Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

G-Buster Spyware present


  • This topic is locked This topic is locked
11 replies to this topic

#1 tdeeez

tdeeez

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:19 AM

Posted 06 July 2014 - 03:51 PM

Hey guys,

I just reformatted with a clean install and received these popups upon boot this morning. The only additional program I downloaded recently was 7zip (or so I thought). I have removed the 7zip file, and have done virus removal(s) and the popups are still present upon boot. There are no extra programs in my add/remove panel either, so I can't seem to dig deep enough to find the root of this problem. I have viewed previous threads, so hopefully I am doing this process correctly. I appreciate any help!

Tanner
_____________________________________________________________Log begins below

 

 

============== Running Processes ===============
.
T:\Windows\system32\lsm.exe
T:\Windows\system32\svchost.exe -k DcomLaunch
C:\Bitdefender\Bitdefender\vsserv.exe
T:\Windows\system32\nvvsvc.exe
T:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
T:\Windows\system32\svchost.exe -k RPCSS
T:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
T:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
T:\Windows\system32\svchost.exe -k LocalService
T:\Windows\system32\svchost.exe -k netsvcs
T:\Windows\system32\svchost.exe -k GPSvcGroup
T:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
T:\Windows\system32\svchost.exe -k NetworkService
T:\Windows\system32\nvvsvc.exe
T:\Windows\system32\WLANExt.exe
T:\Windows\system32\Dwm.exe
T:\Windows\Explorer.EXE
T:\Windows\system32\taskhost.exe
T:\Windows\System32\spoolsv.exe
T:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
T:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Bitdefender\Bitdefender\bdagent.exe
T:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
T:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
T:\Windows\system32\taskeng.exe
C:\Bitdefender\Bitdefender\pmbxag.exe
C:\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
C:\RivaTuner Statistics Server\RTSS.exe
T:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
C:\Command Center\MSIControlService.exe
T:\Windows\winfaith1.exe
C:\Live Update\MSI_LiveUpdate_Service.exe
T:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
T:\Windows\SysWOW64\PnkBstrA.exe
T:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
T:\Windows\winfaith3.exe
C:\Bitdefender\Bitdefender\updatesrv.exe
T:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
T:\Program Files\NVIDIA Corporation\Display\nvtray.exe
T:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\RivaTuner Statistics Server\EncoderServer.exe
C:\RivaTuner Statistics Server\RTSSHooksLoader64.exe
T:\Windows\system32\SearchIndexer.exe
T:\Windows\system32\SearchProtocolHost.exe
T:\Program Files\Windows Media Player\wmpnetwk.exe
T:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
T:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
T:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
T:\Windows\system32\sppsvc.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Windows\system32\wbem\wmiprvse.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Windows\system32\wbem\wmiprvse.exe
T:\Windows\system32\SearchFilterHost.exe
T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
T:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe,
BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender\Antispam32\pmbxie.dll
uRun: [Bitdefender Wallet Agent] C:\Bitdefender\Bitdefender\pmbxag.exe
uRun: [Bitdefender Wallet] C:\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard
uRun: [Bitdefender Wallet Application Agent] C:\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
mRun: [Calculator] T:\Windows\winfaith1.exe
mRun: [Calculator2] T:\Windows\winfaith1.exe
mRun: [Notepad] T:\Windows\winfaith3.exe
mRun: [Notepad2] T:\Windows\winfaith3.exe
mRun: [USB3MON] "T:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
dRun: [Bitdefender Wallet Agent] C:\Bitdefender\Bitdefender\pmbxag.exe
dRun: [Bitdefender Wallet] C:\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard
dRun: [Bitdefender Wallet Application Agent] C:\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
StartupFolder: T:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\NETGEA~1.LNK - T:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{64D16E83-5752-447A-9E1B-F4EEABF1B8D8} : DHCPNameServer = 192.168.1.1
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = about:blank
x64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender\pmbxie.dll
x64-Run: [ISCT Tray] T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
x64-Run: [Bdagent] "C:\Bitdefender\Bitdefender\bdagent.exe"
x64-Run: [RTHDVCPL] "T:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [NvBackend] "T:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] T:\Windows\System32\rundll32.exe T:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 avc3;avc3;T:\Windows\System32\drivers\avc3.sys [2014-7-3 893440]
R0 gzflt;gzflt;T:\Windows\System32\drivers\gzflt.sys [2014-7-3 150256]
R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;T:\Windows\System32\drivers\iusb3hcs.sys [2014-7-3 20464]
R0 SCMNdisP;General NDIS Protocol Driver;T:\Windows\System32\drivers\SCMNdisP.sys [2014-7-3 25056]
R1 bdfwfpf;bdfwfpf;T:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2014-7-3 103504]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;T:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;T:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-8-27 747520]
