Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Oxy and Pilewire malware


  • This topic is locked This topic is locked
20 replies to this topic

#1 abhamamin

abhamamin

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 11 April 2014 - 05:37 AM

Hi, I've accidentally downloaded this oxy and pilewire program while I was trying to download a software from the internet. I have read the previous topic on this matter and found out that revo uninstaller is required to remove this malware. Unfortunately it doesnt work for me and it keeps saying that the removing is failed. 

 

I just want this thing gone off my computer and please help me.

 

Regards



BC AdBot (Login to Remove)

 


#2 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 13 April 2014 - 02:04 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-04-2014 01
Ran by user (administrator) on V5-473PG on 13-04-2014 14:58:36
Running from C:\Users\user\Downloads
Windows 8.1 Single Language (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(McAfee, Inc.) C:\Windows\system32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Apple Inc.) C:\Program Files (x86)\iPod\bin\iPodService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
() C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Acer Incorporated) C:\Program Files (x86)\Acer\Screen Grasp\GestureDetection.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Screen Grasp\Launch Screen Grasp.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcrnmh.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\seccenter.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Portal\sdd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdtkexec.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Users\user\Downloads\TDSSKiller\TDSSKiller.exe
(Farbar) C:\Users\user\Downloads\FRST64 (1).exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1742064 2014-04-03] (Bitdefender)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [413696 2009-01-05] (Apple Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] - C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694072 2013-10-15] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WD Quick View] - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5545328 2014-02-28] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Qualcomm®Atheros®))
HKU\.DEFAULT\...\Run: [Bitdefender Wallet Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-04-03] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-04-03] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet Application Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002\...\Run: [Bitdefender Wallet Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002\...\Run: [Bitdefender Wallet Application Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002\...\Run: [Bitdefender Wallet] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002\...\Run: [Speech Recognition] - C:\Windows\Speech\Common\sapisvr.exe [44544 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002\...\Run: [AcerCloud] - C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [18247424 2014-02-13] (Acer Incorporated)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002\...\MountPoints2: {31ce1476-afcc-11e3-8265-806e6f6e6963} - "D:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Application Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-04-03] (Bitdefender)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Speech Recognition] - C:\Windows\Speech\Common\sapisvr.exe [44544 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AcerCloud] - C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [18247424 2014-02-13] (Acer Incorporated)
HKU\S-1-5-21-4046373872-3215433443-1714514892-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {31ce1476-afcc-11e3-8265-806e6f6e6963} - "D:\WD Drive Unlock.exe" autoplay=true
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-08-30] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-08-30] (NVIDIA Corporation)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope {B6BBDA97-7034-48BA-9B3D-4315FE32D2F5} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://malaysia.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM - {B6BBDA97-7034-48BA-9B3D-4315FE32D2F5} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKLM-x32 - DefaultScope {B6BBDA97-7034-48BA-9B3D-4315FE32D2F5} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://malaysia.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {B6BBDA97-7034-48BA-9B3D-4315FE32D2F5} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {C51A0431-0BB5-4501-B862-650627CA3FA5} URL = http://www.baidu.com/baidu?tn=dealio_dg&wd={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = http://malaysia.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - {B6BBDA97-7034-48BA-9B3D-4315FE32D2F5} URL = 
SearchScopes: HKCU - {C51A0431-0BB5-4501-B862-650627CA3FA5} URL = http://www.baidu.com/baidu?tn=dealio_dg&wd={searchTerms}
BHO: Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2014-03-20]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman\
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman\ []
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2014-03-20]
 
Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-15]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-15]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-15]
CHR Extension: (Bitdefender Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-03-20]
CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-15]
CHR Extension: (Google Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-15]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-15]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-03]
 
