 - 2014-03-23 20:25 - 02252680 _____ () C:\Users\redsky\Desktop\even viewer.txt
2014-03-23 19:57 - 2014-03-24 01:36 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-03-23 19:57 - 2014-03-24 01:36 - 00000000 ____D () C:\Users\redsky\AppData\Local\Abelssoft
2014-03-23 19:56 - 2014-03-23 19:56 - 14535520 _____ (Abelssoft ) C:\Users\redsky\Downloads\checkdrive.exe
2014-03-23 19:23 - 2014-03-23 19:23 - 10104832 _____ (© Phoenix Technologies Ltd. ) C:\Users\redsky\Downloads\L702X_A19.exe
2014-03-23 18:36 - 2014-03-23 18:36 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Dell
2014-03-23 18:36 - 2014-03-23 18:36 - 00000000 ____D () C:\ProgramData\PCDr
2014-03-23 18:35 - 2014-03-23 18:35 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\PCDr
2014-03-23 18:33 - 2014-03-23 18:33 - 00417872 _____ () C:\Users\redsky\Downloads\DellSystemDetect.exe
2014-03-23 15:58 - 2014-03-23 15:58 - 04319176 _____ (Piriform Ltd) C:\Users\redsky\Downloads\dfsetup217.exe
2014-03-23 15:38 - 2014-03-23 15:38 - 00004442 _____ () C:\Windows\System32\Tasks\Análisis automático
2014-03-23 15:38 - 2014-03-23 15:38 - 00002189 _____ () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities.lnk
2014-03-23 15:38 - 2014-03-23 15:38 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities
2014-03-23 15:38 - 2009-12-10 12:53 - 00034632 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-03-23 15:38 - 2009-12-10 12:47 - 00036168 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-03-23 15:38 - 2009-12-10 12:47 - 00030024 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-03-23 15:38 - 2009-12-10 12:47 - 00025928 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-03-23 15:38 - 2009-12-10 12:47 - 00021320 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-03-23 15:37 - 2014-03-23 15:38 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2010
2014-03-23 12:04 - 2014-03-23 12:04 - 00001038 _____ () C:\Users\UpdatusUser\Desktop\Free Internet Window Washer.lnk
2014-03-23 12:04 - 2014-03-23 12:04 - 00001038 _____ () C:\Users\redsky\Desktop\Free Internet Window Washer.lnk
2014-03-23 12:04 - 2014-03-23 12:04 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Internet Window Washer
2014-03-23 12:04 - 2014-03-23 12:04 - 00000000 ____D () C:\Program Files (x86)\Free Internet Window Washer
2014-03-23 03:02 - 2014-03-23 10:27 - 00009290 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-23 02:11 - 2014-03-23 02:11 - 00000017 _____ () C:\Users\redsky\AppData\Local\resmon.resmoncfg
2014-03-23 00:44 - 2014-03-29 00:04 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-23 00:44 - 2014-03-28 23:48 - 00000000 ____D () C:\Users\redsky\AppData\Local\Google
2014-03-22 23:50 - 2014-03-23 01:36 - 00000000 ____D () C:\Users\redsky\Doctor Web
2014-03-22 22:30 - 2014-03-22 22:30 - 00000000 ____D () C:\Program Files\WOT
2014-03-22 22:30 - 2014-03-22 22:30 - 00000000 ____D () C:\Program Files (x86)\WOT
2014-03-22 22:28 - 2014-03-24 01:36 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-22 22:28 - 2014-03-22 22:28 - 00000000 ____D () C:\Program Files\Adblock Plus for IE
2014-03-22 21:40 - 2014-03-22 21:40 - 00001264 _____ () C:\Users\redsky\Desktop\Revo Uninstaller.lnk
2014-03-22 21:40 - 2014-03-22 21:40 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-03-22 21:07 - 2014-03-22 21:07 - 00000000 ____D () C:\ProgramData\Sun
2014-03-22 21:07 - 2014-03-22 21:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-22 04:21 - 2014-03-21 20:32 - 00000000 ____D () C:\Windows\Panther
2014-03-22 04:20 - 2014-03-22 04:20 - 00000000 ____D () C:\Hotfix
2014-03-22 04:20 - 2011-02-16 02:11 - 00000028 ___RH () C:\Windows\version
2014-03-22 04:20 - 2011-02-16 02:11 - 00000013 ____R () C:\Windows\csup.txt
2014-03-22 03:09 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-03-22 03:07 - 2014-03-22 03:07 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-22 03:07 - 2014-03-22 03:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-22 03:07 - 2014-03-22 03:07 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-22 03:07 - 2014-03-22 03:07 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-22 03:07 - 2014-03-22 03:07 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-03-22 03:07 - 2014-03-22 03:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-03-22 03:07 - 2014-03-22 03:07 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-03-22 03:07 - 2014-03-22 03:07 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-03-22 03:07 - 2014-03-22 03:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-03-22 03:07 - 2014-03-22 03:07 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-03-22 03:07 - 2014-03-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-22 02:57 - 2014-03-22 02:57 - 00003384 _____ () C:\Windows\System32\Tasks\{771C5617-883E-494D-9315-09FE35072B19}
2014-03-22 02:56 - 2011-08-23 21:57 - 00565352 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-03-22 02:56 - 2011-08-23 21:57 - 00074272 _____ () C:\Windows\system32\RtNicProp64.dll
2014-03-22 02:52 - 2014-03-22 02:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_AMPPAL_01009.Wdf
2014-03-22 02:51 - 2014-03-22 02:51 - 00000000 ____D () C:\ProgramData\Intel
2014-03-22 02:50 - 2014-03-22 02:50 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-03-22 02:45 - 2011-08-25 21:06 - 00066856 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPEnhPS.dll
2014-03-22 02:30 - 2014-03-29 00:03 - 00000000 ____D () C:\Users\redsky\AppData\Local\Deployment
2014-03-22 02:30 - 2014-03-29 00:03 - 00000000 ____D () C:\Users\redsky\AppData\Local\Apps\2.0
2014-03-22 01:24 - 2014-03-22 01:24 - 00000438 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-03-22 00:56 - 2013-05-10 05:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-03-22 00:56 - 2013-05-10 05:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-03-22 00:56 - 2013-05-10 04:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-03-22 00:56 - 2013-05-10 04:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-03-22 00:14 - 2014-03-22 00:14 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-03-22 00:11 - 2010-02-23 08:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-03-21 23:56 - 2014-03-21 23:57 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-21 23:56 - 2014-03-02 14:05 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-21 23:54 - 2012-07-26 03:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-03-21 23:54 - 2012-07-26 03:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-03-21 23:54 - 2012-07-26 03:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-03-21 23:54 - 2012-07-26 03:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-03-21 23:54 - 2012-07-26 03:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-03-21 23:54 - 2012-07-26 02:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-03-21 23:54 - 2012-07-26 02:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-03-21 23:54 - 2012-06-02 14:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-03-21 23:52 - 2014-03-21 23:52 - 00000000 ___RD () C:\MSOCache
2014-03-21 23:47 - 2012-03-01 06:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-03-21 23:47 - 2012-03-01 06:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-03-21 23:47 - 2012-03-01 05:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-03-21 22:47 - 2014-03-23 02:09 - 00005497 _____ () C:\WirelessDiagLog.csv
2014-03-21 22:47 - 2014-01-28 02:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-21 22:47 - 2013-10-30 02:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-03-21 22:47 - 2013-10-30 02:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-03-21 22:47 - 2013-07-09 05:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-03-21 22:47 - 2013-07-09 04:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-03-21 22:47 - 2013-07-04 12:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-03-21 22:47 - 2013-07-04 11:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-03-21 22:47 - 2013-03-19 05:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-03-21 22:47 - 2013-02-27 06:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-03-21 22:47 - 2013-02-27 05:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-03-21 22:47 - 2013-02-15 06:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-03-21 22:47 - 2013-02-15 06:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-03-21 22:47 - 2013-02-15 06:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-03-21 22:47 - 2013-02-15 04:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-03-21 22:47 - 2013-02-15 04:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-03-21 22:47 - 2013-02-15 03:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-03-21 22:47 - 2012-10-09 18:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-03-21 22:47 - 2012-10-09 18:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-03-21 22:47 - 2012-10-09 17:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-03-21 22:47 - 2012-10-09 17:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-03-21 22:47 - 2012-01-04 10:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-03-21 22:47 - 2012-01-04 08:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-03-21 22:47 - 2011-11-17 06:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-03-21 22:47 - 2011-11-17 05:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-03-21 22:47 - 2011-10-26 05:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-03-21 22:47 - 2011-10-26 05:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-03-21 22:47 - 2011-10-26 04:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-03-21 22:47 - 2011-10-26 04:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-03-21 22:47 - 2011-07-09 02:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-03-21 22:47 - 2011-06-16 05:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-03-21 22:47 - 2011-06-16 04:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-03-21 22:47 - 2011-06-15 10:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-03-21 22:47 - 2011-06-15 10:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-03-21 22:47 - 2011-06-15 10:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-03-21 22:47 - 2011-06-15 10:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-03-21 22:47 - 2011-06-15 08:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-03-21 22:47 - 2011-06-15 08:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-03-21 22:47 - 2011-06-15 08:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-03-21 22:47 - 2011-06-15 08:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-03-21 22:47 - 2011-06-15 08:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-03-21 22:47 - 2011-05-04 05:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-03-21 22:47 - 2011-05-04 05:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-03-21 22:47 - 2011-05-04 05:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-03-21 22:47 - 2011-05-04 05:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-03-21 22:47 - 2011-05-04 05:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-03-21 22:47 - 2011-05-04 05:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-03-21 22:47 - 2011-05-04 05:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-03-21 22:47 - 2011-05-04 05:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-03-21 22:47 - 2011-05-04 05:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-03-21 22:47 - 2011-05-04 04:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-03-21 22:47 - 2011-05-04 04:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-03-21 22:47 - 2011-05-04 04:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-03-21 22:47 - 2011-05-04 04:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-03-21 22:47 - 2011-05-04 04:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-03-21 22:47 - 2011-05-04 04:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-03-21 22:47 - 2011-05-04 04:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-03-21 22:47 - 2011-05-04 04:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-03-21 22:47 - 2011-05-04 04:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-03-21 22:47 - 2011-04-27 02:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-03-21 22:47 - 2011-04-27 02:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-03-21 22:47 - 2011-04-09 06:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-03-21 22:47 - 2011-04-09 05:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-03-21 22:47 - 2010-12-23 10:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-03-21 22:47 - 2010-12-23 10:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-03-21 22:47 - 2010-12-23 10:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-03-21 22:47 - 2010-12-23 05:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-03-21 22:47 - 2010-12-23 05:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-03-21 22:47 - 2010-12-23 05:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-03-21 22:46 - 2014-01-29 02:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-21 22:46 - 2014-01-29 02:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-21 22:46 - 2013-12-31 23:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-03-21 22:46 - 2013-12-31 23:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-03-21 22:46 - 2013-12-06 02:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-03-21 22:46 - 2013-12-06 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-03-21 22:46 - 2013-12-06 02:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-03-21 22:46 - 2013-12-06 02:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-03-21 22:46 - 2013-11-12 02:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-21 22:46 - 2013-11-12 02:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-03-21 22:46 - 2013-10-19 02:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-03-21 22:46 - 2013-10-19 01:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-03-21 22:46 - 2013-10-05 20:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-03-21 22:46 - 2013-10-05 19:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-03-21 22:46 - 2013-10-04 02:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-03-21 22:46 - 2013-10-04 01:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-03-21 22:46 - 2013-09-28 01:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-03-21 22:46 - 2013-07-09 05:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-03-21 22:46 - 2013-07-09 05:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-03-21 22:46 - 2013-07-09 04:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-03-21 22:46 - 2013-07-09 04:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-03-21 22:46 - 2013-04-12 14:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-03-21 22:46 - 2011-12-30 06:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-03-21 22:46 - 2011-12-30 05:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-03-21 22:45 - 2014-02-07 01:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-21 22:45 - 2013-12-04 02:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-03-21 22:45 - 2013-12-04 02:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-03-21 22:45 - 2013-12-04 02:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-03-21 22:45 - 2013-12-04 02:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-03-21 22:45 - 2013-12-04 02:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-03-21 22:45 - 2013-12-04 02:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-03-21 22:45 - 2013-12-04 02:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-03-21 22:45 - 2013-12-04 02:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-03-21 22:45 - 2013-12-04 02:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-03-21 22:45 - 2013-12-04 02:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-03-21 22:45 - 2013-12-04 02:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-03-21 22:45 - 2013-12-04 02:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-03-21 22:45 - 2013-12-04 02:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-03-21 22:45 - 2013-12-04 02:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-03-21 22:45 - 2013-12-04 01:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-03-21 22:45 - 2013-12-04 01:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-03-21 22:45 - 2013-12-04 01:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-03-21 22:45 - 2013-12-04 01:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-03-21 22:45 - 2013-10-04 02:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-03-21 22:45 - 2013-10-04 02:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-03-21 22:45 - 2013-10-04 02:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-03-21 22:45 - 2013-10-04 01:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-03-21 22:45 - 2013-10-04 01:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-03-21 22:45 - 2013-10-04 01:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-03-21 22:45 - 2013-09-25 02:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-03-21 22:45 - 2013-09-25 02:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-03-21 22:45 - 2013-09-25 02:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-03-21 22:45 - 2013-09-25 02:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-03-21 22:45 - 2013-09-25 02:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-03-21 22:45 - 2013-09-25 02:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-03-21 22:45 - 2013-09-25 02:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-03-21 22:45 - 2013-09-25 02:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-03-21 22:45 - 2013-09-25 01:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-03-21 22:45 - 2013-09-25 01:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-03-21 22:45 - 2013-09-25 01:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-03-21 22:45 - 2013-09-25 01:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-03-21 22:45 - 2013-09-25 01:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-03-21 22:45 - 2013-08-05 02:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-03-21 22:45 - 2013-07-04 12:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-03-21 22:45 - 2013-06-06 05:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-03-21 22:45 - 2013-06-06 05:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-03-21 22:45 - 2013-06-06 05:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-03-21 22:45 - 2013-06-06 05:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-03-21 22:45 - 2013-06-06 04:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-03-21 22:45 - 2013-06-06 04:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-03-21 22:45 - 2013-06-06 04:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-03-21 22:45 - 2013-06-06 03:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-03-21 22:45 - 2013-06-06 03:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-03-21 22:45 - 2013-06-06 03:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-03-21 22:45 - 2011-03-11 06:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-03-21 22:45 - 2011-03-11 06:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-03-21 22:45 - 2011-03-11 05:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-03-21 22:45 - 2011-03-11 05:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-03-21 22:44 - 2013-11-27 01:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-03-21 22:44 - 2013-11-27 01:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-03-21 22:44 - 2013-11-27 01:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-03-21 22:44 - 2013-11-27 01:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-03-21 22:44 - 2013-11-27 01:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-03-21 22:44 - 2013-08-02 02:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-03-21 22:44 - 2013-08-02 02:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-03-21 22:44 - 2013-08-02 02:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 02:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-03-21 22:44 - 2013-08-02 01:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 01:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-03-21 22:44 - 2013-08-02 00:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-03-21 22:44 - 2013-08-02 00:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 00:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 00:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-03-21 22:44 - 2013-08-02 00:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-03-21 22:44 - 2013-07-25 09:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-03-21 22:44 - 2013-07-25 08:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-03-21 22:44 - 2013-07-12 10:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-03-21 22:44 - 2013-07-12 10:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-03-21 22:44 - 2013-07-09 05:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-03-21 22:44 - 2013-07-09 04:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-03-21 22:44 - 2013-07-04 12:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-03-21 22:44 - 2013-07-04 12:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-03-21 22:44 - 2013-07-04 11:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-03-21 22:44 - 2013-07-04 11:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-03-21 22:44 - 2013-07-04 10:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-03-21 22:44 - 2013-07-03 04:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-03-21 22:44 - 2013-07-03 04:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-03-21 22:44 - 2013-06-25 22:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-03-21 22:44 - 2013-04-25 23:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-03-21 22:44 - 2013-03-31 22:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-03-21 22:44 - 2013-02-12 04:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-03-21 22:44 - 2012-11-28 22:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-03-21 22:44 - 2012-11-28 22:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-03-21 22:44 - 2012-11-28 22:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-03-21 22:44 - 2012-11-02 05:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-03-21 22:44 - 2012-11-02 05:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-03-21 22:44 - 2012-11-01 05:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-03-21 22:44 - 2012-11-01 04:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-03-21 22:44 - 2012-10-03 17:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-03-21 22:44 - 2012-10-03 17:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-03-21 22:44 - 2012-10-03 17:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-03-21 22:44 - 2012-10-03 17:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-03-21 22:44 - 2012-10-03 17:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-03-21 22:44 - 2012-10-03 17:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-03-21 22:44 - 2012-10-03 16:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-03-21 22:44 - 2012-10-03 16:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-03-21 22:44 - 2012-10-03 16:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-03-21 22:44 - 2012-10-03 16:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-03-21 22:44 - 2012-08-22 18:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-03-21 22:44 - 2012-08-21 21:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-03-21 22:44 - 2012-07-04 20:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-03-21 22:44 - 2012-05-01 05:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-03-21 22:44 - 2012-04-26 05:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-03-21 22:44 - 2012-04-26 05:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-03-21 22:44 - 2012-04-26 05:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-03-21 22:44 - 2012-01-13 07:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-03-21 22:44 - 2011-04-22 22:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-03-21 22:44 - 2011-03-03 06:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-03-21 22:44 - 2011-03-03 06:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-03-21 22:44 - 2011-03-03 06:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-03-21 22:44 - 2011-03-03 05:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-03-21 22:44 - 2011-03-03 05:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-03-21 22:43 - 2014-03-21 22:43 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Macromedia
2014-03-21 22:43 - 2014-03-21 22:43 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Adobe
2014-03-21 22:43 - 2014-03-21 22:43 - 00000000 ____D () C:\Users\redsky\AppData\Local\Macromedia
2014-03-21 22:43 - 2013-09-08 02:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-03-21 22:43 - 2013-09-08 02:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-03-21 22:43 - 2013-06-15 04:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-03-21 22:43 - 2012-12-07 13:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-03-21 22:43 - 2012-12-07 13:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-03-21 22:43 - 2012-12-07 12:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-03-21 22:43 - 2012-12-07 12:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-03-21 22:43 - 2012-12-07 11:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-03-21 22:43 - 2012-12-07 11:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-03-21 22:43 - 2012-12-07 11:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-03-21 22:43 - 2012-12-07 11:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-03-21 22:43 - 2012-12-07 11:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-03-21 22:43 - 2012-12-07 11:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-03-21 22:43 - 2012-12-07 11:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-03-21 22:43 - 2012-12-07 11:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-03-21 22:43 - 2012-12-07 10:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-03-21 22:43 - 2012-11-22 05:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-03-21 22:43 - 2012-11-22 04:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-03-21 22:43 - 2012-04-28 03:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-03-21 22:43 - 2011-08-17 05:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-03-21 22:43 - 2011-08-17 05:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-03-21 22:43 - 2011-08-17 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-03-21 22:43 - 2011-08-17 04:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-03-21 22:43 - 2011-04-29 03:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-03-21 22:43 - 2011-04-29 03:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-03-21 22:43 - 2011-04-29 03:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-03-21 22:39 - 2014-02-04 02:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-21 22:39 - 2014-02-04 02:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-21 22:39 - 2013-11-26 11:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-03-21 22:39 - 2013-10-03 02:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-03-21 22:39 - 2013-10-03 02:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-03-21 22:39 - 2013-09-08 02:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-03-21 22:39 - 2013-08-29 02:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-03-21 22:39 - 2013-08-29 02:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-03-21 22:39 - 2013-08-29 02:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-03-21 22:39 - 2013-08-29 02:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-03-21 22:39 - 2013-08-29 02:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-03-21 22:39 - 2013-08-29 01:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-03-21 22:39 - 2013-08-29 01:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-03-21 22:39 - 2013-08-29 01:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-03-21 22:39 - 2013-08-29 01:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-03-21 22:39 - 2013-08-29 01:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-03-21 22:39 - 2013-08-29 01:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-03-21 22:39 - 2013-08-29 00:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-03-21 22:39 - 2013-08-29 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-03-21 22:39 - 2013-08-29 00:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-03-21 22:39 - 2013-08-29 00:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-03-21 22:39 - 2013-07-26 02:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-03-21 22:39 - 2013-07-26 02:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-03-21 22:39 - 2013-07-26 01:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-03-21 22:39 - 2013-07-26 01:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-03-21 22:39 - 2013-07-20 10:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-21 22:39 - 2013-07-20 10:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-21 22:39 - 2013-05-10 05:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-03-21 22:39 - 2013-05-10 03:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-03-21 22:39 - 2013-04-26 05:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-03-21 22:39 - 2013-04-26 04:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-03-21 22:39 - 2013-01-24 06:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-03-21 22:39 - 2013-01-03 06:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-03-21 22:39 - 2012-11-30 05:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-03-21 22:39 - 2012-11-30 05:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-03-21 22:39 - 2012-11-30 05:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-03-21 22:39 - 2012-11-23 03:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-03-21 22:39 - 2012-09-25 22:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-03-21 22:39 - 2012-09-25 22:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-03-21 22:39 - 2012-08-11 00:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-03-21 22:39 - 2012-08-10 23:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-03-21 22:39 - 2012-07-04 22:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-03-21 22:39 - 2012-07-04 22:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-03-21 22:39 - 2012-07-04 22:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-03-21 22:39 - 2012-07-04 21:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-03-21 22:39 - 2012-07-04 21:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-03-21 22:39 - 2012-04-07 12:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-03-21 22:39 - 2012-04-07 11:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-03-21 22:39 - 2012-03-17 07:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-03-21 22:39 - 2011-05-24 11:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-03-21 22:39 - 2011-05-24 10:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-03-21 22:39 - 2011-05-24 10:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-03-21 22:39 - 2011-05-24 10:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-03-21 22:39 - 2011-05-24 10:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-03-21 22:39 - 2011-02-18 10:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-03-21 22:39 - 2011-02-18 05:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-03-21 22:39 - 2011-02-05 17:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-03-21 22:39 - 2011-02-05 17:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-03-21 22:39 - 2011-02-05 17:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-03-21 22:39 - 2011-02-05 17:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-03-21 22:39 - 2011-02-05 17:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-03-21 22:39 - 2011-02-05 17:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-03-21 22:39 - 2011-02-05 17:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-03-21 22:38 - 2013-10-12 02:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-03-21 22:38 - 2013-10-12 02:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-03-21 22:38 - 2013-10-12 02:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-03-21 22:38 - 2013-10-12 02:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-03-21 22:38 - 2013-10-12 02:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-03-21 22:38 - 2013-10-12 02:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-03-21 22:38 - 2013-10-12 02:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-03-21 22:38 - 2013-10-12 02:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-03-21 22:38 - 2013-10-12 02:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-03-21 22:38 - 2013-10-12 01:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-03-21 22:38 - 2013-10-12 01:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-03-21 22:38 - 2013-10-12 01:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-03-21 22:38 - 2013-10-12 01:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-03-21 22:38 - 2013-08-01 12:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-03-21 22:38 - 2013-05-13 05:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-03-21 22:38 - 2013-05-13 03:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-03-21 22:38 - 2013-05-13 03:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-03-21 22:38 - 2013-05-13 03:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-03-21 22:38 - 2013-04-10 06:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-03-21 22:38 - 2012-06-06 06:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-03-21 22:38 - 2012-06-06 05:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-03-21 22:38 - 2012-05-14 05:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-03-21 22:38 - 2012-05-05 08:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-03-21 22:38 - 2012-05-05 07:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-03-21 22:38 - 2011-12-16 08:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-03-21 22:38 - 2011-12-16 07:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-03-21 22:38 - 2011-10-15 06:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-03-21 22:38 - 2011-10-15 05:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-03-21 22:38 - 2011-08-27 05:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-03-21 22:38 - 2011-08-27 05:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-03-21 22:38 - 2011-08-27 04:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-03-21 22:38 - 2011-08-27 04:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-03-21 22:38 - 2011-05-03 05:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-03-21 22:38 - 2011-05-03 04:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-03-21 22:38 - 2011-02-23 04:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-03-21 22:38 - 2011-02-12 11:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-03-21 22:38 - 2011-02-03 11:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-03-21 22:37 - 2013-08-28 01:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-03-21 22:37 - 2011-11-19 14:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-03-21 22:37 - 2011-11-19 14:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-03-21 22:36 - 2014-03-23 10:43 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-21 22:36 - 2014-03-23 10:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-21 22:36 - 2014-03-23 10:43 - 00000000 ____D () C:\Users\redsky\AppData\Local\Adobe