R2 ISCTAgent;Intel® Smart Connect Technology Agent;T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2014-4-3 209712]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;T:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2014-7-3 169432]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service;C:\Live Update\MSI_LiveUpdate_Service.exe [2014-7-3 83952]
R2 MSICTL_CC;MSICTL_CC;C:\Command Center\MSIControlService.exe [2014-7-3 1990144]
R2 NvNetworkService;NVIDIA Network Service;T:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-7-3 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service;T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-7-3 21055432]
R2 Qualcomm Atheros Killer Service V2;Qualcomm Atheros Killer Service V2;T:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [2014-4-17 344576]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;T:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-7-3 411936]
R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Bitdefender\Bitdefender\updatesrv.exe [2014-7-3 67320]
R2 WSWNDA3100v2;WSWNDA3100v2;T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [2014-7-3 303360]
R3 avchv;avchv Function Driver;T:\Windows\System32\drivers\avchv.sys [2014-7-3 261056]
R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;T:\Windows\System32\drivers\bcmwlhigh664.sys [2014-7-3 1256192]
R3 INETMON;INETMON;T:\Windows\System32\drivers\INETMON.sys [2014-7-3 25800]
R3 ISCT;Intel® Smart Connect Technology Device Driver;T:\Windows\System32\drivers\ISCTD.sys [2014-2-3 44744]
R3 iusb3hub;Intel® USB 3.0 Hub Driver;T:\Windows\System32\drivers\iusb3hub.sys [2014-7-3 370672]
R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;T:\Windows\System32\drivers\iusb3xhc.sys [2014-7-3 791024]
R3 MBfilt;MBfilt;T:\Windows\System32\drivers\MBfilt64.sys [2014-7-3 32344]
R3 NvStreamKms;NvStreamKms;T:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-7-3 20256]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);T:\Windows\System32\drivers\nvvad64v.sys [2014-7-3 40392]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;T:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 globalUpdate;globalUpdate Update Service (globalUpdate);T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-7-4 68608]
S3 AcpiCtlDrv;AcpiCtlDrv;T:\Windows\System32\drivers\AcpiCtlDrv.sys [2012-7-17 25880]
S3 avckf;avckf;T:\Windows\System32\drivers\avckf.sys [2014-7-3 635392]
S3 BDSandBox;BDSandBox;T:\Windows\System32\drivers\bdsandbox.sys [2014-7-3 82824]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem);T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-7-4 68608]
S3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;T:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [2014-7-3 171480]
S3 ICCWDT;Intel® Watchdog Timer Driver (Intel® WDT);T:\Windows\System32\drivers\ICCWDT.sys [2013-8-13 27608]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;T:\Windows\System32\ieetwcollector.exe [2014-7-4 111616]
S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface;T:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-8-27 828376]
S3 MSIBIOSData_CC;MSIBIOSData_CC;C:\Command Center\BIOSData\MSIBIOSDataService.exe [2014-7-3 2100736]
S3 MSIClock_CC;MSIClock_CC;C:\Command Center\ClockGen\MSIClockService.exe [2014-7-3 4026368]
S3 MSICOMM_CC;MSICOMM_CC;C:\Command Center\MSICommService.exe [2014-7-3 2118144]
S3 MSICPU_CC;MSICPU_CC;C:\Command Center\CPU\MSICPUService.exe [2014-7-3 4157440]
S3 MSIDDR_CC;MSIDDR_CC;C:\Command Center\DDR\MSIDDRService.exe [2014-7-3 2250240]
S3 MSISMB_CC;MSISMB_CC;C:\Command Center\SMBus\MSISMBService.exe [2014-7-3 2063360]
S3 MSISuperIO_CC;MSISuperIO_CC;C:\Command Center\SuperIO\MSISuperIOService.exe [2014-7-3 549888]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4;C:\Live Update\NTIOLib_X64.sys [2014-7-3 14136]
S3 NTIOLib_MSIClock_CC;NTIOLib_MSIClock_CC;C:\Command Center\ClockGen\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSICOMM_CC;NTIOLib_MSICOMM_CC;C:\Command Center\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSICPU_CC;NTIOLib_MSICPU_CC;C:\Command Center\CPU\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSIDDR_CC;NTIOLib_MSIDDR_CC;C:\Command Center\DDR\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSIFrequency_CC;NTIOLib_MSIFrequency_CC;C:\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSIRatio_CC;NTIOLib_MSIRatio_CC;C:\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC;C:\Command Center\SMBus\NTIOLib_X64.sys [2014-7-3 13368]
S3 NTIOLib_MSISuperIO_CC;NTIOLib_MSISuperIO_CC;C:\Command Center\SuperIO\NTIOLib_X64.sys [2014-7-3 13368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;T:\Windows\System32\drivers\rdpvideominiport.sys [2014-7-4 19456]
S3 RTCore64;RTCore64;C:\MSI Afterburner\RTCore64.sys [2014-6-10 13480]
S3 rzendpt;rzendpt;T:\Windows\System32\drivers\rzendpt.sys [2014-5-19 39080]
S3 rzudd;Razer Mouse Driver;T:\Windows\System32\drivers\rzudd.sys [2014-5-19 155816]
S3 Survarium Update Service;Survarium Update Service;C:\Survarium\game\binaries\x86\survarium_service.exe [2014-7-4 76408]
S3 TsUsbFlt;TsUsbFlt;T:\Windows\System32\drivers\TsUsbFlt.sys [2014-7-4 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;T:\Windows\System32\drivers\TsUsbGD.sys [2014-7-4 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;T:\Windows\System32\Wat\WatAdminSvc.exe [2014-7-4 1255736]
.
=============== Created Last 30 ================
.
2014-07-06 20:15:17 1424384 ----a-w- T:\Windows\System32\WindowsCodecs.dll
2014-07-06 20:15:17 1230336 ----a-w- T:\Windows\SysWow64\WindowsCodecs.dll
2014-07-06 20:15:11 6574592 ----a-w- T:\Windows\System32\mstscax.dll
2014-07-06 20:15:11 5694464 ----a-w- T:\Windows\SysWow64\mstscax.dll