==================== Services (Whitelisted) =================
 
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows ® Win 7 DDK provider)
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2013-11-21] (Bitdefender)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe [2798336 2014-02-13] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2169016 2014-03-01] (Microsoft Corporation)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-06] (Acer Incorporated)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel® Corporation)
R3 iPod Service; C:\Program Files (x86)\iPod\bin\iPodService.exe [641352 2014-02-21] (Apple Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-01-27] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [185792 2014-01-27] (McAfee, Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-10-07] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1523728 2014-04-03] (Bitdefender)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-02-28] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [271728 2014-02-28] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2013-12-02] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261056 2014-03-20] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2013-12-02] (BitDefender)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-02] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows ® Win 7 DDK provider)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-07-24] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-05] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-01-27] (McAfee, Inc.)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-31] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-26] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-13] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
S2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [180272 2014-01-27] (McAfee, Inc.)
R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311600 2014-01-27] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-01-27] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [520696 2014-01-27] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [783864 2014-01-27] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344688 2014-01-27] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 QRDCIO; C:\Windows\System32\drivers\QRDCIO.sys [9728 2009-10-20] (QUANTA)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-02-22] (Microsoft Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [427736 2013-08-09] (Realsil Semiconductor Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-28] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-04-13 14:58 - 2014-04-13 14:58 - 00023549 _____ () C:\Users\user\Downloads\FRST.txt
2014-04-13 14:56 - 2014-04-13 14:57 - 02157568 _____ (Farbar) C:\Users\user\Downloads\FRST64 (1).exe
2014-04-13 14:55 - 2014-04-11 09:32 - 00000000 ____D () C:\Users\user\Downloads\TDSSKiller
2014-04-13 14:51 - 2014-04-13 14:53 - 04118280 _____ () C:\Users\user\Downloads\tdsskiller.zip
2014-04-13 05:22 - 2014-04-13 05:22 - 00000295 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Homegroup.lnk
2014-04-12 13:23 - 2014-04-12 13:23 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxy
2014-04-11 20:17 - 2014-02-22 23:55 - 01435304 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2014-04-11 20:17 - 2014-02-22 23:53 - 03394384 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2014-04-11 20:17 - 2014-02-22 20:08 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2014-04-11 20:17 - 2014-02-22 19:17 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2014-04-11 20:17 - 2014-02-22 19:00 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-11 20:17 - 2014-02-22 18:36 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-11 20:17 - 2014-02-22 18:34 - 11742720 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2014-04-11 20:17 - 2014-02-22 18:02 - 08946688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2014-04-11 20:17 - 2014-02-22 17:47 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-04-11 20:17 - 2014-02-22 17:39 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-11 20:17 - 2014-02-22 17:33 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-11 20:17 - 2014-02-22 17:23 - 03494912 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-04-11 20:17 - 2014-02-22 17:16 - 11776000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-04-11 20:17 - 2014-02-22 17:11 - 02262016 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-11 20:17 - 2014-02-22 17:01 - 13933568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-04-11 20:17 - 2014-02-22 16:42 - 03408384 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-04-11 20:17 - 2014-02-22 16:40 - 02368512 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-04-11 20:17 - 2014-02-08 09:08 - 00139600 _____ () C:\Windows\system32\systemsf.ebd
2014-04-11 20:16 - 2014-02-23 00:59 - 01519520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-04-11 20:16 - 2014-02-23 00:59 - 01290688 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-04-11 20:16 - 2014-02-23 00:59 - 00526304 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-04-11 20:16 - 2014-02-23 00:15 - 01929608 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-04-11 20:16 - 2014-02-23 00:15 - 01206000 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2014-04-11 20:16 - 2014-02-22 23:50 - 02588168 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-04-11 20:16 - 2014-02-22 23:50 - 00645104 ____N (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-04-11 20:16 - 2014-02-22 23:50 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2014-04-11 20:16 - 2014-02-22 23:48 - 02574240 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-04-11 20:16 - 2014-02-22 23:46 - 01927600 ____N (Microsoft Corporation) C:\Windows\system32\combase.dll
2014-04-11 20:16 - 2014-02-22 23:46 - 01445616 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2014-04-11 20:16 - 2014-02-22 23:46 - 01000424 ____N (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2014-04-11 20:16 - 2014-02-22 23:44 - 00539992 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-04-11 20:16 - 2014-02-22 23:43 - 01727760 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 02142976 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 01399176 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 01215832 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 00881616 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 00800552 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 00609456 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-04-11 20:16 - 2014-02-22 23:41 - 00391008 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-04-11 20:16 - 2014-02-22 23:40 - 01118552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-04-11 20:16 - 2014-02-22 22:52 - 01767440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2014-04-11 20:16 - 2014-02-22 22:42 - 00422968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-04-11 20:16 - 2014-02-22 22:38 - 01374384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2014-04-11 20:16 - 2014-02-22 22:38 - 01077944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2014-04-11 20:16 - 2014-02-22 22:25 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-04-11 20:16 - 2014-02-22 22:18 - 00477744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-04-11 20:16 - 2014-02-22 22:08 - 01474104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-04-11 20:16 - 2014-02-22 22:04 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-04-11 20:16 - 2014-02-22 22:04 - 01011280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2014-04-11 20:16 - 2014-02-22 22:04 - 00650736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2014-04-11 20:16 - 2014-02-22 22:04 - 00518552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-04-11 20:16 - 2014-02-22 20:24 - 02825216 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-04-11 20:16 - 2014-02-22 20:22 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-04-11 20:16 - 2014-02-22 20:15 - 04192768 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-04-11 20:16 - 2014-02-22 19:44 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-11 20:16 - 2014-02-22 19:28 - 02428928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2014-04-11 20:16 - 2014-02-22 19:17 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-11 20:16 - 2014-02-22 18:44 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-11 20:16 - 2014-02-22 18:38 - 00390656 _____ (Microsoft Corporation) C:\Windows\system32\DfpCommon.dll
2014-04-11 20:16 - 2014-02-22 18:08 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2014-04-11 20:16 - 2014-02-22 18:06 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-04-11 20:16 - 2014-02-22 18:01 - 02648064 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2014-04-11 20:16 - 2014-02-22 17:53 - 00825344 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-04-11 20:16 - 2014-02-22 17:52 - 01132032 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2014-04-11 20:16 - 2014-02-22 17:48 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-04-11 20:16 - 2014-02-22 17:38 - 00753664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-04-11 20:16 - 2014-02-22 17:37 - 02220032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-04-11 20:16 - 2014-02-22 17:35 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\WofTasks.dll
2014-04-11 20:16 - 2014-02-22 17:28 - 02643456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-04-11 20:16 - 2014-02-22 17:26 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2014-04-11 20:16 - 2014-02-22 17:23 - 02843136 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-04-11 20:16 - 2014-02-22 17:23 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2014-04-11 20:16 - 2014-02-22 17:23 - 00628224 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2014-04-11 20:16 - 2014-02-22 17:14 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2014-04-11 20:16 - 2014-02-22 17:13 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2014-04-11 20:16 - 2014-02-22 17:11 - 02395136 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-04-11 20:16 - 2014-02-22 17:11 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-04-11 20:16 - 2014-02-22 17:00 - 01341440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2014-04-11 20:16 - 2014-02-22 17:00 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2014-04-11 20:16 - 2014-02-22 16:59 - 01621504 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-04-11 20:16 - 2014-02-22 16:59 - 00791552 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-04-11 20:16 - 2014-02-22 16:59 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-04-11 20:16 - 2014-02-22 16:54 - 00647168 ____N (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2014-04-11 20:16 - 2014-02-22 16:53 - 12027904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2014-04-11 20:16 - 2014-02-22 16:49 - 08874496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2014-04-11 20:16 - 2014-02-22 16:49 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-11 20:16 - 2014-02-22 16:45 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-04-11 20:16 - 2014-02-22 16:44 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-04-11 20:16 - 2014-02-22 16:38 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-11 20:16 - 2014-02-22 16:37 - 01716736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-04-11 20:16 - 2014-02-22 16:34 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-04-11 20:16 - 2014-02-22 16:32 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-11 20:16 - 2014-02-22 16:27 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-11 20:16 - 2014-02-22 16:24 - 02760704 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-04-11 20:16 - 2014-02-22 16:22 - 00777728 ____N (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2014-04-11 20:16 - 2014-02-22 16:19 - 00698880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-04-11 20:16 - 2014-02-22 16:06 - 01640960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2014-04-11 20:16 - 2014-02-22 16:04 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-04-11 20:16 - 2014-02-22 16:03 - 01496576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2014-04-11 20:16 - 2014-01-29 16:53 - 01653352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-04-11 20:16 - 2014-01-29 15:44 - 01369736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-04-11 20:16 - 2013-12-10 15:35 - 00530944 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2014-04-11 20:15 - 2014-02-23 00:59 - 00289752 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2014-04-11 20:15 - 2014-02-23 00:00 - 00590168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-04-11 20:15 - 2014-02-23 00:00 - 00249688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2014-04-11 20:15 - 2014-02-22 23:55 - 00388408 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2014-04-11 20:15 - 2014-02-22 23:55 - 00244848 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2014-04-11 20:15 - 2014-02-22 23:55 - 00105864 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-04-11 20:15 - 2014-02-22 23:50 - 00761792 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2014-04-11 20:15 - 2014-02-22 23:50 - 00258784 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-04-11 20:15 - 2014-02-22 23:49 - 00384856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-04-11 20:15 - 2014-02-22 23:49 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-11 20:15 - 2014-02-22 23:49 - 00280920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-04-11 20:15 - 2014-02-22 23:49 - 00148824 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-04-11 20:15 - 2014-02-22 23:48 - 01791752 ____C (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2014-04-11 20:15 - 2014-02-22 23:48 - 00210736 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-04-11 20:15 - 2014-02-22 23:46 - 00669896 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-04-11 20:15 - 2014-02-22 23:44 - 00424280 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-04-11 20:15 - 2014-02-22 23:44 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-04-11 20:15 - 2014-02-22 23:44 - 00311640 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-04-11 20:15 - 2014-02-22 23:43 - 01659056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-04-11 20:15 - 2014-02-22 23:43 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-04-11 20:15 - 2014-02-22 23:43 - 01487520 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-04-11 20:15 - 2014-02-22 23:43 - 01356360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-04-11 20:15 - 2014-02-22 23:41 - 01374384 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-04-11 20:15 - 2014-02-22 23:41 - 00372360 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2014-04-11 20:15 - 2014-02-22 23:41 - 00324896 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-04-11 20:15 - 2014-02-22 22:51 - 01063976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2014-04-11 20:15 - 2014-02-22 22:42 - 01017936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2014-04-11 20:15 - 2014-02-22 22:38 - 00336232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2014-04-11 20:15 - 2014-02-22 22:38 - 00089848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-04-11 20:15 - 2014-02-22 22:18 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2014-04-11 20:15 - 2014-02-22 22:11 - 00490136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-04-11 20:15 - 2014-02-22 22:04 - 01206000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-04-11 20:15 - 2014-02-22 22:04 - 00707048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-04-11 20:15 - 2014-02-22 22:04 - 00317584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2014-04-11 20:15 - 2014-02-22 22:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2014-04-11 20:15 - 2014-02-22 22:04 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2014-04-11 20:15 - 2014-02-22 20:14 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-04-11 20:15 - 2014-02-22 20:11 - 00272896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-04-11 20:15 - 2014-02-22 20:07 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-04-11 20:15 - 2014-02-22 20:07 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\WofUtil.dll
2014-04-11 20:15 - 2014-02-22 20:02 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2014-04-11 20:15 - 2014-02-22 19:57 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2014-04-11 20:15 - 2014-02-22 19:46 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-11 20:15 - 2014-02-22 19:25 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2014-04-11 20:15 - 2014-02-22 19:16 - 00617472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2014-04-11 20:15 - 2014-02-22 19:06 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2014-04-11 20:15 - 2014-02-22 18:58 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-11 20:15 - 2014-02-22 18:56 - 02862592 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-04-11 20:15 - 2014-02-22 18:54 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-11 20:15 - 2014-02-22 18:52 - 02288640 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-04-11 20:15 - 2014-02-22 18:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\dfp.exe
2014-04-11 20:15 - 2014-02-22 18:41 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2014-04-11 20:15 - 2014-02-22 18:41 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-04-11 20:15 - 2014-02-22 18:39 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-04-11 20:15 - 2014-02-22 18:37 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2014-04-11 20:15 - 2014-02-22 18:36 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-04-11 20:15 - 2014-02-22 18:33 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-11 20:15 - 2014-02-22 18:25 - 01428480 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2014-04-11 20:15 - 2014-02-22 18:22 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-04-11 20:15 - 2014-02-22 18:18 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-04-11 20:15 - 2014-02-22 18:15 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2014-04-11 20:15 - 2014-02-22 18:14 - 02811392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2014-04-11 20:15 - 2014-02-22 18:09 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2014-04-11 20:15 - 2014-02-22 18:09 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-11 20:15 - 2014-02-22 18:05 - 01757184 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2014-04-11 20:15 - 2014-02-22 18:02 - 00258560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-04-11 20:15 - 2014-02-22 18:01 - 00832512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2014-04-11 20:15 - 2014-02-22 18:01 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-04-11 20:15 - 2014-02-22 18:00 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-11 20:15 - 2014-02-22 17:59 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2014-04-11 20:15 - 2014-02-22 17:57 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-04-11 20:15 - 2014-02-22 17:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2014-04-11 20:15 - 2014-02-22 17:48 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2014-04-11 20:15 - 2014-02-22 17:46 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2014-04-11 20:15 - 2014-02-22 17:45 - 00562176 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-04-11 20:15 - 2014-02-22 17:44 - 00675328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-04-11 20:15 - 2014-02-22 17:44 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-04-11 20:15 - 2014-02-22 17:43 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-04-11 20:15 - 2014-02-22 17:36 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2014-04-11 20:15 - 2014-02-22 17:35 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-04-11 20:15 - 2014-02-22 17:34 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll
2014-04-11 20:15 - 2014-02-22 17:34 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2014-04-11 20:15 - 2014-02-22 17:33 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-11 20:15 - 2014-02-22 17:33 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\DismApi.dll
2014-04-11 20:15 - 2014-02-22 17:26 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2014-04-11 20:15 - 2014-02-22 17:25 - 01361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-04-11 20:15 - 2014-02-22 17:25 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-04-11 20:15 - 2014-02-22 17:25 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2014-04-11 20:15 - 2014-02-22 17:24 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2014-04-11 20:15 - 2014-02-22 17:23 - 00344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-04-11 20:15 - 2014-02-22 17:21 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2014-04-11 20:15 - 2014-02-22 17:14 - 00752640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-04-11 20:15 - 2014-02-22 17:12 - 00459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DismApi.dll
2014-04-11 20:15 - 2014-02-22 17:10 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2014-04-11 20:15 - 2014-02-22 17:10 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2014-04-11 20:15 - 2014-02-22 17:07 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-04-11 20:15 - 2014-02-22 17:07 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2014-04-11 20:15 - 2014-02-22 17:06 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-04-11 20:15 - 2014-02-22 17:04 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2014-04-11 20:15 - 2014-02-22 17:04 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2014-04-11 20:15 - 2014-02-22 16:59 - 01403392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2014-04-11 20:15 - 2014-02-22 16:54 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2014-04-11 20:15 - 2014-02-22 16:54 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2014-04-11 20:15 - 2014-02-22 16:53 - 00876544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-04-11 20:15 - 2014-02-22 16:51 - 01258496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2014-04-11 20:15 - 2014-02-22 16:51 - 00716288 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-04-11 20:15 - 2014-02-22 16:51 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2014-04-11 20:15 - 2014-02-22 16:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-04-11 20:15 - 2014-02-22 16:47 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2014-04-11 20:15 - 2014-02-22 16:47 - 00517120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2014-04-11 20:15 - 2014-02-22 16:47 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-04-11 20:15 - 2014-02-22 16:46 - 00824832 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-04-11 20:15 - 2014-02-22 16:45 - 00169472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2014-04-11 20:15 - 2014-02-22 16:43 - 00644608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-04-11 20:15 - 2014-02-22 16:43 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-04-11 20:15 - 2014-02-22 16:43 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2014-04-11 20:15 - 2014-02-22 16:41 - 00662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-04-11 20:15 - 2014-02-22 16:40 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-04-11 20:15 - 2014-02-22 16:39 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2014-04-11 20:15 - 2014-02-22 16:37 - 00658432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-04-11 20:15 - 2014-02-22 16:36 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll
2014-04-11 20:15 - 2014-02-22 16:35 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-11 20:15 - 2014-02-22 16:34 - 00288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2014-04-11 20:15 - 2014-02-22 16:33 - 00609792 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-04-11 20:15 - 2014-02-22 16:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2014-04-11 20:15 - 2014-02-22 16:21 - 00854528 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-04-11 20:15 - 2014-02-22 16:21 - 00600576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2014-04-11 20:15 - 2014-02-22 16:21 - 00518144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2014-04-11 20:15 - 2014-02-22 16:18 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-04-11 20:15 - 2014-02-22 16:01 - 00978944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-04-11 20:15 - 2014-02-22 16:01 - 00635904 ____N (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2014-04-11 20:15 - 2014-02-22 16:00 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2014-04-11 20:15 - 2014-02-22 12:33 - 00262335 _____ () C:\Windows\system32\dfpinc.dat
2014-04-11 20:15 - 2014-02-02 22:48 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-04-11 20:15 - 2014-02-02 21:33 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-04-11 20:15 - 2014-01-31 17:55 - 03596800 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-04-11 20:15 - 2014-01-29 16:52 - 00551256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-04-11 20:15 - 2014-01-28 01:04 - 01311744 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-04-11 20:15 - 2014-01-27 23:38 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-04-11 20:15 - 2014-01-18 01:24 - 00388096 ____N (Microsoft Corporation) C:\Windows\system32\ninput.dll
2014-04-11 20:15 - 2013-12-04 23:16 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2014-04-11 20:14 - 2014-02-23 00:59 - 00461176 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-04-11 20:14 - 2014-02-23 00:59 - 00407536 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-04-11 20:14 - 2014-02-23 00:59 - 00209160 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2014-04-11 20:14 - 2014-02-23 00:59 - 00139464 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2014-04-11 20:14 - 2014-02-23 00:59 - 00123448 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-04-11 20:14 - 2014-02-23 00:15 - 00531128 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-04-11 20:14 - 2014-02-23 00:15 - 00275312 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2014-04-11 20:14 - 2014-02-23 00:15 - 00188464 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2014-04-11 20:14 - 2014-02-23 00:15 - 00071888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2014-04-11 20:14 - 2014-02-23 00:02 - 00170952 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-04-11 20:14 - 2014-02-23 00:02 - 00083120 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-04-11 20:14 - 2014-02-23 00:02 - 00080048 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2014-04-11 20:14 - 2014-02-23 00:00 - 00236888 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-04-11 20:14 - 2014-02-23 00:00 - 00151384 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-04-11 20:14 - 2014-02-23 00:00 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys
2014-04-11 20:14 - 2014-02-22 23:59 - 00032088 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2014-04-11 20:14 - 2014-02-22 23:55 - 00152848 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2014-04-11 20:14 - 2014-02-22 23:55 - 00131168 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.exe
2014-04-11 20:14 - 2014-02-22 23:50 - 00101216 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2014-04-11 20:14 - 2014-02-22 23:50 - 00043408 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2014-04-11 20:14 - 2014-02-22 23:50 - 00032544 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountBroker.exe
2014-04-11 20:14 - 2014-02-22 23:49 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2014-04-11 20:14 - 2014-02-22 23:49 - 00079192 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2014-04-11 20:14 - 2014-02-22 23:44 - 00924504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2014-04-11 20:14 - 2014-02-22 23:43 - 00142576 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-04-11 20:14 - 2014-02-22 23:43 - 00094560 _____ (Microsoft Corporation) C:\Windows\system32\bcd.dll
2014-04-11 20:14 - 2014-02-22 22:52 - 00251504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powrprof.dll
2014-04-11 20:14 - 2014-02-22 22:51 - 00140456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2014-04-11 20:14 - 2014-02-22 22:42 - 00410568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2014-04-11 20:14 - 2014-02-22 22:42 - 00369288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2014-04-11 20:14 - 2014-02-22 22:42 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2014-04-11 20:14 - 2014-02-22 22:42 - 00137344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2014-04-11 20:14 - 2014-02-22 22:42 - 00098072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-04-11 20:14 - 2014-02-22 22:38 - 00506120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2014-04-11 20:14 - 2014-02-22 22:25 - 00180240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2014-04-11 20:14 - 2014-02-22 22:18 - 00089848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2014-04-11 20:14 - 2014-02-22 22:18 - 00041320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2014-04-11 20:14 - 2014-02-22 22:18 - 00029912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountBroker.exe
2014-04-11 20:14 - 2014-02-22 22:08 - 00079496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcd.dll
2014-04-11 20:14 - 2014-02-22 20:20 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2014-04-11 20:14 - 2014-02-22 20:20 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-04-11 20:14 - 2014-02-22 20:14 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2014-04-11 20:14 - 2014-02-22 20:14 - 00033280 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2014-04-11 20:14 - 2014-02-22 20:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-04-11 20:14 - 2014-02-22 20:07 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\clrhost.dll
2014-04-11 20:14 - 2014-02-22 20:06 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-04-11 20:14 - 2014-02-22 19:54 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2014-04-11 20:14 - 2014-02-22 19:50 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-04-11 20:14 - 2014-02-22 19:47 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2014-04-11 20:14 - 2014-02-22 19:41 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2014-04-11 20:14 - 2014-02-22 19:34 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2014-04-11 20:14 - 2014-02-22 19:30 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-11 20:14 - 2014-02-22 19:27 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2014-04-11 20:14 - 2014-02-22 19:25 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-04-11 20:14 - 2014-02-22 19:22 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-04-11 20:14 - 2014-02-22 19:17 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2014-04-11 20:14 - 2014-02-22 19:16 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-04-11 20:14 - 2014-02-22 19:15 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll
2014-04-11 20:14 - 2014-02-22 19:05 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\RASMM.dll
2014-04-11 20:14 - 2014-02-22 19:05 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2014-04-11 20:14 - 2014-02-22 19:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-04-11 20:14 - 2014-02-22 19:02 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContent.dll
2014-04-11 20:14 - 2014-02-22 19:01 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-04-11 20:14 - 2014-02-22 19:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-11 20:14 - 2014-02-22 18:59 - 01283584 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-04-11 20:14 - 2014-02-22 18:56 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-04-11 20:14 - 2014-02-22 18:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2014-04-11 20:14 - 2014-02-22 18:52 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-04-11 20:14 - 2014-02-22 18:51 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2014-04-11 20:14 - 2014-02-22 18:41 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2014-04-11 20:14 - 2014-02-22 18:33 - 00402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2014-04-11 20:14 - 2014-02-22 18:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-11 20:14 - 2014-02-22 18:28 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-11 20:14 - 2014-02-22 18:27 - 00397824 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2014-04-11 20:14 - 2014-02-22 18:18 - 00722432 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2014-04-11 20:14 - 2014-02-22 18:17 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2014-04-11 20:14 - 2014-02-22 18:17 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-11 20:14 - 2014-02-22 18:16 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll
2014-04-11 20:14 - 2014-02-22 18:14 - 02165760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2014-04-11 20:14 - 2014-02-22 18:14 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2014-04-11 20:14 - 2014-02-22 18:13 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2014-04-11 20:14 - 2014-02-22 18:13 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2014-04-11 20:14 - 2014-02-22 18:12 - 00797696 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.dll
2014-04-11 20:14 - 2014-02-22 18:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-04-11 20:14 - 2014-02-22 18:04 - 00935424 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2014-04-11 20:14 - 2014-02-22 18:04 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2014-04-11 20:14 - 2014-02-22 18:03 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-04-11 20:14 - 2014-02-22 18:01 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-04-11 20:14 - 2014-02-22 18:00 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-04-11 20:14 - 2014-02-22 17:55 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-11 20:14 - 2014-02-22 17:49 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2014-04-11 20:14 - 2014-02-22 17:45 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2014-04-11 20:14 - 2014-02-22 17:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-04-11 20:14 - 2014-02-22 17:45 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2014-04-11 20:14 - 2014-02-22 17:40 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-04-11 20:14 - 2014-02-22 17:40 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-11 20:14 - 2014-02-22 17:36 - 01392640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2014-04-11 20:14 - 2014-02-22 17:36 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2014-04-11 20:14 - 2014-02-22 17:36 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2014-04-11 20:14 - 2014-02-22 17:32 - 01162752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-04-11 20:14 - 2014-02-22 17:31 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2014-04-11 20:14 - 2014-02-22 17:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2014-04-11 20:14 - 2014-02-22 17:25 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2014-04-11 20:14 - 2014-02-22 17:25 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-04-11 20:14 - 2014-02-22 17:25 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2014-04-11 20:14 - 2014-02-22 17:22 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2014-04-11 20:14 - 2014-02-22 17:18 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2014-04-11 20:14 - 2014-02-22 17:15 - 00211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dism.exe
2014-04-11 20:14 - 2014-02-22 17:09 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-04-11 20:14 - 2014-02-22 17:07 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2014-04-11 20:14 - 2014-02-22 17:02 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2014-04-11 20:14 - 2014-02-22 17:02 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2014-04-11 20:14 - 2014-02-22 16:55 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-04-11 20:14 - 2014-02-22 16:54 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-04-11 20:14 - 2014-02-22 16:54 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2014-04-11 20:14 - 2014-02-22 16:52 - 00196096 ____N (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2014-04-11 20:14 - 2014-02-22 16:52 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-04-11 20:14 - 2014-02-22 16:49 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2014-04-11 20:14 - 2014-02-22 16:48 - 01144320 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2014-04-11 20:14 - 2014-02-22 16:48 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2014-04-11 20:14 - 2014-02-22 16:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\AltTab.dll
2014-04-11 20:14 - 2014-02-22 16:46 - 03312128 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2014-04-11 20:14 - 2014-02-22 16:44 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-04-11 20:14 - 2014-02-22 16:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2014-04-11 20:14 - 2014-02-22 16:43 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-04-11 20:14 - 2014-02-22 16:42 - 00943104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2014-04-11 20:14 - 2014-02-22 16:42 - 00709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2014-04-11 20:14 - 2014-02-22 16:42 - 00448000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2014-04-11 20:14 - 2014-02-22 16:40 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2014-04-11 20:14 - 2014-02-22 16:38 - 00470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-04-11 20:14 - 2014-02-22 16:38 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-04-11 20:14 - 2014-02-22 16:31 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-04-11 20:14 - 2014-02-22 16:29 - 00191488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2014-04-11 20:14 - 2014-02-22 16:22 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-11 20:14 - 2014-02-22 16:17 - 00459264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-04-11 20:14 - 2014-02-22 15:54 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2014-04-11 20:14 - 2014-01-31 17:35 - 03085824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-04-11 20:14 - 2014-01-31 17:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-04-11 20:14 - 2014-01-31 17:10 - 00559104 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-04-11 20:14 - 2014-01-31 17:08 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-04-11 20:14 - 2014-01-31 17:04 - 00409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2014-04-11 20:14 - 2014-01-31 16:18 - 01185280 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-04-11 20:14 - 2014-01-29 08:36 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2014-04-11 20:14 - 2014-01-29 08:17 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2014-04-11 20:14 - 2014-01-28 03:53 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-11 20:14 - 2014-01-18 01:04 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2014-04-11 20:14 - 2014-01-08 09:30 - 00745328 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-04-11 20:14 - 2014-01-08 08:33 - 00552632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-04-11 20:14 - 2013-12-05 02:41 - 00226304 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BthLEEnum.sys
2014-04-11 20:14 - 2013-12-04 23:54 - 00660480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-04-11 20:14 - 2013-12-04 21:53 - 00473600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2014-04-11 20:14 - 2013-11-11 07:41 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2014-04-11 20:14 - 2013-11-08 12:04 - 00488960 ____N (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-04-11 20:13 - 2014-02-23 00:58 - 00036200 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-04-11 20:13 - 2014-02-22 23:59 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2014-04-11 20:13 - 2014-02-22 23:55 - 00162176 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2014-04-11 20:13 - 2014-02-22 23:53 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-04-11 20:13 - 2014-02-22 23:50 - 00054816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2014-04-11 20:13 - 2014-02-22 23:49 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2014-04-11 20:13 - 2014-02-22 23:49 - 00189784 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2014-04-11 20:13 - 2014-02-22 23:41 - 00028416 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-04-11 20:13 - 2014-02-22 22:41 - 00033056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2014-04-11 20:13 - 2014-02-22 20:17 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-04-11 20:13 - 2014-02-22 20:17 - 00890880 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-04-11 20:13 - 2014-02-22 20:17 - 00874496 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-04-11 20:13 - 2014-02-22 20:14 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2014-04-11 20:13 - 2014-02-22 20:07 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-04-11 20:13 - 2014-02-22 20:03 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2014-04-11 20:13 - 2014-02-22 20:03 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2014-04-11 20:13 - 2014-02-22 20:01 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\spcompat.dll
2014-04-11 20:13 - 2014-02-22 19:59 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgrade.exe
2014-04-11 20:13 - 2014-02-22 19:57 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-04-11 20:13 - 2014-02-22 19:47 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2014-04-11 20:13 - 2014-02-22 19:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-04-11 20:13 - 2014-02-22 19:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-04-11 20:13 - 2014-02-22 19:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2014-04-11 20:13 - 2014-02-22 19:42 - 00038680 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2014-04-11 20:13 - 2014-02-22 19:37 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2014-04-11 20:13 - 2014-02-22 19:32 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-04-11 20:13 - 2014-02-22 19:25 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2014-04-11 20:13 - 2014-02-22 19:25 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2014-04-11 20:13 - 2014-02-22 19:24 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2014-04-11 20:13 - 2014-02-22 19:24 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2014-04-11 20:13 - 2014-02-22 19:24 - 00780288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2014-04-11 20:13 - 2014-02-22 19:22 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2014-04-11 20:13 - 2014-02-22 19:16 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-04-11 20:13 - 2014-02-22 19:16 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clrhost.dll
2014-04-11 20:13 - 2014-02-22 19:14 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\cleanmgr.exe
2014-04-11 20:13 - 2014-02-22 19:11 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2014-04-11 20:13 - 2014-02-22 19:02 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2014-04-11 20:13 - 2014-02-22 18:58 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-04-11 20:13 - 2014-02-22 18:58 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\DAConn.dll
2014-04-11 20:13 - 2014-02-22 18:57 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2014-04-11 20:13 - 2014-02-22 18:57 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-04-11 20:13 - 2014-02-22 18:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-04-11 20:13 - 2014-02-22 18:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe
2014-04-11 20:13 - 2014-02-22 18:47 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2014-04-11 20:13 - 2014-02-22 18:47 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2014-04-11 20:13 - 2014-02-22 18:47 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-11 20:13 - 2014-02-22 18:46 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2014-04-11 20:13 - 2014-02-22 18:40 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2014-04-11 20:13 - 2014-02-22 18:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-04-11 20:13 - 2014-02-22 18:30 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cleanmgr.exe
2014-04-11 20:13 - 2014-02-22 18:25 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2014-04-11 20:13 - 2014-02-22 18:21 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-04-11 20:13 - 2014-02-22 18:21 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll
2014-04-11 20:13 - 2014-02-22 18:20 - 01152512 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2014-04-11 20:13 - 2014-02-22 18:16 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2014-04-11 20:13 - 2014-02-22 18:13 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2014-04-11 20:13 - 2014-02-22 18:12 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2014-04-11 20:13 - 2014-02-22 18:09 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-11 20:13 - 2014-02-22 18:04 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll
2014-04-11 20:13 - 2014-02-22 17:56 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-04-11 20:13 - 2014-02-22 17:54 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-04-11 20:13 - 2014-02-22 17:53 - 00545280 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-04-11 20:13 - 2014-02-22 17:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\winbrand.dll
2014-04-11 20:13 - 2014-02-22 17:45 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2014-04-11 20:13 - 2014-02-22 17:44 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2014-04-11 20:13 - 2014-02-22 17:43 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-11 20:13 - 2014-02-22 17:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2014-04-11 20:13 - 2014-02-22 17:29 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2014-04-11 20:13 - 2014-02-22 17:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2014-04-11 20:13 - 2014-02-22 17:27 - 00484864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-04-11 20:13 - 2014-02-22 17:25 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbrand.dll
2014-04-11 20:13 - 2014-02-22 17:23 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-04-11 20:13 - 2014-02-22 17:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-04-11 20:13 - 2014-02-22 17:19 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-11 20:13 - 2014-02-22 17:08 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-04-11 20:13 - 2014-02-22 17:06 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2014-04-11 20:13 - 2014-02-22 17:04 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\slpts.dll
2014-04-11 20:13 - 2014-02-22 16:59 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-04-11 20:13 - 2014-02-22 16:55 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-04-11 20:13 - 2014-02-22 16:55 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\energytask.dll
2014-04-11 20:13 - 2014-02-22 16:55 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slpts.dll
2014-04-11 20:13 - 2014-02-22 16:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-04-11 20:13 - 2014-02-22 16:49 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-04-11 20:13 - 2014-02-22 16:48 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-04-11 20:13 - 2014-02-22 16:48 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2014-04-11 20:13 - 2014-02-22 16:47 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2014-04-11 20:13 - 2014-02-22 16:45 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-04-11 20:13 - 2014-02-22 16:44 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2014-04-11 20:13 - 2014-02-22 16:44 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2014-04-11 20:13 - 2014-02-22 16:43 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2014-04-11 20:13 - 2014-02-22 16:43 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-04-11 20:13 - 2014-02-22 16:43 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Renewal.dll
2014-04-11 20:13 - 2014-02-22 16:39 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2014-04-11 20:13 - 2014-02-22 16:39 - 00321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll
2014-04-11 20:13 - 2014-02-22 16:31 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2014-04-11 20:13 - 2014-02-22 16:30 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2014-04-11 20:13 - 2014-02-22 16:20 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2014-04-11 20:13 - 2014-02-22 16:19 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2014-04-11 20:13 - 2014-02-22 16:17 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\CloudStorageWizard.exe
2014-04-11 20:13 - 2014-01-31 20:09 - 00081920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-04-11 20:13 - 2014-01-31 20:08 - 01200640 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-04-11 20:13 - 2014-01-31 19:59 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-04-11 20:13 - 2014-01-31 19:11 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2014-04-11 20:13 - 2014-01-31 17:19 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2014-04-11 20:13 - 2014-01-31 16:24 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2014-04-11 20:13 - 2014-01-29 16:40 - 00994136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-04-11 20:13 - 2014-01-29 08:18 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-04-11 20:13 - 2014-01-28 03:48 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-04-11 20:13 - 2014-01-22 14:21 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2014-04-11 20:13 - 2014-01-22 13:50 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2014-04-11 20:13 - 2013-12-04 22:19 - 00439808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2014-04-11 20:13 - 2013-11-27 17:10 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2014-04-11 20:13 - 2013-11-27 16:56 - 00167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2014-04-11 20:12 - 2014-02-22 20:17 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2014-04-11 20:12 - 2014-02-22 20:08 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2014-04-11 20:12 - 2014-02-22 20:08 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2014-04-11 20:12 - 2014-02-22 20:04 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2014-04-11 20:12 - 2014-02-22 20:00 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-04-11 20:12 - 2014-02-22 20:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2014-04-11 20:12 - 2014-02-22 19:50 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2014-04-11 20:12 - 2014-02-22 19:48 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2014-04-11 20:12 - 2014-02-22 19:47 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2014-04-11 20:12 - 2014-02-22 19:29 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2014-04-11 20:12 - 2014-02-22 19:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SSShim.dll
2014-04-11 20:12 - 2014-02-22 19:24 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-11 20:12 - 2014-02-22 19:17 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2014-04-11 20:12 - 2014-02-22 19:16 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-04-11 20:12 - 2014-02-22 19:13 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2014-04-11 20:12 - 2014-02-22 19:09 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-04-11 20:12 - 2014-02-22 19:09 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2014-04-11 20:12 - 2014-02-22 19:08 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2014-04-11 20:12 - 2014-02-22 19:07 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-04-11 20:12 - 2014-02-22 19:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2014-04-11 20:12 - 2014-02-22 19:07 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-04-11 20:12 - 2014-02-22 19:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2014-04-11 20:12 - 2014-02-22 19:05 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentHost.dll
2014-04-11 20:12 - 2014-02-22 19:04 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2014-04-11 20:12 - 2014-02-22 19:01 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-04-11 20:12 - 2014-02-22 18:59 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2014-04-11 20:12 - 2014-02-22 18:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-11 20:12 - 2014-02-22 18:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2014-04-11 20:12 - 2014-02-22 18:55 - 00057344 ____N (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2014-04-11 20:12 - 2014-02-22 18:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe
2014-04-11 20:12 - 2014-02-22 18:47 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2014-04-11 20:12 - 2014-02-22 18:41 - 02566656 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-04-11 20:12 - 2014-02-22 18:40 - 00304640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-04-11 20:12 - 2014-02-22 18:38 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2014-04-11 20:12 - 2014-02-22 18:36 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-04-11 20:12 - 2014-02-22 18:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-11 20:12 - 2014-02-22 18:35 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-04-11 20:12 - 2014-02-22 18:32 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-04-11 20:12 - 2014-02-22 18:29 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-04-11 20:12 - 2014-02-22 18:21 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2014-04-11 20:12 - 2014-02-22 18:18 - 00488448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-04-11 20:12 - 2014-02-22 18:17 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2014-04-11 20:12 - 2014-02-22 18:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2014-04-11 20:12 - 2014-02-22 18:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll
2014-04-11 20:12 - 2014-02-22 18:03 - 02544128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2014-04-11 20:12 - 2014-02-22 17:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2014-04-11 20:12 - 2014-02-22 17:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-04-11 20:12 - 2014-02-22 17:54 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2014-04-11 20:12 - 2014-02-22 17:54 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2014-04-11 20:12 - 2014-02-22 17:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.exe
2014-04-11 20:12 - 2014-02-22 17:48 - 01136128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2014-04-11 20:12 - 2014-02-22 17:48 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2014-04-11 20:12 - 2014-02-22 17:46 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll
2014-04-11 20:12 - 2014-02-22 17:41 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2014-04-11 20:12 - 2014-02-22 17:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\dasHost.exe
2014-04-11 20:12 - 2014-02-22 17:37 - 00183808 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2014-04-11 20:12 - 2014-02-22 17:28 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2014-04-11 20:12 - 2014-02-22 17:26 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-04-11 20:12 - 2014-02-22 17:26 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.exe
2014-04-11 20:12 - 2014-02-22 17:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2014-04-11 20:12 - 2014-02-22 17:22 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll
2014-04-11 20:12 - 2014-02-22 17:16 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxshared.dll
2014-04-11 20:12 - 2014-02-22 17:09 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-04-11 20:12 - 2014-02-22 17:02 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2014-04-11 20:12 - 2014-02-22 16:58 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2014-04-11 20:12 - 2014-02-22 16:57 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-04-11 20:12 - 2014-02-22 16:55 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-11 20:12 - 2014-02-22 16:55 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2014-04-11 20:12 - 2014-02-22 16:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-04-11 20:12 - 2014-02-22 16:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\AepRoam.dll
2014-04-11 20:12 - 2014-02-22 16:49 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2014-04-11 20:12 - 2014-02-22 16:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-04-11 20:12 - 2014-02-22 16:48 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-11 20:12 - 2014-02-22 16:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2014-04-11 20:12 - 2014-02-22 16:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2014-04-11 20:12 - 2014-02-22 16:45 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2014-04-11 20:12 - 2014-02-22 16:40 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2014-04-11 20:12 - 2014-02-22 16:35 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2014-04-11 20:12 - 2014-02-22 16:33 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2014-04-11 20:12 - 2014-02-22 16:24 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2014-04-11 20:12 - 2014-02-22 16:22 - 00030208 ____N (Microsoft Corporation) C:\Windows\system32\SettingSyncPolicy.dll
2014-04-11 20:12 - 2014-02-22 16:20 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncPolicy.dll
2014-04-11 20:12 - 2014-02-22 16:17 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudStorageWizard.exe
2014-04-11 20:12 - 2014-02-22 12:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-04-11 20:12 - 2014-02-22 12:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-04-11 20:12 - 2014-02-22 12:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-04-11 20:12 - 2014-02-22 12:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-04-11 20:12 - 2014-02-08 09:08 - 00100197 _____ () C:\Windows\SysWOW64\RacRules.xml
2014-04-11 20:12 - 2014-02-08 09:08 - 00100197 _____ () C:\Windows\system32\RacRules.xml
2014-04-11 20:12 - 2014-02-01 14:00 - 00007762 _____ () C:\Windows\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-04-11 20:12 - 2014-02-01 14:00 - 00007762 _____ () C:\Windows\system32\connectedsearch-suggestions.searchconnector-ms
2014-04-11 20:12 - 2014-02-01 14:00 - 00007130 _____ () C:\Windows\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-04-11 20:12 - 2014-02-01 14:00 - 00007130 _____ () C:\Windows\system32\connectedsearch-zeroinput.searchconnector-ms
2014-04-11 20:12 - 2014-02-01 14:00 - 00002255 _____ () C:\Windows\SysWOW64\WimBootCompress.ini
2014-04-11 20:12 - 2014-02-01 14:00 - 00002255 _____ () C:\Windows\system32\WimBootCompress.ini
2014-04-11 20:12 - 2014-01-28 01:54 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-04-11 20:12 - 2013-11-27 17:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\finger.exe
2014-04-11 20:12 - 2013-11-08 11:47 - 00370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2014-04-11 20:11 - 2014-02-22 20:17 - 00008192 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-11 20:11 - 2014-02-22 20:17 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-11 20:11 - 2014-02-22 20:17 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-11 20:11 - 2014-02-22 20:17 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-11 20:11 - 2014-02-22 20:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2014-04-11 20:11 - 2014-02-22 20:08 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-04-11 20:11 - 2014-02-22 20:08 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-04-11 20:11 - 2014-02-22 20:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2014-04-11 20:11 - 2014-02-22 19:39 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2014-04-11 20:11 - 2014-02-22 19:25 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\f3ahvoas.dll
2014-04-11 20:11 - 2014-02-22 19:25 - 00008192 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-11 20:11 - 2014-02-22 19:25 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-11 20:11 - 2014-02-22 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-04-11 20:11 - 2014-02-22 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-11 20:11 - 2014-02-22 19:16 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-11 20:11 - 2014-02-22 19:08 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-04-11 20:11 - 2014-02-22 18:59 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2014-04-11 20:11 - 2014-02-22 18:35 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2014-04-11 20:11 - 2014-02-22 18:27 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-04-11 20:11 - 2014-02-22 17:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-04-11 20:11 - 2014-02-22 17:51 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2014-04-11 20:11 - 2014-02-22 17:27 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2014-04-11 20:11 - 2014-02-22 17:19 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\korwbrkr.dll
2014-04-11 20:11 - 2014-02-22 16:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-04-11 20:11 - 2014-02-22 16:55 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2014-04-11 20:11 - 2014-02-22 16:48 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2014-04-11 20:11 - 2014-02-22 16:39 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2014-04-11 20:11 - 2014-02-01 14:00 - 00011109 _____ () C:\Windows\SysWOW64\connectedsearch-results.searchconnector-ms
2014-04-11 20:11 - 2014-02-01 14:00 - 00011109 _____ () C:\Windows\system32\connectedsearch-results.searchconnector-ms
2014-04-11 20:11 - 2014-01-27 19:45 - 00050053 _____ () C:\Windows\system32\srms.dat
2014-04-11 20:11 - 2013-11-27 17:47 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2014-04-11 19:41 - 2014-04-11 19:41 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-04-11 19:40 - 2014-04-11 19:40 - 00001313 ____N () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-04-11 19:40 - 2014-04-11 19:40 - 00000000 ____D () C:\Program Files (x86)\GreenTree Applications
2014-04-11 18:51 - 2014-03-02 18:20 - 23549952 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-11 18:51 - 2014-03-02 17:33 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-11 18:51 - 2014-02-26 14:29 - 02678784 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-04-11 18:45 - 2014-04-11 18:45 - 00001122 ____N () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-11 18:45 - 2014-04-11 18:45 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-11 18:45 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-11 18:45 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-11 18:45 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-11 18:25 - 2014-04-13 14:53 - 00000000 ____D () C:\FRST
2014-04-11 18:24 - 2014-03-20 12:19 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-11 18:24 - 2014-03-20 11:48 - 21232792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-04-11 18:24 - 2014-03-20 11:41 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-11 18:24 - 2014-03-20 11:41 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-04-11 18:24 - 2014-03-20 11:40 - 01112536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-11 18:24 - 2014-03-20 09:29 - 04268544 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-04-11 18:24 - 2014-03-20 09:20 - 18679216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-04-11 18:24 - 2014-03-20 08:53 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-04-11 18:24 - 2014-03-20 07:55 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-11 18:24 - 2014-03-20 07:39 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-04-11 18:24 - 2014-03-19 15:13 - 00836096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-11 18:24 - 2014-03-19 13:57 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-04-11 18:24 - 2014-03-19 13:31 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-04-11 18:24 - 2014-03-19 13:08 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-04-11 18:24 - 2014-03-19 12:41 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-04-11 18:24 - 2014-03-19 12:17 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-04-11 18:24 - 2014-03-15 12:44 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-04-11 18:24 - 2014-03-13 20:35 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-04-11 18:24 - 2014-03-11 23:18 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-04-11 18:24 - 2014-03-11 22:03 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2014-04-11 18:24 - 2014-03-11 22:00 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-04-11 18:24 - 2014-03-11 21:21 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-04-11 18:24 - 2014-03-11 21:02 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-04-11 18:24 - 2014-03-11 20:42 - 02641920 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-04-11 18:24 - 2014-03-11 20:35 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-04-11 18:24 - 2014-03-09 04:47 - 00565536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-04-11 18:24 - 2014-03-09 04:47 - 00180056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-04-11 18:24 - 2014-03-09 04:38 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-04-11 18:24 - 2014-03-09 04:35 - 00467800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-04-11 18:24 - 2014-03-09 04:35 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-04-11 18:24 - 2014-03-08 23:29 - 01339240 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-04-11 18:24 - 2014-03-08 23:29 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-04-11 18:24 - 2014-03-08 19:34 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-04-11 18:24 - 2014-03-08 15:09 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-04-11 18:24 - 2014-03-08 15:04 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-04-11 18:24 - 2014-03-08 15:03 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-04-11 18:24 - 2014-03-08 15:01 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-04-11 18:24 - 2014-03-08 14:50 - 01066496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-04-11 18:24 - 2014-03-08 14:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-04-11 18:24 - 2014-03-08 14:46 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-04-11 18:24 - 2014-03-08 14:41 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-04-11 18:24 - 2014-03-08 14:40 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-04-11 18:24 - 2014-03-08 14:37 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-04-11 18:24 - 2014-03-08 14:31 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-04-11 18:24 - 2014-03-08 14:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-04-11 18:24 - 2014-03-08 14:09 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-04-11 18:24 - 2014-03-08 14:02 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-04-11 18:24 - 2014-03-08 13:41 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-04-11 18:24 - 2014-03-08 13:11 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-04-11 18:24 - 2014-03-06 22:35 - 01466864 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-04-11 18:24 - 2014-03-06 22:34 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-04-11 18:24 - 2014-03-06 22:34 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-04-11 18:24 - 2014-03-06 20:53 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-04-11 18:24 - 2014-03-06 20:53 - 00518552 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-04-11 18:24 - 2014-03-06 20:51 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-04-11 18:24 - 2014-03-06 20:51 - 00488280 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-04-11 18:24 - 2014-03-06 20:51 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-04-11 18:24 - 2014-03-06 20:42 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-04-11 18:24 - 2014-03-06 20:40 - 00492256 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-04-11 18:24 - 2014-03-06 20:40 - 00467504 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-04-11 18:24 - 2014-03-06 20:40 - 00463264 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-04-11 18:24 - 2014-03-06 20:40 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-04-11 18:24 - 2014-03-06 20:40 - 00244888 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-04-11 18:24 - 2014-03-06 20:39 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-04-11 18:24 - 2014-03-06 19:20 - 01200296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-04-11 18:24 - 2014-03-06 19:19 - 00390488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-04-11 18:24 - 2014-03-06 19:19 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2014-04-11 18:24 - 2014-03-06 19:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-04-11 18:24 - 2014-03-06 19:13 - 00406912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-04-11 18:24 - 2014-03-06 18:46 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-04-11 18:24 - 2014-03-06 18:35 - 00406512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-04-11 18:24 - 2014-03-06 18:35 - 00388408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-04-11 18:24 - 2014-03-06 18:35 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-04-11 18:24 - 2014-03-06 18:35 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-04-11 18:24 - 2014-03-06 17:22 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-04-11 18:24 - 2014-03-06 17:20 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-04-11 18:24 - 2014-03-06 17:20 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-04-11 18:24 - 2014-03-06 17:20 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-04-11 18:24 - 2014-03-06 17:19 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-04-11 18:24 - 2014-03-06 17:19 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-04-11 18:24 - 2014-03-06 16:38 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-04-11 18:24 - 2014-03-06 16:20 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-11 18:24 - 2014-03-06 16:00 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-04-11 18:24 - 2014-03-06 15:22 - 16875520 ____N (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-04-11 18:24 - 2014-03-06 15:16 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2014-04-11 18:24 - 2014-03-06 15:02 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-04-11 18:24 - 2014-03-06 14:59 - 12732416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-04-11 18:24 - 2014-03-06 14:51 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-04-11 18:24 - 2014-03-06 14:39 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-04-11 18:24 - 2014-03-06 14:34 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-04-11 18:24 - 2014-03-06 14:33 - 13286400 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-04-11 18:24 - 2014-03-06 14:32 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-04-11 18:24 - 2014-03-06 14:31 - 02479616 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-04-11 18:24 - 2014-03-06 14:29 - 11791360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-04-11 18:24 - 2014-03-06 14:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2014-04-11 18:24 - 2014-03-06 14:24 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-04-11 18:24 - 2014-03-06 14:23 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-04-11 18:24 - 2014-03-06 14:21 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-04-11 18:24 - 2014-03-06 14:16 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-04-11 18:24 - 2014-03-06 14:16 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-04-11 18:24 - 2014-03-06 14:11 - 02030080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-04-11 18:24 - 2014-03-06 14:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-04-11 18:24 - 2014-03-06 14:05 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-04-11 18:24 - 2014-03-06 14:04 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-04-11 18:24 - 2014-03-06 13:54 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-04-11 18:24 - 2014-03-06 13:54 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-04-11 18:24 - 2014-03-06 13:47 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-04-11 18:24 - 2014-03-06 13:42 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-04-11 18:24 - 2014-03-06 13:42 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-04-11 18:24 - 2014-03-06 13:35 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-04-11 18:24 - 2014-03-06 13:33 - 00839168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-04-11 18:24 - 2014-03-06 13:32 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-04-11 18:24 - 2014-03-06 13:28 - 08653824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-04-11 18:24 - 2014-03-06 13:27 - 05833728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-04-11 18:24 - 2014-03-06 13:21 - 05770752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-04-11 18:24 - 2014-03-06 13:20 - 06641152 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-04-11 18:24 - 2014-03-04 20:25 - 02373784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-04-11 18:24 - 2014-03-04 20:15 - 02519384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-04-11 18:24 - 2014-03-04 20:14 - 00360512 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-04-11 18:24 - 2014-03-04 19:16 - 02088160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-04-11 18:24 - 2014-03-04 19:10 - 00355832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-04-11 18:24 - 2014-03-04 15:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-04-11 18:24 - 2014-03-04 15:13 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-04-11 18:24 - 2014-03-04 15:08 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-04-11 18:24 - 2014-03-04 15:00 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-04-11 18:24 - 2014-03-04 14:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-04-11 18:24 - 2014-03-04 14:42 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-04-11 18:24 - 2014-03-04 14:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-04-11 18:24 - 2014-03-04 14:03 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-04-11 18:24 - 2014-03-04 13:52 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-04-11 18:23 - 2014-03-20 08:48 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-04-11 18:23 - 2014-03-20 07:36 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-04-11 18:23 - 2014-03-19 13:50 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-04-11 18:23 - 2014-03-19 13:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-04-11 18:23 - 2014-03-15 12:56 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-04-11 18:23 - 2014-03-12 21:45 - 00387210 _____ () C:\Windows\system32\ApnDatabase.xml
2014-04-11 18:23 - 2014-03-11 23:45 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2014-04-11 18:23 - 2014-03-11 23:02 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2014-04-11 18:23 - 2014-03-11 22:28 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-04-11 18:23 - 2014-03-11 22:25 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2014-04-11 18:23 - 2014-03-11 22:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2014-04-11 18:23 - 2014-03-09 04:40 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-04-11 18:23 - 2014-03-08 17:34 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-04-11 18:23 - 2014-03-08 17:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-04-11 18:23 - 2014-03-08 16:44 - 00731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-04-11 18:23 - 2014-03-08 16:33 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-04-11 18:23 - 2014-03-08 16:25 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-04-11 18:23 - 2014-03-08 16:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2014-04-11 18:23 - 2014-03-08 15:53 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-04-11 18:23 - 2014-03-08 15:51 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-04-11 18:23 - 2014-03-08 15:47 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2014-04-11 18:23 - 2014-03-08 15:12 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-04-11 18:23 - 2014-03-08 14:25 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-04-11 18:23 - 2014-03-08 14:04 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-04-11 18:23 - 2014-03-08 13:58 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-04-11 18:23 - 2014-03-06 17:29 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-04-11 18:23 - 2014-03-06 17:24 - 00111616 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-04-11 18:23 - 2014-03-06 17:24 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-04-11 18:23 - 2014-03-06 17:24 - 00033280 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-04-11 18:23 - 2014-03-06 17:22 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-04-11 18:23 - 2014-03-06 17:22 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-04-11 18:23 - 2014-03-06 17:19 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-04-11 18:23 - 2014-03-06 17:19 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-04-11 18:23 - 2014-03-06 17:19 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-04-11 18:23 - 2014-03-06 17:08 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-04-11 18:23 - 2014-03-06 17:08 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-04-11 18:23 - 2014-03-06 16:41 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-04-11 18:23 - 2014-03-06 16:37 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-04-11 18:23 - 2014-03-06 16:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-04-11 18:23 - 2014-03-06 16:10 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2014-04-11 18:23 - 2014-03-06 16:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-04-11 18:23 - 2014-03-06 15:47 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-04-11 18:23 - 2014-03-06 15:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-04-11 18:23 - 2014-03-06 15:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-04-11 18:23 - 2014-03-06 15:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-04-11 18:23 - 2014-03-06 14:57 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-04-11 18:23 - 2014-03-06 14:27 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-04-11 18:23 - 2014-03-06 14:23 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-04-11 18:23 - 2014-03-06 14:21 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-04-11 18:23 - 2014-03-06 14:13 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-04-11 18:23 - 2014-03-06 14:13 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-04-11 18:23 - 2014-03-06 14:06 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2014-04-11 18:23 - 2014-03-06 14:04 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-04-11 18:23 - 2014-03-06 14:01 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-04-11 18:23 - 2014-03-06 13:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2014-04-11 18:23 - 2014-03-04 20:15 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-04-11 18:23 - 2014-03-04 14:56 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-04-11 18:23 - 2014-03-04 14:39 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2014-04-11 18:23 - 2014-03-04 14:15 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-04-11 18:23 - 2014-03-04 14:05 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2014-04-11 18:23 - 2014-03-04 14:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-04-11 18:23 - 2014-03-04 13:54 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-04-11 18:23 - 2014-02-07 06:59 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-04-11 18:23 - 2014-02-07 05:26 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-04-11 18:23 - 2013-12-24 07:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-04-11 18:23 - 2013-12-24 07:26 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-04-10 23:34 - 2014-04-11 18:16 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-04-10 23:34 - 2014-04-10 23:34 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\user\Downloads\revosetup.exe
2014-04-10 23:28 - 2014-04-13 14:50 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-10 23:28 - 2014-04-10 23:28 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-10 23:25 - 2014-04-08 18:34 - 17305616 ____R (Malwarebytes Corporation ) C:\Users\user\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-10 23:03 - 2014-04-12 13:45 - 00000000 ____D () C:\Users\user\AppData\Roaming\Oxy
2014-04-10 23:03 - 2014-04-10 23:03 - 00003548 ____N () C:\Windows\System32\Tasks\PileFile reminder
2014-04-10 23:03 - 2014-04-10 23:03 - 00003136 ____N () C:\Windows\System32\Tasks\PileFile logon