2014-03-21 22:36 - 2014-03-21 22:36 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-03-21 22:36 - 2014-03-21 22:36 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-21 22:27 - 2012-02-17 06:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-03-21 22:27 - 2012-02-17 05:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-03-21 22:27 - 2012-02-17 04:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-03-21 22:00 - 2014-03-29 00:12 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\SoftGrid Client
2014-03-21 22:00 - 2014-03-21 22:00 - 00000000 ____D () C:\Users\redsky\AppData\Local\SoftGrid Client
2014-03-21 21:59 - 2014-03-22 00:55 - 00790212 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-03-21 21:59 - 2014-03-22 00:55 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Windows\PCHEALTH
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-03-21 21:58 - 2014-03-21 22:00 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\TP
2014-03-21 21:57 - 2014-03-21 21:57 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Eusing
2014-03-21 21:53 - 2014-03-21 21:53 - 00000000 ____D () C:\Users\redsky\AppData\Local\Mozilla
2014-03-21 21:49 - 2014-03-21 21:49 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\BatteryCare
2014-03-21 21:49 - 2014-03-21 21:49 - 00000000 ____D () C:\Program Files (x86)\BatteryCare
2014-03-21 21:45 - 2014-03-21 21:45 - 00000000 ____D () C:\ProgramData\CyberLink
2014-03-21 21:43 - 2014-03-21 21:44 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-03-21 21:43 - 2014-03-21 21:42 - 00505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-03-21 21:43 - 2014-03-21 21:42 - 00353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-03-21 21:43 - 2014-03-21 21:42 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-03-21 21:42 - 2014-03-28 23:45 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Skype
2014-03-21 21:41 - 2014-03-21 22:30 - 00000000 ____D () C:\ProgramData\Skype
2014-03-21 21:41 - 2014-03-21 21:41 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-21 21:36 - 2014-03-21 21:36 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\TuneUp Software
2014-03-21 21:35 - 2014-03-23 15:36 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-03-21 21:33 - 2014-03-21 21:33 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Malwarebytes
2014-03-21 21:28 - 2012-06-02 22:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-03-21 21:28 - 2012-06-02 22:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-03-21 21:28 - 2012-06-02 22:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-03-21 21:28 - 2012-06-02 22:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-03-21 21:28 - 2012-06-02 22:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-03-21 21:28 - 2012-06-02 22:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-03-21 21:28 - 2012-06-02 22:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-03-21 21:28 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-03-21 21:28 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-03-21 21:11 - 2014-03-21 21:11 - 00000000 ____D () C:\ProgramData\Dell
2014-03-21 21:11 - 2014-03-21 21:11 - 00000000 ____D () C:\Program Files\Dell
2014-03-21 21:10 - 2014-03-21 21:10 - 00000000 ____D () C:\Program Files (x86)\JMicron
2014-03-21 21:09 - 2014-03-21 21:09 - 00000000 ____D () C:\Windows\SysWOW64\SDA
2014-03-21 21:07 - 2011-08-23 21:57 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-03-21 21:06 - 2014-03-21 21:06 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Intel
2014-03-21 21:05 - 2014-03-22 02:51 - 00000000 ____D () C:\Program Files\Intel
2014-03-21 21:03 - 2014-03-21 21:03 - 00000000 ____D () C:\Program Files (x86)\QCM20QDriver
2014-03-21 21:03 - 2010-07-02 01:46 - 00029288 _____ (Quanta Computer) C:\Windows\system32\Drivers\qicflt.sys
2014-03-21 21:03 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-03-21 21:03 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-03-21 21:03 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-03-21 21:03 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-03-21 21:03 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-03-21 21:03 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-03-21 21:03 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-03-21 21:03 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-03-21 21:03 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-03-21 21:03 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-03-21 21:03 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-03-21 21:03 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-03-21 21:03 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-03-21 21:03 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-03-21 21:03 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-03-21 21:03 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-03-21 21:03 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-03-21 21:03 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-03-21 21:03 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-03-21 21:03 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-03-21 21:03 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-03-21 21:03 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-03-21 21:03 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-03-21 21:03 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-03-21 21:03 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-03-21 21:03 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-03-21 21:03 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-03-21 21:03 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-03-21 21:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-03-21 21:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-03-21 21:03 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-03-21 21:03 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-03-21 21:03 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-03-21 21:03 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-03-21 21:03 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-03-21 21:03 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-03-21 21:03 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-03-21 21:03 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-03-21 21:03 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-03-21 21:03 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-03-21 21:03 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-03-21 21:03 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-03-21 21:03 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-03-21 21:03 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-03-21 21:03 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-03-21 21:03 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-03-21 21:03 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-03-21 21:03 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-03-21 21:03 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-03-21 21:03 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-03-21 21:03 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-03-21 21:03 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-03-21 21:03 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-03-21 21:03 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-03-21 21:03 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-03-21 21:03 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-03-21 21:03 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-03-21 21:03 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-03-21 21:03 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-03-21 21:03 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-03-21 21:03 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-03-21 21:03 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-03-21 21:03 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-03-21 21:03 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-03-21 21:03 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-03-21 21:03 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-03-21 21:03 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-03-21 21:03 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-03-21 21:03 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-03-21 21:03 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-03-21 21:03 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-03-21 21:03 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-03-21 21:03 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-03-21 21:03 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-03-21 21:03 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-03-21 21:03 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-03-21 21:03 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-03-21 21:03 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-03-21 21:03 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-03-21 21:03 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-03-21 21:03 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-03-21 21:03 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-03-21 21:03 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-03-21 21:03 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-03-21 21:03 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-03-21 21:03 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-03-21 21:03 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-03-21 21:03 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-03-21 21:03 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-03-21 21:03 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-03-21 21:03 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-03-21 21:03 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-03-21 21:03 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-03-21 21:03 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-03-21 21:03 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-03-21 21:03 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-03-21 21:03 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-03-21 21:03 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-03-21 21:03 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-03-21 21:03 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-03-21 21:03 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-03-21 21:03 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-03-21 21:03 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-03-21 21:03 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-03-21 21:03 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-03-21 21:03 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-03-21 21:03 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-03-21 21:03 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-03-21 21:03 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-03-21 21:03 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-03-21 21:03 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-03-21 21:03 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-03-21 21:03 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-03-21 21:03 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-03-21 21:03 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-03-21 21:03 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-03-21 21:03 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-03-21 21:03 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-03-21 21:03 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-03-21 21:03 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-03-21 21:03 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-03-21 21:03 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-03-21 21:03 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-03-21 21:03 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-03-21 21:03 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-03-21 21:03 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-03-21 21:03 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-03-21 21:03 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-03-21 21:03 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-03-21 21:03 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-03-21 21:03 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-03-21 21:03 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-03-21 21:03 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-03-21 21:03 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-03-21 21:03 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-03-21 21:03 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-03-21 21:03 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-03-21 21:03 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-03-21 21:03 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-03-21 21:03 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-03-21 21:03 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-03-21 21:03 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-03-21 21:03 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-03-21 21:03 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-03-21 21:03 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-03-21 21:03 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-03-21 21:03 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-03-21 21:03 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-03-21 21:03 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-03-21 21:03 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-03-21 21:01 - 2014-03-21 21:13 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-21 21:01 - 2014-03-21 21:13 - 00000000 ____D () C:\Windows\system32\NV
2014-03-21 21:00 - 2014-03-22 21:08 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-21 21:00 - 2014-03-21 21:00 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-03-21 21:00 - 2014-03-21 21:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-21 21:00 - 2014-03-21 21:00 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-21 21:00 - 2014-03-21 21:00 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-21 21:00 - 2011-11-04 05:19 - 24796992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 24747328 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 18875712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 17248576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 15695680 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 13207872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 13010752 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-21 21:00 - 2011-11-04 05:19 - 10428736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 08797504 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 07582528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 07048512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 05580096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 05160256 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 03074368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 02824000 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 02544960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 02472768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 02403136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 02366839 _____ () C:\Windows\system32\nvcoproc.bin