2014-07-06 20:15:00 465920 ----a-w- T:\Windows\System32\WMPhoto.dll
2014-07-06 20:15:00 417792 ----a-w- T:\Windows\SysWow64\WMPhoto.dll
2014-07-06 17:32:24 14643200 ----a-w- T:\Windows\LOTR3.src
2014-07-06 17:31:55 13515232 ------w- T:\Windows\winfaith3.exe
2014-07-06 17:31:54 14643200 ----a-w- T:\Windows\LOTR3.exe
2014-07-06 17:31:54 14643200 ----a-w- T:\Windows\LOTR3.ecl
2014-07-06 17:31:19 10651984 ------w- T:\Windows\winfaith1.exe
2014-07-05 16:28:16 -------- d-----w- T:\Users\TD\AppData\Local\Intel_Corporation
2014-07-05 05:32:03 291296 ----a-w- T:\Windows\SysWow64\PnkBstrB.xtr
2014-07-05 05:00:44 -------- d-----w- T:\Users\TD\AppData\Local\DayZ
2014-07-05 04:34:13 -------- d--h--w- T:\Program Files (x86)\Common Files\EAInstaller
2014-07-05 03:41:59 -------- d-----w- T:\Users\TD\AppData\Local\CrashRpt
2014-07-05 03:37:54 -------- d-----w- T:\ProgramData\GFACE
2014-07-05 03:37:53 -------- d-----w- T:\Users\TD\AppData\Local\wf-launcher
2014-07-05 02:59:53 -------- d-----w- T:\Users\TD\AppData\Local\PunkBuster
2014-07-05 02:57:59 -------- d-----w- T:\Users\TD\AppData\Local\ESN
2014-07-04 22:19:59 -------- d-----w- T:\Program Files (x86)\Battlelog Web Plugins
2014-07-04 22:19:39 76888 ----a-w- T:\Windows\SysWow64\PnkBstrA.exe
2014-07-04 22:19:39 291296 ----a-w- T:\Windows\SysWow64\PnkBstrB.exe
2014-07-04 22:19:39 2565120 ----a-w- T:\Windows\System32\d3d10warp.dll
2014-07-04 22:19:39 214392 ----a-w- T:\Windows\SysWow64\PnkBstrB.ex0
2014-07-04 22:19:39 1987584 ----a-w- T:\Windows\SysWow64\d3d10warp.dll
2014-07-04 22:19:38 3928064 ----a-w- T:\Windows\System32\d2d1.dll
2014-07-04 22:19:38 3419136 ----a-w- T:\Windows\SysWow64\d2d1.dll
2014-07-04 22:11:02 3178496 ----a-w- T:\Windows\System32\rdpcorets.dll
2014-07-04 22:11:02 16384 ----a-w- T:\Windows\System32\RdpGroupPolicyExtension.dll
2014-07-04 21:48:32 940032 ----a-w- T:\Windows\System32\MsSpellCheckingFacility.exe
2014-07-04 21:26:04 -------- d-----w- T:\Users\TD\AppData\Local\Origin
2014-07-04 21:25:41 -------- d-----w- T:\ProgramData\Electronic Arts
2014-07-04 21:13:13 -------- d-----w- T:\Users\TD\AppData\Local\Razer
2014-07-04 20:44:31 -------- d-----w- T:\Windows\System32\MRT
2014-07-04 20:43:47 167424 ----a-w- T:\Program Files\Windows Media Player\wmplayer.exe
2014-07-04 20:43:47 164864 ----a-w- T:\Program Files (x86)\Windows Media Player\wmplayer.exe
2014-07-04 20:43:47 12625920 ----a-w- T:\Windows\System32\wmploc.DLL
2014-07-04 20:43:46 12625408 ----a-w- T:\Windows\SysWow64\wmploc.DLL
2014-07-04 20:20:33 9728 ---ha-w- T:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-07-04 20:05:57 30208 ----a-w- T:\Windows\System32\drivers\TsUsbGD.sys
2014-07-04 20:05:57 243200 ----a-w- T:\Windows\System32\rdpudd.dll
2014-07-04 20:05:57 228864 ----a-w- T:\Windows\System32\rdpendp_winip.dll
2014-07-04 20:05:57 19456 ----a-w- T:\Windows\System32\drivers\rdpvideominiport.sys
2014-07-04 20:05:57 192000 ----a-w- T:\Windows\SysWow64\rdpendp_winip.dll
2014-07-04 19:58:01 87040 ----a-w- T:\Windows\System32\drivers\WUDFPf.sys
2014-07-04 19:58:01 84992 ----a-w- T:\Windows\System32\WUDFSvc.dll
2014-07-04 19:58:01 744448 ----a-w- T:\Windows\System32\WUDFx.dll
2014-07-04 19:58:01 45056 ----a-w- T:\Windows\System32\WUDFCoinstaller.dll
2014-07-04 19:58:01 229888 ----a-w- T:\Windows\System32\WUDFHost.exe
2014-07-04 19:58:01 198656 ----a-w- T:\Windows\System32\drivers\WUDFRd.sys
2014-07-04 19:58:01 194048 ----a-w- T:\Windows\System32\WUDFPlatform.dll
2014-07-04 19:54:10 -------- d-----w- T:\Windows\pss
2014-07-04 19:49:49 1684928 ----a-w- T:\Windows\System32\drivers\ntfs.sys
2014-07-04 19:47:58 497152 ----a-w- T:\Windows\System32\drivers\afd.sys
2014-07-04 19:44:16 -------- d-----w- T:\Windows\SysWow64\Wat
2014-07-04 19:43:54 202752 ----a-w- T:\Windows\System32\scrrun.dll
2014-07-04 19:42:40 5120 ----a-w- T:\Windows\SysWow64\wmi.dll
2014-07-04 19:42:40 5120 ----a-w- T:\Windows\System32\wmi.dll
2014-07-04 19:42:40 23408 ----a-w- T:\Windows\System32\drivers\fs_rec.sys
2014-07-04 19:37:55 -------- d-----w- T:\Users\TD\AppData\Local\globalUpdate
2014-07-04 19:37:55 -------- d-----w- T:\Program Files (x86)\globalUpdate
2014-07-04 05:13:13 -------- d-----w- T:\Windows\Panther
2014-07-04 05:11:20 -------- d-----w- T:\Windows.old
2014-07-04 05:06:26 76944 ----a-w- T:\Windows\System32\drivers\bdvedisk.sys
2014-07-04 04:44:05 609056 ----a-w- T:\Windows\SysWow64\nvStreaming.exe
2014-07-04 04:34:15 933208 ----a-w- T:\Windows\System32\nvvsvc.exe
2014-07-04 04:34:15 6783960 ----a-w- T:\Windows\System32\nvcpl.dll
2014-07-04 04:34:15 62808 ----a-w- T:\Windows\System32\nvshext.dll
2014-07-04 04:34:15 387528 ----a-w- T:\Windows\System32\nvmctray.dll
2014-07-04 04:34:15 3802247 ----a-w- T:\Windows\System32\nvcoproc.bin
2014-07-04 04:34:15 3523360 ----a-w- T:\Windows\System32\nvsvc64.dll
2014-07-04 04:34:11 75040 ----a-w- T:\Windows\System32\OpenCL.dll
2014-07-04 04:34:11 62920 ----a-w- T:\Windows\SysWow64\OpenCL.dll
2014-07-04 04:33:35 965312 ----a-w- T:\Windows\System32\nvumdshimx.dll
2014-07-04 04:33:35 3196304 ----a-w- T:\Windows\System32\nvapi64.dll
2014-07-04 04:33:35 31520 ----a-w- T:\Windows\System32\nvhdap64.dll
2014-07-04 04:33:35 2814120 ----a-w- T:\Windows\SysWow64\nvapi.dll
2014-07-04 04:33:35 197408 ----a-w- T:\Windows\System32\drivers\nvhda64v.sys
2014-07-04 04:33:35 1889112 ----a-w- T:\Windows\System32\nvdispco6433788.dll
2014-07-04 04:33:35 1541576 ----a-w- T:\Windows\System32\nvdispgenco6433788.dll
2014-07-04 04:33:35 1515296 ----a-w- T:\Windows\System32\nvhdagenco6420103.dll
2014-07-04 04:33:35 14497528 -c--a-w- T:\Windows\SysWow64\nvd3dum.dll