#3 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 13 April 2014 - 02:05 AM

2014-04-06 17:40 - 2014-04-06 19:25 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-06 17:40 - 2014-04-06 17:40 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-04-06 17:36 - 2014-04-06 18:28 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-04-06 15:55 - 2014-04-06 15:55 - 00000000 ____D () C:\Users\user\AppData\Roaming\TuneUp Software
2014-04-06 15:53 - 2014-04-06 15:55 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-04-06 15:52 - 2014-04-06 15:52 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-04-06 15:51 - 2014-04-06 15:51 - 00000000 ____D () C:\ProgramData\GRETECH
2014-04-06 06:25 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-04-06 06:24 - 2014-04-06 06:25 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-06 06:24 - 2014-04-06 06:25 - 00000000 ____D () C:\Program Files\iTunes
2014-04-06 06:24 - 2014-04-06 06:25 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-06 06:24 - 2014-04-06 06:24 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-04-06 06:24 - 2014-04-06 06:24 - 00000000 ____D () C:\Program Files (x86)\iPod
2014-04-06 06:24 - 2014-04-06 06:24 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-04-06 06:23 - 2014-04-06 06:23 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-04-06 06:23 - 2014-04-06 06:23 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-06 06:23 - 2014-04-06 06:23 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-06 06:19 - 2014-04-06 06:19 - 00000000 ____D () C:\Program Files\Western Digital
2014-04-05 08:41 - 2014-04-11 04:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-05 08:41 - 2014-04-11 04:46 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-04 21:08 - 2014-04-13 14:49 - 00000000 ____D () C:\Users\user\AppData\Local\CrashDumps
2014-04-03 22:33 - 2014-02-22 20:16 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-04-03 22:33 - 2014-02-22 19:24 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-04-02 23:36 - 2014-04-02 23:36 - 00000000 ____D () C:\Windows\System32\Tasks\Western Digital
2014-04-01 11:58 - 2014-04-01 11:58 - 00000000 ____D () C:\Users\user\Mobile Uploads
2014-04-01 11:56 - 2014-04-01 11:56 - 00000000 ____D () C:\Users\user\AppData\Local\AcerMedia
2014-04-01 11:52 - 2014-04-01 11:52 - 00000000 ____D () C:\Users\user\AppData\Local\AcerPhoto
2014-04-01 11:50 - 2014-04-01 11:50 - 00001116 ____N () C:\Users\Public\Desktop\Acer Portal.lnk
2014-04-01 11:50 - 2014-04-01 11:50 - 00000000 ____D () C:\Users\user\AppData\Local\AcerPortal
2014-04-01 11:50 - 2014-04-01 11:50 - 00000000 ____D () C:\AcerCloud
2014-04-01 11:29 - 2014-04-01 11:30 - 00025088 ___SH () C:\Users\user\Downloads\Thumbs.db
2014-04-01 11:25 - 2014-04-01 12:08 - 00000000 ____D () C:\Users\user\Documents\VirtualDJ
2014-04-01 11:25 - 2014-04-01 11:25 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-04-01 11:25 - 2014-04-01 11:25 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2014-03-29 20:10 - 2014-04-06 06:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-26 20:45 - 2014-03-26 22:00 - 00000407 _____ () C:\Windows\system32\checkdnsid.xml
2014-03-26 12:41 - 2014-04-11 17:08 - 00311296 ___SH () C:\Users\user\Desktop\Thumbs.db
2014-03-25 11:52 - 2014-04-12 18:31 - 00004968 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for V5-473PG-user V5-473PG
2014-03-24 18:41 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-03-24 18:41 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-03-24 18:41 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-03-24 18:41 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-03-24 18:41 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-03-24 18:41 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-03-24 18:41 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-03-24 18:41 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-03-24 18:41 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-03-24 18:41 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-03-24 18:41 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-03-24 18:41 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-03-24 18:41 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-03-24 18:41 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-03-24 18:41 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-03-24 18:41 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-03-24 18:41 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-03-24 18:41 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-03-24 18:41 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-03-24 18:41 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-03-24 18:41 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-03-24 18:41 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-03-24 18:41 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-03-24 18:41 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-03-24 18:41 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-03-24 18:41 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-03-24 18:41 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-03-24 18:41 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-03-24 18:41 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-03-24 18:41 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-03-24 18:41 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-03-24 18:41 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-03-24 18:41 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-03-24 18:41 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-03-24 18:41 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-03-24 18:41 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-03-24 18:41 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-03-24 18:41 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-03-24 18:41 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-03-24 18:41 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-03-24 18:41 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-03-24 18:41 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-03-24 18:41 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-03-24 18:41 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-03-24 18:41 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-03-24 18:41 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-03-24 18:41 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-03-24 18:41 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-03-24 18:41 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-03-24 18:41 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-03-24 18:41 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-03-24 18:41 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-03-24 18:41 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-03-24 18:41 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-03-24 18:41 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-03-24 18:41 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-03-24 18:41 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-03-24 18:41 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-03-24 18:41 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-03-24 18:41 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-03-24 18:41 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-03-24 18:41 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-03-24 18:41 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-03-24 18:41 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-03-24 18:41 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-03-24 18:41 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-03-24 18:41 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-03-24 18:41 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-03-24 18:41 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-03-24 18:41 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-03-24 18:41 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-03-24 18:41 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-03-24 18:41 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-03-24 18:41 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-03-24 18:41 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-03-24 18:41 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-03-24 18:41 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-03-24 18:41 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-03-24 18:41 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-03-24 18:41 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-03-24 18:41 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-03-24 18:41 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-03-24 18:40 - 2014-03-24 18:41 - 00009971 _____ () C:\Windows\DirectX.log
2014-03-24 18:40 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-03-24 18:40 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-03-24 18:40 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-03-24 18:40 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-03-24 18:40 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-03-24 18:40 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-03-24 18:40 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-03-24 18:40 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-03-24 18:40 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-03-24 18:40 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-03-24 18:40 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-03-24 18:40 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-03-24 18:40 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-03-24 18:40 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-03-24 18:40 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-03-24 18:40 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-03-24 18:40 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-03-24 18:40 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-03-24 18:40 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-03-24 18:40 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-03-24 18:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-03-24 18:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-03-24 18:40 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-03-24 18:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-03-24 18:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-03-24 18:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-03-24 18:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-03-24 18:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-03-24 18:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-03-24 18:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-03-24 18:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-03-24 18:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-03-24 18:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-03-24 18:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-03-24 18:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-03-24 18:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-03-24 18:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-03-24 18:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-03-24 18:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-03-24 18:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-03-24 18:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-03-24 18:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-03-24 18:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-03-24 18:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-03-24 18:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-03-24 18:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-03-24 18:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-03-24 18:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-03-24 18:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-03-24 18:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-03-24 18:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-03-24 18:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-03-24 18:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-03-24 18:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-03-24 18:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-03-24 18:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-03-24 18:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-03-24 18:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-03-24 18:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-03-24 18:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-03-24 18:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-03-24 18:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-03-24 18:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-03-24 18:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-03-24 18:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-03-24 18:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-03-24 18:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-03-24 18:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-03-24 18:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-03-24 18:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-03-24 18:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-03-24 18:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-03-24 18:29 - 2014-03-24 18:41 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-03-24 18:26 - 2014-03-24 18:26 - 00000000 ____D () C:\Users\user\AppData\Roaming\DAEMON Tools Pro
2014-03-24 18:05 - 2014-04-11 04:30 - 00000000 ____D () C:\ProgramData\DAEMON Tools Pro
2014-03-24 17:39 - 2014-04-05 22:18 - 00000000 ____D () C:\Users\user\Documents\FIFA 14
2014-03-24 17:39 - 2014-03-24 17:39 - 00000000 ____D () C:\ProgramData\Origin
2014-03-24 17:38 - 2014-03-24 17:38 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-03-23 06:14 - 2014-03-23 06:14 - 00000000 _____ () C:\Recovery.txt
2014-03-23 02:51 - 2014-03-23 02:51 - 00000000 ____D () C:\Users\user\AppData\Roaming\WinRAR
2014-03-23 02:50 - 2014-03-23 02:50 - 00000000 ____D () C:\Program Files\WinRAR
2014-03-20 23:19 - 2014-03-20 23:19 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2014-03-20 23:17 - 2014-03-20 23:19 - 00000000 ____D () C:\Users\user\Documents\OneNote Notebooks
2014-03-20 20:35 - 2014-03-20 20:35 - 00000385 _____ () C:\Users\user\AppData\Roaminguser_gensett.xml
2014-03-20 16:21 - 2014-03-20 16:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-03-20 09:17 - 2014-03-20 09:17 - 02147149 _____ () C:\ProgramData\1395277936.bdinstall.bin
2014-03-20 09:16 - 2014-03-20 09:16 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-03-20 09:15 - 2014-04-13 07:00 - 00003576 _____ () C:\Windows\System32\Tasks\Bitdefender Autoscan
2014-03-20 09:15 - 2014-03-20 23:19 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2014-03-20 09:15 - 2014-03-20 16:02 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2014-03-20 09:15 - 2014-03-20 09:15 - 00002214 ____N () C:\Users\Public\Desktop\Bitdefender Safepay.lnk
2014-03-20 09:15 - 2014-03-20 09:15 - 00002166 ____N () C:\Users\Public\Desktop\Bitdefender Internet Security.lnk
2014-03-20 09:15 - 2014-03-20 09:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-03-20 09:15 - 2014-03-20 09:15 - 00000000 ____D () C:\Users\user\AppData\Roaming\Bitdefender
2014-03-20 09:15 - 2014-03-20 09:15 - 00000000 ____D () C:\ProgramData\BDLogging
2014-03-20 09:15 - 2013-12-02 11:58 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-03-20 09:15 - 2013-12-02 11:56 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-03-20 09:15 - 2013-11-04 15:47 - 00082824 ____N (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2014-03-20 09:15 - 2013-09-08 19:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2014-03-20 09:15 - 2013-07-24 17:19 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys
2014-03-20 09:15 - 2007-04-11 10:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2014-03-20 09:12 - 2014-03-20 23:34 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-03-20 09:12 - 2014-03-20 23:19 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2014-03-20 09:12 - 2014-03-20 09:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\QuickScan
2014-03-20 09:12 - 2014-03-20 09:12 - 00000000 ____D () C:\Program Files\Bitdefender
2014-03-20 09:12 - 2013-11-04 15:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll
2014-03-20 09:12 - 2013-11-04 15:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll
2014-03-20 09:12 - 2013-08-23 12:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2014-03-20 09:12 - 2013-08-07 12:46 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-03-20 02:39 - 2014-01-19 15:38 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-03-20 02:36 - 2013-10-23 19:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2014-03-20 02:36 - 2013-10-08 13:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2014-03-20 02:36 - 2013-10-05 22:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-03-20 02:36 - 2013-10-05 20:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-03-20 02:36 - 2013-10-05 17:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-03-20 02:36 - 2013-10-05 16:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-03-20 02:36 - 2013-10-05 16:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2014-03-20 02:36 - 2013-10-05 15:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-03-20 02:36 - 2013-10-05 15:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-03-20 02:36 - 2013-09-17 17:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2014-03-20 02:36 - 2013-09-17 14:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2014-03-20 02:36 - 2013-09-14 22:07 - 02134120 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-03-20 02:36 - 2013-09-14 22:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2014-03-20 02:36 - 2013-09-14 20:39 - 01799944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2014-03-20 02:36 - 2013-09-12 15:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-03-20 02:35 - 2013-10-23 19:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2014-03-20 02:35 - 2013-10-23 19:21 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-03-20 02:35 - 2013-10-22 11:56 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-03-20 02:35 - 2013-10-19 13:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-20 02:35 - 2013-10-08 13:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2014-03-20 02:35 - 2013-10-08 12:50 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-03-20 02:35 - 2013-10-08 12:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2014-03-20 02:35 - 2013-10-05 23:25 - 00057176 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2014-03-20 02:35 - 2013-10-05 19:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-03-20 02:35 - 2013-10-05 17:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-03-20 02:35 - 2013-10-05 16:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2014-03-20 02:35 - 2013-10-05 16:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-03-20 02:35 - 2013-10-05 16:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2014-03-20 02:35 - 2013-10-05 16:15 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2014-03-20 02:35 - 2013-09-14 20:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2014-03-20 02:35 - 2013-09-14 18:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2014-03-20 02:35 - 2013-09-14 17:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2014-03-20 02:35 - 2013-09-13 16:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-03-20 02:35 - 2013-09-13 15:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2014-03-20 02:35 - 2013-09-12 16:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-03-20 02:35 - 2013-09-12 16:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-03-20 02:35 - 2013-09-12 16:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2014-03-20 02:35 - 2013-09-12 15:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2014-03-20 02:35 - 2013-09-12 15:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2014-03-20 02:35 - 2013-09-12 15:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2014-03-20 02:35 - 2013-09-12 15:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2014-03-20 02:35 - 2013-09-10 12:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2014-03-20 02:33 - 2013-09-24 13:54 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2014-03-20 02:33 - 2013-09-24 11:56 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2014-03-20 02:33 - 2013-09-21 17:09 - 00796928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2014-03-20 02:33 - 2013-09-21 13:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-03-20 02:32 - 2013-09-25 13:40 - 00098304 ____N (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2014-03-20 02:32 - 2013-09-24 13:10 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2014-03-20 02:32 - 2013-09-21 18:56 - 00101208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-03-20 02:32 - 2013-09-21 18:53 - 00934856 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2014-03-20 02:32 - 2013-09-21 18:53 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-03-20 02:32 - 2013-09-21 18:45 - 00171968 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-03-20 02:32 - 2013-09-21 15:57 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-03-20 02:32 - 2013-09-21 15:55 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2014-03-20 02:32 - 2013-09-21 15:50 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-03-20 02:32 - 2013-09-21 14:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2014-03-20 02:32 - 2013-09-21 13:57 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2014-03-20 02:32 - 2013-09-21 13:43 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-03-20 02:32 - 2013-09-19 14:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-03-20 02:32 - 2013-09-19 13:29 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2014-03-20 02:32 - 2013-09-19 12:25 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-03-20 02:32 - 2013-09-14 22:06 - 00175960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VerifierExt.sys
2014-03-20 02:32 - 2013-09-14 22:06 - 00066904 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2014-03-20 02:32 - 2013-09-13 17:52 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2014-03-20 02:32 - 2013-09-13 16:54 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2014-03-20 02:32 - 2013-09-12 15:37 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-03-20 02:32 - 2013-09-11 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-03-20 02:32 - 2013-09-11 15:09 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2014-03-20 02:32 - 2013-09-07 20:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2014-03-20 02:32 - 2013-09-07 20:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2014-03-20 02:32 - 2013-09-07 19:45 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2014-03-20 02:32 - 2013-09-07 19:07 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2014-03-20 02:32 - 2013-09-05 14:42 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2014-03-20 02:32 - 2013-09-04 15:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2014-03-20 02:32 - 2013-09-04 13:47 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2014-03-20 02:32 - 2013-09-04 13:12 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2014-03-20 02:32 - 2013-09-04 12:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2014-03-20 02:32 - 2013-08-31 22:18 - 00205024 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2014-03-20 02:32 - 2013-08-31 20:15 - 00180232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2014-03-20 02:32 - 2013-08-30 15:31 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2014-03-20 02:32 - 2013-08-28 15:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2014-03-20 02:32 - 2013-08-28 15:09 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2014-03-20 02:32 - 2013-08-27 14:09 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2014-03-20 02:32 - 2013-08-27 13:24 - 00813568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2014-03-20 02:31 - 2013-09-25 15:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2014-03-20 02:31 - 2013-09-24 14:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2014-03-20 02:31 - 2013-09-24 13:59 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2014-03-20 02:31 - 2013-09-21 13:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-03-20 02:31 - 2013-09-21 12:38 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2014-03-20 02:31 - 2013-09-21 12:37 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2014-03-20 02:31 - 2013-09-19 15:19 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersRes.dll
2014-03-20 02:31 - 2013-09-19 14:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2014-03-20 02:31 - 2013-09-19 14:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2014-03-20 02:31 - 2013-09-19 14:23 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WorkFoldersRes.dll
2014-03-20 02:31 - 2013-09-19 13:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2014-03-20 02:31 - 2013-09-17 14:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-03-20 02:31 - 2013-09-17 13:26 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-03-20 02:31 - 2013-09-14 19:39 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-03-20 02:31 - 2013-09-13 16:10 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2014-03-20 02:31 - 2013-09-07 20:00 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2014-03-20 02:31 - 2013-09-07 19:50 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2014-03-20 02:31 - 2013-09-07 19:22 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2014-03-20 02:31 - 2013-09-05 13:40 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2014-03-20 02:31 - 2013-08-31 18:00 - 00491520 ____N (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2014-03-20 02:31 - 2013-08-31 17:25 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2014-03-20 02:27 - 2014-03-20 09:12 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-03-20 02:24 - 2014-01-04 23:54 - 00138240 _____ () C:\Windows\system32\OEMLicense.dll
2014-03-20 02:24 - 2014-01-04 23:08 - 00103936 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2014-03-20 02:24 - 2014-01-03 07:54 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-03-20 02:24 - 2014-01-03 07:48 - 00336896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-03-20 02:24 - 2014-01-01 07:57 - 01214976 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-03-20 02:24 - 2013-12-31 07:34 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2014-03-20 02:24 - 2013-12-31 07:32 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2014-03-20 02:24 - 2013-12-27 16:57 - 00842752 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2014-03-20 02:24 - 2013-12-27 15:03 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2014-03-20 02:24 - 2013-12-21 15:21 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2014-03-20 02:24 - 2013-12-17 15:21 - 00408576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-03-20 02:19 - 2013-11-11 10:48 - 00039768 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2014-03-20 02:19 - 2013-11-01 19:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-03-20 02:19 - 2013-10-26 09:54 - 00146776 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys
2014-03-20 02:16 - 2013-11-27 23:34 - 03210528 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-03-20 02:16 - 2013-11-27 21:47 - 02804528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-03-20 02:16 - 2013-11-23 12:50 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2014-03-20 02:16 - 2013-11-15 22:08 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-03-20 02:15 - 2013-11-27 23:27 - 00809872 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-03-20 02:15 - 2013-11-27 22:00 - 00663680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-03-20 02:15 - 2013-11-27 20:02 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2014-03-20 02:15 - 2013-11-27 18:24 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-03-20 02:15 - 2013-11-27 17:46 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-03-20 02:15 - 2013-11-27 17:10 - 00273408 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2014-03-20 02:15 - 2013-11-27 16:56 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2014-03-20 02:15 - 2013-11-25 07:30 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-03-20 02:15 - 2013-11-25 07:28 - 00589824 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-03-20 02:15 - 2013-11-23 15:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\bi.dll
2014-03-20 02:15 - 2013-11-23 15:13 - 00019456 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2014-03-20 02:15 - 2013-11-21 14:58 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\deviceregistration.dll
2014-03-20 02:15 - 2013-11-15 22:59 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2014-03-20 02:15 - 2013-11-15 22:25 - 00433664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2014-03-20 01:56 - 2014-04-12 13:44 - 00008192 _____ () C:\Windows\SysWOW64\WDPABKP.dat
2014-03-20 01:56 - 2014-04-06 06:19 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-03-20 01:56 - 2014-03-20 01:56 - 00000000 ____D () C:\Users\user\AppData\Local\Western_Digital_Technolog
2014-03-20 01:56 - 2014-03-20 01:56 - 00000000 ____D () C:\Users\user\AppData\Local\Western Digital
2014-03-20 01:54 - 2014-04-06 06:19 - 00000000 ____D () C:\ProgramData\Western Digital
2014-03-20 01:54 - 2014-04-06 06:19 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-03-17 02:46 - 2014-03-20 19:46 - 00002211 ____N () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-03-17 02:46 - 2014-03-17 02:46 - 00002120 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-03-17 02:46 - 2014-03-17 02:46 - 00002120 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-03-17 02:46 - 2014-03-17 02:46 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-03-17 02:46 - 2014-03-17 02:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive
2014-03-17 02:40 - 2014-03-26 21:20 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-03-16 19:46 - 2014-03-16 19:46 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-03-16 19:35 - 2014-03-17 10:41 - 00000000 ____D () C:\Users\user\AppData\Roaming\WildTangent
2014-03-15 21:05 - 2013-12-09 08:19 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-03-15 21:05 - 2013-12-09 07:55 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-03-15 21:05 - 2013-11-23 12:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-03-15 21:05 - 2013-11-23 12:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-03-15 21:05 - 2013-10-31 08:29 - 00236888 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-03-15 21:05 - 2013-10-31 08:29 - 00124760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-03-15 21:05 - 2013-10-31 08:28 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-03-15 21:04 - 2014-01-07 15:03 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2014-03-15 21:04 - 2014-01-07 13:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2014-03-15 17:02 - 2014-04-11 17:09 - 00258560 ___SH () C:\Users\user\Documents\Thumbs.db
2014-03-15 15:45 - 2014-04-06 15:51 - 00001209 ____N () C:\Users\Public\Desktop\GOM Player.lnk
2014-03-15 15:45 - 2014-03-15 15:45 - 00001233 ____N () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2014-03-15 15:41 - 2014-03-15 15:41 - 00000000 ____D () C:\Users\user\AppData\Roaming\GRETECH
2014-03-15 15:41 - 2014-03-15 15:41 - 00000000 ____D () C:\Program Files (x86)\GRETECH
2014-03-15 15:31 - 2014-04-13 14:49 - 00000000 __RDO () C:\Users\user\SkyDrive
2014-03-15 15:30 - 2013-12-09 08:27 - 02152448 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-03-15 15:30 - 2013-12-09 07:54 - 01317376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-03-15 15:30 - 2013-10-19 16:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-03-15 15:30 - 2013-10-19 15:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-03-15 15:28 - 2014-01-07 13:00 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-03-15 15:28 - 2014-01-07 12:30 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-03-15 15:28 - 2013-11-27 19:41 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\WSCollect.exe
2014-03-15 15:28 - 2013-11-21 14:42 - 04604416 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-03-15 15:28 - 2013-11-21 13:44 - 03936256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-03-15 15:27 - 2014-01-29 14:41 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2014-03-15 15:27 - 2014-01-29 08:36 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-03-15 15:27 - 2014-01-28 03:07 - 04175360 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2014-03-15 15:27 - 2014-01-28 02:23 - 02873344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2014-03-15 15:27 - 2014-01-28 01:18 - 01486848 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2014-03-15 15:27 - 2014-01-28 01:00 - 01238016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2014-03-15 15:27 - 2014-01-18 07:04 - 00764864 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-03-15 15:27 - 2014-01-18 05:54 - 00669352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-03-15 15:27 - 2013-12-21 22:51 - 06353960 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2014-03-15 15:27 - 2013-12-21 16:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2014-03-15 15:26 - 2013-10-16 23:58 - 01943536 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-03-15 15:26 - 2013-10-16 21:54 - 01581968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-03-15 15:24 - 2014-03-15 15:24 - 00000299 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recycle Bin.lnk
2014-03-15 15:22 - 2014-03-15 15:22 - 00003374 ____N () C:\Windows\System32\Tasks\Touch Tools Launcher
2014-03-15 15:15 - 2014-04-06 06:26 - 00000000 ____D () C:\Users\user\AppData\Roaming\Apple Computer
2014-03-15 15:15 - 2014-03-15 15:15 - 00000000 ____D () C:\Users\user\AppData\Local\Apple Computer
2014-03-15 15:14 - 2014-03-15 15:14 - 00000000 ____D () C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413}
2014-03-15 15:14 - 2012-08-21 13:01 - 00125872 _____ (GEAR Software Inc.) C:\Windows\system32\GEARAspi64.dll
2014-03-15 15:14 - 2012-08-21 13:01 - 00106928 _____ (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll
2014-03-15 15:11 - 2014-04-06 06:24 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-15 15:11 - 2014-03-15 15:12 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-03-15 15:11 - 2014-03-15 15:11 - 00000000 ____D () C:\Users\user\Documents\clear.fi
2014-03-15 15:10 - 2014-04-06 06:23 - 00000000 ____D () C:\ProgramData\Apple
2014-03-15 15:10 - 2014-03-15 15:10 - 00000000 ____D () C:\Users\user\AppData\Local\Apple
2014-03-15 15:08 - 2014-03-15 15:08 - 00000000 ____D () C:\Users\user\AppData\Local\AcerCloud
2014-03-15 15:03 - 2014-03-15 15:03 - 00000000 ____D () C:\Users\user\AppData\Local\Doc
2014-03-15 15:01 - 2014-03-15 15:01 - 00000000 ____D () C:\Users\user\AppData\Local\ClearfiMedia
2014-03-15 14:58 - 2014-04-13 13:07 - 00000000 ____D () C:\Users\user\AppData\Local\Deployment
2014-03-15 14:58 - 2014-04-12 13:42 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-15 14:58 - 2014-04-12 13:08 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-15 14:58 - 2014-04-06 07:03 - 00003876 ____N () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-15 14:58 - 2014-04-06 07:03 - 00003640 ____N () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-15 14:58 - 2014-03-15 15:01 - 00000000 ____D () C:\Users\user\AppData\Local\Google
2014-03-15 14:58 - 2014-03-15 15:01 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-15 14:58 - 2014-03-15 14:58 - 00000000 ____D () C:\Users\user\AppData\Local\Apps\2.0
2014-03-15 14:57 - 2014-04-01 11:53 - 00000000 ____D () C:\ProgramData\clear.fi
2014-03-15 14:57 - 2014-03-15 14:57 - 00000000 ____D () C:\Users\user\AppData\Roaming\acer
2014-03-15 14:57 - 2014-03-15 14:57 - 00000000 ____D () C:\Users\user\AppData\Local\ClearfiPhoto
2014-03-15 13:05 - 2014-03-15 13:05 - 00000000 ____D () C:\Users\Public\OEM
2014-03-15 10:36 - 2014-03-15 10:36 - 00000000 ____D () C:\Users\user\AppData\Local\Intel_Corporation
 