2014-03-21 21:00 - 2011-11-04 05:19 - 02233664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 02100544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 01640768 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-03-21 21:00 - 2011-11-04 05:19 - 01543488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 01454912 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco64.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 01350976 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00862016 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00837952 _____ (NVIDIA Corporation) C:\Windows\system32\easyupdatusapiu64.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00718144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00540992 _____ (NVIDIA Corporation) C:\Windows\system32\nvhotkey.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00371520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoptimusmft.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00364352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00330560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoptimusmft.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00301888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00249152 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2014-03-21 21:00 - 2011-11-04 05:19 - 00241984 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00222528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00203072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00137536 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00068928 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00061248 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00055616 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-03-21 21:00 - 2011-11-04 05:19 - 00028992 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-03-21 21:00 - 2011-11-04 05:19 - 00007384 _____ () C:\Windows\system32\nvinfo.pb
2014-03-21 21:00 - 2009-07-14 04:54 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-21 21:00 - 2009-07-14 04:49 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-21 20:58 - 2014-03-21 20:58 - 00019006 _____ () C:\Windows\system32\results.xml
2014-03-21 20:57 - 2014-03-22 02:50 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-03-21 20:57 - 2011-08-31 13:48 - 00510232 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-03-21 20:57 - 2011-08-31 13:48 - 00416024 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-03-21 20:57 - 2011-08-31 13:48 - 00239896 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-03-21 20:57 - 2011-08-31 13:48 - 00167704 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-03-21 20:57 - 2011-07-19 15:03 - 00017360 _____ () C:\Windows\system32\iglhxs64.vp
2014-03-21 20:57 - 2011-07-19 14:45 - 00090112 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v2455.dll
2014-03-21 20:57 - 2011-07-19 14:39 - 12287456 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-03-21 20:57 - 2011-07-19 14:39 - 08310272 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2014-03-21 20:57 - 2011-07-19 14:38 - 00963116 _____ () C:\Windows\SysWOW64\igkrng600.bin
2014-03-21 20:57 - 2011-07-19 14:38 - 00963116 _____ () C:\Windows\system32\igkrng600.bin
2014-03-21 20:57 - 2011-07-19 14:38 - 00218304 _____ () C:\Windows\SysWOW64\igfcg600m.bin
2014-03-21 20:57 - 2011-07-19 14:38 - 00218304 _____ () C:\Windows\system32\igfcg600m.bin
2014-03-21 20:57 - 2011-07-19 14:37 - 00075776 _____ () C:\Windows\system32\igdde64.dll
2014-03-21 20:57 - 2011-07-19 14:35 - 06321152 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-03-21 20:57 - 2011-07-19 14:33 - 00056832 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-03-21 20:57 - 2011-07-19 14:32 - 00581120 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2014-03-21 20:57 - 2011-07-19 14:12 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00283648 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00283136 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-03-21 20:57 - 2011-07-19 14:12 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-03-21 20:57 - 2011-07-19 14:11 - 00390144 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-03-21 20:57 - 2011-07-19 14:11 - 00378368 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-03-21 20:57 - 2011-07-19 14:11 - 00375808 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-03-21 20:57 - 2011-07-19 14:11 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-03-21 20:57 - 2011-07-19 14:11 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-03-21 20:57 - 2011-07-19 14:11 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-03-21 20:57 - 2011-07-19 14:10 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-03-21 20:57 - 2011-07-19 14:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-03-21 20:57 - 2011-07-19 14:10 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-03-21 20:57 - 2011-07-19 14:06 - 00294400 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-03-21 20:57 - 2011-07-19 14:06 - 00024576 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 01981696 _____ () C:\Windows\system32\iglhxa64.cpa
2014-03-21 20:57 - 2011-07-19 14:04 - 00376832 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 00376832 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 00162816 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 00140288 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 00098304 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 00098304 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-03-21 20:57 - 2011-07-19 14:04 - 00059243 _____ () C:\Windows\system32\iglhxo64.vp
2014-03-21 20:57 - 2011-07-19 14:04 - 00059174 _____ () C:\Windows\system32\iglhxg64.vp
2014-03-21 20:57 - 2011-07-19 14:04 - 00059062 _____ () C:\Windows\system32\iglhxc64.vp
2014-03-21 20:57 - 2011-07-19 14:04 - 00001074 _____ () C:\Windows\system32\iglhxa64.vp
2014-03-21 20:57 - 2010-10-15 01:28 - 00317440 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-03-21 20:57 - 2010-10-15 01:27 - 00014848 _____ (Intel® Corporation) C:\Windows\system32\IntcDAuC.dll
2014-03-21 20:56 - 2011-08-31 13:48 - 04378392 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-03-21 20:56 - 2011-08-31 13:48 - 00392472 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-03-21 20:56 - 2011-08-31 13:48 - 00179992 _____ () C:\Windows\system32\difx64.exe
2014-03-21 20:56 - 2011-07-19 14:38 - 00145804 _____ () C:\Windows\SysWOW64\igcompkrng600.bin
2014-03-21 20:56 - 2011-07-19 14:38 - 00145804 _____ () C:\Windows\system32\igcompkrng600.bin
2014-03-21 20:56 - 2011-07-19 14:30 - 14598144 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2014-03-21 20:56 - 2011-07-19 14:25 - 12339712 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-03-21 20:56 - 2011-07-19 14:20 - 18640896 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-03-21 20:56 - 2011-07-19 14:15 - 13903872 _____ () C:\Windows\SysWOW64\ig4icd32.dll
2014-03-21 20:56 - 2011-07-19 14:13 - 00211217 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00182649 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00136584 _____ () C:\Windows\system32\Gfxres.ro-RO.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00135357 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00133841 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00133683 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00132785 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00131840 _____ () C:\Windows\system32\Gfxres.hr-HR.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00128998 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00117657 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-03-21 20:56 - 2011-07-19 14:13 - 00116368 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00198037 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00156192 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00153129 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00148981 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00140212 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00138707 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00137840 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00137641 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00135654 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00134821 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00134407 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00134373 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00133381 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00133149 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00132887 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00128802 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00128542 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-03-21 20:56 - 2011-07-19 14:12 - 00124056 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-03-21 20:56 - 2011-07-19 14:11 - 00146432 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-03-21 20:56 - 2011-07-19 14:11 - 00110080 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2014-03-21 20:56 - 2011-07-19 14:04 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-03-21 20:55 - 2014-03-21 20:55 - 00074452 _____ () C:\Windows\system32\Drivers\RTWAVES30.dat
2014-03-21 20:55 - 2014-03-21 20:55 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-03-21 20:55 - 2014-03-21 20:55 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-03-21 20:55 - 2014-03-21 20:55 - 00000000 ____D () C:\Program Files\Realtek
2014-03-21 20:54 - 2014-03-22 02:58 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-03-21 20:54 - 2010-12-08 16:51 - 02657768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-03-21 20:54 - 2010-12-08 13:41 - 00581120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat
2014-03-21 20:54 - 2010-12-07 20:46 - 02249320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-03-21 20:54 - 2010-12-06 17:04 - 02825832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-03-21 20:54 - 2010-11-29 18:47 - 02578576 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-03-21 20:54 - 2010-11-29 18:47 - 01868944 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2014-03-21 20:54 - 2010-11-29 14:36 - 00702808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2014-03-21 20:54 - 2010-11-23 18:45 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-03-21 20:54 - 2010-11-22 11:39 - 00626792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-03-21 20:54 - 2010-11-11 13:27 - 00083048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2014-03-21 20:54 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-03-21 20:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-03-21 20:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-03-21 20:54 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-03-21 20:54 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-03-21 20:54 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-03-21 20:54 - 2010-11-03 18:31 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-03-21 20:54 - 2010-11-03 18:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-03-21 20:54 - 2010-11-03 18:30 - 00376936 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2014-03-21 20:54 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 01327208 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 01179752 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 01111656 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00504936 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00491112 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00475752 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00317032 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00269928 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00266856 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00126056 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00125544 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-03-21 20:54 - 2010-11-03 18:29 - 00125032 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-03-21 20:54 - 2010-10-29 10:29 - 01937312 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-03-21 20:54 - 2010-10-28 10:46 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-03-21 20:54 - 2010-10-03 13:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-03-21 20:54 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-03-21 20:54 - 2010-09-24 17:13 - 00873048 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2014-03-21 20:54 - 2010-09-24 17:13 - 00739416 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2014-03-21 20:54 - 2010-09-24 17:13 - 00064600 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2014-03-21 20:54 - 2010-07-22 16:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-03-21 20:54 - 2010-07-02 19:40 - 00080984 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-03-21 20:54 - 2010-05-06 17:34 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-03-21 20:54 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-03-21 20:54 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-03-21 20:54 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-03-21 20:54 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-03-21 20:54 - 2009-11-18 18:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-03-21 20:54 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2014-03-21 20:54 - 2009-11-17 18:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-03-21 20:52 - 2014-03-22 21:50 - 00033292 _____ () C:\Windows\DPINST.LOG
2014-03-21 20:52 - 2014-03-21 20:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-21 20:52 - 2011-08-25 21:06 - 00411432 ____N (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2014-03-21 20:52 - 2010-09-23 17:42 - 00147752 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo4.dll
2014-03-21 20:50 - 2010-08-20 11:05 - 00021616 _____ (ST Microelectronics) C:\Windows\system32\Drivers\stdcfltn.sys
2014-03-21 20:49 - 2014-03-21 20:49 - 00000000 ____D () C:\Program Files\STMicroelectronics
2014-03-21 20:49 - 2014-03-21 20:49 - 00000000 ____D () C:\Program Files (x86)\STMicroelectronics
2014-03-21 20:49 - 2010-12-13 09:34 - 00081008 _____ (ST Microelectronics) C:\Windows\system32\accelernco01.dll
2014-03-21 20:49 - 2010-12-13 09:34 - 00027760 _____ (ST Microelectronics) C:\Windows\system32\Drivers\Accelern.sys
2014-03-21 20:48 - 2014-03-21 20:48 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-03-21 20:46 - 2014-03-22 01:54 - 00058016 _____ () C:\Users\redsky\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-21 20:46 - 2014-03-21 20:46 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Intel Corporation
2014-03-21 20:45 - 2011-01-12 17:51 - 00439320 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2014-03-21 20:45 - 2010-12-20 18:08 - 00008192 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-03-21 20:44 - 2014-03-21 21:44 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-21 20:44 - 2014-03-21 20:44 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\InstallShield
2014-03-21 20:44 - 2010-10-19 16:34 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2014-03-21 20:42 - 2014-03-22 02:50 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-03-21 20:42 - 2014-03-21 20:57 - 00000000 ____D () C:\Intel
2014-03-21 20:42 - 2011-04-15 16:00 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-03-21 20:39 - 2014-03-21 20:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-03-21 20:33 - 2014-03-22 09:44 - 00001413 _____ () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-21 20:32 - 2014-03-29 17:56 - 01382698 _____ () C:\Windows\WindowsUpdate.log
2014-03-21 20:32 - 2014-03-28 23:49 - 00000000 ____D () C:\Users\redsky
2014-03-21 20:32 - 2014-03-25 18:56 - 00000000 ____D () C:\Users\redsky\AppData\Local\VirtualStore
2014-03-21 20:32 - 2014-03-22 01:54 - 00000000 ___RD () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-21 20:32 - 2014-03-22 01:54 - 00000000 ___RD () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-21 20:32 - 2014-03-21 20:32 - 00000020 ___SH () C:\Users\redsky\ntuser.ini
2014-03-21 20:32 - 2014-03-21 20:32 - 00000000 ____D () C:\Recovery
2014-03-21 20:32 - 2009-07-14 04:54 - 00000000 ___RD () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-21 20:32 - 2009-07-14 04:49 - 00000000 ___RD () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
 