2014-07-04 04:31:28 -------- d-----w- T:\Users\TD\AppData\Local\NVIDIA Corporation
2014-07-04 04:31:28 -------- d-----w- T:\Users\TD\AppData\Local\NVIDIA
2014-07-04 04:31:27 1715176 ----a-w- T:\Windows\System32\nvspbridge64.dll
2014-07-04 04:31:27 1291232 ----a-w- T:\Windows\SysWow64\nvspbridge.dll
2014-07-04 04:31:27 1279480 ----a-w- T:\Windows\System32\nvspcap64.dll
2014-07-04 04:31:27 1122312 ----a-w- T:\Windows\SysWow64\nvspcap.dll
2014-07-04 04:31:27 -------- d-----w- T:\ProgramData\NVIDIA Corporation
2014-07-04 04:31:24 -------- d-----w- T:\Program Files (x86)\NVIDIA Corporation
2014-07-04 04:31:23 40392 ----a-w- T:\Windows\System32\drivers\nvvad64v.sys
2014-07-04 04:31:23 37320 ----a-w- T:\Windows\System32\nvaudcap64v.dll
2014-07-04 04:31:23 34760 ----a-w- T:\Windows\SysWow64\nvaudcap32v.dll
2014-07-04 04:31:18 -------- d-----w- T:\Program Files\NVIDIA Corporation
2014-07-04 04:06:38 -------- d-----w- T:\ProgramData\Qualcomm
2014-07-04 03:56:26 -------- d-----w- T:\Users\TD\AppData\Roaming\Origin
2014-07-04 03:55:45 -------- d-----w- T:\ProgramData\Origin
2014-07-04 03:53:27 -------- d-----w- T:\Program Files (x86)\Common Files\Steam
2014-07-04 03:49:01 757760 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2014-07-04 03:49:01 69715 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2014-07-04 03:49:01 65024 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
2014-07-04 03:49:01 5632 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2014-07-04 03:49:01 32768 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2014-07-04 03:49:01 274432 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2014-07-04 03:49:01 204800 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2014-07-04 03:49:00 331908 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2014-07-04 03:49:00 200836 ----a-w- T:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2014-07-04 03:48:31 25800 ----a-w- T:\Windows\System32\drivers\INETMON.sys
2014-07-04 03:43:39 -------- d-----w- T:\ProgramData\Downloaded Installations
2014-07-04 03:41:17 -------- d-----w- T:\uninstall
2014-07-04 03:41:13 -------- d-----w- T:\Program Files\Microsoft Synchronization Services
2014-07-04 03:41:13 -------- d-----w- T:\Program Files\Microsoft SQL Server Compact Edition
2014-07-04 03:41:12 -------- d-----w- T:\Program Files (x86)\Microsoft Synchronization Services
2014-07-04 03:41:12 -------- d-----w- T:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-04 03:41:01 -------- d-----w- T:\ProgramData\Package Cache
2014-07-04 03:39:12 9728 ----a-w- T:\Windows\System32\Wdfres.dll
2014-07-04 03:39:12 54376 ----a-w- T:\Windows\System32\drivers\WdfLdr.sys
2014-07-04 03:39:12 2560 ----a-w- T:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2014-07-04 03:39:02 99288 ----a-w- T:\Windows\System32\drivers\TeeDriverx64.sys
2014-07-04 03:39:02 1795952 ----a-w- T:\Windows\System32\WdfCoInstaller01011.dll
2014-07-04 03:38:34 427872 ----a-w- T:\ProgramData\1404445062.bdinstall.bin
2014-07-04 03:38:20 3271472 ---ha-w- T:\bdr-bz01
2014-07-04 03:38:13 389240 ----a-w- T:\Windows\System32\drivers\trufos.sys
2014-07-04 03:38:13 150256 ----a-w- T:\Windows\System32\drivers\gzflt.sys
2014-07-04 03:33:50 -------- d-----w- T:\Program Files (x86)\Realtek
2014-07-04 03:28:30 -------- d-----w- T:\Windows\SysWow64\directx
2014-07-04 03:28:18 -------- d-----w- T:\Users\TD\AppData\Local\Programs
2014-07-04 03:26:02 791024 ----a-w- T:\Windows\System32\drivers\iusb3xhc.sys
2014-07-04 03:26:02 370672 ----a-w- T:\Windows\System32\drivers\iusb3hub.sys
2014-07-04 03:26:02 20464 ----a-w- T:\Windows\System32\drivers\iusb3hcs.sys
2014-07-04 03:25:24 11832 ----a-w- T:\Windows\acpimof.dll
2014-07-04 03:21:46 74512 ----a-w- T:\Windows\System32\bdsandboxuiskin32.dll
2014-07-04 03:20:13 502894 ----a-w- T:\ProgramData\1404443903.bdinstall.bin
2014-07-04 03:19:45 82824 ----a-w- T:\Windows\System32\drivers\bdsandbox.sys
2014-07-04 03:19:44 893440 ----a-w- T:\Windows\System32\drivers\avc3.sys
2014-07-04 03:19:44 635392 ----a-w- T:\Windows\System32\drivers\avckf.sys
2014-07-04 03:19:36 -------- d-----w- T:\Users\TD\AppData\Roaming\Bitdefender
2014-07-04 03:19:05 -------- d-----w- T:\ProgramData\Bitdefender
2014-07-04 03:13:16 249336 ----a-w- T:\ProgramData\1404443552.bdinstall.bin
2014-07-04 03:11:22 514628 ----a-w- T:\ProgramData\1404443378.bdinstall.bin
2014-07-04 03:11:02 -------- d-----w- T:\ProgramData\BDLogging
2014-07-04 03:11:01 74512 ----a-w- T:\Windows\SysWow64\bdsandboxuiskin32.dll
2014-07-04 03:11:01 511328 ----a-w- T:\Windows\capicom.dll
2014-07-04 03:11:00 261056 ----a-w- T:\Windows\System32\drivers\avchv.sys
2014-07-04 03:10:01 84848 ----a-w- T:\Windows\System32\BDSandBoxUISkin.dll
2014-07-04 03:10:01 34384 ----a-w- T:\Windows\System32\BDSandBoxUH.dll
2014-07-04 03:09:38 -------- d-----w- T:\Users\TD\AppData\Roaming\QuickScan
2014-07-04 03:09:36 -------- d-----w- T:\Program Files\Common Files\Bitdefender
2014-07-04 03:09:36 -------- d-----w- T:\Program Files (x86)\Common Files\Bitdefender
2014-07-04 02:56:25 826880 ----a-w- T:\Windows\SysWow64\rdpcore.dll
2014-07-04 02:56:25 23552 ----a-w- T:\Windows\System32\drivers\tdtcp.sys
2014-07-04 02:56:25 1031680 ----a-w- T:\Windows\System32\rdpcore.dll
2014-07-04 02:55:23 -------- d-----w- T:\Users\TD\AppData\Local\Deployment
2014-07-04 02:55:23 -------- d-----w- T:\Users\TD\AppData\Local\Apps
2014-07-04 02:54:18 99840 ----a-w- T:\Windows\System32\wudriver.dll
2014-07-04 02:54:18 2622464 ----a-w- T:\Windows\System32\wucltux.dll
2014-07-04 02:54:17 36864 ----a-w- T:\Windows\System32\wuapp.exe
2014-07-04 02:54:17 186752 ----a-w- T:\Windows\System32\wuwebv.dll
2014-07-04 02:46:49 25056 ----a-w- T:\Windows\System32\drivers\SCMNdisP.sys