==================== One Month Modified Files and Folders =======
 
2014-04-13 14:58 - 2014-04-13 14:58 - 00023549 _____ () C:\Users\user\Downloads\FRST.txt
2014-04-13 14:58 - 2014-04-11 18:25 - 00000000 ____D () C:\FRST
2014-04-13 14:57 - 2014-04-13 14:56 - 02157568 _____ (Farbar) C:\Users\user\Downloads\FRST64 (1).exe
2014-04-13 14:53 - 2014-04-13 14:51 - 04118280 _____ () C:\Users\user\Downloads\tdsskiller.zip
2014-04-13 14:50 - 2014-04-10 23:28 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-13 14:49 - 2014-04-04 21:08 - 00000000 ____D () C:\Users\user\AppData\Local\CrashDumps
2014-04-13 14:49 - 2014-03-15 15:31 - 00000000 __RDO () C:\Users\user\SkyDrive
2014-04-13 14:00 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\sru
2014-04-13 13:58 - 2013-11-08 03:10 - 01466843 _____ () C:\Windows\WindowsUpdate.log
2014-04-13 13:07 - 2014-03-15 14:58 - 00000000 ____D () C:\Users\user\AppData\Local\Deployment
2014-04-13 08:18 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\rescache
2014-04-13 07:27 - 2014-01-26 09:54 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4046373872-3215433443-1714514892-1002
2014-04-13 07:00 - 2014-03-20 09:15 - 00003576 _____ () C:\Windows\System32\Tasks\Bitdefender Autoscan
2014-04-13 05:22 - 2014-04-13 05:22 - 00000295 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Homegroup.lnk
2014-04-12 18:31 - 2014-03-25 11:52 - 00004968 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for V5-473PG-user V5-473PG
2014-04-12 18:12 - 2013-09-13 16:46 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-12 13:45 - 2014-04-10 23:03 - 00000000 ____D () C:\Users\user\AppData\Roaming\Oxy
2014-04-12 13:44 - 2014-03-20 01:56 - 00008192 _____ () C:\Windows\SysWOW64\WDPABKP.dat
2014-04-12 13:42 - 2014-03-15 14:58 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-12 13:42 - 2013-08-22 22:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-12 13:41 - 2013-09-13 16:44 - 00038626 _____ () C:\Windows\PFRO.log
2014-04-12 13:41 - 2013-08-22 21:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-04-12 13:23 - 2014-04-12 13:23 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxy
2014-04-12 13:08 - 2014-03-15 14:58 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-12 11:26 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-04-12 11:14 - 2013-08-22 22:44 - 00474928 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-12 08:39 - 2013-08-22 23:36 - 00000000 ___RD () C:\Windows\ToastData
2014-04-12 08:39 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-12 08:39 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-12 08:39 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-12 08:39 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-12 08:39 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\setup
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\WinStore
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\he-IL
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\et-EE
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\en-GB
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-04-12 08:38 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-04-12 08:38 - 2013-08-22 21:36 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-04-12 08:38 - 2013-08-22 21:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-04-12 08:38 - 2013-08-22 21:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2014-04-12 08:38 - 2013-08-22 21:36 - 00000000 ____D () C:\Windows\system32\oobe
2014-04-12 08:38 - 2013-08-22 21:36 - 00000000 ____D () C:\Windows\servicing
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\th-TH
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\migwiz
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\FileManager
2014-04-12 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\Camera
2014-04-12 08:37 - 2013-08-22 21:36 - 00000000 ____D () C:\Windows\system32\Dism
2014-04-11 19:41 - 2014-04-11 19:41 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-04-11 19:40 - 2014-04-11 19:40 - 00001313 ____N () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-04-11 19:40 - 2014-04-11 19:40 - 00000000 ____D () C:\Program Files (x86)\GreenTree Applications
2014-04-11 18:45 - 2014-04-11 18:45 - 00001122 ____N () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-11 18:45 - 2014-04-11 18:45 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-11 18:18 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-11 18:16 - 2014-04-10 23:34 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-04-11 17:09 - 2014-03-15 17:02 - 00258560 ___SH () C:\Users\user\Documents\Thumbs.db
2014-04-11 17:08 - 2014-03-26 12:41 - 00311296 ___SH () C:\Users\user\Desktop\Thumbs.db
2014-04-11 11:27 - 2014-01-26 09:47 - 00000000 ____D () C:\Users\user\AppData\Local\Packages
2014-04-11 09:32 - 2014-04-13 14:55 - 00000000 ____D () C:\Users\user\Downloads\TDSSKiller
2014-04-11 04:49 - 2014-04-05 08:41 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 04:46 - 2014-04-05 08:41 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-11 04:30 - 2014-03-24 18:05 - 00000000 ____D () C:\ProgramData\DAEMON Tools Pro
2014-04-10 23:34 - 2014-04-10 23:34 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\user\Downloads\revosetup.exe
2014-04-10 23:28 - 2014-04-10 23:28 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-10 23:03 - 2014-04-10 23:03 - 00003548 ____N () C:\Windows\System32\Tasks\PileFile reminder
2014-04-10 23:03 - 2014-04-10 23:03 - 00003136 ____N () C:\Windows\System32\Tasks\PileFile logon
2014-04-10 01:15 - 2013-08-22 21:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-04-09 20:00 - 2013-08-22 22:46 - 00035082 _____ () C:\Windows\setupact.log
2014-04-09 02:42 - 2013-08-23 03:12 - 00000000 ____D () C:\Program Files\Windows Journal
2014-04-09 02:42 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-04-09 02:42 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-04-09 02:42 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-04-09 02:42 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\SysWOW64\Com
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-04-09 02:42 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-04-09 02:41 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\system32\winrm
2014-04-09 02:41 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\system32\WCN
2014-04-09 02:41 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\system32\slmgr
2014-04-09 02:41 - 2013-08-23 03:10 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-04-09 02:41 - 2013-08-22 23:36 - 00000000 ___SD () C:\Windows\system32\dsc
2014-04-09 02:41 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\MUI
2014-04-09 02:41 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\Com
2014-04-09 02:41 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\IME
2014-04-09 02:41 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\Help
2014-04-08 18:34 - 2014-04-10 23:25 - 17305616 ____R (Malwarebytes Corporation ) C:\Users\user\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-08 10:31 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-04-06 19:25 - 2014-04-06 17:40 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-06 18:28 - 2014-04-06 17:36 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-04-06 18:28 - 2014-01-26 09:48 - 00000000 ____D () C:\Users\user\AppData\Roaming\Adobe
2014-04-06 17:40 - 2014-04-06 17:40 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-04-06 16:28 - 2014-01-26 09:47 - 00000000 ____D () C:\Users\user\AppData\Local\VirtualStore
2014-04-06 15:55 - 2014-04-06 15:55 - 00000000 ____D () C:\Users\user\AppData\Roaming\TuneUp Software
2014-04-06 15:55 - 2014-04-06 15:53 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-04-06 15:52 - 2014-04-06 15:52 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-04-06 15:51 - 2014-04-06 15:51 - 00000000 ____D () C:\ProgramData\GRETECH
2014-04-06 15:51 - 2014-03-15 15:45 - 00001209 ____N () C:\Users\Public\Desktop\GOM Player.lnk
2014-04-06 07:03 - 2014-03-15 14:58 - 00003876 ____N () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-06 07:03 - 2014-03-15 14:58 - 00003640 ____N () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-06 06:26 - 2014-03-15 15:15 - 00000000 ____D () C:\Users\user\AppData\Roaming\Apple Computer
2014-04-06 06:25 - 2014-04-06 06:24 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-06 06:25 - 2014-04-06 06:24 - 00000000 ____D () C:\Program Files\iTunes
2014-04-06 06:25 - 2014-04-06 06:24 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-06 06:24 - 2014-04-06 06:24 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-04-06 06:24 - 2014-04-06 06:24 - 00000000 ____D () C:\Program Files (x86)\iPod
2014-04-06 06:24 - 2014-04-06 06:24 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-04-06 06:24 - 2014-03-15 15:11 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-04-06 06:23 - 2014-04-06 06:23 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-04-06 06:23 - 2014-04-06 06:23 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-06 06:23 - 2014-04-06 06:23 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-06 06:23 - 2014-03-15 15:10 - 00000000 ____D () C:\ProgramData\Apple
2014-04-06 06:20 - 2013-11-08 03:36 - 00044636 _____ () C:\Windows\DPINST.LOG
2014-04-06 06:19 - 2014-04-06 06:19 - 00000000 ____D () C:\Program Files\Western Digital
2014-04-06 06:19 - 2014-03-20 01:56 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-04-06 06:19 - 2014-03-20 01:54 - 00000000 ____D () C:\ProgramData\Western Digital
2014-04-06 06:19 - 2014-03-20 01:54 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-04-06 06:16 - 2014-03-29 20:10 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-05 22:18 - 2014-03-24 17:39 - 00000000 ____D () C:\Users\user\Documents\FIFA 14
2014-04-05 21:04 - 2014-01-26 09:50 - 00000000 ____D () C:\Users\user\AppData\Local\clear.fi
2014-04-05 10:54 - 2014-01-26 09:48 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-05 10:54 - 2014-01-26 09:48 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-03 20:21 - 2014-01-26 09:50 - 00000000 ____D () C:\Users\user\PicStream
2014-04-03 09:51 - 2014-04-11 18:45 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-11 18:45 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-11 18:45 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-02 23:36 - 2014-04-02 23:36 - 00000000 ____D () C:\Windows\System32\Tasks\Western Digital
2014-04-01 12:08 - 2014-04-01 11:25 - 00000000 ____D () C:\Users\user\Documents\VirtualDJ
2014-04-01 11:58 - 2014-04-01 11:58 - 00000000 ____D () C:\Users\user\Mobile Uploads
2014-04-01 11:58 - 2013-11-08 04:04 - 00000000 ____D () C:\ProgramData\OEM
2014-04-01 11:56 - 2014-04-01 11:56 - 00000000 ____D () C:\Users\user\AppData\Local\AcerMedia
2014-04-01 11:53 - 2014-03-15 14:57 - 00000000 ____D () C:\ProgramData\clear.fi
2014-04-01 11:52 - 2014-04-01 11:52 - 00000000 ____D () C:\Users\user\AppData\Local\AcerPhoto
2014-04-01 11:50 - 2014-04-01 11:50 - 00001116 ____N () C:\Users\Public\Desktop\Acer Portal.lnk
2014-04-01 11:50 - 2014-04-01 11:50 - 00000000 ____D () C:\Users\user\AppData\Local\AcerPortal
2014-04-01 11:50 - 2014-04-01 11:50 - 00000000 ____D () C:\AcerCloud
2014-04-01 11:50 - 2013-11-08 04:20 - 00003336 _____ () C:\Windows\System32\Tasks\AcerCloud
2014-04-01 11:50 - 2013-09-13 16:56 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-04-01 11:30 - 2014-04-01 11:29 - 00025088 ___SH () C:\Users\user\Downloads\Thumbs.db
2014-04-01 11:25 - 2014-04-01 11:25 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-04-01 11:25 - 2014-04-01 11:25 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2014-04-01 05:23 - 2013-08-22 23:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-01 05:23 - 2013-08-22 23:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-26 22:00 - 2014-03-26 20:45 - 00000407 _____ () C:\Windows\system32\checkdnsid.xml
2014-03-26 21:20 - 2014-03-17 02:40 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-03-24 18:41 - 2014-03-24 18:40 - 00009971 _____ () C:\Windows\DirectX.log
2014-03-24 18:41 - 2014-03-24 18:29 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-03-24 18:26 - 2014-03-24 18:26 - 00000000 ____D () C:\Users\user\AppData\Roaming\DAEMON Tools Pro
2014-03-24 17:39 - 2014-03-24 17:39 - 00000000 ____D () C:\ProgramData\Origin
2014-03-24 17:38 - 2014-03-24 17:38 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-03-23 06:14 - 2014-03-23 06:14 - 00000000 _____ () C:\Recovery.txt
2014-03-23 02:51 - 2014-03-23 02:51 - 00000000 ____D () C:\Users\user\AppData\Roaming\WinRAR
2014-03-23 02:50 - 2014-03-23 02:50 - 00000000 ____D () C:\Program Files\WinRAR
2014-03-20 23:34 - 2014-03-20 09:12 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-03-20 23:19 - 2014-03-20 23:19 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2014-03-20 23:19 - 2014-03-20 23:17 - 00000000 ____D () C:\Users\user\Documents\OneNote Notebooks
2014-03-20 23:19 - 2014-03-20 09:15 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2014-03-20 23:19 - 2014-03-20 09:12 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2014-03-20 20:35 - 2014-03-20 20:35 - 00000385 _____ () C:\Users\user\AppData\Roaminguser_gensett.xml
2014-03-20 20:33 - 2013-11-08 04:10 - 00000000 ____D () C:\ProgramData\Norton
2014-03-20 19:46 - 2014-03-17 02:46 - 00002211 ____N () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-03-20 16:21 - 2014-03-20 16:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-03-20 16:02 - 2014-03-20 09:15 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2014-03-20 12:19 - 2014-04-11 18:24 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-03-20 11:48 - 2014-04-11 18:24 - 21232792 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-03-20 11:41 - 2014-04-11 18:24 - 02013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-03-20 11:41 - 2014-04-11 18:24 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-03-20 11:40 - 2014-04-11 18:24 - 01112536 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-03-20 09:29 - 2014-04-11 18:24 - 04268544 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-03-20 09:20 - 2014-04-11 18:24 - 18679216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-03-20 09:17 - 2014-03-20 09:17 - 02147149 _____ () C:\ProgramData\1395277936.bdinstall.bin
2014-03-20 09:16 - 2014-03-20 09:16 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-03-20 09:15 - 2014-03-20 09:15 - 00002214 ____N () C:\Users\Public\Desktop\Bitdefender Safepay.lnk
2014-03-20 09:15 - 2014-03-20 09:15 - 00002166 ____N () C:\Users\Public\Desktop\Bitdefender Internet Security.lnk
2014-03-20 09:15 - 2014-03-20 09:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-03-20 09:15 - 2014-03-20 09:15 - 00000000 ____D () C:\Users\user\AppData\Roaming\Bitdefender
2014-03-20 09:15 - 2014-03-20 09:15 - 00000000 ____D () C:\ProgramData\BDLogging
2014-03-20 09:12 - 2014-03-20 09:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\QuickScan
2014-03-20 09:12 - 2014-03-20 09:12 - 00000000 ____D () C:\Program Files\Bitdefender
2014-03-20 09:12 - 2014-03-20 02:27 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-03-20 09:12 - 2013-11-08 04:11 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-03-20 09:10 - 2013-11-08 04:06 - 00000000 ____D () C:\ProgramData\McAfee
2014-03-20 09:10 - 2013-11-08 04:06 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-03-20 09:10 - 2013-11-08 04:06 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-03-20 08:53 - 2014-04-11 18:24 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-03-20 08:48 - 2014-04-11 18:23 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-03-20 07:55 - 2014-04-11 18:24 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-03-20 07:39 - 2014-04-11 18:24 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-03-20 07:36 - 2014-04-11 18:23 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-03-20 01:56 - 2014-03-20 01:56 - 00000000 ____D () C:\Users\user\AppData\Local\Western_Digital_Technolog
2014-03-20 01:56 - 2014-03-20 01:56 - 00000000 ____D () C:\Users\user\AppData\Local\Western Digital
2014-03-19 15:13 - 2014-04-11 18:24 - 00836096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-03-19 13:57 - 2014-04-11 18:24 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-03-19 13:50 - 2014-04-11 18:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-03-19 13:31 - 2014-04-11 18:24 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-03-19 13:20 - 2014-04-11 18:23 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-03-19 13:08 - 2014-04-11 18:24 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-03-19 12:41 - 2014-04-11 18:24 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-03-19 12:17 - 2014-04-11 18:24 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-03-17 10:42 - 2013-09-13 16:49 - 00000000 ____D () C:\Program Files (x86)\WildGames
2014-03-17 10:41 - 2014-03-16 19:35 - 00000000 ____D () C:\Users\user\AppData\Roaming\WildTangent
2014-03-17 10:41 - 2013-09-13 16:49 - 00000000 ____D () C:\ProgramData\WildTangent
2014-03-17 10:41 - 2013-09-13 16:49 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2014-03-17 09:46 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-17 02:46 - 2014-03-17 02:46 - 00002120 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-03-17 02:46 - 2014-03-17 02:46 - 00002120 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-03-17 02:46 - 2014-03-17 02:46 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-03-17 02:46 - 2014-03-17 02:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive
2014-03-16 19:46 - 2014-03-16 19:46 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-03-15 15:45 - 2014-03-15 15:45 - 00001233 ____N () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2014-03-15 15:41 - 2014-03-15 15:41 - 00000000 ____D () C:\Users\user\AppData\Roaming\GRETECH
2014-03-15 15:41 - 2014-03-15 15:41 - 00000000 ____D () C:\Program Files (x86)\GRETECH
2014-03-15 15:24 - 2014-03-15 15:24 - 00000299 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recycle Bin.lnk
2014-03-15 15:22 - 2014-03-15 15:22 - 00003374 ____N () C:\Windows\System32\Tasks\Touch Tools Launcher
2014-03-15 15:22 - 2014-01-26 09:51 - 00000000 ____D () C:\Users\user\AppData\Local\Acer
2014-03-15 15:15 - 2014-03-15 15:15 - 00000000 ____D () C:\Users\user\AppData\Local\Apple Computer
2014-03-15 15:14 - 2014-03-15 15:14 - 00000000 ____D () C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413}
2014-03-15 15:12 - 2014-03-15 15:11 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-03-15 15:12 - 2013-08-22 23:36 - 00000000 ____D () C:\Windows\system32\restore
2014-03-15 15:11 - 2014-03-15 15:11 - 00000000 ____D () C:\Users\user\Documents\clear.fi
2014-03-15 15:10 - 2014-03-15 15:10 - 00000000 ____D () C:\Users\user\AppData\Local\Apple
2014-03-15 15:08 - 2014-03-15 15:08 - 00000000 ____D () C:\Users\user\AppData\Local\AcerCloud
2014-03-15 15:03 - 2014-03-15 15:03 - 00000000 ____D () C:\Users\user\AppData\Local\Doc
2014-03-15 15:01 - 2014-03-15 15:01 - 00000000 ____D () C:\Users\user\AppData\Local\ClearfiMedia
2014-03-15 15:01 - 2014-03-15 14:58 - 00000000 ____D () C:\Users\user\AppData\Local\Google
2014-03-15 15:01 - 2014-03-15 14:58 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-15 15:01 - 2013-09-13 17:40 - 00000000 ___HD () C:\OEM
2014-03-15 14:58 - 2014-03-15 14:58 - 00000000 ____D () C:\Users\user\AppData\Local\Apps\2.0
2014-03-15 14:57 - 2014-03-15 14:57 - 00000000 ____D () C:\Users\user\AppData\Roaming\acer
2014-03-15 14:57 - 2014-03-15 14:57 - 00000000 ____D () C:\Users\user\AppData\Local\ClearfiPhoto
2014-03-15 14:57 - 2014-01-25 19:03 - 00003906 ____N () C:\Windows\System32\Tasks\User_Feed_Synchronization-{0028CA24-9F35-4276-800C-C6198224034C}
2014-03-15 13:05 - 2014-03-15 13:05 - 00000000 ____D () C:\Users\Public\OEM
2014-03-15 12:56 - 2014-04-11 18:23 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-03-15 12:44 - 2014-04-11 18:24 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-03-15 10:36 - 2014-03-15 10:36 - 00000000 ____D () C:\Users\user\AppData\Local\Intel_Corporation
 
Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\htmlayout.dll
C:\Users\user\AppData\Local\Temp\OfficeSetup.exe
C:\Users\user\AppData\Local\Temp\oi_{E4583860-B3E6-4945-8BF5-658734F7D66A}.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe
[2014-04-11 20:15] - [2014-02-22 17:45] - 0562176 ____A (Microsoft Corporation) 306EB21E5B480AE9065EA55AC8C35936
 
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2014-04-11 18:24] - [2014-03-04 20:25] - 2373784 ____A (Microsoft Corporation) 81394C91B7B5A7C799E249AE82491F13
 
C:\Windows\SysWOW64\explorer.exe
[2014-04-11 18:24] - [2014-03-04 19:16] - 2088160 ____A (Microsoft Corporation) 119E091B5386379BC5AA598BE9440C75
 
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2014-04-11 20:16] - [2014-02-23 00:59] - 1519520 ____A (Microsoft Corporation) CEB069C882A0DFEDBE5C1590D44B1052
 
C:\Windows\SysWOW64\User32.dll
[2014-04-11 20:15] - [2014-02-22 17:25] - 1361408 ____A (Microsoft Corporation) C7099D6A46B880EE194F7A4473D71E10
 
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2014-04-11 20:16] - [2014-02-22 17:38] - 0753664 ____A (Microsoft Corporation) 81979817943D830BF24571B7C1B28A1A
 
 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2014-04-11 20:15] - [2014-02-22 23:44] - 0311640 ___AC (Microsoft Corporation) 3595FBDF25F8BA6256072D103937D7D6
 
 
 
LastRegBack: 2014-04-03 21:36
 
==================== End Of Log ============================


#4 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 13 April 2014 - 02:07 AM