==================== One Month Modified Files and Folders =======
 
2014-03-29 18:33 - 2014-03-29 18:32 - 00011771 _____ () C:\Users\redsky\Downloads\FRST.txt
2014-03-29 18:32 - 2014-03-29 18:32 - 00000000 ____D () C:\FRST
2014-03-29 18:31 - 2014-03-29 18:31 - 02157056 _____ (Farbar) C:\Users\redsky\Downloads\FRST64.exe
2014-03-29 18:30 - 2014-03-29 18:30 - 00000838 _____ () C:\Users\redsky\Desktop\checkup.txt
2014-03-29 18:27 - 2014-03-29 18:27 - 00987448 _____ () C:\Users\redsky\Downloads\SecurityCheck.exe
2014-03-29 18:09 - 2014-03-29 00:04 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-29 17:57 - 2014-03-25 18:46 - 00000728 _____ () C:\Windows\setupact.log
2014-03-29 17:56 - 2014-03-21 20:32 - 01382698 _____ () C:\Windows\WindowsUpdate.log
2014-03-29 17:02 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-29 15:35 - 2009-07-14 04:45 - 00021472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-29 15:35 - 2009-07-14 04:45 - 00021472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-29 15:34 - 2009-07-14 05:13 - 00782164 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-29 15:33 - 2014-03-24 02:03 - 00001844 _____ () C:\Users\Public\Desktop\McAfee Internet Security.lnk
2014-03-29 15:28 - 2014-03-29 00:04 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-29 15:28 - 2014-03-25 18:46 - 00003736 _____ () C:\Windows\PFRO.log
2014-03-29 15:28 - 2009-07-14 05:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-29 00:29 - 2014-03-29 00:29 - 01319613 _____ () C:\Users\redsky\Desktop\hsr3.0cdromsetup.exe
2014-03-29 00:20 - 2014-03-29 00:20 - 00001320 _____ () C:\Users\redsky\Desktop\DTI Surface Scanner.lnk
2014-03-29 00:20 - 2014-03-29 00:20 - 00000000 ____D () C:\Program Files (x86)\DTI Data
2014-03-29 00:19 - 2014-03-29 00:19 - 02306140 _____ (DTI Data ) C:\Users\redsky\Downloads\windows_surface_scanner.exe
2014-03-29 00:12 - 2014-03-21 22:00 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\SoftGrid Client
2014-03-29 00:09 - 2014-03-29 00:09 - 00488141 _____ () C:\Users\redsky\Downloads\extension_1_7_4.crx
2014-03-29 00:05 - 2014-03-29 00:05 - 00000000 ____D () C:\Users\redsky\AppData\Local\CrashDumps
2014-03-29 00:04 - 2014-03-29 00:04 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-29 00:04 - 2014-03-29 00:04 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-29 00:04 - 2014-03-23 00:44 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-29 00:03 - 2014-03-22 02:30 - 00000000 ____D () C:\Users\redsky\AppData\Local\Deployment
2014-03-29 00:03 - 2014-03-22 02:30 - 00000000 ____D () C:\Users\redsky\AppData\Local\Apps\2.0
2014-03-29 00:00 - 2014-03-28 23:59 - 00001605 _____ () C:\DelFix.txt
2014-03-28 23:52 - 2014-03-25 21:59 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2014
2014-03-28 23:52 - 2014-03-25 21:59 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2014-03-28 23:49 - 2014-03-21 20:32 - 00000000 ____D () C:\Users\redsky
2014-03-28 23:48 - 2014-03-23 00:44 - 00000000 ____D () C:\Users\redsky\AppData\Local\Google
2014-03-28 23:47 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\registration
2014-03-28 23:45 - 2014-03-21 21:42 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Skype
2014-03-28 23:16 - 2014-03-28 23:16 - 00000000 ____D () C:\ProgramData\Citrix
2014-03-28 23:11 - 2014-03-28 23:11 - 00000000 ____D () C:\Users\redsky\AppData\Local\Citrix
2014-03-28 23:11 - 2014-03-28 23:11 - 00000000 ____D () C:\Program Files (x86)\Citrix
2014-03-28 22:30 - 2014-03-28 22:19 - 00000000 ____D () C:\Program Files (x86)\Ss-Tools
2014-03-27 22:23 - 2014-03-27 22:23 - 00000000 _____ () C:\asc_rdflag
2014-03-27 22:23 - 2014-03-27 22:06 - 00000000 _____ () C:\Windows\system32\config\SYSTEM.iobit
2014-03-27 22:03 - 2014-03-27 22:03 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\IObit
2014-03-26 23:10 - 2014-03-26 21:17 - 00000000 ____D () C:\Users\redsky\Documents\Anti-Malware
2014-03-26 21:40 - 2014-03-26 21:40 - 00000000 ____D () C:\Users\redsky\Documents\PC Activator
2014-03-26 11:23 - 2014-03-24 22:51 - 00000000 ____D () C:\Windows\ERUNT
2014-03-26 11:15 - 2009-07-14 02:34 - 00000215 _____ () C:\Windows\system.ini
2014-03-26 11:11 - 2014-03-25 22:33 - 00000000 ____D () C:\Windows\erdnt
2014-03-26 10:31 - 2014-03-25 21:47 - 00117464 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-26 10:31 - 2014-03-25 21:46 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-25 22:39 - 2009-07-14 03:20 - 00000000 __RHD () C:\Users\Default
2014-03-25 22:07 - 2014-03-25 22:07 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2014-03-25 21:58 - 2014-03-25 21:57 - 16578402 _____ ( ) C:\Users\redsky\Desktop\DLLSuite_Setup.exe
2014-03-25 19:50 - 2014-03-25 19:50 - 210692794 _____ () C:\Users\redsky\Desktop\back.reg
2014-03-25 18:56 - 2014-03-21 20:32 - 00000000 ____D () C:\Users\redsky\AppData\Local\VirtualStore
2014-03-25 18:55 - 2014-03-25 18:55 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-03-25 18:46 - 2014-03-24 02:01 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-03-24 22:00 - 2014-03-24 22:00 - 00278831 _____ () C:\Users\redsky\Downloads\wireless.exe
2014-03-24 21:58 - 2014-03-24 01:50 - 00000000 ____D () C:\ProgramData\McAfee
2014-03-24 20:47 - 2014-03-24 01:50 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-03-24 02:02 - 2014-03-24 02:02 - 00000000 ____D () C:\Program Files (x86)\McAfee.com
2014-03-24 02:02 - 2014-03-24 02:01 - 00000000 ____D () C:\Program Files\McAfee
2014-03-24 02:01 - 2014-03-24 02:01 - 00000000 ____D () C:\Program Files\McAfee.com
2014-03-24 01:36 - 2014-03-23 19:57 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-03-24 01:36 - 2014-03-23 19:57 - 00000000 ____D () C:\Users\redsky\AppData\Local\Abelssoft
2014-03-24 01:36 - 2014-03-22 22:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-24 01:36 - 2009-07-14 05:32 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-03-24 01:36 - 2009-07-14 03:20 - 00000000 __RSD () C:\Windows\Media
2014-03-24 01:36 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-03-24 01:36 - 2009-07-14 03:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-03-24 00:46 - 2014-03-24 00:46 - 00000000 ____D () C:\Program Files (x86)\Repair File
2014-03-24 00:27 - 2014-03-24 00:27 - 00091259 _____ () C:\Users\redsky\Downloads\msls31.zip
2014-03-24 00:06 - 2014-03-24 00:06 - 00000385 _____ () C:\Users\redsky\AppData\Roaminguser_gensett.xml
2014-03-23 23:18 - 2014-03-23 23:18 - 00000684 ____H () C:\bdr-cf01
2014-03-23 23:18 - 2014-03-23 23:18 - 00000000 ____D () C:\ProgramData\BDLogging
2014-03-23 23:18 - 2014-03-23 23:17 - 00253404 ____H () C:\bdr-ld01
2014-03-23 23:18 - 2014-03-23 23:17 - 00009216 ____H () C:\bdr-ld01.mbr
2014-03-23 23:18 - 2014-03-23 23:17 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Bitdefender
2014-03-23 23:15 - 2014-03-23 23:15 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\QuickScan
2014-03-23 20:25 - 2014-03-23 20:25 - 02252680 _____ () C:\Users\redsky\Desktop\even viewer.txt
2014-03-23 19:56 - 2014-03-23 19:56 - 14535520 _____ (Abelssoft ) C:\Users\redsky\Downloads\checkdrive.exe
2014-03-23 19:23 - 2014-03-23 19:23 - 10104832 _____ (© Phoenix Technologies Ltd. ) C:\Users\redsky\Downloads\L702X_A19.exe
2014-03-23 18:36 - 2014-03-23 18:36 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Dell
2014-03-23 18:36 - 2014-03-23 18:36 - 00000000 ____D () C:\ProgramData\PCDr
2014-03-23 18:35 - 2014-03-23 18:35 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\PCDr
2014-03-23 18:33 - 2014-03-23 18:33 - 00417872 _____ () C:\Users\redsky\Downloads\DellSystemDetect.exe
2014-03-23 15:58 - 2014-03-23 15:58 - 04319176 _____ (Piriform Ltd) C:\Users\redsky\Downloads\dfsetup217.exe
2014-03-23 15:38 - 2014-03-23 15:38 - 00004442 _____ () C:\Windows\System32\Tasks\Análisis automático
2014-03-23 15:38 - 2014-03-23 15:38 - 00002189 _____ () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities.lnk
2014-03-23 15:38 - 2014-03-23 15:38 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities
2014-03-23 15:38 - 2014-03-23 15:37 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2010
2014-03-23 15:36 - 2014-03-21 21:35 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-03-23 12:04 - 2014-03-23 12:04 - 00001038 _____ () C:\Users\UpdatusUser\Desktop\Free Internet Window Washer.lnk
2014-03-23 12:04 - 2014-03-23 12:04 - 00001038 _____ () C:\Users\redsky\Desktop\Free Internet Window Washer.lnk
2014-03-23 12:04 - 2014-03-23 12:04 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Internet Window Washer
2014-03-23 12:04 - 2014-03-23 12:04 - 00000000 ____D () C:\Program Files (x86)\Free Internet Window Washer
2014-03-23 10:43 - 2014-03-21 22:36 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-23 10:43 - 2014-03-21 22:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-23 10:43 - 2014-03-21 22:36 - 00000000 ____D () C:\Users\redsky\AppData\Local\Adobe
2014-03-23 10:27 - 2014-03-23 03:02 - 00009290 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-23 02:11 - 2014-03-23 02:11 - 00000017 _____ () C:\Users\redsky\AppData\Local\resmon.resmoncfg
2014-03-23 02:09 - 2014-03-21 22:47 - 00005497 _____ () C:\WirelessDiagLog.csv
2014-03-23 01:36 - 2014-03-22 23:50 - 00000000 ____D () C:\Users\redsky\Doctor Web
2014-03-22 22:30 - 2014-03-22 22:30 - 00000000 ____D () C:\Program Files\WOT
2014-03-22 22:30 - 2014-03-22 22:30 - 00000000 ____D () C:\Program Files (x86)\WOT
2014-03-22 22:28 - 2014-03-22 22:28 - 00000000 ____D () C:\Program Files\Adblock Plus for IE
2014-03-22 21:50 - 2014-03-21 20:52 - 00033292 _____ () C:\Windows\DPINST.LOG
2014-03-22 21:40 - 2014-03-22 21:40 - 00001264 _____ () C:\Users\redsky\Desktop\Revo Uninstaller.lnk
2014-03-22 21:40 - 2014-03-22 21:40 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-03-22 21:08 - 2014-03-21 21:00 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-22 21:07 - 2014-03-22 21:07 - 00000000 ____D () C:\ProgramData\Sun
2014-03-22 21:07 - 2014-03-22 21:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-22 09:44 - 2014-03-21 20:33 - 00001413 _____ () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-22 09:42 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-03-22 09:42 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-03-22 09:42 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-03-22 09:42 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-03-22 04:21 - 2009-07-14 05:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-03-22 04:21 - 2009-07-14 05:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-03-22 04:20 - 2014-03-22 04:20 - 00000000 ____D () C:\Hotfix
2014-03-22 04:20 - 2009-07-14 04:45 - 00000000 ____D () C:\Windows\Setup
2014-03-22 04:20 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-03-22 04:20 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-03-22 03:07 - 2014-03-22 03:07 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-22 03:07 - 2014-03-22 03:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-22 03:07 - 2014-03-22 03:07 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-22 03:07 - 2014-03-22 03:07 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-22 03:07 - 2014-03-22 03:07 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-03-22 03:07 - 2014-03-22 03:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-03-22 03:07 - 2014-03-22 03:07 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-03-22 03:07 - 2014-03-22 03:07 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-03-22 03:07 - 2014-03-22 03:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-03-22 03:07 - 2014-03-22 03:07 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-03-22 03:07 - 2014-03-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-03-22 03:07 - 2014-03-22 03:07 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-03-22 03:07 - 2014-03-22 03:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-22 03:03 - 2014-03-22 03:03 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-22 02:58 - 2014-03-21 20:54 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-03-22 02:57 - 2014-03-22 02:57 - 00003384 _____ () C:\Windows\System32\Tasks\{771C5617-883E-494D-9315-09FE35072B19}
2014-03-22 02:52 - 2014-03-22 02:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_AMPPAL_01009.Wdf
2014-03-22 02:51 - 2014-03-22 02:51 - 00000000 ____D () C:\ProgramData\Intel
2014-03-22 02:51 - 2014-03-21 21:05 - 00000000 ____D () C:\Program Files\Intel
2014-03-22 02:50 - 2014-03-22 02:50 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-03-22 02:50 - 2014-03-21 20:57 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-03-22 02:50 - 2014-03-21 20:42 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-03-22 01:54 - 2014-03-21 20:46 - 00058016 _____ () C:\Users\redsky\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-22 01:54 - 2014-03-21 20:32 - 00000000 ___RD () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-22 01:54 - 2014-03-21 20:32 - 00000000 ___RD () C:\Users\redsky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-22 01:49 - 2009-07-14 04:45 - 00275712 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-22 01:37 - 2010-11-21 07:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-03-22 01:37 - 2009-07-14 05:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-22 01:37 - 2009-07-14 05:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-22 01:37 - 2009-07-14 03:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-03-22 01:24 - 2014-03-22 01:24 - 00000438 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-03-22 00:55 - 2014-03-21 21:59 - 00790212 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-03-22 00:55 - 2014-03-21 21:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-03-22 00:14 - 2014-03-22 00:14 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-03-21 23:57 - 2014-03-21 23:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-21 23:52 - 2014-03-21 23:52 - 00000000 ___RD () C:\MSOCache
2014-03-21 22:43 - 2014-03-21 22:43 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Macromedia
2014-03-21 22:43 - 2014-03-21 22:43 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Adobe
2014-03-21 22:43 - 2014-03-21 22:43 - 00000000 ____D () C:\Users\redsky\AppData\Local\Macromedia
2014-03-21 22:36 - 2014-03-21 22:36 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-03-21 22:36 - 2014-03-21 22:36 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-21 22:30 - 2014-03-21 21:41 - 00000000 ____D () C:\ProgramData\Skype
2014-03-21 22:00 - 2014-03-21 22:00 - 00000000 ____D () C:\Users\redsky\AppData\Local\SoftGrid Client
2014-03-21 22:00 - 2014-03-21 21:58 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\TP
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Windows\PCHEALTH
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-21 21:59 - 2014-03-21 21:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-03-21 21:57 - 2014-03-21 21:57 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Eusing
2014-03-21 21:53 - 2014-03-21 21:53 - 00000000 ____D () C:\Users\redsky\AppData\Local\Mozilla
2014-03-21 21:49 - 2014-03-21 21:49 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\BatteryCare
2014-03-21 21:49 - 2014-03-21 21:49 - 00000000 ____D () C:\Program Files (x86)\BatteryCare
2014-03-21 21:45 - 2014-03-21 21:45 - 00000000 ____D () C:\ProgramData\CyberLink
2014-03-21 21:44 - 2014-03-21 21:43 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-03-21 21:44 - 2014-03-21 20:44 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-21 21:42 - 2014-03-21 21:43 - 00505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-03-21 21:42 - 2014-03-21 21:43 - 00353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-03-21 21:42 - 2014-03-21 21:43 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-03-21 21:41 - 2014-03-21 21:41 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-21 21:36 - 2014-03-21 21:36 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\TuneUp Software
2014-03-21 21:33 - 2014-03-21 21:33 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Malwarebytes
2014-03-21 21:28 - 2009-07-14 03:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-03-21 21:13 - 2014-03-21 21:01 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-21 21:13 - 2014-03-21 21:01 - 00000000 ____D () C:\Windows\system32\NV
2014-03-21 21:11 - 2014-03-21 21:11 - 00000000 ____D () C:\ProgramData\Dell
2014-03-21 21:11 - 2014-03-21 21:11 - 00000000 ____D () C:\Program Files\Dell
2014-03-21 21:10 - 2014-03-21 21:10 - 00000000 ____D () C:\Program Files (x86)\JMicron
2014-03-21 21:09 - 2014-03-21 21:09 - 00000000 ____D () C:\Windows\SysWOW64\SDA
2014-03-21 21:06 - 2014-03-21 21:06 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Intel
2014-03-21 21:03 - 2014-03-21 21:03 - 00000000 ____D () C:\Program Files (x86)\QCM20QDriver
2014-03-21 21:00 - 2014-03-21 21:00 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-03-21 21:00 - 2014-03-21 21:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-21 21:00 - 2014-03-21 21:00 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-21 21:00 - 2014-03-21 21:00 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-21 21:00 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\Help
2014-03-21 20:58 - 2014-03-21 20:58 - 00019006 _____ () C:\Windows\system32\results.xml
2014-03-21 20:57 - 2014-03-21 20:42 - 00000000 ____D () C:\Intel
2014-03-21 20:55 - 2014-03-21 20:55 - 00074452 _____ () C:\Windows\system32\Drivers\RTWAVES30.dat
2014-03-21 20:55 - 2014-03-21 20:55 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-03-21 20:55 - 2014-03-21 20:55 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-03-21 20:55 - 2014-03-21 20:55 - 00000000 ____D () C:\Program Files\Realtek
2014-03-21 20:52 - 2014-03-21 20:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-03-21 20:49 - 2014-03-21 20:49 - 00000000 ____D () C:\Program Files\STMicroelectronics
2014-03-21 20:49 - 2014-03-21 20:49 - 00000000 ____D () C:\Program Files (x86)\STMicroelectronics
2014-03-21 20:48 - 2014-03-21 20:48 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-03-21 20:48 - 2009-07-14 05:32 - 00000000 ____D () C:\Windows\system32\restore
2014-03-21 20:46 - 2014-03-21 20:46 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\Intel Corporation
2014-03-21 20:44 - 2014-03-21 20:44 - 00000000 ____D () C:\Users\redsky\AppData\Roaming\InstallShield
2014-03-21 20:39 - 2014-03-21 20:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-03-21 20:32 - 2014-03-22 04:21 - 00000000 ____D () C:\Windows\Panther
2014-03-21 20:32 - 2014-03-21 20:32 - 00000020 ___SH () C:\Users\redsky\ntuser.ini
2014-03-21 20:32 - 2014-03-21 20:32 - 00000000 ____D () C:\Recovery
2014-03-21 20:31 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\rescache
2014-03-21 20:23 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-03-02 14:05 - 2014-03-21 23:56 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-03-22 17:31
 