2014-07-04 02:46:49 -------- d-----w- T:\Program Files (x86)\NETGEAR
2014-07-04 02:45:11 1256192 ----a-w- T:\Windows\System32\drivers\bcmwlhigh664.sys
2014-07-04 02:45:09 95544 ----a-w- T:\Windows\System32\bcmwlcoi.dll
2014-07-04 02:45:06 3566592 ----a-w- T:\Windows\System32\bcmihvui64.dll
2014-07-04 02:45:00 3900928 ----a-w- T:\Windows\System32\bcmihvsrv64.dll
2014-07-04 02:44:24 96784 ----a-w- T:\Windows\SysWow64\Packet.dll
2014-07-04 02:44:24 53299 ----a-w- T:\Windows\SysWow64\pthreadVC.dll
2014-07-04 02:44:24 47632 ----a-w- T:\Windows\System32\drivers\npf.sys
2014-07-04 02:44:24 281104 ----a-w- T:\Windows\SysWow64\wpcap.dll
2014-07-04 02:30:34 16344 ----a-w- T:\Windows\System32\drivers\IntelMEFWVer.dll
2014-07-04 02:30:13 -------- d-----w- T:\Program Files (x86)\Common Files\postureAgent
2014-07-04 02:29:29 -------- d-----w- T:\Users\TD\AppData\Local\Google
2014-07-04 02:28:19 -------- d--h--w- T:\Program Files (x86)\Temp
2014-07-04 02:28:18 2080472 ----a-w- T:\Windows\RtlExUpd.dll
2014-07-04 02:27:08 -------- d-----w- T:\Program Files\Qualcomm Atheros
2014-07-04 02:25:49 -------- d-sh--w- T:\Windows\Installer
2014-07-04 02:24:42 53248 ----a-w- T:\Windows\SysWow64\CSVer.dll
2014-07-04 02:20:46 -------- d-----w- T:\MSI
2014-07-04 02:20:38 -------- d-----w- T:\Intel
2014-07-04 02:20:36 -------- d-----w- T:\Program Files (x86)\MSI
2014-07-04 01:44:59 -------- d-----w- T:\WindowsImageBackup
.
==================== Find3M  ====================
.
2014-07-06 20:27:58 122584 ----a-w- T:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-07-04 20:20:33 9728 ---ha-w- T:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-13 02:59:26 1542088 ----a-w- T:\Windows\System32\nvdispgenco6434043.dll
2014-06-13 02:59:20 1890264 ----a-w- T:\Windows\System32\nvdispco6434043.dll
2014-06-13 02:48:13 946120 ----a-w- T:\Windows\System32\NvIFR64.dll
2014-06-13 02:48:12 902616 ----a-w- T:\Windows\System32\NvFBC64.dll
2014-06-13 02:48:12 13824408 ----a-w- T:\Windows\System32\nvcuda.dll
2014-06-13 02:48:11 909256 ----a-w- T:\Windows\SysWow64\NvIFR.dll
2014-06-13 02:48:11 4248520 ----a-w- T:\Windows\System32\nvcuvid.dll
2014-06-13 02:48:10 869336 ----a-w- T:\Windows\SysWow64\NvFBC.dll
2014-06-13 02:48:10 3989464 ----a-w- T:\Windows\SysWow64\nvcuvid.dll
2014-06-13 02:48:10 11211224 ----a-w- T:\Windows\SysWow64\nvcuda.dll
2014-06-13 02:48:09 391456 ----a-w- T:\Windows\System32\NvIFROpenGL.dll
2014-06-13 02:48:09 348120 ----a-w- T:\Windows\SysWow64\NvIFROpenGL.dll
2014-06-13 02:48:09 13911928 ----a-w- T:\Windows\System32\nvopencl.dll
2014-06-13 02:48:09 11272544 ----a-w- T:\Windows\SysWow64\nvopencl.dll
2014-06-13 02:47:38 16122344 ----a-w- T:\Windows\SysWow64\nvwgf2um.dll
2014-06-13 02:47:36 417568 ----a-w- T:\Windows\SysWow64\nvEncodeAPI.dll
2014-06-13 02:47:35 18625768 ----a-w- T:\Windows\System32\nvwgf2umx.dll
2014-06-13 02:47:35 17553032 ----a-w- T:\Windows\System32\nvd3dumx.dll
2014-06-13 02:47:34 31512352 ----a-w- T:\Windows\System32\nvoglv64.dll
2014-06-13 02:47:33 502048 ----a-w- T:\Windows\System32\nvEncodeAPI64.dll
2014-06-13 02:47:31 24198616 ----a-w- T:\Windows\SysWow64\nvoglv32.dll
2014-06-13 02:47:16 12860888 ----a-w- T:\Windows\System32\drivers\nvlddmkm.sys
2014-06-13 02:46:03 354016 ----a-w- T:\Windows\System32\nvoglshim64.dll
2014-06-13 02:46:03 305600 ----a-w- T:\Windows\SysWow64\nvoglshim32.dll
2014-06-13 02:46:01 846832 ----a-w- T:\Windows\SysWow64\nvumdshim.dll
2014-06-13 02:46:01 22994392 ----a-w- T:\Windows\System32\nvcompiler.dll
2014-06-13 02:46:01 166568 ----a-w- T:\Windows\System32\nvinitx.dll
2014-06-13 02:46:01 146480 ----a-w- T:\Windows\SysWow64\nvinit.dll
2014-06-13 02:46:00 15294296 ----a-w- T:\Windows\SysWow64\nvcompiler.dll
2014-05-19 06:47:30 39080 ----a-w- T:\Windows\System32\drivers\rzendpt.sys
2014-05-19 06:47:28 155816 ----a-w- T:\Windows\System32\drivers\rzudd.sys
2014-05-14 00:09:48 3962840 ----a-w- T:\Windows\System32\drivers\RTKVHD64.sys
2014-05-12 12:26:10 63704 ----a-w- T:\Windows\System32\drivers\mwac.sys
2014-05-12 12:26:00 91352 ----a-w- T:\Windows\System32\drivers\mbamchameleon.sys
2014-05-12 12:25:56 25816 ----a-w- T:\Windows\System32\drivers\mbam.sys
2014-05-09 16:17:44 628952 ----a-w- T:\Windows\System32\RtDataProc64.dll
2014-05-08 21:29:48 2000152 ----a-w- T:\Windows\System32\MBAPO264.dll
2014-05-08 21:29:44 1728280 ----a-w- T:\Windows\SysWow64\MBAPO232.dll
2014-04-30 16:34:18 948952 ----a-w- T:\Windows\System32\RCoInstII64.dll
2014-04-28 20:48:48 2800344 ----a-w- T:\Windows\System32\RltkAPO64.dll
2014-04-25 18:51:10 2834648 ----a-w- T:\Windows\System32\RtPgEx64.dll
2014-04-25 18:23:36 1022168 ----a-w- T:\Windows\System32\RtkApi64.dll
2014-04-25 02:34:59 801280 ----a-w- T:\Windows\System32\usp10.dll
2014-04-25 02:06:17 626688 ----a-w- T:\Windows\SysWow64\usp10.dll
2014-04-12 02:22:05 95680 ----a-w- T:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- T:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- T:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- T:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- T:\Windows\System32\secur32.dll
2014-04-12 02:19:32 1460736 ----a-w- T:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05 31232 ----a-w- T:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- T:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- T:\Windows\SysWow64\sspicli.dll
2014-04-10 17:19:56 2101848 ----a-w- T:\Windows\System32\WavesGUILib64.dll
2014-04-10 17:19:54 2041432 ----a-w- T:\Windows\System32\MaxxAudioEQ64.dll
2014-04-10 17:19:52 1063512 ----a-w- T:\Windows\System32\MaxxAudioAPOShell64.dll
.
============= FINISH: 15:40:55.23 ===============