14:57:56.0876 0x1c88  TDSS rootkit removing tool 3.0.0.31 Apr 11 2014 08:55:10
14:57:56.0877 0x1c88  UEFI system
14:58:05.0427 0x1c88  ============================================================
14:58:05.0427 0x1c88  Current date / time: 2014/04/13 14:58:05.0427
14:58:05.0428 0x1c88  SystemInfo:
14:58:05.0428 0x1c88  
14:58:05.0428 0x1c88  OS Version: 6.3.9600 ServicePack: 0.0
14:58:05.0428 0x1c88  Product type: Workstation
14:58:05.0428 0x1c88  ComputerName: V5-473PG
14:58:05.0428 0x1c88  UserName: user
14:58:05.0428 0x1c88  Windows directory: C:\Windows
14:58:05.0428 0x1c88  System windows directory: C:\Windows
14:58:05.0428 0x1c88  Running under WOW64
14:58:05.0428 0x1c88  Processor architecture: Intel x64
14:58:05.0428 0x1c88  Number of processors: 4
14:58:05.0428 0x1c88  Page size: 0x1000
14:58:05.0428 0x1c88  Boot type: Normal boot
14:58:05.0428 0x1c88  ============================================================
14:58:06.0077 0x1c88  KLMD registered as C:\Windows\system32\drivers\81597389.sys
14:58:06.0567 0x1c88  System UUID: {332C4FDE-74B2-A8B8-F628-DE9D97B632BE}
14:58:07.0662 0x1c88  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:58:07.0687 0x1c88  ============================================================
14:58:07.0687 0x1c88  \Device\Harddisk0\DR0:
14:58:07.0687 0x1c88  GPT partitions:
14:58:07.0688 0x1c88  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8B0680AF-09F2-431A-9174-BFD9F1D40948}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
14:58:07.0688 0x1c88  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {C9E458EB-BF09-4F06-BDCC-7E7B761B0084}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x96000
14:58:07.0689 0x1c88  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {E87A9D6D-A860-4EF6-90E7-D36977DCD96E}, Name: Microsoft reserved partition, StartLBA 0x15E800, BlocksNum 0x40000
14:58:07.0689 0x1c88  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {80FB0AC9-3701-4FDD-9C3C-64867C4CEDB2}, Name: Basic data partition, StartLBA 0x19E800, BlocksNum 0x37FE7800
14:58:07.0689 0x1c88  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {72CA7D8E-CCF0-4D2C-AD3C-1F12F1370D20}, Name: Basic data partition, StartLBA 0x38186000, BlocksNum 0x2200000
14:58:07.0689 0x1c88  MBR partitions:
14:58:07.0689 0x1c88  ============================================================
14:58:07.0740 0x1c88  C: <-> \Device\Harddisk0\DR0\Partition4
14:58:07.0741 0x1c88  ============================================================
14:58:07.0741 0x1c88  Initialize success
14:58:07.0741 0x1c88  ============================================================
15:01:07.0560 0x00c0  ============================================================
15:01:07.0561 0x00c0  Scan started
15:01:07.0561 0x00c0  Mode: Manual; 
15:01:07.0561 0x00c0  ============================================================
15:01:07.0561 0x00c0  KSN ping started
15:01:10.0224 0x00c0  KSN ping finished: true
15:01:15.0733 0x00c0  ================ Scan system memory ========================
15:01:15.0734 0x00c0  System memory - ok
15:01:15.0736 0x00c0  ================ Scan services =============================
15:01:16.0311 0x00c0  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
15:01:16.0322 0x00c0  1394ohci - ok
15:01:16.0735 0x00c0  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
15:01:16.0744 0x00c0  3ware - ok
15:01:16.0908 0x00c0  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:01:16.0936 0x00c0  ACPI - ok
15:01:16.0970 0x00c0  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
15:01:16.0973 0x00c0  acpiex - ok
15:01:16.0977 0x00c0  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
15:01:16.0979 0x00c0  acpipagr - ok
15:01:16.0998 0x00c0  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
15:01:17.0000 0x00c0  AcpiPmi - ok
15:01:17.0005 0x00c0  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
15:01:17.0006 0x00c0  acpitime - ok
15:01:17.0094 0x00c0  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:01:17.0098 0x00c0  AdobeARMservice - ok
15:01:17.0148 0x00c0  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
15:01:17.0176 0x00c0  ADP80XX - ok
15:01:17.0302 0x00c0  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:01:17.0308 0x00c0  AeLookupSvc - ok
15:01:17.0527 0x00c0  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\Windows\system32\drivers\afd.sys
15:01:17.0591 0x00c0  AFD - ok
15:01:17.0628 0x00c0  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:01:17.0633 0x00c0  agp440 - ok
15:01:17.0643 0x00c0  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
15:01:17.0648 0x00c0  ahcache - ok
15:01:17.0683 0x00c0  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\Windows\System32\alg.exe
15:01:17.0688 0x00c0  ALG - ok
15:01:17.0768 0x00c0  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
15:01:17.0777 0x00c0  AmdK8 - ok
15:01:17.0828 0x00c0  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
15:01:17.0843 0x00c0  AmdPPM - ok
15:01:17.0868 0x00c0  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:01:17.0876 0x00c0  amdsata - ok
15:01:17.0907 0x00c0  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:01:17.0920 0x00c0  amdsbs - ok
15:01:17.0952 0x00c0  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:01:17.0954 0x00c0  amdxata - ok
15:01:17.0997 0x00c0  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\Windows\system32\drivers\appid.sys
15:01:18.0000 0x00c0  AppID - ok
15:01:18.0042 0x00c0  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:01:18.0044 0x00c0  AppIDSvc - ok
15:01:18.0098 0x00c0  [ 8D6F535461F6CFF75A8ADDF83024C904, F2A97EC4A6284F28B685A3CE2D450F61E75EE8692D718A6AA352D5734BBBAD7B ] Appinfo         C:\Windows\System32\appinfo.dll
15:01:18.0106 0x00c0  Appinfo - ok
15:01:18.0370 0x00c0  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:01:18.0373 0x00c0  Apple Mobile Device - ok
15:01:18.0551 0x00c0  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
15:01:18.0568 0x00c0  AppReadiness - ok
15:01:18.0721 0x00c0  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
15:01:18.0787 0x00c0  AppXSvc - ok
15:01:18.0855 0x00c0  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:01:18.0861 0x00c0  arcsas - ok
15:01:18.0870 0x00c0  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:01:18.0873 0x00c0  AsyncMac - ok
15:01:18.0890 0x00c0  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:01:18.0893 0x00c0  atapi - ok
15:01:18.0934 0x00c0  [ 8302D313DCC5536FE6BFB85165D9BB1E, CD9101D9CFE34F0D6CF5A6AD5C997CC5D32CCF5135B78604D0C3CD7252117C2D ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
15:01:18.0939 0x00c0  AthBTPort - ok
15:01:19.0140 0x00c0  [ B68BC92DC0F6484E5862BA1B09EE720C, E15BF19CBF83EC33A3DF9371CCEA9EA9765B17C41B13D4B28635111171D43835 ] AtherosSvc      C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
15:01:19.0165 0x00c0  AtherosSvc - ok
15:01:19.0423 0x00c0  [ 37B33DDE5490A2DF56DFB46580356E3F, 40FE378C9010B06FD7ADE30F76F916D5BDBB26525CF3D11D5780E2247B6099D8 ] athr            C:\Windows\system32\DRIVERS\athwbx.sys
15:01:19.0541 0x00c0  athr - ok
15:01:19.0609 0x00c0  [ F83D49F4B10E813A1F9AC8B92F16592D, E7B2F508D33861A9826F2C7B2087F14F6937C9B8F660D6363F737BAC60BD4578 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
15:01:19.0620 0x00c0  AudioEndpointBuilder - ok
15:01:19.0753 0x00c0  [ 9A71BD2E4B8EB550D0022AFDF8616014, 34D595684624114F23265CE8031ADC9E03AD374A5AFEEBB794AC57796A3CDA2F ] Audiosrv        C:\Windows\System32\Audiosrv.dll
15:01:19.0788 0x00c0  Audiosrv - ok
15:01:19.0876 0x00c0  [ 636B15879AE62E47444F99C60C900AA6, 335B1378037B2CFEBDAA95B1ABB619A4C18C5CD37A12688E606E7A12BE31735C ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
15:01:19.0915 0x00c0  avc3 - ok
15:01:19.0987 0x00c0  [ 3B9549FEF98AB1768A1D6A919F355B70, 0014914051CB54CD7CC25561D29099A19DCFB2E1810FF635F9B6AD3D9C6FBC4B ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
15:01:20.0007 0x00c0  avchv - ok
15:01:20.0115 0x00c0  [ 14023A39BC91AC5A2077766D28EBA7C5, 855FEE69105438ADE79C9389E0581C62FE1D134863F8D6FA27DE83737E4B4213 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
15:01:20.0144 0x00c0  avckf - ok
15:01:20.0199 0x00c0  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:01:20.0207 0x00c0  AxInstSV - ok
15:01:20.0260 0x00c0  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:01:20.0281 0x00c0  b06bdrv - ok
15:01:20.0310 0x00c0  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
15:01:20.0312 0x00c0  BasicDisplay - ok
15:01:20.0357 0x00c0  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
15:01:20.0359 0x00c0  BasicRender - ok
15:01:20.0897 0x00c0  [ 9A4EF701A4FC835F7DDD8956D930010F, 28A555B98098ECE47912C40A74CA92AFA76F51A711F2DEFF1A498FF212505F23 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl63a.sys
15:01:21.0251 0x00c0  BCM43XX - ok
15:01:21.0342 0x00c0  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
15:01:21.0347 0x00c0  bcmfn2 - ok
15:01:21.0430 0x00c0  [ B56C89AC51CDE54CBDC5E49B94ED54BF, 7EA4C4F838B498944F21E91640535B5507C00A71F2FBEA3A5E9E25900EE3C95D ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe
15:01:21.0455 0x00c0  BdDesktopParental - ok
15:01:21.0483 0x00c0  [ 3701D3BF4AC12EAACB1F58847C1D32FC, 29F3DA7E4C1706934BE92D03CB6F633C47D0251E5580958E823B6148DA5E5E73 ] bdelam          C:\Windows\system32\drivers\bdelam.sys
15:01:21.0486 0x00c0  bdelam - ok
15:01:21.0532 0x00c0  [ 5BD3A2351BEFCAC8757626271F8EFA89, 6508673210129CF7EFCA93EC7874208FAD361E37814EB4FE9E0EC034E73D5F16 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:01:21.0548 0x00c0  BDESVC - ok
15:01:21.0669 0x00c0  [ 78612E1E8D62AA1FDD56FAAE6A7C1BD6, E014BF19D38BA2C8C23E9B866DA36EBE92CA8D3F95D6CDD10F90B909F85B513C ] BdfNdisf        C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys
15:01:21.0674 0x00c0  BdfNdisf - ok
15:01:21.0726 0x00c0  [ 923E8216382E2F64EC8AADBA3C2CFFEE, 3811C5B18CEDCA3E7951950605B4A59301D5E2188E0752E26F1A1F8B868B8E13 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
15:01:21.0736 0x00c0  bdfwfpf - ok
15:01:21.0762 0x00c0  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf_pc      C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys
15:01:21.0769 0x00c0  bdfwfpf_pc - ok
15:01:21.0808 0x00c0  [ B9ECE7FD9F58DAF19450C88338DC5267, 9857DFE0BDDEA791F2DDA99C24A064D488B52E4AC1402A37EF22C244C9283681 ] BDSandBox       C:\Windows\system32\drivers\bdsandbox.sys
15:01:21.0813 0x00c0  BDSandBox - ok
15:01:21.0847 0x00c0  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
15:01:21.0848 0x00c0  Beep - ok
15:01:22.0000 0x00c0  [ BBE15881FE11BE37112F8320C41DAFB9, 5CE92563628812FF6E00556D8E2DAD6ADCAAF0F4C3B90123F1D98ED6E3BB6DAD ] BFE             C:\Windows\System32\bfe.dll
15:01:22.0032 0x00c0  BFE - ok
15:01:22.0172 0x00c0  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\Windows\System32\qmgr.dll
15:01:22.0253 0x00c0  BITS - ok
15:01:22.0379 0x00c0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:01:22.0408 0x00c0  Bonjour Service - ok
15:01:22.0428 0x00c0  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:01:22.0434 0x00c0  bowser - ok
15:01:22.0574 0x00c0  [ F2559A492AF8D653D1F47ADABA4C3E97, 77347915FB433023769699DFC9511F54E69C7FC7AB75F57FDC1A58E64A7126DE ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
15:01:22.0613 0x00c0  BrokerInfrastructure - ok
15:01:22.0656 0x00c0  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\Windows\System32\browser.dll
15:01:22.0688 0x00c0  Browser - ok
15:01:22.0771 0x00c0  [ 3B178B27E4514638497273C97B08B2A4, 7D7391DE399A414B6EDCD4E992D8B9C6D52FFF0ED7404F4D88E490315A3BDFD6 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
15:01:22.0796 0x00c0  BTATH_A2DP - ok
15:01:22.0819 0x00c0  [ FB5EEA3DB72E30D645DC40D0951B1A1B, B4F1FA323D8F259A22193FD67B07E512EBE70C3C483BD15F087EA08C53021F7A ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
15:01:22.0826 0x00c0  btath_avdt - ok
15:01:22.0866 0x00c0  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\Windows\System32\drivers\btath_bus.sys
15:01:22.0868 0x00c0  BTATH_BUS - ok
15:01:22.0907 0x00c0  [ 4AF7C20F94DAC343C01ED671C82DCB99, 2AABD85D9D76461DE883E0F13F61C391BA81E6198FF88268B319474E25A196C8 ] BTATH_HCRP      C:\Windows\System32\drivers\btath_hcrp.sys
15:01:22.0913 0x00c0  BTATH_HCRP - ok
15:01:22.0927 0x00c0  [ 785C38070043BEEE9E9D591DE4067244, 1C8D15B8A9E80A2799E7094C4AE111FEA9FBC6EAA4A61B13EFE59314C9794949 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
15:01:22.0931 0x00c0  BTATH_LWFLT - ok
15:01:22.0988 0x00c0  [ 859A116D748FBA603AF94C251DC5CF97, D64061721BE01F86386C4B0168B166C6AD076630B2229036E1D368D877389D46 ] BTATH_RCP       C:\Windows\System32\drivers\btath_rcp.sys
15:01:22.0992 0x00c0  BTATH_RCP - ok
15:01:23.0099 0x00c0  [ BBD08A4303DF9F48329836CC7D001B55, B0B5AF781B5B6F8BF7DEF0742A0A47E7E2BAC19CA608461FA503C788D47529AB ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
15:01:23.0135 0x00c0  BtFilter - ok
15:01:23.0183 0x00c0  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
15:01:23.0193 0x00c0  BthAvrcpTg - ok
15:01:23.0267 0x00c0  [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
15:01:23.0271 0x00c0  BthEnum - ok
15:01:23.0285 0x00c0  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
15:01:23.0292 0x00c0  BthHFEnum - ok
15:01:23.0306 0x00c0  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
15:01:23.0310 0x00c0  bthhfhid - ok
15:01:23.0450 0x00c0  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\Windows\System32\drivers\BthLEEnum.sys
15:01:23.0464 0x00c0  BthLEEnum - ok
15:01:23.0474 0x00c0  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
15:01:23.0479 0x00c0  BTHMODEM - ok
15:01:23.0528 0x00c0  [ 3AFE71D80EDF5D4DE0C5731352905669, 3E370169B8C5D301954D1F1DA302F7A0DB2A034990E10B3D64458C48E5693205 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:01:23.0532 0x00c0  BthPan - ok
15:01:24.0085 0x00c0  [ AB8CD3914AD779C15B27DDD9F53F7434, 6E9911C146A038192B95916387FA9D94D952BEFE158E6CBA44F1500A304221A3 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
15:01:24.0538 0x00c0  BTHPORT - ok
15:01:24.0582 0x00c0  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\Windows\system32\bthserv.dll
15:01:24.0657 0x00c0  bthserv - ok
15:01:24.0718 0x00c0  [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
15:01:24.0724 0x00c0  BTHUSB - ok
15:01:24.0948 0x00c0  [ 16F03136438B46CE71DA98991C73CAAB, 35D114A9F5BC24C968B73E7CFA41A65B3AF366F77334FCBE5C3E21D31427F31E ] CCDMonitorService C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
15:01:25.0034 0x00c0  CCDMonitorService - ok
15:01:25.0092 0x00c0  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:01:25.0100 0x00c0  cdfs - ok
15:01:25.0159 0x00c0  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys
15:01:25.0170 0x00c0  cdrom - ok
15:01:25.0210 0x00c0  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:01:25.0217 0x00c0  CertPropSvc - ok
15:01:25.0260 0x00c0  [ 27DB8CC56E87042BCAF4668B53618C04, 74499F5692B0C94835D5CDDBB7762C18961FC526E607E1ED68592CBE53B74995 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
15:01:25.0264 0x00c0  cfwids - ok
15:01:25.0274 0x00c0  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
15:01:25.0278 0x00c0  circlass - ok
15:01:25.0324 0x00c0  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
15:01:25.0338 0x00c0  CLFS - ok
15:01:25.0527 0x00c0  [ 03F5F6B3FA0BACD7D385C5CE6D309F7A, 068CC6DBF3A9BB5AB59C3DA913BA198D160F32717F8E8D09ABCFC2FF405A09B4 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
15:01:25.0621 0x00c0  ClickToRunSvc - ok
15:01:25.0673 0x00c0  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
15:01:25.0675 0x00c0  CmBatt - ok
15:01:25.0734 0x00c0  [ 4627C1FBF2802425A408A2D2AF28CF85, 8B91C1BE1104BE93C0D689A20315FD106D89A076267493319B104EE73A90CDCB ] CNG             C:\Windows\system32\Drivers\cng.sys
15:01:25.0757 0x00c0  CNG - ok
15:01:25.0783 0x00c0  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
15:01:25.0787 0x00c0  CompositeBus - ok
15:01:25.0795 0x00c0  COMSysApp - ok
15:01:25.0806 0x00c0  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
15:01:25.0810 0x00c0  condrv - ok
15:01:25.0917 0x00c0  [ 1659A14513DBD67D268E62F32DA22571, 8154D87FA68784463E3487DBDEDBA6FB7E013364C4F3A0F0987D7521576E358B ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
15:01:25.0932 0x00c0  cphs - ok
15:01:25.0976 0x00c0  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:01:25.0984 0x00c0  CryptSvc - ok
15:01:26.0017 0x00c0  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\Windows\system32\drivers\dam.sys
15:01:26.0019 0x00c0  dam - ok
15:01:26.0108 0x00c0  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:01:26.0144 0x00c0  DcomLaunch - ok
15:01:26.0219 0x00c0  [ 78089FCDE082FD4FA471C30A7C2DC736, C4816D7125C39290C3B0B1F580CEE8BB7FFC004F727EA9E9767671D3EDB946AE ] defragsvc       C:\Windows\System32\defragsvc.dll
15:01:26.0240 0x00c0  defragsvc - ok
15:01:26.0335 0x00c0  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\Windows\system32\das.dll
15:01:26.0353 0x00c0  DeviceAssociationService - ok
15:01:26.0398 0x00c0  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
15:01:26.0406 0x00c0  DeviceInstall - ok
15:01:26.0456 0x00c0  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
15:01:26.0464 0x00c0  Dfsc - ok
15:01:26.0498 0x00c0  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
15:01:26.0504 0x00c0  dg_ssudbus - ok
15:01:26.0593 0x00c0  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:01:26.0618 0x00c0  Dhcp - ok
15:01:26.0667 0x00c0  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\Windows\system32\drivers\disk.sys
15:01:26.0676 0x00c0  disk - ok
15:01:26.0709 0x00c0  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
15:01:26.0712 0x00c0  dmvsc - ok
15:01:26.0763 0x00c0  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:01:26.0787 0x00c0  Dnscache - ok
15:01:26.0852 0x00c0  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\Windows\System32\dot3svc.dll
15:01:26.0872 0x00c0  dot3svc - ok
15:01:26.0908 0x00c0  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\Windows\system32\dps.dll
15:01:26.0924 0x00c0  DPS - ok
15:01:26.0963 0x00c0  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:01:26.0966 0x00c0  drmkaud - ok
15:01:27.0013 0x00c0  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
15:01:27.0028 0x00c0  DsmSvc - ok
15:01:27.0182 0x00c0  [ C7D252742946DD395670649742FBD73D, 333CC984CF318D36EA8C5867077A1732A214445EB6B7CF7AC2E8F1C8259CD9C7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:01:27.0271 0x00c0  DXGKrnl - ok
15:01:27.0312 0x00c0  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\Windows\System32\eapsvc.dll
15:01:27.0318 0x00c0  Eaphost - ok
15:01:27.0461 0x00c0  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:01:27.0578 0x00c0  ebdrv - ok
15:01:27.0650 0x00c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\Windows\System32\lsass.exe
15:01:27.0656 0x00c0  EFS - ok
15:01:27.0679 0x00c0  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
15:01:27.0684 0x00c0  EhStorClass - ok
15:01:27.0718 0x00c0  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
15:01:27.0728 0x00c0  EhStorTcgDrv - ok
15:01:27.0900 0x00c0  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
15:01:27.0950 0x00c0  ePowerSvc - ok
15:01:27.0958 0x00c0  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
15:01:27.0959 0x00c0  ErrDev - ok
15:01:28.0026 0x00c0  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\Windows\system32\es.dll
15:01:28.0035 0x00c0  EventSystem - ok
15:01:28.0062 0x00c0  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:01:28.0068 0x00c0  exfat - ok
15:01:28.0077 0x00c0  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:01:28.0083 0x00c0  fastfat - ok
15:01:28.0135 0x00c0  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\Windows\system32\fxssvc.exe
15:01:28.0172 0x00c0  Fax - ok
15:01:28.0196 0x00c0  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys
15:01:28.0199 0x00c0  fdc - ok
15:01:28.0215 0x00c0  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\Windows\system32\fdPHost.dll
15:01:28.0219 0x00c0  fdPHost - ok
15:01:28.0228 0x00c0  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\Windows\system32\fdrespub.dll
15:01:28.0232 0x00c0  FDResPub - ok
15:01:28.0257 0x00c0  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\Windows\system32\fhsvc.dll
15:01:28.0264 0x00c0  fhsvc - ok
15:01:28.0302 0x00c0  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:01:28.0306 0x00c0  FileInfo - ok
15:01:28.0352 0x00c0  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:01:28.0356 0x00c0  Filetrace - ok
15:01:28.0370 0x00c0  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
15:01:28.0374 0x00c0  flpydisk - ok
15:01:28.0419 0x00c0  [ 46D1DF775FFF14585218BBE16E5B2C9A, F39EF615B18CEC7BA3F68C7639B636C06812AD9DBEDE90EB7B2C04C64396FC9E ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:01:28.0433 0x00c0  FltMgr - ok
15:01:28.0527 0x00c0  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\Windows\system32\FntCache.dll
15:01:28.0598 0x00c0  FontCache - ok
15:01:28.0741 0x00c0  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:01:28.0746 0x00c0  FontCache3.0.0.0 - ok
15:01:28.0790 0x00c0  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:01:28.0797 0x00c0  FsDepends - ok
15:01:28.0818 0x00c0  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:01:28.0822 0x00c0  Fs_Rec - ok
15:01:28.0876 0x00c0  [ B2BD017231836DA9F63F41E3A075D73E, 31B1DD677FE8B4F90B8AB5A131DA0105439AC2D91BC0CEDC972D2D87E595A686 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:01:28.0903 0x00c0  fvevol - ok
15:01:28.0919 0x00c0  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
15:01:28.0921 0x00c0  FxPPM - ok
15:01:28.0928 0x00c0  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:01:28.0930 0x00c0  gagp30kx - ok
15:01:28.0992 0x00c0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:01:28.0997 0x00c0  GEARAspiWDM - ok
15:01:29.0049 0x00c0  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
15:01:29.0052 0x00c0  gencounter - ok
15:01:29.0171 0x00c0  [ EF3AE7773394DF49CE74AF78A1C8D23D, CB12FF004C460A89F12AFF2467512B479A07CA10D4280CD4E624A5A9CDAB9C1B ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
15:01:29.0185 0x00c0  GPIOClx0101 - ok
15:01:29.0336 0x00c0  [ 58C11DCCC6241CC13861A559E31A69F0, 78B38BBC362C9209B06849CC79301EC595AFCE3E2BDE402A0B1F2725D3EDEFA3 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:01:29.0532 0x00c0  gpsvc - ok
15:01:29.0610 0x00c0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:01:29.0616 0x00c0  gupdate - ok
15:01:29.0627 0x00c0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:01:29.0633 0x00c0  gupdatem - ok
15:01:29.0680 0x00c0  [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
15:01:29.0688 0x00c0  gzflt - ok
15:01:29.0816 0x00c0  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:01:29.0838 0x00c0  HdAudAddService - ok
15:01:29.0905 0x00c0  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
15:01:29.0913 0x00c0  HDAudBus - ok
15:01:29.0951 0x00c0  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
15:01:29.0955 0x00c0  HidBatt - ok
15:01:30.0000 0x00c0  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
15:01:30.0009 0x00c0  HidBth - ok
15:01:30.0029 0x00c0  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
15:01:30.0034 0x00c0  hidi2c - ok
15:01:30.0049 0x00c0  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys
15:01:30.0054 0x00c0  HidIr - ok
15:01:30.0095 0x00c0  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\Windows\system32\hidserv.dll
15:01:30.0099 0x00c0  hidserv - ok
15:01:30.0151 0x00c0  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
15:01:30.0156 0x00c0  HidUsb - ok
15:01:30.0200 0x00c0  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:01:30.0211 0x00c0  hkmsvc - ok
15:01:30.0288 0x00c0  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:01:30.0371 0x00c0  HomeGroupListener - ok
15:01:30.0433 0x00c0  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:01:30.0455 0x00c0  HomeGroupProvider - ok
15:01:30.0489 0x00c0  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:01:30.0491 0x00c0  HpSAMD - ok
15:01:30.0542 0x00c0  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:01:30.0566 0x00c0  HTTP - ok
15:01:30.0585 0x00c0  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:01:30.0587 0x00c0  hwpolicy - ok
15:01:30.0592 0x00c0  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
15:01:30.0594 0x00c0  hyperkbd - ok
15:01:30.0599 0x00c0  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
15:01:30.0600 0x00c0  HyperVideo - ok
15:01:30.0644 0x00c0  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
15:01:30.0647 0x00c0  i8042prt - ok
15:01:30.0656 0x00c0  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
15:01:30.0657 0x00c0  iaLPSSi_GPIO - ok
15:01:30.0669 0x00c0  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
15:01:30.0672 0x00c0  iaLPSSi_I2C - ok
15:01:30.0715 0x00c0  [ 60F6526DB3297C7324957EF3143F88FF, F0D4AF7E66CD42793C5137B4F5E66AFCE13253C3FF8D397921EA23CD04D49763 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
15:01:30.0732 0x00c0  iaStorA - ok
15:01:30.0769 0x00c0  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
15:01:30.0786 0x00c0  iaStorAV - ok
15:01:30.0802 0x00c0  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:01:30.0814 0x00c0  iaStorV - ok
15:01:30.0819 0x00c0  IEEtwCollectorService - ok
15:01:30.0985 0x00c0  [ FFDCE455DA8BD9344494993897237AAF, 0CAB5926FE0F16F717858484DCD81F184108F1C6D8530280BC982E4C0CC24D0B ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:01:31.0204 0x00c0  igfx - ok
15:01:31.0297 0x00c0  [ CFE7F0267B0C3077042FF291949B5546, 7B8C432632D0210119BFF57D4994F2B8F75307A9D6867353AF93BBA3F561595B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:01:31.0322 0x00c0  IKEEXT - ok
15:01:31.0414 0x00c0  [ DB65573521AB51941F4FA799D0968136, 418F5E3FE725B7B114F3DAEBDCEBCE7F4AD8ECAAFF572C02BA9ACCE86D55BFD8 ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
15:01:31.0417 0x00c0  intaud_WaveExtensible - ok
15:01:31.0661 0x00c0  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:01:31.0770 0x00c0  IntcAzAudAddService - ok
15:01:31.0862 0x00c0  [ 56BF61A0F2CB461DFC78AC5260739D5C, DE6C0B6B614BE4BFEB7A2D992C4881BD720278247A0053B9154B453311B7E510 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
15:01:31.0876 0x00c0  IntcDAud - ok
15:01:31.0990 0x00c0  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:01:32.0009 0x00c0  Intel® Capability Licensing Service Interface - ok
15:01:32.0164 0x00c0  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
15:01:32.0201 0x00c0  Intel® Capability Licensing Service TCP IP Interface - ok
15:01:32.0239 0x00c0  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:01:32.0241 0x00c0  intelide - ok
15:01:32.0269 0x00c0  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\Windows\system32\drivers\intelpep.sys
15:01:32.0272 0x00c0  intelpep - ok
15:01:32.0309 0x00c0  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
15:01:32.0314 0x00c0  intelppm - ok
15:01:32.0324 0x00c0  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:01:32.0330 0x00c0  IpFilterDriver - ok
15:01:32.0399 0x00c0  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:01:32.0432 0x00c0  iphlpsvc - ok
15:01:32.0461 0x00c0  [ FD9C9E9E3F0ED51502C7E8C066BE26B9, 290E74380F1543DD22C9F3821513B3E2FB42E995724238D8779CBBCB4FC386C8 ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
15:01:32.0464 0x00c0  IPMIDRV - ok
15:01:32.0508 0x00c0  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:01:32.0512 0x00c0  IPNAT - ok
15:01:32.0653 0x00c0  [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service    C:\Program Files (x86)\iPod\bin\iPodService.exe
15:01:32.0711 0x00c0  iPod Service - ok
15:01:32.0746 0x00c0  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:01:32.0748 0x00c0  IRENUM - ok
15:01:32.0768 0x00c0  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:01:32.0771 0x00c0  isapnp - ok
15:01:32.0863 0x00c0  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
15:01:32.0884 0x00c0  iScsiPrt - ok
15:01:32.0921 0x00c0  [ 2C04ACF9070282AC9AA837C52CA3C128, 2C68FE2E876E5089F27021038E868E21288F694F3ED0390AED5B4712CC7567EC ] iwdbus          C:\Windows\System32\drivers\iwdbus.sys
15:01:32.0924 0x00c0  iwdbus - ok
15:01:33.0064 0x00c0  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
15:01:33.0073 0x00c0  jhi_service - ok
15:01:33.0105 0x00c0  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
15:01:33.0110 0x00c0  kbdclass - ok
15:01:33.0121 0x00c0  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
15:01:33.0124 0x00c0  kbdhid - ok
15:01:33.0142 0x00c0  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
15:01:33.0158 0x00c0  kdnic - ok
15:01:33.0175 0x00c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\Windows\system32\lsass.exe
15:01:33.0181 0x00c0  KeyIso - ok
15:01:33.0229 0x00c0  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:01:33.0234 0x00c0  KSecDD - ok
15:01:33.0279 0x00c0  [ F88CC88F4A6D8476F1664E805CA18CC2, 2C61EE5EEA4FD45AA3FA927CC16E34EF90BD44324EAB14198AF65C3A27617991 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:01:33.0287 0x00c0  KSecPkg - ok
15:01:33.0305 0x00c0  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:01:33.0306 0x00c0  ksthunk - ok
15:01:33.0351 0x00c0  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:01:33.0361 0x00c0  KtmRm - ok
15:01:33.0403 0x00c0  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:01:33.0414 0x00c0  LanmanServer - ok
15:01:33.0437 0x00c0  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:01:33.0447 0x00c0  LanmanWorkstation - ok
15:01:33.0518 0x00c0  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
15:01:33.0530 0x00c0  lfsvc - ok
15:01:33.0551 0x00c0  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:01:33.0554 0x00c0  lltdio - ok
15:01:33.0590 0x00c0  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:01:33.0599 0x00c0  lltdsvc - ok
15:01:33.0633 0x00c0  [ 4ACC60B4CBC911F3F34A1D66213BBBF5, C09A87ACAE0D41FD425BAF076FFE9B601DB89BB66199E5BD72FC59C6A8E449DB ] LMDriver        C:\Windows\System32\drivers\LMDriver.sys
15:01:33.0636 0x00c0  LMDriver - ok
15:01:33.0641 0x00c0  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:01:33.0644 0x00c0  lmhosts - ok
15:01:33.0695 0x00c0  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:01:33.0704 0x00c0  LMS - ok
15:01:33.0748 0x00c0  [ FFDF8F07A900659CF927A273942926F8, BE27505B77404F18A0C1E57645211CC2D6CC83DEA60352A68B837E0E2D1847B5 ] LMSvc           C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
15:01:33.0761 0x00c0  LMSvc - ok
15:01:33.0810 0x00c0  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:01:33.0813 0x00c0  LSI_SAS - ok
15:01:33.0820 0x00c0  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:01:33.0824 0x00c0  LSI_SAS2 - ok
15:01:33.0843 0x00c0  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
15:01:33.0846 0x00c0  LSI_SAS3 - ok
15:01:33.0853 0x00c0  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
15:01:33.0855 0x00c0  LSI_SSS - ok
15:01:33.0900 0x00c0  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\Windows\System32\lsm.dll
15:01:33.0922 0x00c0  LSM - ok
15:01:33.0992 0x00c0  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:01:34.0004 0x00c0  luafv - ok
15:01:34.0074 0x00c0  [ 6140163BFE9D8F2DFDBA088ED5521C13, B7B501F0D1527A15B1610D133E97AB431574502F0553734009627488D0007595 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
15:01:34.0086 0x00c0  MBAMSwissArmy - ok
15:01:34.0116 0x00c0  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys
15:01:34.0120 0x00c0  megasas - ok
15:01:34.0214 0x00c0  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
15:01:34.0240 0x00c0  megasr - ok
15:01:34.0305 0x00c0  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
15:01:34.0315 0x00c0  MEIx64 - ok
15:01:34.0366 0x00c0  [ 5C83E2DE29D603259AF04273D6485A42, 530DA9AEA7D05E4BAA1BF48C6B5D71704931AB27A09B16A301CB162ABC2A2976 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
15:01:34.0377 0x00c0  mfeapfk - ok
15:01:34.0406 0x00c0  [ E06E9155364C4448B1529FB626256168, 9F7B4B3D23614667BB0C28FA189708648684C71568AB1D7FF0B27E5C8C39DECB ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
15:01:34.0414 0x00c0  mfeavfk - ok
15:01:34.0439 0x00c0  [ 03FAFDA9383200263AF56C6064EA7813, C0AE627AD0D0570850C263C9E1731455E095011103CAEFD4182454F3E788EF48 ] mfeelamk        C:\Windows\system32\drivers\mfeelamk.sys
15:01:34.0441 0x00c0  mfeelamk - ok
15:01:34.0529 0x00c0  [ E6660233118B02B905A53CA751C98708, A8EC1C1EE176F2132A473325B244AE7A468FB6EF163079577155443941B155DA ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
15:01:34.0548 0x00c0  mfefire - ok
15:01:34.0607 0x00c0  [ C2DA65EBCA098520CCA33B81343144A2, 9B3A20ED314C6E626618BE4E065F7355B5EF99BD377DE46A516D6E2EB83DDDCE ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
15:01:34.0632 0x00c0  mfefirek - ok
15:01:34.0694 0x00c0  [ D1895C38D9B1D85557F5514A68A48EC9, 2C39376A49A6FD78678F2ACB0D9F75F3361BC717D980EA7E6630E5BAE26937A6 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
15:01:34.0736 0x00c0  mfehidk - ok
15:01:34.0772 0x00c0  [ 7CF636B453743A1A9A437AC451F7B819, B5764981567DA846E61B6DDC7EADF15BC9E6882B41205D67A5A91E9EAC0161A8 ] mfevtp          C:\Windows\system32\mfevtps.exe
15:01:34.0784 0x00c0  mfevtp - ok
15:01:34.0835 0x00c0  [ 4DB07846C1BC5ED4305C6481B6998EF9, 992D9AF39C816C8972DDDC5259E5DB5E18E0078696AC4967EEFA9924DB47920E ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
15:01:34.0845 0x00c0  mfewfpk - ok
15:01:34.0877 0x00c0  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\Windows\system32\mmcss.dll
15:01:34.0881 0x00c0  MMCSS - ok
15:01:34.0903 0x00c0  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys
15:01:34.0905 0x00c0  Modem - ok
15:01:34.0911 0x00c0  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys
15:01:34.0915 0x00c0  monitor - ok
15:01:34.0953 0x00c0  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
15:01:34.0957 0x00c0  mouclass - ok
15:01:34.0966 0x00c0  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\Windows\System32\drivers\mouhid.sys
15:01:34.0968 0x00c0  mouhid - ok
15:01:34.0976 0x00c0  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:01:34.0990 0x00c0  mountmgr - ok
15:01:35.0006 0x00c0  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:01:35.0012 0x00c0  mpsdrv - ok
15:01:35.0046 0x00c0  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:01:35.0070 0x00c0  MpsSvc - ok
15:01:35.0157 0x00c0  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:01:35.0170 0x00c0  MRxDAV - ok
15:01:35.0263 0x00c0  [ C997E6A37BA8915224B3FB5024A34F69, 43E1B83072DF9E878151D276DDB6EB7B3801D72494C43E9B9ABECA4B2DCFD606 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:01:35.0292 0x00c0  mrxsmb - ok
15:01:35.0386 0x00c0  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:01:35.0403 0x00c0  mrxsmb10 - ok
15:01:35.0463 0x00c0  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:01:35.0477 0x00c0  mrxsmb20 - ok
15:01:35.0516 0x00c0  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
15:01:35.0528 0x00c0  MsBridge - ok
15:01:35.0577 0x00c0  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\Windows\System32\msdtc.exe
15:01:35.0592 0x00c0  MSDTC - ok
15:01:35.0625 0x00c0  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:01:35.0630 0x00c0  Msfs - ok
15:01:35.0646 0x00c0  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
15:01:35.0650 0x00c0  msgpiowin32 - ok
15:01:35.0661 0x00c0  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:01:35.0663 0x00c0  mshidkmdf - ok
15:01:35.0675 0x00c0  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
15:01:35.0676 0x00c0  mshidumdf - ok
15:01:35.0685 0x00c0  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:01:35.0686 0x00c0  msisadrv - ok
15:01:35.0710 0x00c0  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:01:35.0715 0x00c0  MSiSCSI - ok
15:01:35.0720 0x00c0  msiserver - ok
15:01:35.0739 0x00c0  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:01:35.0741 0x00c0  MSKSSRV - ok
15:01:35.0747 0x00c0  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
15:01:35.0750 0x00c0  MsLldp - ok
15:01:35.0756 0x00c0  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:01:35.0757 0x00c0  MSPCLOCK - ok
15:01:35.0762 0x00c0  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:01:35.0763 0x00c0  MSPQM - ok
15:01:35.0778 0x00c0  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:01:35.0788 0x00c0  MsRPC - ok
15:01:35.0824 0x00c0  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
15:01:35.0826 0x00c0  mssmbios - ok
15:01:35.0838 0x00c0  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:01:35.0839 0x00c0  MSTEE - ok
15:01:35.0845 0x00c0  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