==================== End Of Log ============================


#5 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 29 March 2014 - 01:45 PM

 
Addition
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by redsky at 2014-03-29 18:34:27
Running from C:\Users\redsky\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
 
==================== Installed Programs ======================
 
AccelerometerP11 (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 2.00.11.22 - STMicroelectronics)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{C23EE7CE-C1A3-4F94-A8F0-9E0AC9C6DE6E}) (Version: 1.1 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - )
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
BatteryCare 0.9.12.1 (HKLM-x32\...\{C6A6036D-FBD0-4324-BEAA-C0845257160C}_is1) (Version: 0.9.12.1 - Filipe Lourenço)
CyberLink PowerDVD 9.6 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.6.1.3522 - CyberLink Corp.)
CyberLink PowerDVD 9.6 (x32 Version: 9.6.1.3522 - CyberLink Corp.) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 5.4.4.1128 - Foxit Corporation)
Free Internet Window Washer (HKLM-x32\...\Free Internet Window Washer) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Intel PROSet Wireless (Version:  - ) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2455 - Intel Corporation)
Intel® PROSet/Wireless for Bluetooth® + High Speed (HKLM\...\{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}) (Version: 15.2.0.0284 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}) (Version: 15.02.0000.1258 - Intel Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.64.1 - JMicron Technology Corp.)
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 12.8.934 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.6122.5000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 - English (HKLM-x32\...\{90140011-0061-0409-0000-0000000FF1CE}) (Version: 14.0.7113.5007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
NVIDIA Control Panel 285.77 (Version: 285.77 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 285.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 285.77 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.2.24.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.24.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.48.261 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.5.21 (Version: 1.5.21 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 1.5.21 - NVIDIA Corporation) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.22 - Dell Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6263 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.27.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.27.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 6.1 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.1.130 - Skype Technologies S.A.)
TuneUp Utilities (HKLM-x32\...\TuneUp Utilities) (Version: 9.0.3000.71 - TuneUp Software)
TuneUp Utilities (x32 Version: 9.0.3000.71 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (es-ES) (x32 Version: 9.0.3000.71 - TuneUp Software) Hidden
Windows Surface Scanner 2.10 (HKLM-x32\...\Windows Surface Scanner 2.10) (Version:  - )
WOT for Internet Explorer (HKLM\...\{373B90E1-A28C-434C-92B6-7281AFA6115A}) (Version: 13.9.2.0 - WOT Services Oy)
 
==================== Restore Points  =========================
 
28-03-2014 23:59:49 End of disinfection
 
==================== Hosts content: ==========================
 
2009-07-14 02:34 - 2014-03-26 10:52 - 00000741 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {34B71A76-7322-4D66-B74F-E127C030E03D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-29] (Google Inc.)
Task: {53FDB8DB-9EF0-4C35-A3E3-45F9AD9C3CDB} - System32\Tasks\Análisis automático => C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-12-10] (TuneUp Software)
Task: {5B9679CE-F5FE-4107-9D46-90BA2039702A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-29] (Google Inc.)
Task: {EE95110F-4D0B-436D-8006-81C922C44E08} - System32\Tasks\Abelssoft\CheckDriveBackgroundGuard => C:\Program Files (x86)\CheckDrive\CheckDriveBackgroundGuard.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-03-21 20:49 - 2010-12-17 10:25 - 00686704 _____ () C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
2014-03-21 21:49 - 2012-07-26 08:27 - 00252928 _____ () C:\Program Files (x86)\BatteryCare\OpenHardwareMonitorLib.dll
2014-03-22 03:08 - 2014-03-22 03:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3e27ac2000641918e7215d97c63e957d\IsdiInterop.ni.dll
2014-03-21 20:45 - 2011-01-12 17:56 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2014-03-29 00:04 - 2014-03-15 00:50 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2014-03-29 00:04 - 2014-03-15 00:50 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
2014-03-29 00:04 - 2014-03-15 00:50 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libegl.dll
2014-03-29 00:04 - 2014-03-15 00:50 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-29 00:04 - 2014-03-15 00:50 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-29 00:04 - 2014-03-15 00:50 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
 
==================== Disabled items from MSCONFIG ==============
 
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (03/29/2014 03:28:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/29/2014 00:05:04 AM) (Source: Application Error) (User: )
Description: Faulting application name: rundll32.exe_inetcpl.cpl, version: 6.1.7600.16385, time stamp: 0x4a5bc9e0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000000000000
Faulting process id: 0x10e4
Faulting application start time: 0xrundll32.exe_inetcpl.cpl0
Faulting application path: rundll32.exe_inetcpl.cpl1
Faulting module path: rundll32.exe_inetcpl.cpl2
Report Id: rundll32.exe_inetcpl.cpl3
 
Error: (03/29/2014 00:02:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:49:45 PM) (Source: AVLogEvent) (User: NT AUTHORITY)
Description: Content is missing.
Error Code:a7f42014
 
Error: (03/28/2014 11:49:42 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:33:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:28:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:05:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 07:44:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/27/2014 10:31:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (03/28/2014 11:50:13 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
 
Error: (03/28/2014 11:49:36 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.
 