 

Attached Files



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:19 AM

Posted 11 July 2014 - 03:55 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/540090 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 14 July 2014 - 01:20 PM

Greetings and :welcome: to BleepingComputer,
My name is xXToffeeXx, but feel free to call me Toffee if it is easier for you. I will be helping you with your malware problems.
 
A few points to cover before we start:

  • Do not run any tools without being instructed to as this makes my job much harder in trying to figure out what you have done.
  • Make sure to read my instructions fully before attempting a step.
  • If you have problems or questions with any of the steps, feel free to ask me. I will be happy to answer any questions you have.
  • Please follow the topic by clicking on the "Follow this topic" button, and make sure a tick is in the "receive notifications" and is set to "Instantly". Any replies should be made in this topic by clicking the "Reply to this topic" button.
  • Important information in my posts will often be in bold, make sure to take note of these.
  • I will attempt to reply as soon as possible, and normally within 24 hours of your reply. If this is not possible or I have a delay then I will let you know.
  • I will bump a topic after 3 days of no activity, and then will give you another 2 days to reply before a topic is closed. If you need more time than this please let me know.
  • Lets get going now :thumbup2:

==========================
 
Hi Tanner,
 
Please go to Virustotal:

  • Select Choose File
  • Navigate to the following file (if multiple files then one at a time), double click on it so the file name is populated, then click Scan it!
  • IMPORTANT! If the file is listed as already analyzed, click on Reanalyse file now button.

T:\Windows\winfaith1.exe

T:\Windows\winfaith3.exe

  • Once completed, highlight the information in the address bar and copy then paste the link in your reply

--------------
 
Please download Farbar Recovery Scan Tool and save it to your Desktop.
 
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right-click FRST then click "Run as administrator" (XP users: click run after receipt of Windows Security Warning - Open File).
  • When the tool opens, click Yes to disclaimer.
  • Press the Scan button.
  • When finished, it will produce a log called FRST.txt in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.

Note 2: The first time the tool is run it generates another log (Addition.txt - also located in the same directory the tool was run from). Please also paste that, along with the FRST.txt into your next reply.
 
--------------
 
To recap, in your next reply I would like to see the following. Make sure to copy & paste them unless I ask otherwise:

  • FRST.txt
  • Addition.txt

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#4 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 18 July 2014 - 10:39 AM

Hi Tanner,
 
This is a 3 day bump:
 
It has been more than 3 days since my last post.

  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#5 tdeeez

tdeeez
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:19 AM

Posted 19 July 2014 - 12:10 PM

Thank you toffee, I am currently away from my computer for a few days. I will do my best to complete the process as soon as possible. I just wanted to reply and let you know I have not abandoned the topic. Thank you!

#6 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 19 July 2014 - 12:14 PM

Hi Tanner,

 

Thank you for letting me know, I'll look for your reply later :)

 

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#7 tdeeez

tdeeez
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:19 AM

Posted 20 July 2014 - 07:58 PM

Winfaith 1 Linkhttps://www.virustotal.com/en/file/ed84112aafb9c089ddfcefde384bab2875da7ceb00f1ff9e7694d0e3b331229f/analysis/1405902515/
Winfaith 3 Link: I have no Winfaith 3 in my Windows folder

 

I had to attach these next files because my text exceeded the limit

FRST.TXT - (attached)
ADDITION.TXT - (attached)

 

 
Thank you Toffee!
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-07-2014
Ran by TD (administrator) on SLEIGH on 20-07-2014 19:33:07
Running from C:\Download
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Bitdefender) C:\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) T:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) T:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) T:\Windows\System32\wlanext.exe
(Intel® Corporation) T:\Program Files\Intel\iCLS Client\HeciServer.exe
() T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
() C:\Command Center\MSIControlService.exe
(Micro-Star International) C:\Live Update\MSI_LiveUpdate_Service.exe
(NVIDIA Corporation) T:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() T:\Windows\System32\PnkBstrA.exe
(Qualcomm Atheros) T:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Bitdefender) C:\Bitdefender\Bitdefender\updatesrv.exe
() T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(NVIDIA Corporation) T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) T:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) T:\Windows\System32\nvvsvc.exe
() C:\RivaTuner Statistics Server\RTSS.exe
(Intel Corporation) T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
(Bitdefender) C:\Bitdefender\Bitdefender\bdagent.exe
(Realtek Semiconductor) T:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) T:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Bitdefender) C:\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
() T:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(IBuster) T:\Windows\winfaith1.exe
(Intel Corporation) T:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(NVIDIA Corporation) T:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\RivaTuner Statistics Server\EncoderServer.exe
() C:\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(NVIDIA Corporation) T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) T:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) T:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) T:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Bitdefender) C:\Bitdefender\Bitdefender\seccenter.exe
(Malwarebytes Corporation) C:\Malwarebytes Anti-Malware\mbam.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [ISCT Tray] => T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-04-03] (Intel Corporation)
HKLM\...\Run: [Bdagent] => C:\Bitdefender\Bitdefender\bdagent.exe [1743088 2014-05-21] (Bitdefender)
HKLM\...\Run: [RTHDVCPL] => T:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7575256 2014-05-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => T:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2350880 2014-05-29] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => T:\Windows\system32\rundll32.exe T:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart 
HKLM-x32\...\Run: [Calculator] => T:\Windows\winfaith1.exe [10651984 2014-07-04] (IBuster)
HKLM-x32\...\Run: [Calculator2] => T:\Windows\winfaith1.exe [10651984 2014-07-04] (IBuster)
HKLM-x32\...\Run: [Notepad] => T:\Windows\winfaith3.exe
HKLM-x32\...\Run: [Notepad2] => T:\Windows\winfaith3.exe
HKLM-x32\...\Run: [USB3MON] => T:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-03-06] (Intel Corporation)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet Agent] => C:\Bitdefender\Bitdefender\pmbxag.exe [568400 2014-05-20] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet] => C:\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-04-09] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet Application Agent] => C:\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614744 2014-04-09] (Bitdefender)
HKU\S-1-5-19\...\RunOnce: [mctadmin] => T:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => T:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-21-328720128-2849278223-3807603218-1000\...\Run: [Bitdefender Wallet Agent] => C:\Bitdefender\Bitdefender\pmbxag.exe [568400 2014-05-20] (Bitdefender)
HKU\S-1-5-21-328720128-2849278223-3807603218-1000\...\Run: [Bitdefender Wallet] => C:\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-04-09] (Bitdefender)
HKU\S-1-5-21-328720128-2849278223-3807603218-1000\...\Run: [Bitdefender Wallet Application Agent] => C:\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614744 2014-04-09] (Bitdefender)
Startup: T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> T:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
BootExecute: autocheck autochk * bddel.exe
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3537E95A3397CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - T:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - T:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @nvidia.com/3DVision - T:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - T:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 - T:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 - T:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - T:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - T:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF Extension: Bitdefender Wallet - C:\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-07-03]
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://search.conduit.com/?ctid=CT3319434&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP93D0317C-CA62-41EC-8CEC-1D0CFE5CEF4E&SSPV=", "hxxp://www.google.com/", "hxxp://search.conduit.com/?ctid=CT3227981&SearchSource=48&CUI=UN34590837651765547&UM=2", "hxxp://mysearch.avg.com/?cid={5CBC7A68-33E1-473C-B77C-699CCDDD3173}&mid=cca5a05293dc4a3ea874091bf954178b-56c4b4dc654f7a7e858c00bfa9aa32fe7ace64d9&lang=en&ds=hk018&pr=sa&d=2013-09-24%2020:39:16&v=15.4.0.5&pid=safeguard&sg=0&sap=hp", "hxxp://www.google.com/"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Shockwave Flash) - T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\gcswf32.dll No File
CHR Plugin: (Google Update) - T:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (         "name": "",) - T:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (         "name": "",) - T:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Extension: (Google Voice Search Hotword (Beta)) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-03]
CHR Extension: (YouTube) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-03]
CHR Extension: (Google Cast) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-07-03]
CHR Extension: (Google Search) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-03]
CHR Extension: (AdBlock) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-03]
CHR Extension: (Google Wallet) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-03]
CHR Extension: (Universe) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\oecmlnmneeeeiccpcohlffnipjhngmdk [2014-07-03]
CHR Extension: (Gmail) - T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-03]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-07-03]
 