15:01:35.0847 0x00c0  MTConfig - ok
15:01:35.0854 0x00c0  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys
15:01:35.0856 0x00c0  Mup - ok
15:01:35.0874 0x00c0  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
15:01:35.0880 0x00c0  mvumis - ok
15:01:35.0921 0x00c0  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\Windows\system32\qagentRT.dll
15:01:35.0933 0x00c0  napagent - ok
15:01:35.0985 0x00c0  [ 647C7652FA19F98CADF2BFDA2164BFEC, 711A4A06309393922A70D7FBE5684938CD634F5DED158D847BFADDD5ACF9E44C ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:01:36.0002 0x00c0  NativeWifiP - ok
15:01:36.0184 0x00c0  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
15:01:36.0225 0x00c0  NAUpdate - ok
15:01:36.0276 0x00c0  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\Windows\System32\ncasvc.dll
15:01:36.0283 0x00c0  NcaSvc - ok
15:01:36.0292 0x00c0  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\Windows\System32\ncbservice.dll
15:01:36.0300 0x00c0  NcbService - ok
15:01:36.0308 0x00c0  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
15:01:36.0312 0x00c0  NcdAutoSetup - ok
15:01:36.0531 0x00c0  [ F21B77B4D74092A543807D3CEB711A88, 5C3C17A10E990070FAB317C0C5333DE768E408CAF43EC4FA9D18116C6EE3B3DC ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:01:36.0598 0x00c0  NDIS - ok
15:01:36.0644 0x00c0  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:01:36.0649 0x00c0  NdisCap - ok
15:01:36.0659 0x00c0  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
15:01:36.0662 0x00c0  NdisImPlatform - ok
15:01:36.0667 0x00c0  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:01:36.0669 0x00c0  NdisTapi - ok
15:01:36.0676 0x00c0  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:01:36.0679 0x00c0  Ndisuio - ok
15:01:36.0693 0x00c0  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
15:01:36.0694 0x00c0  NdisVirtualBus - ok
15:01:36.0725 0x00c0  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:01:36.0741 0x00c0  NdisWan - ok
15:01:36.0756 0x00c0  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
15:01:36.0762 0x00c0  NdisWanLegacy - ok
15:01:36.0773 0x00c0  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:01:36.0776 0x00c0  NDProxy - ok
15:01:36.0799 0x00c0  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
15:01:36.0803 0x00c0  Ndu - ok
15:01:36.0810 0x00c0  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:01:36.0814 0x00c0  NetBIOS - ok
15:01:36.0832 0x00c0  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:01:36.0845 0x00c0  NetBT - ok
15:01:36.0870 0x00c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\Windows\system32\lsass.exe
15:01:36.0874 0x00c0  Netlogon - ok
15:01:36.0906 0x00c0  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\Windows\System32\netman.dll
15:01:36.0918 0x00c0  Netman - ok
15:01:36.0945 0x00c0  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\Windows\System32\netprofmsvc.dll
15:01:36.0993 0x00c0  netprofm - ok
15:01:37.0421 0x00c0  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:01:37.0468 0x00c0  NetTcpPortSharing - ok
15:01:37.0505 0x00c0  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\Windows\system32\DRIVERS\netvsc63.sys
15:01:37.0509 0x00c0  netvsc - ok
15:01:37.0698 0x00c0  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:01:37.0727 0x00c0  NlaSvc - ok
15:01:37.0760 0x00c0  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:01:37.0764 0x00c0  Npfs - ok
15:01:37.0774 0x00c0  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
15:01:37.0777 0x00c0  npsvctrig - ok
15:01:37.0791 0x00c0  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\Windows\system32\nsisvc.dll
15:01:37.0796 0x00c0  nsi - ok
15:01:37.0805 0x00c0  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:01:37.0808 0x00c0  nsiproxy - ok
15:01:37.0902 0x00c0  [ 1C80517BE6836A812F6A9B99B8321351, 7DBED4633820E201C9C242D961EF6F25BA2B1D5593BA60F707CC71A4014C2D4B ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:01:37.0972 0x00c0  Ntfs - ok
15:01:37.0999 0x00c0  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
15:01:38.0001 0x00c0  Null - ok
15:01:38.0970 0x00c0  [ 9B93CC9C70EDE60A9C486E7719DB9E8D, 8E31BE72797D3308D8AF136E9F4C6199BCF4592F88E9FEB361752FF768225EC9 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:01:39.0386 0x00c0  nvlddmkm - ok
15:01:39.0414 0x00c0  [ F76296368BB813E0C6996501A3271C7C, FA1C127F881C09C5066CB83A686AFD7A40D731922185EA4001A52ABA230FD812 ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
15:01:39.0416 0x00c0  nvpciflt - ok
15:01:39.0471 0x00c0  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:01:39.0475 0x00c0  nvraid - ok
15:01:39.0497 0x00c0  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:01:39.0507 0x00c0  nvstor - ok
15:01:39.0586 0x00c0  [ FB50E60564ED30DDC855F0CE435C8467, C9A56D74F58739B8A069336FF5456FC5F3CE89371B8CFE8144B8D06A9C79C6AB ] nvsvc           C:\Windows\system32\nvvsvc.exe
15:01:39.0631 0x00c0  nvsvc - ok
15:01:39.0812 0x00c0  [ 005E474630A7AA05A617C574B702FEED, E7B8181232DAA787EE8B98DDB5775E4B33C82B4D2E4A27D3DCD9FBAA6663BD97 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:01:39.0914 0x00c0  nvUpdatusService - ok
15:01:39.0941 0x00c0  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:01:39.0948 0x00c0  nv_agp - ok
15:01:40.0028 0x00c0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:01:40.0036 0x00c0  ose - ok
15:01:40.0133 0x00c0  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:01:40.0167 0x00c0  p2pimsvc - ok
15:01:40.0256 0x00c0  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:01:40.0292 0x00c0  p2psvc - ok
15:01:40.0334 0x00c0  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys
15:01:40.0340 0x00c0  Parport - ok
15:01:40.0391 0x00c0  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:01:40.0401 0x00c0  partmgr - ok
15:01:40.0448 0x00c0  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:01:40.0462 0x00c0  PcaSvc - ok
15:01:40.0632 0x00c0  [ 275AFE3FA35E8D78BE97695DF49817C6, 447CEBB16285AE073B4251D2DA71399306EF2DCB7F56286ABE2F0BD6C83EB489 ] pci             C:\Windows\system32\drivers\pci.sys
15:01:40.0658 0x00c0  pci - ok
15:01:40.0692 0x00c0  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:01:40.0696 0x00c0  pciide - ok
15:01:40.0801 0x00c0  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:01:40.0807 0x00c0  pcmcia - ok
15:01:40.0818 0x00c0  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:01:40.0821 0x00c0  pcw - ok
15:01:40.0863 0x00c0  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\Windows\system32\drivers\pdc.sys
15:01:40.0867 0x00c0  pdc - ok
15:01:41.0058 0x00c0  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:01:41.0300 0x00c0  PEAUTH - ok
15:01:41.0804 0x00c0  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:01:41.0808 0x00c0  PerfHost - ok
15:01:41.0973 0x00c0  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\Windows\system32\pla.dll
15:01:42.0101 0x00c0  pla - ok
15:01:42.0175 0x00c0  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:01:42.0276 0x00c0  PlugPlay - ok
15:01:42.0319 0x00c0  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:01:42.0323 0x00c0  PNRPAutoReg - ok
15:01:42.0346 0x00c0  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:01:42.0356 0x00c0  PNRPsvc - ok
15:01:42.0427 0x00c0  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:01:42.0439 0x00c0  PolicyAgent - ok
15:01:42.0479 0x00c0  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\Windows\system32\umpo.dll
15:01:42.0484 0x00c0  Power - ok
15:01:42.0529 0x00c0  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:01:42.0532 0x00c0  PptpMiniport - ok
15:01:42.0733 0x00c0  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
15:01:42.0898 0x00c0  PrintNotify - ok
15:01:42.0964 0x00c0  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys
15:01:42.0975 0x00c0  Processor - ok
15:01:43.0033 0x00c0  [ B2A890D96C05E33FDD2BF3F3D4D0DF92, 3A29E17424429A5654D906E420D938148F09F57457356EFA72DA003B73F2D81E ] ProfSvc         C:\Windows\system32\profsvc.dll
15:01:43.0046 0x00c0  ProfSvc - ok
15:01:43.0077 0x00c0  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:01:43.0084 0x00c0  Psched - ok
15:01:43.0115 0x00c0  [ A5B22EACF1DA28E19CC9F80D37978657, 9543615574D540AC825DBE8D1581DFC8CC0B7A1113420903F6747E3789EEACDA ] QRDCIO          C:\Windows\System32\drivers\QRDCIO.sys
15:01:43.0118 0x00c0  QRDCIO - ok
15:01:43.0186 0x00c0  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\Windows\system32\qwave.dll
15:01:43.0216 0x00c0  QWAVE - ok
15:01:43.0234 0x00c0  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:01:43.0238 0x00c0  QWAVEdrv - ok
15:01:43.0265 0x00c0  [ 6A52182919E25FB56D253D389F92CE98, AE6497D5CF324CB813248ADECB0F53E5CB3D6C326774E2257319E4CE7782C591 ] RadioShim       C:\Windows\System32\drivers\RadioShim.sys
15:01:43.0267 0x00c0  RadioShim - ok
15:01:43.0275 0x00c0  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:01:43.0278 0x00c0  RasAcd - ok
15:01:43.0319 0x00c0  [ 55FE43112F61836D0581D615C72AA113, 35665E09BD74BD078A0BC49BF98102B5F3679A3FA2AC25FB629D448652D9938F ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:01:43.0325 0x00c0  RasAgileVpn - ok
15:01:43.0350 0x00c0  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\Windows\System32\rasauto.dll
15:01:43.0359 0x00c0  RasAuto - ok
15:01:43.0373 0x00c0  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:01:43.0379 0x00c0  Rasl2tp - ok
15:01:43.0493 0x00c0  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\Windows\System32\rasmans.dll
15:01:43.0536 0x00c0  RasMan - ok
15:01:43.0550 0x00c0  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:01:43.0555 0x00c0  RasPppoe - ok
15:01:43.0572 0x00c0  [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:01:43.0575 0x00c0  RasSstp - ok
15:01:43.0623 0x00c0  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:01:43.0634 0x00c0  rdbss - ok
15:01:43.0673 0x00c0  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
15:01:43.0677 0x00c0  rdpbus - ok
15:01:43.0714 0x00c0  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:01:43.0720 0x00c0  RDPDR - ok
15:01:43.0732 0x00c0  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:01:43.0733 0x00c0  RdpVideoMiniport - ok
15:01:43.0852 0x00c0  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:01:43.0867 0x00c0  rdyboost - ok
15:01:43.0966 0x00c0  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
15:01:44.0031 0x00c0  ReFS - ok
15:01:44.0087 0x00c0  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:01:44.0099 0x00c0  RemoteAccess - ok
15:01:44.0145 0x00c0  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:01:44.0151 0x00c0  RemoteRegistry - ok
15:01:44.0233 0x00c0  [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
15:01:44.0238 0x00c0  RFCOMM - ok
15:01:44.0268 0x00c0  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:01:44.0273 0x00c0  RpcEptMapper - ok
15:01:44.0305 0x00c0  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\Windows\system32\locator.exe
15:01:44.0308 0x00c0  RpcLocator - ok
15:01:44.0382 0x00c0  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\Windows\system32\rpcss.dll
15:01:44.0400 0x00c0  RpcSs - ok
15:01:44.0434 0x00c0  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:01:44.0437 0x00c0  rspndr - ok
15:01:44.0500 0x00c0  [ 9F2A38C1170594CF493283CE0B987B70, 1CE15815DD54227C3C8ED4B2E4FA09EB3EB91D55379DC286AAC7A6001850CA98 ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
15:01:44.0531 0x00c0  RTL8168 - ok
15:01:44.0569 0x00c0  [ 95C6FCB48AFEF9D8CCA17E7F2A022C75, 5D91E907A810E74EFEAC1288B18C09EEFDA55CEDDC60B7CE09953982FD43AA60 ] RTSPER          C:\Windows\system32\DRIVERS\RtsPer.sys
15:01:44.0581 0x00c0  RTSPER - ok
15:01:44.0605 0x00c0  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
15:01:44.0607 0x00c0  s3cap - ok
15:01:44.0636 0x00c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\Windows\system32\lsass.exe
15:01:44.0639 0x00c0  SamSs - ok
15:01:44.0668 0x00c0  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:01:44.0673 0x00c0  sbp2port - ok
15:01:44.0716 0x00c0  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:01:44.0723 0x00c0  SCardSvr - ok
15:01:44.0738 0x00c0  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
15:01:44.0743 0x00c0  ScDeviceEnum - ok
15:01:44.0758 0x00c0  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:01:44.0760 0x00c0  scfilter - ok
15:01:44.0832 0x00c0  [ A95838FFFAEAA7500263D491575F7E0C, FEB79ECAE6D9AB0C29D9AFE12F60502A8357B3A382C0FACF4C6DA4852B6ECFA4 ] Schedule        C:\Windows\system32\schedsvc.dll
15:01:44.0865 0x00c0  Schedule - ok
15:01:44.0904 0x00c0  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:01:44.0914 0x00c0  SCPolicySvc - ok
15:01:45.0014 0x00c0  [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus           C:\Windows\System32\drivers\sdbus.sys
15:01:45.0033 0x00c0  sdbus - ok
15:01:45.0124 0x00c0  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
15:01:45.0131 0x00c0  sdstor - ok
15:01:45.0159 0x00c0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:01:45.0162 0x00c0  secdrv - ok
15:01:45.0200 0x00c0  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\Windows\system32\seclogon.dll
15:01:45.0206 0x00c0  seclogon - ok
15:01:45.0223 0x00c0  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\Windows\System32\sens.dll
15:01:45.0231 0x00c0  SENS - ok
15:01:45.0256 0x00c0  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:01:45.0270 0x00c0  SensrSvc - ok
15:01:45.0283 0x00c0  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
15:01:45.0287 0x00c0  SerCx - ok
15:01:45.0343 0x00c0  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
15:01:45.0350 0x00c0  SerCx2 - ok
15:01:45.0369 0x00c0  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys
15:01:45.0372 0x00c0  Serenum - ok
15:01:45.0420 0x00c0  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys
15:01:45.0427 0x00c0  Serial - ok
15:01:45.0439 0x00c0  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
15:01:45.0442 0x00c0  sermouse - ok
15:01:45.0496 0x00c0  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:01:45.0507 0x00c0  SessionEnv - ok
15:01:45.0526 0x00c0  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
15:01:45.0528 0x00c0  sfloppy - ok
15:01:45.0561 0x00c0  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:01:45.0574 0x00c0  SharedAccess - ok
15:01:45.0680 0x00c0  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:01:45.0697 0x00c0  ShellHWDetection - ok
15:01:45.0704 0x00c0  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:01:45.0707 0x00c0  SiSRaid2 - ok
15:01:45.0715 0x00c0  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:01:45.0718 0x00c0  SiSRaid4 - ok
15:01:45.0748 0x00c0  [ DDE8F578FE01F11CC316591AFD411372, 849E0B8A309D0CD0991B81EA0268EC1C882DEE39AFD575CA54655B9B8040E459 ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
15:01:45.0750 0x00c0  SmbDrvI - ok
15:01:45.0766 0x00c0  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\Windows\System32\smphost.dll
15:01:45.0770 0x00c0  smphost - ok
15:01:45.0799 0x00c0  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:01:45.0802 0x00c0  SNMPTRAP - ok
15:01:45.0874 0x00c0  [ 87765EF43C33BE342F4ACB0E3FBF89A6, 3C1DDED7F96F796702F1BC73D5CEE5251DD16011AA349FE4EE1D9C002E0171C6 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
15:01:45.0904 0x00c0  spaceport - ok
15:01:45.0925 0x00c0  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
15:01:45.0928 0x00c0  SpbCx - ok
15:01:45.0978 0x00c0  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\Windows\System32\spoolsv.exe
15:01:46.0044 0x00c0  Spooler - ok
15:01:46.0343 0x00c0  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\Windows\system32\sppsvc.exe
15:01:46.0579 0x00c0  sppsvc - ok
15:01:46.0633 0x00c0  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:01:46.0644 0x00c0  srv - ok
15:01:46.0864 0x00c0  [ E62EAEF0BAC9DD61BF22D4A7F2F18571, 910D85FDDBAF0E003A0CA0C23D27615F1B7D6145FB9E3A1661E93498196B303A ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:01:46.0937 0x00c0  srv2 - ok
15:01:46.0975 0x00c0  [ 466BDC0006103F2547D308DD3CD64398, 334E0729B369C7F7CBB9878F423B53E05476D1288A8ECEB18240318ABF2370C1 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:01:46.0986 0x00c0  srvnet - ok
15:01:47.0032 0x00c0  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:01:47.0044 0x00c0  SSDPSRV - ok
15:01:47.0064 0x00c0  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:01:47.0074 0x00c0  SstpSvc - ok
15:01:47.0110 0x00c0  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
15:01:47.0120 0x00c0  ssudmdm - ok
15:01:47.0157 0x00c0  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:01:47.0160 0x00c0  stexstor - ok
15:01:47.0234 0x00c0  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\Windows\System32\wiaservc.dll
15:01:47.0262 0x00c0  stisvc - ok
15:01:47.0307 0x00c0  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
15:01:47.0312 0x00c0  storahci - ok
15:01:47.0347 0x00c0  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
15:01:47.0351 0x00c0  storflt - ok
15:01:47.0404 0x00c0  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
15:01:47.0409 0x00c0  stornvme - ok
15:01:47.0439 0x00c0  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\Windows\system32\storsvc.dll
15:01:47.0443 0x00c0  StorSvc - ok
15:01:47.0462 0x00c0  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:01:47.0465 0x00c0  storvsc - ok
15:01:47.0485 0x00c0  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\Windows\system32\svsvc.dll
15:01:47.0488 0x00c0  svsvc - ok
15:01:47.0494 0x00c0  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\Windows\System32\drivers\swenum.sys
15:01:47.0495 0x00c0  swenum - ok
15:01:47.0574 0x00c0  [ E3C92D60F6AD7763961D1E7628002844, A33EED7CB3EE0EF4890AAD095F989FCA7F44CA1055E03D3892AB543DEE74C9B6 ] swprv           C:\Windows\System32\swprv.dll
15:01:47.0606 0x00c0  swprv - ok
15:01:47.0702 0x00c0  [ 924B6E84FB70BA63E004C5638832C4B4, D6B086FDFD01AA5DD1051961C9B4D2B28652465EE462464F34A85B7173D250BF ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
15:01:47.0746 0x00c0  SynTP - ok
15:01:47.0903 0x00c0  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\Windows\system32\sysmain.dll
15:01:47.0984 0x00c0  SysMain - ok
15:01:48.0056 0x00c0  [ D65B1C952AEB864C2BAC7A770B17ECCE, 3EFAAFFF73390D9CB660E0F42B305512396CF66ED06E4A20ED67E8722FB4355B ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
15:01:48.0076 0x00c0  SystemEventsBroker - ok
15:01:48.0110 0x00c0  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\Windows\System32\TabSvc.dll
15:01:48.0117 0x00c0  TabletInputService - ok
15:01:48.0138 0x00c0  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:01:48.0148 0x00c0  TapiSrv - ok
15:01:48.0330 0x00c0  [ FEEFE783D87C9063CDAC6DBDCF95F533, EBD00EEE90AC657823A88190BBBED6DA47AF597510C201F3392F4325069D2669 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:01:48.0496 0x00c0  Tcpip - ok
15:01:48.0601 0x00c0  [ FEEFE783D87C9063CDAC6DBDCF95F533, EBD00EEE90AC657823A88190BBBED6DA47AF597510C201F3392F4325069D2669 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:01:48.0699 0x00c0  TCPIP6 - ok
15:01:48.0746 0x00c0  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:01:48.0748 0x00c0  tcpipreg - ok
15:01:48.0787 0x00c0  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:01:48.0791 0x00c0  tdx - ok
15:01:48.0798 0x00c0  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
15:01:48.0800 0x00c0  terminpt - ok
15:01:48.0859 0x00c0  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\Windows\System32\termsrv.dll
15:01:48.0885 0x00c0  TermService - ok
15:01:48.0898 0x00c0  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\Windows\system32\themeservice.dll
15:01:48.0901 0x00c0  Themes - ok
15:01:48.0935 0x00c0  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\Windows\system32\mmcss.dll
15:01:48.0939 0x00c0  THREADORDER - ok
15:01:48.0988 0x00c0  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
15:01:49.0008 0x00c0  TimeBroker - ok
15:01:49.0069 0x00c0  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\Windows\system32\drivers\tpm.sys
15:01:49.0075 0x00c0  TPM - ok
15:01:49.0107 0x00c0  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\Windows\System32\trkwks.dll
15:01:49.0113 0x00c0  TrkWks - ok
15:01:49.0188 0x00c0  [ 325A512F98BEB97B1FFBE88927B8090D, 2A0C10516E3506D63290345DFAC98D5A623584767E034EBF652B9DBE6CF70547 ] trufos          C:\Windows\system32\DRIVERS\trufos.sys
15:01:49.0214 0x00c0  trufos - ok
15:01:49.0270 0x00c0  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:01:49.0277 0x00c0  TrustedInstaller - ok
15:01:49.0314 0x00c0  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:01:49.0319 0x00c0  TsUsbFlt - ok
15:01:49.0343 0x00c0  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
15:01:49.0347 0x00c0  TsUsbGD - ok
15:01:49.0377 0x00c0  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:01:49.0393 0x00c0  tunnel - ok
15:01:49.0419 0x00c0  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:01:49.0423 0x00c0  uagp35 - ok
15:01:49.0472 0x00c0  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
15:01:49.0475 0x00c0  UASPStor - ok
15:01:49.0532 0x00c0  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
15:01:49.0539 0x00c0  UCX01000 - ok
15:01:49.0553 0x00c0  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:01:49.0561 0x00c0  udfs - ok
15:01:49.0569 0x00c0  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
15:01:49.0571 0x00c0  UEFI - ok
15:01:49.0629 0x00c0  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:01:49.0637 0x00c0  UI0Detect - ok
15:01:49.0665 0x00c0  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:01:49.0670 0x00c0  uliagpkx - ok
15:01:49.0684 0x00c0  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys
15:01:49.0687 0x00c0  umbus - ok
15:01:49.0700 0x00c0  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
15:01:49.0704 0x00c0  UmPass - ok
15:01:49.0735 0x00c0  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:01:49.0749 0x00c0  UmRdpService - ok
15:01:49.0859 0x00c0  [ 612AACDDFF7EF81375927C2D7E4E810C, 63B446E7DB4C31CBBA244F858335DAD386AE302E6B0EE8EABDE399439BC93D82 ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
15:01:49.0926 0x00c0  UPDATESRV - ok
15:01:50.0004 0x00c0  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\Windows\System32\upnphost.dll
15:01:50.0023 0x00c0  upnphost - ok
15:01:50.0271 0x00c0  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
15:01:50.0292 0x00c0  usbccgp - ok
15:01:50.0360 0x00c0  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
15:01:50.0369 0x00c0  usbcir - ok
15:01:50.0445 0x00c0  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
15:01:50.0453 0x00c0  usbehci - ok
15:01:50.0580 0x00c0  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
15:01:50.0613 0x00c0  usbhub - ok
15:01:50.0810 0x00c0  [ CFC52C49BEFE4D70D87FFA900EAB9777, 09A2F5D8AB07C3AE3F2B092F4DD7AE5838736CDC263016F188B442B32EC928F8 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
15:01:50.0841 0x00c0  USBHUB3 - ok
15:01:50.0898 0x00c0  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
15:01:50.0902 0x00c0  usbohci - ok
15:01:50.0914 0x00c0  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
15:01:50.0917 0x00c0  usbprint - ok
15:01:51.0074 0x00c0  [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
15:01:51.0084 0x00c0  USBSTOR - ok
15:01:51.0117 0x00c0  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
15:01:51.0120 0x00c0  usbuhci - ok
15:01:51.0165 0x00c0  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
15:01:51.0175 0x00c0  usbvideo - ok
15:01:51.0288 0x00c0  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
15:01:51.0298 0x00c0  USBXHCI - ok
15:01:51.0339 0x00c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:01:51.0341 0x00c0  VaultSvc - ok
15:01:51.0349 0x00c0  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:01:51.0351 0x00c0  vdrvroot - ok
15:01:51.0444 0x00c0  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\Windows\System32\vds.exe
15:01:51.0544 0x00c0  vds - ok
15:01:51.0593 0x00c0  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
15:01:51.0601 0x00c0  VerifierExt - ok
15:01:51.0790 0x00c0  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
15:01:51.0839 0x00c0  vhdmp - ok
15:01:51.0881 0x00c0  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:01:51.0886 0x00c0  viaide - ok
15:01:51.0909 0x00c0  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:01:51.0914 0x00c0  vmbus - ok
15:01:51.0924 0x00c0  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
15:01:51.0926 0x00c0  VMBusHID - ok
15:01:51.0977 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
15:01:52.0003 0x00c0  vmicguestinterface - ok
15:01:52.0029 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
15:01:52.0040 0x00c0  vmicheartbeat - ok
15:01:52.0079 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
15:01:52.0092 0x00c0  vmickvpexchange - ok
15:01:52.0135 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\Windows\System32\ICSvc.dll
15:01:52.0146 0x00c0  vmicrdv - ok
15:01:52.0163 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
15:01:52.0174 0x00c0  vmicshutdown - ok
15:01:52.0284 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\Windows\System32\ICSvc.dll
15:01:52.0311 0x00c0  vmictimesync - ok
15:01:52.0349 0x00c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\Windows\System32\ICSvc.dll
15:01:52.0358 0x00c0  vmicvss - ok
15:01:52.0433 0x00c0  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:01:52.0445 0x00c0  volmgr - ok
15:01:52.0487 0x00c0  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:01:52.0511 0x00c0  volmgrx - ok
15:01:52.0660 0x00c0  [ 3595FBDF25F8BA6256072D103937D7D6, 547AA103804790E31F6E5658923627945948B48F36354EEA2FC0FE09098F9FD5 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:01:52.0681 0x00c0  volsnap - ok
15:01:52.0721 0x00c0  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\Windows\System32\drivers\vpci.sys
15:01:52.0727 0x00c0  vpci - ok
15:01:52.0745 0x00c0  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:01:52.0756 0x00c0  vsmraid - ok
15:01:53.0149 0x00c0  [ 4957B27219515B93A508B91068B87BF5, 5B6B37A57FC8F4FC8B119C013338292550C63AB5295A596D382D8DCF26D751A2 ] VSS             C:\Windows\system32\vssvc.exe
15:01:53.0242 0x00c0  VSS - ok
15:01:53.0380 0x00c0  [ F2E77091A09315A896F2FC5F973694B1, 72F98AE14DF2F01449CD9B76B8BA5EE4F2A590B9FA9E7655A0E3306ADAD5B87D ] VSSERV          C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
15:01:53.0432 0x00c0  VSSERV - ok
15:01:53.0536 0x00c0  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
15:01:53.0559 0x00c0  VSTXRAID - ok
15:01:53.0589 0x00c0  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:01:53.0594 0x00c0  vwifibus - ok
15:01:53.0616 0x00c0  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:01:53.0622 0x00c0  vwififlt - ok
15:01:53.0641 0x00c0  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:01:53.0646 0x00c0  vwifimp - ok
15:01:53.0697 0x00c0  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\Windows\system32\w32time.dll
15:01:53.0709 0x00c0  W32Time - ok
15:01:53.0716 0x00c0  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
15:01:53.0718 0x00c0  WacomPen - ok
15:01:53.0726 0x00c0  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
15:01:53.0729 0x00c0  Wanarp - ok
15:01:53.0735 0x00c0  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:01:53.0737 0x00c0  Wanarpv6 - ok
15:01:53.0838 0x00c0  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\Windows\system32\wbengine.exe
15:01:53.0929 0x00c0  wbengine - ok
15:01:54.0049 0x00c0  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:01:54.0069 0x00c0  WbioSrvc - ok
15:01:54.0143 0x00c0  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
15:01:54.0169 0x00c0  Wcmsvc - ok
15:01:54.0216 0x00c0  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:01:54.0238 0x00c0  wcncsvc - ok
15:01:54.0262 0x00c0  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:01:54.0266 0x00c0  WcsPlugInService - ok
15:01:54.0576 0x00c0  [ 17C40FC988BE24CAE78FE5F03348C7BA, 3DBEB89D1286B27BBA8037E4BB1AB620C3D260D7A5E257CE27EC3AD700C26076 ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
15:01:54.0656 0x00c0  WDBackup - ok
15:01:54.0692 0x00c0  [ 241895E8A9C158DF86E12FDD21033A32, 46D4BF6319271AC33EC1C7283053B91D38A3D5443F3F749E640253FDC2819679 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
15:01:54.0702 0x00c0  WdBoot - ok
15:01:54.0729 0x00c0  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\System32\drivers\wdcsam64.sys
15:01:54.0733 0x00c0  WDC_SAM - ok
15:01:54.0786 0x00c0  [ 1924EC48CC26D0A2C445E03A5592FF7A, 78DAB90DC8573B47C7E638DC399BEC4172C0D9F930C926AE26309CF2CB2DD3DC ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
15:01:54.0799 0x00c0  WDDriveService - ok
15:01:54.0837 0x00c0  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:01:54.0933 0x00c0  Wdf01000 - ok
15:01:55.0000 0x00c0  [ C52148456E0F6EAD9E903020A79207FC, 7DEB2D7D09FB005A79E88FA8766B7EBE0396F0CA084D72269156874C727FBFF4 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
15:01:55.0012 0x00c0  WdFilter - ok
15:01:55.0053 0x00c0  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:01:55.0062 0x00c0  WdiServiceHost - ok
15:01:55.0075 0x00c0  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:01:55.0082 0x00c0  WdiSystemHost - ok
15:01:55.0133 0x00c0  [ 57F22324FAAF92ADF957B281E88F1743, 46CFBA6529E28756D73A00A211C3D72E9854E035EE6F2520066E074697A9745E ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
15:01:55.0138 0x00c0  WdNisDrv - ok
15:01:55.0161 0x00c0  WdNisSvc - ok
15:01:55.0188 0x00c0  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\Windows\System32\webclnt.dll
15:01:55.0196 0x00c0  WebClient - ok
15:01:55.0229 0x00c0  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:01:55.0236 0x00c0  Wecsvc - ok
15:01:55.0243 0x00c0  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
15:01:55.0246 0x00c0  WEPHOSTSVC - ok
15:01:55.0286 0x00c0  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:01:55.0292 0x00c0  wercplsupport - ok
15:01:55.0323 0x00c0  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:01:55.0328 0x00c0  WerSvc - ok
15:01:55.0474 0x00c0  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
15:01:55.0487 0x00c0  WFPLWFS - ok
15:01:55.0554 0x00c0  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\Windows\System32\wiarpc.dll
15:01:55.0564 0x00c0  WiaRpc - ok
15:01:55.0606 0x00c0  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:01:55.0610 0x00c0  WIMMount - ok
15:01:55.0619 0x00c0  WinDefend - ok
15:01:55.0702 0x00c0  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
15:01:55.0746 0x00c0  WinHttpAutoProxySvc - ok
15:01:55.0838 0x00c0  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:01:55.0848 0x00c0  Winmgmt - ok
15:01:55.0985 0x00c0  [ C8D6344BDE2691A196E61C0D3372EAB7, FF8EB79D8A7E298343C22B83276FF68293D08A9DA438BB22600BEFC4CA93A91D ] WinRM           C:\Windows\system32\WsmSvc.dll
15:01:56.0166 0x00c0  WinRM - ok
15:01:56.0261 0x00c0  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:01:56.0272 0x00c0  WinUsb - ok
15:01:56.0410 0x00c0  [ 5A917027826D759CC3238C7D3CEC3438, A8FFA28B6D8A314692AA08788FC9E2E0F03D8AD1FCD662826ABA71DB39C3605A ] WlanSvc         C:\Windows\System32\wlansvc.dll
15:01:56.0501 0x00c0  WlanSvc - ok
15:01:56.0667 0x00c0  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
15:01:56.0758 0x00c0  wlidsvc - ok
15:01:56.0805 0x00c0  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
15:01:56.0807 0x00c0  WmiAcpi - ok
15:01:56.0899 0x00c0  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:01:56.0913 0x00c0  wmiApSrv - ok
15:01:56.0951 0x00c0  WMPNetworkSvc - ok
15:01:57.0023 0x00c0  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\Windows\system32\drivers\Wof.sys
15:01:57.0035 0x00c0  Wof - ok
15:01:57.0153 0x00c0  [ 65C65F3BD784158C456E721DDC9F0EA2, CBD3ADFD960456BD4B9557BF691E12D31153499549F5D3D08258BD62013952ED ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
15:01:57.0212 0x00c0  workfolderssvc - ok
15:01:57.0256 0x00c0  [ C1F564F324685C088ECAB1933576CF91, 022F0EC160352AB73AF7DA557D1A5798964231B82C556F22F4163E8B3E4088B2 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
15:01:57.0258 0x00c0  wpcfltr - ok
15:01:57.0292 0x00c0  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:01:57.0296 0x00c0  WPCSvc - ok
15:01:57.0330 0x00c0  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:01:57.0337 0x00c0  WPDBusEnum - ok
15:01:57.0394 0x00c0  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
15:01:57.0396 0x00c0  WpdUpFltr - ok
15:01:57.0408 0x00c0  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:01:57.0411 0x00c0  ws2ifsl - ok
15:01:57.0452 0x00c0  [ 515583507D3828E827FF6352C9ACCEFA, D0C42020FA787804DA26FE07D67C8880FE027A230BD9EB6A706862D89181F2BE ] wscsvc          C:\Windows\System32\wscsvc.dll
15:01:57.0458 0x00c0  wscsvc - ok
15:01:57.0519 0x00c0  [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
15:01:57.0522 0x00c0  WSDPrintDevice - ok
15:01:57.0530 0x00c0  WSearch - ok
15:01:57.0984 0x00c0  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\Windows\System32\WSService.dll
15:01:58.0230 0x00c0  WSService - ok
15:01:58.0656 0x00c0  [ 0263439206D96DFF76B8C0873E1D7269, 79359C5712F3ABD003427B39F70DE0C3DFEC81247D3C802F167B9599D7A9A702 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:01:58.0817 0x00c0  wuauserv - ok
15:01:58.0850 0x00c0  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:01:58.0854 0x00c0  WudfPf - ok
15:01:58.0876 0x00c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
15:01:58.0887 0x00c0  WUDFRd - ok
15:01:58.0906 0x00c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\Windows\System32\drivers\WUDFRd.sys
15:01:58.0911 0x00c0  WUDFSensorLP - ok
15:01:58.0971 0x00c0  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:01:58.0980 0x00c0  wudfsvc - ok
15:01:59.0009 0x00c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
15:01:59.0017 0x00c0  WUDFWpdFs - ok
15:01:59.0041 0x00c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
15:01:59.0050 0x00c0  WUDFWpdMtp - ok
15:01:59.0132 0x00c0  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:01:59.0153 0x00c0  WwanSvc - ok
15:01:59.0183 0x00c0  ================ Scan global ===============================
15:01:59.0230 0x00c0  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\Windows\system32\basesrv.dll
15:01:59.0303 0x00c0  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\Windows\system32\winsrv.dll
15:01:59.0362 0x00c0  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\Windows\system32\sxssrv.dll
15:01:59.0405 0x00c0  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\Windows\system32\services.exe
15:01:59.0426 0x00c0  [ Global ] - ok
15:01:59.0426 0x00c0  ================ Scan MBR ==================================
15:01:59.0441 0x00c0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
15:01:59.0460 0x00c0  \Device\Harddisk0\DR0 - ok
15:01:59.0460 0x00c0  ================ Scan VBR ==================================
15:01:59.0471 0x00c0  [ 82A680B7106767C2A55348BAF7E0C63F ] \Device\Harddisk0\DR0\Partition1
15:01:59.0481 0x00c0  \Device\Harddisk0\DR0\Partition1 - ok
15:01:59.0498 0x00c0  [ 118B0D118945AC9F4CCE01236144239C ] \Device\Harddisk0\DR0\Partition2
15:01:59.0525 0x00c0  \Device\Harddisk0\DR0\Partition2 - ok
15:01:59.0538 0x00c0  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
15:01:59.0540 0x00c0  \Device\Harddisk0\DR0\Partition3 - ok
15:01:59.0566 0x00c0  [ D9101151B38A7CD68C30CBAE3F1866DD ] \Device\Harddisk0\DR0\Partition4
15:01:59.0865 0x00c0  \Device\Harddisk0\DR0\Partition4 - ok
15:01:59.0922 0x00c0  [ 8754312954A6A14B0A3C2EFD156BA45F ] \Device\Harddisk0\DR0\Partition5
15:02:00.0037 0x00c0  \Device\Harddisk0\DR0\Partition5 - ok
15:02:00.0038 0x00c0  Waiting for KSN requests completion. In queue: 137
15:02:01.0039 0x00c0  Waiting for KSN requests completion. In queue: 137
15:02:02.0040 0x00c0  Waiting for KSN requests completion. In queue: 137
15:02:03.0041 0x00c0  Waiting for KSN requests completion. In queue: 137
15:02:04.0207 0x00c0  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.20.0.873 ), 0x41000 ( enabled : updated )
15:02:04.0254 0x00c0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated )
15:02:04.0258 0x00c0  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.20.0.873 ), 0x41010 ( enabled )
15:02:07.0047 0x00c0  ============================================================
15:02:07.0047 0x00c0  Scan finished
15:02:07.0047 0x00c0  ============================================================
15:02:07.0077 0x2320  Detected object count: 0
15:02:07.0077 0x2320  Actual detected object count: 0