Error: (03/28/2014 09:39:17 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Platform Services service failed to start due to the following error: 
%%1053
 
Error: (03/28/2014 09:39:17 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.
 
Error: (03/28/2014 09:39:17 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Platform Services service failed to start due to the following error: 
%%1053
 
Error: (03/28/2014 09:39:17 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.
 
Error: (03/28/2014 09:39:17 PM) (Source: DCOM) (User: )
Description: 1053mcpltsvc{20966775-18A4-4299-B8E3-772C336B52A7}
 
Error: (03/27/2014 10:23:54 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!
 
Error: (03/27/2014 10:03:12 PM) (Source: Service Control Manager) (User: )
Description: The Advanced SystemCare Service 6 service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (03/26/2014 11:09:03 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless Zero Configuration Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (03/29/2014 03:28:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/29/2014 00:05:04 AM) (Source: Application Error)(User: )
Description: rundll32.exe_inetcpl.cpl6.1.7600.163854a5bc9e0unknown0.0.0.000000000c0000005000000000000000010e401cf4ae286adca87C:\Windows\system32\rundll32.exeunknownc72b965a-b6d5-11e3-9251-848f69b104f2
 
Error: (03/29/2014 00:02:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:49:45 PM) (Source: AVLogEvent)(User: NT AUTHORITY)
Description: a7f42014
 
Error: (03/28/2014 11:49:42 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:33:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:28:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 11:05:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/28/2014 07:44:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/27/2014 10:31:36 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-03-25 22:37:49.673
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-25 22:37:49.658
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-22 22:17:30.272
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-22 22:17:30.272
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-22 22:17:30.257
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-22 22:01:11.438
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-22 22:01:11.438
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-22 22:01:11.438
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 32%
Total physical RAM: 8086.17 MB
Available physical RAM: 5485.71 MB
Total Pagefile: 16170.52 MB
Available Pagefile: 13304.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:465.66 GB) (Free:439.13 GB) NTFS
Drive f: (New Volume) (Fixed) (Total:465.76 GB) (Free:465.62 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: DE2611FD)
 
Partition: GPT Partition Type.
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 2F36DCBD)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
 
 
 
 
 


#6 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:09:42 PM

Posted 30 March 2014 - 07:32 AM

Well, I don't see evidence of malware, but I do see some Windows related errors.  Is the system running ok?


Best Regards,
oneof4.


#7 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 30 March 2014 - 07:46 AM

Hi Oneof4,

 

The system seems to be running lately with problems, one of your fellow at bleepingcomputer ask me to run some windows fix program and since then I have a lot of problems with the computer. 

 

I am getting a lot of console windows host problems, which fire ups my CPU usage to 100%  and when this happen the screen brightness is set to 100% for a couple seconds (I can see that on the windows task manager) before CPU and the screen back to normal.

 

Also manage to disrupt the functionality of my McAfee, which I have managed to fix last week. 

 

So I don't know what to do any more, if I do a clean windows installation, the machine doesn't seem to take my dvd with the windows operating system on it, I have to try one and over again until it the operating system kicks in.

 

So I am a bit lost here, because even like that it doesn't seem to fix my problems, with the computer or network.    


Edited by Milway, 30 March 2014 - 07:48 AM.


#8 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:09:42 PM

Posted 30 March 2014 - 11:30 AM

It sounds to me like your issues are definitely Windows related and being that my specialty is malware related issues, I'm gonna refer you to the Windows 7 forum.  We could keep digging around and maybe come up with a solution, but I have a lot more confidence in the guys and gals over there.  They should be able to efficiently diagnose and rectify any Windows related problems.

 

Here's the link: http://www.bleepingcomputer.com/forums/f/167/windows-7/

 

Just begin a new topic in that forum, and you should be on your way to getting your computer back to normal.


Best Regards,
oneof4.


#9 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 30 March 2014 - 12:48 PM

Hi oneof4,

 

No problem, I will make a new topic in windows 7 forum with the logs I posted yesterday to you. 

 

Anyway, once I again thanks for taking the time to look after my issue. 

 

Cheers



#10 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 30 March 2014 - 03:59 PM

Hi oneof4,

 

Just a question combofix found and deleted this file "wininit.ini" from my computer, should I be worry about any traits left behind.

 

Here is the log

 