==================== Services (Whitelisted) =================
 
S2 globalUpdate; T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-04] (globalUpdate) [File not signed]
S3 globalUpdatem; T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-04] (globalUpdate) [File not signed]
R2 Intel® Capability Licensing Service Interface; T:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; T:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 ISCTAgent; T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-03] ()
R2 jhi_service; T:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
S3 MSIBIOSData_CC; C:\Command Center\BIOSData\MSIBIOSDataService.exe [2100736 2014-06-04] (MSI) [File not signed]
S3 MSIClock_CC; C:\Command Center\ClockGen\MSIClockService.exe [4026368 2014-06-06] (MSI) [File not signed]
S3 MSICOMM_CC; C:\Command Center\MSICommService.exe [2118144 2014-06-03] () [File not signed]
S3 MSICPU_CC; C:\Command Center\CPU\MSICPUService.exe [4157440 2014-06-17] () [File not signed]
R2 MSICTL_CC; C:\Command Center\MSIControlService.exe [1990144 2014-06-03] () [File not signed]
S3 MSIDDR_CC; C:\Command Center\DDR\MSIDDRService.exe [2250240 2014-06-06] () [File not signed]
S3 MSISMB_CC; C:\Command Center\SMBus\MSISMBService.exe [2063360 2014-06-04] () [File not signed]
S3 MSISuperIO_CC; C:\Command Center\SuperIO\MSISuperIOService.exe [549888 2014-06-10] () [File not signed]
R2 MSI_LiveUpdate_Service; C:\Live Update\MSI_LiveUpdate_Service.exe [83952 2014-03-27] (Micro-Star International)
R2 NvNetworkService; T:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-29] (NVIDIA Corporation)
R2 NvStreamSvc; T:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-29] (NVIDIA Corporation)
R2 PnkBstrA; T:\Windows\system32\PnkBstrA.exe [76152 2014-07-06] ()
R2 PnkBstrA; T:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-07-04] ()
R2 Qualcomm Atheros Killer Service V2; T:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-04-17] (Qualcomm Atheros) [File not signed]
R2 UPDATESRV; C:\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-10-07] (Bitdefender)
R2 VSSERV; C:\Bitdefender\Bitdefender\vsserv.exe [1526800 2014-05-21] (Bitdefender)
R2 WSWNDA3100v2; T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
 