#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,699 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:14 AM

Posted 16 April 2014 - 05:40 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/530685 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#6 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 16 April 2014 - 06:04 AM

1. I believe my laptop is infected with pilewire ( and i dont know how to remove it)
2. Im using 64-bit win 8.1 and installed with bitdefender internet security.
3. I do not have the original windows cd with me now.

Thanks and regards

Edited by abhamamin, 16 April 2014 - 06:06 AM.


#7 nasdaq

nasdaq

  • Malware Response Team
  • 39,531 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:14 AM

Posted 16 April 2014 - 12:51 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Download Malwarebytes' Anti-Malware from Here

Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).
  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • The scan may take some time to finish,so please be patient.
  • If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.

===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.

Let me know what problem persists.

#8 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 17 April 2014 - 02:14 AM

# AdwCleaner v3.023 - Report created 17/04/2014 at 15:08:22
# Updated 01/04/2014 by Xplode
# Operating System : Windows 8.1 Single Language  (64 bits)
# Username : user - V5-473PG
# Running from : C:\Users\user\Downloads\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\users\user\AppData\Roaming\Oxy
Folder Deleted : C:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxy
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKCU\Software\Escolade
Key Deleted : HKLM\Software\AVG SafeGuard toolbar
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17037
 
 
-\\ Google Chrome v34.0.1847.116
 
[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [1280 octets] - [17/04/2014 15:06:55]
AdwCleaner[S0].txt - [1183 octets] - [17/04/2014 15:08:22]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1243 octets] ##########


#9 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 17 April 2014 - 02:16 AM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 17/4/2014
Scan Time: 2:50:18 PM
Logfile: MBAM.txt
Administrator: Yes
 
Version: 2.00.1.1004
Malware Database: v2014.04.17.02
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: user
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 281901
Time Elapsed: 19 min, 38 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#10 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 17 April 2014 - 02:28 AM

Dear Nasdaq, 

 

I  have run both of the scans as per instructed. However, I still find the 'program' pilefile in my pc and I cant seem to remove it. 



#11 nasdaq

nasdaq

  • Malware Response Team
  • 39,531 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:14 AM

Posted 17 April 2014 - 09:07 AM

There are the bad files. I think also that some other entries must be removed.

C:\Windows\System32\Tasks\PileFile reminder
C:\Windows\System32\Tasks\PileFile logon


When you first ran the Farbar Recovery Scan tool an (Addition.txt) file was created.
Post post the content as there may be some entry in that log that must be removed.
===

Run this tool also.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

#12 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 18 April 2014 - 03:20 AM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2014 01
Ran by user at 2014-04-18 10:00:16
Running from F:\Installer
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
 
==================== Installed Programs ======================
 
Acer Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.03.3000 - Acer Incorporated)
Acer Docs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 2.04.2005 - Acer)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.04.3002.6 - Acer Incorporated)
Acer Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.04.3003.1 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.04.3004 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Acer Screen Grasp (HKLM-x32\...\{84443E5D-0767-438B-B1C8-6A52FAB2101B}) (Version: 1.01.3004 - Acer Incorporated)
Acer Touch Tools (HKLM\...\{BB1F8130-3CB3-4896-9D28-770DFFFDE59C}) (Version: 1.00.3013 - Acer Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.26.0.1106 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Game Channels (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 9.2.0.11 - WildTangent, Inc.)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.57.5189 - Gretech Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
HID Monitor (HKLM-x32\...\{7D00AB67-B37B-4CEF-9375-D8BE973AE7A6}) (Version: 1.1.5 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3277 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.1.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft Office 365 Home Premium - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4433.1508 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4433.1508 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Nero BackItUp (x32 Version: 12.5.11000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15900 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20900 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
NVIDIA Control Panel 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.902 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.14.17 (Version: 1.14.17 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4569.1508 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4569.1508 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4569.1508 - Microsoft Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
PileFile reminder (HKCU\...\{56837588-F559-40CF-91D9-D439D405FB28}) (Version:  - LADY'S WOOD 2013 LIMITED)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
QuickTime (HKLM-x32\...\{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}) (Version: 7.60.92.0 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21238 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.13 - Synaptics Incorporated)
The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.32 - WildTangent) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
VirtualDJ Acer Edition (HKLM-x32\...\{2477AE24-9FC8-48A6-8F7C-948E9D95FFF5}) (Version: 7.4 - Atomix Productions)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WD Drive Utilities (HKLM-x32\...\{7431ED5D-9247-4F17-91C9-702D9B36FAC4}) (Version: 1.0.7.3 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{63911503-7EA4-4685-B2FD-D391EF622FB9}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{90C3D9C7-2F83-4399-8E28-A00228CFFDF8}) (Version: 1.0.7.3 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{34C6812E-E231-4B13-9DAC-21E06ECA864A}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{1ec9e03a-452b-48fb-8e1b-27ee0477985f}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
 
==================== Restore Points  =========================
 
13-04-2014 07:19:30 Installed Java 7 Update 51
17-04-2014 07:14:37 Revo Uninstaller's restore point - PileFile reminder
 
==================== Hosts content: ==========================
 
2013-08-22 21:25 - 2013-08-22 21:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {08D1864E-66CE-4220-8601-E48239930C30} - System32\Tasks\Screen Grasp GestureDetection => C:\Program Files (x86)\Acer\Screen Grasp\GestureDetection.exe [2013-08-27] (Acer Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0E2BBE9C-BF49-4A13-A23A-9AA9B89C9094} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-06] (Acer Incorporated)
Task: {14046C5F-765E-4AC7-B8D8-641D35E9D778} - System32\Tasks\HIDMonitor => C:\Program Files\Acer Incorporated\HID Monitor\HIDMonitor.exe
Task: {1E203347-FBCF-456F-B9CD-D924BBD99CB8} - System32\Tasks\Microsoft Office 15 Sync Maintenance for V5-473PG-user V5-473PG => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-03-20] (Microsoft Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {348B8DC3-17F3-4FCE-A5A3-CCE47566CDD7} - System32\Tasks\Prelauncher => C:\Program Files (x86)\Acer\Screen Grasp\InputTask.exe [2013-07-02] (Acer Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {39F18A66-E535-497A-8389-2543D38ABA78} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2014-02-13] (Acer Incorporated)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4686E6B5-E53A-40ED-933A-03DE51D92A95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-15] (Google Inc.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {52D90B4C-DA5A-42C9-961B-777EA3AA1D64} - System32\Tasks\Dolby Selector => C:\Program Files\Dolby Digital Plus\ddp.exe [2013-07-09] (Dolby Laboratories Inc.)
Task: {5F87DAFF-D3AC-4336-8DD7-1E7ABF47389C} - System32\Tasks\Bitdefender Autoscan => C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [2013-06-19] (Bitdefender)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {7467B944-7627-4D5E-AA52-2ADE690E7FED} - \Oxy ATTENTION ====> No Task File
Task: {74E13520-D828-4CAB-869A-0D9E7C7883FF} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-28] (Synaptics Incorporated)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7BF79EEF-FF51-47B3-A8B3-6E5BFDE1169F} - System32\Tasks\PileFile logon => C:\Users\user\AppData\Local\Temp\Super AldisDownload_C42E\Super_Aldis_Downloader.exe <==== ATTENTION
Task: {84E9B17F-4089-472F-AB84-11DEEB3ECC26} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-11] (Acer Incorporated)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8C427B14-ADB0-4407-B2A1-B36E5FE7D725} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {91B39985-C833-46F8-8463-034C0A38B59F} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {93CF9EEA-6C0E-43AC-9DBF-3F8CE7F9BF61} - System32\Tasks\PileFile reminder => C:\Users\user\AppData\Local\Temp\Super AldisDownload_C42E\Super_Aldis_Downloader.exe <==== ATTENTION
Task: {979DDA4E-5ED7-405C-B1A7-5FFEE916B3D5} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-03-20] (Microsoft Corporation)
Task: {9D87C3C7-B531-4A3D-B9EA-14040BE3BBC7} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-09] ()
Task: {9DD9A6A1-5DBC-4159-8E57-134ABAFD2A4E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-04-11] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {B28F924D-B459-4CB3-96D6-E8EDF94C8A9E} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {B6F480F3-F578-46FF-B14B-3C1823C2920F} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-03] (Acer Incorporate)
Task: {C039139A-49A3-40BF-A0F3-987D250F36E7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C7F01BBF-B968-4DDE-B27E-722D1D2564A4} - System32\Tasks\prelauncher_First => C:\Program Files (x86)\Acer\Screen Grasp\InputTask.exe [2013-07-02] (Acer Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EB68E557-4E2A-457E-AECD-8C1A04FFF643} - System32\Tasks\Touch Tools Launcher => C:\Program Files\Acer\Acer Touch Tools\TouchToolsLauncher.exe [2013-08-24] (TODO: <Company name>)
Task: {EBF2DA35-6A35-44A2-A72D-827DB787380C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-15] (Google Inc.)
Task: {F39B261C-74A5-47A3-8269-499447B0B432} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {FB37A2DD-A76F-4CAC-99CA-DEFE3F871AC4} - System32\Tasks\Launch Screen Grasp_First => C:\Program Files (x86)\Acer\Screen Grasp\Launch Screen Grasp.exe [2013-08-13] (Acer Incorporated)
Task: {FE88A47D-A83D-44E4-AD6E-9A3A4CAF06D1} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {FF230BDC-DFB4-4107-8144-AEDBBFDDFDED} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2013-12-17] (Microsoft Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-03-20 09:15 - 2013-06-19 11:45 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2014-03-20 09:15 - 2014-02-24 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2014-03-20 09:15 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2014-03-20 09:15 - 2014-02-24 14:34 - 00004608 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-03-26 20:34 - 2014-03-26 20:34 - 00771328 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00038_003\ashttpbr.mdl
2014-03-26 20:34 - 2014-03-26 20:34 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00038_003\ashttpdsp.mdl
2014-03-26 20:34 - 2014-03-26 20:34 - 02593416 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00038_003\ashttpph.mdl
2014-03-26 20:34 - 2014-03-26 20:34 - 01317216 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00038_003\ashttprbl.mdl
2014-03-26 21:19 - 2013-10-31 17:13 - 00102568 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-03-17 02:40 - 2014-01-02 18:41 - 00621736 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll
2013-11-08 03:27 - 2013-08-30 11:03 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2012-08-24 06:02 - 2012-08-24 06:02 - 00030640 ____N () C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
2014-03-17 02:42 - 2014-03-20 02:15 - 08878248 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-09-07 17:48 - 2013-09-07 17:48 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-07 17:45 - 2013-09-07 17:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-07 17:52 - 2013-09-07 17:52 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2013-07-09 10:53 - 2013-07-09 10:53 - 00052096 ____N () C:\Program Files\Dolby Digital Plus\Dolby.DDP.Controls_Desktop.dll
2013-11-08 04:13 - 2013-07-31 10:11 - 00110152 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-08 03:24 - 2013-09-04 07:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2013-01-05 08:19 - 2013-01-05 08:19 - 00035336 _____ () C:\Program Files (x86)\Acer Incorporated\HID Monitor\ElanTPAPI.dll
2014-04-03 21:22 - 2014-04-03 21:22 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2014-02-13 15:12 - 2014-02-13 15:12 - 00279296 _____ () C:\Program Files (x86)\Acer\Acer Portal\libcurl.dll
2014-02-13 15:12 - 2014-02-13 15:12 - 00048384 _____ () C:\Program Files (x86)\Acer\Acer Portal\LocalDevice.dll
2014-03-17 02:40 - 2014-03-20 02:09 - 00316584 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: C:\Users\user\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\user\Downloads\adwcleaner.exe:BDU
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
 
==================== Disabled items from MSCONFIG ==============
 
 
==================== Faulty Device Manager Devices =============
 
Name: Bluetooth USB Module
Description: Bluetooth USB Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (04/17/2014 09:54:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14531
 
Error: (04/17/2014 09:54:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14531
 
Error: (04/17/2014 09:54:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/17/2014 06:16:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 956672
 
Error: (04/17/2014 06:16:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 956672
 
Error: (04/17/2014 06:16:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/17/2014 06:00:26 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14844
 
Error: (04/17/2014 06:00:26 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14844
 
Error: (04/17/2014 06:00:26 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/17/2014 05:04:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1492657
 
 
System errors:
=============
Error: (04/17/2014 09:26:13 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 
%%1243
 
Error: (04/17/2014 09:25:49 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:07:01 PM on ‎17/‎4/‎2014 was unexpected.
 
Error: (04/17/2014 03:10:34 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 
%%1243
 
Error: (04/13/2014 04:28:21 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 
%%1243
 
Error: (04/13/2014 04:20:09 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 
%%1243
 
Error: (04/13/2014 04:19:39 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 4:10:14 PM on ‎13/‎4/‎2014 was unexpected.
 
Error: (04/13/2014 04:10:50 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 
%%1243
 
Error: (04/13/2014 08:21:16 AM) (Source: DCOM) (User: V5-473PG)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 
Error: (04/13/2014 08:21:16 AM) (Source: DCOM) (User: V5-473PG)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 
Error: (04/13/2014 05:21:14 AM) (Source: DCOM) (User: V5-473PG)
Description: {EA022610-0748-4C24-B229-6C507EBDFDBB}
 
 
Microsoft Office Sessions:
=========================
Error: (04/17/2014 09:54:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14531
 
Error: (04/17/2014 09:54:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14531
 
Error: (04/17/2014 09:54:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/17/2014 06:16:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 956672
 
Error: (04/17/2014 06:16:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 956672
 
Error: (04/17/2014 06:16:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/17/2014 06:00:26 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14844
 
Error: (04/17/2014 06:00:26 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14844
 
Error: (04/17/2014 06:00:26 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/17/2014 05:04:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1492657
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 37%
Total physical RAM: 3976.27 MB
Available physical RAM: 2479.6 MB
Total Pagefile: 4680.27 MB
Available Pagefile: 2964.42 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB
 
==================== Drives ================================
 
Drive c: (Acer) (Fixed) (Total:447.95 GB) (Free:395.67 GB) NTFS
Drive d: (WD Unlocker) (CDROM) (Total:0.01 GB) (Free:0 GB) UDF
Drive f: (My Passport_MAAB) (Fixed) (Total:931.48 GB) (Free:535.96 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: E51DB923)
 
Partition: GPT Partition Type.
 
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931 GB) (Disk ID: F707829A)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================


#13 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 18 April 2014 - 03:23 AM

 Results of screen317's Security Check version 0.99.82  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
 Windows Firewall Disabled!  
Bitdefender Antivirus   
Windows Defender        
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Java 7 Update 51  
 Java version out of Date! 
 Adobe Reader XI  
 Google Chrome 33.0.1750.154  
 Google Chrome 34.0.1847.116  
````````Process Check: objlist.exe by Laurent````````  
 Bitdefender Bitdefender bdagent.exe  
 Bitdefender Bitdefender pmbxag.exe  
 Bitdefender Bitdefender antispam32 bdapppassmgr.exe 
 Bitdefender Bitdefender Antispam32 pmbxcrnmh.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log`````````````````````` 


#14 nasdaq

nasdaq

  • Malware Response Team
  • 39,531 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:14 AM

Posted 18 April 2014 - 07:51 AM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start

PileFile reminder (HKCU\...\{56837588-F559-40CF-91D9-D439D405FB28}) (Version:  - LADY'S WOOD 2013 LIMITED)
Task: {7BF79EEF-FF51-47B3-A8B3-6E5BFDE1169F} - System32\Tasks\PileFile logon => C:\Users\user\AppData\Local\Temp\Super AldisDownload_C42E\Super_Aldis_Downloader.exe <==== ATTENTION
Task: {93CF9EEA-6C0E-43AC-9DBF-3F8CE7F9BF61} - System32\Tasks\PileFile reminder => C:\Users\user\AppData\Local\Temp\Super AldisDownload_C42E\Super_Aldis_Downloader.exe <==== ATTENTION
C:\Windows\System32\Tasks\PileFile reminder
C:\Windows\System32\Tasks\PileFile logon

end
Save the files as fixlist.txt in to the same folder as FRST
Run FRST and click Fix only once and wait
The tool will create a log (Fixlog.txt) please post it to your reply.

====


Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.
Latest version is Java JRE 7u55.

You can manually check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

Be careful not to install malware posing as Java update!
Important read this blog.
http://blog.trendmicro.com/trendlabs-security-intelligence/malware-poses-as-an-update-for-java-0-day-fix/

Quoted from the page.
"In light of the recent events surrounding Java, users must seriously consider their use of Java. Do they really need it? If yes, make sure that users follow the steps we recommended and get the security update directly from the official oracle website." at:
http://www.oracle.com/technetwork/java/javase/downloads/index.html

How to disable Java in your browsers
http://www.infoworld.com/t/web-browsers/how-disable-java-in-your-browsers-210882


If present remove the old version(s) of Java using the Add/Remove Programs applet.

Java 7 Update 51

===

Let me know if the problem persists.

Edited by nasdaq, 18 April 2014 - 07:52 AM.


#15 abhamamin

abhamamin
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:14 PM

Posted 19 April 2014 - 10:30 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 19-04-2014
Ran by user at 2014-04-20 11:29:05 Run:1
Running from F:\Installer
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
 
PileFile reminder (HKCU\...\{56837588-F559-40CF-91D9-D439D405FB28}) (Version:  - LADY'S WOOD 2013 LIMITED)
Task: {7BF79EEF-FF51-47B3-A8B3-6E5BFDE1169F} - System32\Tasks\PileFile logon => C:\Users\user\AppData\Local\Temp\Super AldisDownload_C42E\Super_Aldis_Downloader.exe <==== ATTENTION
Task: {93CF9EEA-6C0E-43AC-9DBF-3F8CE7F9BF61} - System32\Tasks\PileFile reminder => C:\Users\user\AppData\Local\Temp\Super AldisDownload_C42E\Super_Aldis_Downloader.exe <==== ATTENTION
C:\Windows\System32\Tasks\PileFile reminder
C:\Windows\System32\Tasks\PileFile logon
 
end
*****************
 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7BF79EEF-FF51-47B3-A8B3-6E5BFDE1169F} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BF79EEF-FF51-47B3-A8B3-6E5BFDE1169F} => Key deleted successfully.
C:\Windows\System32\Tasks\PileFile logon => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PileFile logon => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{93CF9EEA-6C0E-43AC-9DBF-3F8CE7F9BF61} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{93CF9EEA-6C0E-43AC-9DBF-3F8CE7F9BF61} => Key deleted successfully.
C:\Windows\System32\Tasks\PileFile reminder => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PileFile reminder => Key deleted successfully.
"C:\Windows\System32\Tasks\PileFile reminder" => File/Directory not found.
"C:\Windows\System32\Tasks\PileFile logon" => File/Directory not found.
 
==== End of Fixlog ====





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users