 ComboFix 14-03-24.01 - redsky 30/03/2014  21:26:20.1.8 - x64

Microsoft Windows 7 Home Premium   6.1.7601.1.1252.44.1033.18.8086.5456 [GMT 1:00]
Running from: c:\users\redsky\Desktop\ComboFix.exe
AV: Advanced SystemCare Ultimate *Enabled/Updated* {1C304DC4-1D72-5DB9-B33A-43B638ECFD30}
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((((   Files Created from 2014-02-28 to 2014-03-30  )))))))))))))))))))))))))))))))
.
.
2014-03-30 20:29 . 2014-03-30 20:29 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-30 19:39 . 2014-03-30 19:39 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2014-03-30 19:39 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-03-30 19:37 . 2014-03-30 19:37 -------- d-----w- c:\programdata\Malwarebytes
2014-03-30 19:37 . 2014-03-30 19:49 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-03-30 19:00 . 2014-03-30 19:00 -------- d-----w- c:\program files\Speccy
2014-03-30 15:48 . 2014-03-30 15:48 96768 ----a-w- c:\windows\system32\fsutil.exe
2014-03-30 15:48 . 2014-03-30 15:48 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2014-03-30 15:48 . 2014-03-30 15:48 2565632 ----a-w- c:\windows\system32\esent.dll
2014-03-30 15:48 . 2014-03-30 15:48 189824 ----a-w- c:\windows\system32\drivers\storport.sys
2014-03-30 15:48 . 2014-03-30 15:48 1699328 ----a-w- c:\windows\SysWow64\esent.dll
2014-03-30 15:48 . 2014-03-30 15:48 91648 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS
2014-03-30 15:48 . 2014-03-30 15:48 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2014-03-30 15:48 . 2014-03-30 15:48 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2014-03-30 15:48 . 2014-03-30 15:48 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2014-03-30 15:48 . 2014-03-30 15:48 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2014-03-30 15:48 . 2014-03-30 15:48 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2014-03-30 15:47 . 2013-06-27 17:05 27456 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-03-30 14:27 . 2014-03-30 14:27 -------- d-----w- c:\programdata\ProductData
2014-03-30 14:26 . 2014-03-30 14:26 -------- d-----w- c:\programdata\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-03-30 14:26 . 2014-03-30 14:26 -------- d-----w- c:\programdata\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-03-30 14:26 . 2014-03-30 14:28 -------- d-----w- c:\programdata\IObit
2014-03-30 14:26 . 2014-03-30 14:27 -------- d-----w- c:\program files (x86)\IObit
2014-03-29 20:50 . 2014-03-29 20:50 -------- d-----w- c:\program files (x86)\Renesas Electronics
2014-03-29 20:15 . 2004-03-29 16:23 90112 ----a-w- c:\windows\unvise32.exe
2014-03-29 20:15 . 2014-03-29 20:15 -------- d-----w- c:\program files (x86)\Datacolor
2014-03-29 20:12 . 2014-03-29 20:12 -------- d-----w- c:\program files\CCleaner
2014-03-29 18:32 . 2014-03-30 14:05 -------- d-----w- C:\FRST
2014-03-28 23:16 . 2014-03-28 23:16 -------- d-----w- c:\programdata\Citrix
2014-03-28 23:11 . 2014-03-28 23:11 -------- d-----w- c:\program files (x86)\Citrix
2014-03-25 21:52 . 2014-03-27 22:16 -------- d-----w- c:\programdata\Logs
2014-03-25 21:46 . 2014-03-30 19:36 89304 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-03-25 18:55 . 2014-03-25 18:55 -------- d-----w- c:\program files (x86)\Foxit Software
2014-03-24 22:51 . 2014-03-26 11:23 -------- d-----w- c:\windows\ERUNT
2014-03-24 20:52 . 2013-09-23 13:49 197704 ----a-w- c:\windows\system32\drivers\HipShieldK.sys
2014-03-24 02:01 . 2014-03-24 02:02 -------- d-----w- c:\program files (x86)\Common Files\McAfee
2014-03-24 02:01 . 2014-03-24 02:02 -------- d-----w- c:\program files\McAfee
2014-03-24 02:01 . 2014-03-25 18:46 -------- d-----w- c:\program files (x86)\McAfee
2014-03-24 01:50 . 2014-01-27 08:37 185792 ----a-w- c:\windows\system32\mfevtps.exe
2014-03-24 01:50 . 2014-03-24 20:47 -------- d-----w- c:\program files\Common Files\McAfee
2014-03-24 01:50 . 2014-03-24 21:58 -------- d-----w- c:\programdata\McAfee
2014-03-24 00:46 . 2014-03-24 00:46 -------- d-----w- c:\program files (x86)\Repair File
2014-03-23 23:17 . 2013-08-13 12:38 3271472 ---ha-w- C:\bdr-bz01
2014-03-23 18:36 . 2014-03-23 18:36 -------- d-----w- c:\programdata\PCDr
2014-03-23 18:35 . 2014-03-26 09:32 -------- d-----w- C:\temp
2014-03-23 15:38 . 2009-12-10 12:53 34632 ----a-w- c:\windows\system32\TURegOpt.exe
2014-03-23 15:38 . 2009-12-10 12:47 25928 ----a-w- c:\windows\system32\authuitu.dll
2014-03-23 15:38 . 2009-12-10 12:47 36168 ----a-w- c:\windows\system32\uxtuneup.dll
2014-03-23 15:38 . 2009-12-10 12:47 30024 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2014-03-23 15:38 . 2009-12-10 12:47 21320 ----a-w- c:\windows\SysWow64\authuitu.dll
2014-03-23 15:37 . 2014-03-23 15:38 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2010
2014-03-23 12:04 . 2014-03-23 12:04 -------- d-----w- c:\program files (x86)\Free Internet Window Washer
2014-03-23 00:44 . 2014-03-29 23:54 -------- d-----w- c:\program files (x86)\Google
2014-03-22 22:30 . 2014-03-22 22:30 -------- d-----w- c:\program files\WOT
2014-03-22 22:30 . 2014-03-22 22:30 -------- d-----w- c:\program files (x86)\WOT
2014-03-22 22:28 . 2014-03-22 22:28 -------- d-----w- c:\program files\Adblock Plus for IE
2014-03-22 22:28 . 2014-03-24 01:36 -------- d-----w- c:\programdata\Package Cache
2014-03-22 21:40 . 2014-03-22 21:40 -------- d-----w- c:\program files (x86)\VS Revo Group
2014-03-22 21:07 . 2014-03-22 21:07 -------- d-----w- c:\programdata\Oracle
2014-03-22 04:21 . 2014-03-30 15:47 -------- d-----w- c:\windows\Panther
2014-03-22 04:20 . 2014-03-22 04:20 -------- d-----w- C:\Hotfix
2014-03-22 04:20 . 2014-03-22 04:20 -------- d-----w- C:\Drivers
2014-03-22 04:20 . 2014-03-21 20:25 -------- d-----w- c:\windows\system32\OEM
2014-03-22 03:09 . 2013-10-14 18:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2014-03-22 03:03 . 2014-03-22 03:03 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-22 02:56 . 2011-08-23 21:57 74272 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-03-22 02:56 . 2011-08-23 21:57 565352 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-03-22 02:51 . 2014-03-28 23:48 -------- d--h--w- c:\windows\system32\WLANProfiles
2014-03-22 02:51 . 2014-03-22 02:51 -------- d-----w- c:\programdata\Intel
2014-03-22 02:50 . 2014-03-22 02:50 -------- d-----w- c:\program files (x86)\Cisco
2014-03-22 02:45 . 2011-08-25 21:06 66856 ----a-w- c:\windows\SysWow64\SynTPEnhPS.dll
2014-03-22 01:37 . 2014-03-22 01:37 -------- d-----w- c:\windows\SysWow64\Wat
2014-03-22 01:37 . 2014-03-22 01:37 -------- d-----w- c:\windows\system32\Wat
2014-03-22 00:56 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-03-22 00:56 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-03-22 00:56 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-03-22 00:56 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-03-22 00:56 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-03-22 00:49 . 2014-03-28 23:48 -------- d-----w- c:\windows\Migration
2014-03-22 00:25 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2014-03-22 00:14 . 2014-03-22 00:14 -------- d-----w- c:\programdata\VirtualizedApplications
2014-03-22 00:11 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2014-03-21 23:56 . 2014-03-21 23:57 -------- d-----w- c:\windows\system32\MRT
2014-03-21 23:54 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-03-21 23:54 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2014-03-21 23:54 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-03-21 23:54 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2014-03-21 23:54 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-03-21 23:54 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-03-21 23:54 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-03-21 23:52 . 2014-03-21 23:52 -------- d-----r- C:\MSOCache
2014-03-21 23:47 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-03-21 23:47 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2014-03-21 23:47 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2014-03-21 22:46 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-03-21 22:45 . 2014-02-07 01:23 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-03-21 22:44 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-03-21 22:43 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2014-03-21 22:39 . 2013-08-29 02:17 5549504 ----a-w- c:\windows\system32\ntoskrnl.exe
2014-03-21 22:38 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2014-03-21 22:37 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2014-03-21 22:37 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2014-03-21 22:37 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2014-03-21 22:36 . 2014-03-23 10:43 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-03-21 22:36 . 2014-03-23 10:43 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-03-21 22:36 . 2014-03-21 22:36 -------- d-----w- c:\windows\SysWow64\Macromed
2014-03-21 22:36 . 2014-03-21 22:36 -------- d-----w- c:\windows\system32\Macromed
2014-03-21 22:28 . 2014-03-17 10:16 10521840 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B2E1A587-F431-4A10-8D86-B0F1B700E495}\mpengine.dll
2014-03-21 22:27 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2014-03-21 22:27 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2014-03-21 22:27 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2014-03-21 21:59 . 2014-03-21 21:59 -------- d-----w- c:\program files\Microsoft Office
2014-03-21 21:59 . 2014-03-22 00:55 -------- d-----w- c:\program files (x86)\Microsoft Application Virtualization Client
2014-03-21 21:59 . 2014-03-21 21:59 -------- d-----w- c:\windows\PCHEALTH
2014-03-21 21:49 . 2014-03-21 21:49 -------- d-----w- c:\program files (x86)\BatteryCare
2014-03-21 21:45 . 2014-03-21 21:45 -------- d-----w- c:\programdata\CyberLink
2014-03-21 21:44 . 2014-03-21 21:44 -------- d-----w- c:\program files (x86)\Common Files\CyberLink
2014-03-21 21:43 . 2014-03-21 21:44 -------- d-----w- c:\program files (x86)\CyberLink
2014-03-21 21:43 . 2014-03-21 21:42 505128 ----a-w- c:\windows\SysWow64\msvcp71.dll
2014-03-21 21:43 . 2014-03-21 21:42 353576 ----a-w- c:\windows\SysWow64\msvcr71.dll
2014-03-21 21:43 . 2014-03-21 21:42 29480 ----a-w- c:\windows\SysWow64\msxml3a.dll
2014-03-21 21:41 . 2014-03-21 21:41 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-03-21 21:41 . 2014-03-21 21:41 -------- d-----r- c:\program files (x86)\Skype
2014-03-21 21:41 . 2014-03-21 22:30 -------- d-----w- c:\programdata\Skype
2014-03-21 21:35 . 2014-03-23 15:36 -------- d-----w- c:\programdata\TuneUp Software
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-27 08:43 . 2013-04-03 13:37 70592 ----a-w- c:\windows\system32\drivers\cfwids.sys
2014-01-27 08:37 . 2013-04-03 13:34 344688 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2014-01-27 08:33 . 2012-12-26 09:50 783864 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2014-01-27 08:31 . 2013-04-03 13:32 520696 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2014-01-27 08:30 . 2013-04-03 13:31 311600 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2014-01-27 08:29 . 2012-12-26 09:48 180272 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2014-01-21 03:50 . 2014-01-21 03:50 11336 ----a-w- c:\windows\system32\drivers\mfeclnrk.sys
2014-01-21 03:50 . 2014-01-21 03:50 96592 ----a-w- c:\windows\system32\drivers\mfencrk.sys
2014-01-21 03:50 . 2014-01-21 03:50 422712 ----a-w- c:\windows\system32\drivers\mfencbdc.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BatteryCare"="c:\program files (x86)\BatteryCare\BatteryCare.exe" [2012-12-03 740864]
"Advanced SystemCare Ultimate"="c:\program files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe" [2013-12-02 2562368]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2011-01-12 283160]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2014-01-28 537992]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled\
Spyder3Utility.lnk - c:\program files (x86)\Datacolor\Spyder3Elite\Utility\Spyder3Utility.exe [2010-6-4 7667970]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ   autocheck autochk /k:C *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"BDRegion"=c:\program files (x86)\Cyberlink\Shared Files\brs.exe
"PDVD9LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
"RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
.
R2 CLKMSVC10_9EC60124;CyberLink Product - 2014/03/21 21:45;c:\program files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe;c:\program files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys;c:\windows\SYSNATIVE\DRIVERS\mfencrk.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 Spyder3;Datacolor Spyder3;c:\windows\system32\DRIVERS\Spyder3.sys;c:\windows\SYSNATIVE\DRIVERS\Spyder3.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\BatteryCare\WinRing0x64.sys;c:\program files (x86)\BatteryCare\WinRing0x64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys;c:\windows\SYSNATIVE\DRIVERS\stdcfltn.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 ASCAntivirusSrv;AdvancedSystemCareAntivirus;c:\program files (x86)\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe;c:\program files (x86)\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe [x]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 McAPExe;McAfee AP Service;c:\program files\McAfee\MSC\McAPExe.exe;c:\program files\McAfee\MSC\McAPExe.exe [x]
S2 McMPFSvc;McAfee Personal Firewall;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]
S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [x]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys;c:\windows\SYSNATIVE\DRIVERS\Accelern.sys [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]
S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]
S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys;c:\windows\SYSNATIVE\DRIVERS\mfencbdc.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys;c:\windows\SYSNATIVE\DRIVERS\qicflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfswin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfswin7.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaywin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaywin7.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirwin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirwin7.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvolwin7.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvolwin7.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - CLKMDRV10_9EC60124
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-29 23:54 1150280 ----a-w- c:\program files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-03-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-29 23:52]
.
2014-03-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-29 23:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-03-30 14:27 2486592 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2010-12-17 686704]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-11-30 2186856]
"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2011-11-04 540992]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
UxTuneUp
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: dell.com
TCP: DhcpNameServer = 89.101.160.4 89.101.160.5
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
.
**************************************************************************
.
Completion time: 2014-03-30  21:35:12 - machine was rebooted
ComboFix-quarantined-files.txt  2014-03-30 20:35
.
Pre-Run: 467,547,795,456 bytes free
Post-Run: 467,218,673,664 bytes free
.
- - End Of File - - CE41E8F551BEFC0D1F1963EAF63EA576


#11 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:09:42 PM

Posted 02 April 2014 - 05:34 AM

Hey :)

 

I do not recommend that you have more than one anti-virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti-virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:
1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.
Therefore please go to add/remove in the control panel and remove either Advanced System Care Ultimate or McAfee Anti-Virus.

 

Since ComboFix did eliminate a malware issue, let's run the following:

 

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

Best Regards,
oneof4.


#12 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 03 April 2014 - 03:18 PM

Hi oneof4,

 

Sorry for my late reply, 

 

The computer stopped responding three days ago and I couldn't do anything with it, so I manage to wipe the hard disk with no problems and reinstall windows 7 on the computer, now everything seem to be working fine for the moment.

 

I guess I don't need to run tdsskiller but if I need to, please let me know, otherwise thank you very much for you support.

 

Cheers 


Edited by Milway, 03 April 2014 - 03:19 PM.


#13 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:09:42 PM

Posted 03 April 2014 - 05:28 PM

Hey Milway, :)
 
No, you shouldn't need to run any further scans; the reinstallation of Windows should have eliminated any issues you had. That is, unless you have a failing piece of hardware, let's hope that's not the case.
 
Since everything appears to be running okay, let me offer some suggestions to help keep it that way:
 
**********

Recommendations

Below are some recommendations to lower your chances of (re)infection.
 
:step1: Update your AntiVirus Software

It is imperative that you update your Antivirus software at least once a week (Even more if you wish).  If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out.  If you use a commercial antivirus program you must make sure you keep renewing your subscription.  Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.
 
:step2: Use a Firewall

I can not stress how important it is that you use a Firewall on your computer. Without a firewall your computer is susceptible to being hacked and taken over. I am very serious about this and see it happen almost every day with my clients. Simply using a Firewall in its default configuration can lower your risk greatly.

For a tutorial on Firewalls and a listing of some available ones see the link below:

Understanding and Using Firewalls
 
:step3: Install an Anti-Spyware program, and update it regularly

Malwarebytes' Anti-Malware is an excellent Anti-Spyware scanner. It's scan times are usually under ten minutes, and has excellent detection and removal rates.

SUPERAntiSpyware is another good scanner with high detection and removal rates.
Both programs are free for non commercial home use but provide a resident and do not nag if you purchase the paid versions.
 
:step4: Prevention article : To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections please read our Best Practices artice by quietman7.
 
:step5: Keep Windows (and your other Microsoft software) up to date!

I cannot stress how important this is. Often holes are found in Internet Explorer or Windows itself that require patching. Sometimes these holes will allow an attacker unrestricted access to your computer.
http://www.techtalkz.com/windows-7/515869-windows-update-enable-disable-automatic-updates-windows-7-guide.html
 
:step6: Keep your other software up to date as well.

Software does not need to be made by Microsoft to be insecure. Download Secunia Software Inspector to keep all your software up to date.
 
The MOST IMPORTANT part of any security setup is keeping the software up to date. Malware writers release new variants every single day. If your software updates don't keep up, then the malware will always be one step ahead. Not a good thing . :(
 
**********

Safe Surfing!


Best Regards,
oneof4.


#14 Milway

Milway
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 04 April 2014 - 05:07 PM

Hi oneof4,

 

 

Thank you very much for those helpful tips,  :rolleyes: I might need to bring the computer to a technician, to replace the wireless card, it is constantly dropping.

 

Anyway thanks once again.

 

Cheers  



#15 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:09:42 PM

Posted 07 April 2014 - 08:53 AM

You are most welcome.

 

 

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.


Edited by oneof4, 07 April 2014 - 08:53 AM.

Best Regards,
oneof4.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users