==================== Drivers (Whitelisted) ====================
 
S3 AcpiCtlDrv; T:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R0 avc3; T:\Windows\System32\DRIVERS\avc3.sys [893440 2013-12-02] (BitDefender)
R3 avchv; T:\Windows\System32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
S3 avckf; T:\Windows\System32\DRIVERS\avckf.sys [635392 2013-12-02] (BitDefender)
R1 bdfwfpf; T:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
S3 BDSandBox; T:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R0 gzflt; T:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R3 INETMON; T:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] ()
R3 ISCT; T:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] ()
R3 MBAMSwissArmy; T:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-20] (Malwarebytes Corporation)
R3 MEIx64; T:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
S3 NPF; T:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
S3 NTIOLib_1_0_4; C:\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 NTIOLib_MSIClock_CC; C:\Command Center\ClockGen\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSICOMM_CC; C:\Command Center\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSICPU_CC; C:\Command Center\CPU\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIDDR_CC; C:\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
S3 NTIOLib_MSIFrequency_CC; C:\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIRatio_CC; C:\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSISMB_CC; C:\Command Center\SMBus\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSISuperIO_CC; C:\Command Center\SuperIO\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
R3 NvStreamKms; T:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; T:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 RTCore64; C:\MSI Afterburner\RTCore64.sys [13480 2014-06-10] ()
S3 rzendpt; T:\Windows\System32\DRIVERS\rzendpt.sys [39080 2014-05-19] (Razer Inc)
R2 trufos; T:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
S3 bdfwfpf_pc; \??\T:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-20 19:33 - 2014-07-20 19:33 - 00000000 ____D () T:\FRST
2014-07-20 19:25 - 2014-07-20 19:25 - 00017695 _____ () T:\Users\TD\Desktop\download.htm
2014-07-20 18:22 - 2014-06-20 15:14 - 00266424 _____ (Microsoft Corporation) T:\Windows\system32\iedkcs32.dll
2014-07-20 18:22 - 2014-06-20 14:39 - 00240824 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iedkcs32.dll
2014-07-20 18:22 - 2014-06-18 20:06 - 02724864 _____ (Microsoft Corporation) T:\Windows\system32\mshtml.tlb
2014-07-20 18:22 - 2014-06-18 20:06 - 00004096 _____ (Microsoft Corporation) T:\Windows\system32\ieetwcollectorres.dll
2014-07-20 18:22 - 2014-06-18 19:48 - 02768384 _____ (Microsoft Corporation) T:\Windows\system32\iertutil.dll
2014-07-20 18:22 - 2014-06-18 19:42 - 00548352 _____ (Microsoft Corporation) T:\Windows\system32\vbscript.dll
2014-07-20 18:22 - 2014-06-18 19:42 - 00066048 _____ (Microsoft Corporation) T:\Windows\system32\iesetup.dll
2014-07-20 18:22 - 2014-06-18 19:41 - 00083968 _____ (Microsoft Corporation) T:\Windows\system32\MshtmlDac.dll
2014-07-20 18:22 - 2014-06-18 19:41 - 00048640 _____ (Microsoft Corporation) T:\Windows\system32\ieetwproxystub.dll
2014-07-20 18:22 - 2014-06-18 19:32 - 00051200 _____ (Microsoft Corporation) T:\Windows\system32\jsproxy.dll
2014-07-20 18:22 - 2014-06-18 19:31 - 00033792 _____ (Microsoft Corporation) T:\Windows\system32\iernonce.dll
2014-07-20 18:22 - 2014-06-18 19:26 - 00598016 _____ (Microsoft Corporation) T:\Windows\system32\ieui.dll
2014-07-20 18:22 - 2014-06-18 19:24 - 00139264 _____ (Microsoft Corporation) T:\Windows\system32\ieUnatt.exe
2014-07-20 18:22 - 2014-06-18 19:24 - 00111616 _____ (Microsoft Corporation) T:\Windows\system32\ieetwcollector.exe
2014-07-20 18:22 - 2014-06-18 19:23 - 00752640 _____ (Microsoft Corporation) T:\Windows\system32\jscript9diag.dll
2014-07-20 18:22 - 2014-06-18 19:16 - 17276416 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshtml.dll
2014-07-20 18:22 - 2014-06-18 19:14 - 00940032 _____ (Microsoft Corporation) T:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-20 18:22 - 2014-06-18 19:09 - 00452608 _____ (Microsoft Corporation) T:\Windows\system32\dxtmsft.dll
2014-07-20 18:22 - 2014-06-18 18:59 - 00038400 _____ (Microsoft Corporation) T:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-20 18:22 - 2014-06-18 18:56 - 02724864 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshtml.tlb
2014-07-20 18:22 - 2014-06-18 18:53 - 00195584 _____ (Microsoft Corporation) T:\Windows\system32\msrating.dll
2014-07-20 18:22 - 2014-06-18 18:51 - 05721088 _____ (Microsoft Corporation) T:\Windows\system32\jscript9.dll
2014-07-20 18:22 - 2014-06-18 18:50 - 00085504 _____ (Microsoft Corporation) T:\Windows\system32\mshtmled.dll
2014-07-20 18:22 - 2014-06-18 18:48 - 00292864 _____ (Microsoft Corporation) T:\Windows\system32\dxtrans.dll
2014-07-20 18:22 - 2014-06-18 18:39 - 00608768 _____ (Microsoft Corporation) T:\Windows\system32\ie4uinit.exe
2014-07-20 18:22 - 2014-06-18 18:38 - 00455168 _____ (Microsoft Corporation) T:\Windows\SysWOW64\vbscript.dll
2014-07-20 18:22 - 2014-06-18 18:37 - 00061952 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iesetup.dll
2014-07-20 18:22 - 2014-06-18 18:36 - 00051200 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-20 18:22 - 2014-06-18 18:35 - 00062464 _____ (Microsoft Corporation) T:\Windows\SysWOW64\MshtmlDac.dll
2014-07-20 18:22 - 2014-06-18 18:33 - 00631808 _____ (Microsoft Corporation) T:\Windows\system32\msfeeds.dll
2014-07-20 18:22 - 2014-06-18 18:32 - 02179072 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iertutil.dll
2014-07-20 18:22 - 2014-06-18 18:28 - 00043008 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jsproxy.dll
2014-07-20 18:22 - 2014-06-18 18:28 - 00032768 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iernonce.dll
2014-07-20 18:22 - 2014-06-18 18:27 - 02040832 _____ (Microsoft Corporation) T:\Windows\system32\inetcpl.cpl
2014-07-20 18:22 - 2014-06-18 18:27 - 01249280 _____ (Microsoft Corporation) T:\Windows\system32\mshtmlmedia.dll
2014-07-20 18:22 - 2014-06-18 18:25 - 00442368 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieui.dll
2014-07-20 18:22 - 2014-06-18 18:23 - 00112128 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieUnatt.exe
2014-07-20 18:22 - 2014-06-18 18:22 - 00592896 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jscript9diag.dll
2014-07-20 18:22 - 2014-06-18 18:12 - 00367616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dxtmsft.dll
2014-07-20 18:22 - 2014-06-18 18:06 - 00032256 _____ (Microsoft Corporation) T:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-20 18:22 - 2014-06-18 18:01 - 00164864 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msrating.dll
2014-07-20 18:22 - 2014-06-18 17:59 - 00069632 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshtmled.dll
2014-07-20 18:22 - 2014-06-18 17:58 - 02266112 _____ (Microsoft Corporation) T:\Windows\system32\wininet.dll
2014-07-20 18:22 - 2014-06-18 17:58 - 00239616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dxtrans.dll
2014-07-20 18:22 - 2014-06-18 17:52 - 04254720 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jscript9.dll
2014-07-20 18:22 - 2014-06-18 17:51 - 13527040 _____ (Microsoft Corporation) T:\Windows\system32\ieframe.dll
2014-07-20 18:22 - 2014-06-18 17:49 - 00526336 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msfeeds.dll
2014-07-20 18:22 - 2014-06-18 17:46 - 01068032 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-20 18:22 - 2014-06-18 17:45 - 01964544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\inetcpl.cpl
2014-07-20 18:22 - 2014-06-18 17:35 - 11742208 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieframe.dll
2014-07-20 18:22 - 2014-06-18 17:34 - 01393664 _____ (Microsoft Corporation) T:\Windows\system32\urlmon.dll
2014-07-20 18:22 - 2014-06-18 17:15 - 00846336 _____ (Microsoft Corporation) T:\Windows\system32\ieapfltr.dll
2014-07-20 18:22 - 2014-06-18 17:13 - 01791488 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wininet.dll
2014-07-20 18:22 - 2014-06-18 17:09 - 01139200 _____ (Microsoft Corporation) T:\Windows\SysWOW64\urlmon.dll
2014-07-20 18:22 - 2014-06-18 17:07 - 00704512 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieapfltr.dll
2014-07-20 18:22 - 2014-06-17 21:18 - 00692736 _____ (Microsoft Corporation) T:\Windows\system32\osk.exe
2014-07-20 18:22 - 2014-06-17 20:51 - 00646144 _____ (Microsoft Corporation) T:\Windows\SysWOW64\osk.exe
2014-07-20 18:22 - 2014-06-17 20:10 - 03157504 _____ (Microsoft Corporation) T:\Windows\system32\win32k.sys
2014-07-20 18:22 - 2014-06-06 05:10 - 00624128 _____ (Microsoft Corporation) T:\Windows\system32\qedit.dll
2014-07-20 18:22 - 2014-06-06 04:44 - 00509440 _____ (Microsoft Corporation) T:\Windows\SysWOW64\qedit.dll
2014-07-20 18:22 - 2014-05-30 01:45 - 00497152 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\afd.sys
2014-07-20 18:21 - 2014-06-18 20:39 - 23464448 _____ (Microsoft Corporation) T:\Windows\system32\mshtml.dll
2014-07-20 18:21 - 2014-06-05 09:45 - 01460736 _____ (Microsoft Corporation) T:\Windows\system32\lsasrv.dll
2014-07-20 18:21 - 2014-06-05 09:26 - 00022016 _____ (Microsoft Corporation) T:\Windows\SysWOW64\secur32.dll
2014-07-20 18:21 - 2014-06-05 09:25 - 00096768 _____ (Microsoft Corporation) T:\Windows\SysWOW64\sspicli.dll
2014-07-20 18:12 - 2014-07-20 19:18 - 00002512 _____ () T:\Windows\setupact.log
2014-07-20 18:12 - 2014-07-20 18:12 - 00000000 _____ () T:\Windows\setuperr.log
2014-07-06 20:58 - 2014-07-06 20:58 - 00000000 ____D () T:\Users\TD\AppData\Roaming\NVIDIA
2014-07-06 19:59 - 2014-07-06 19:59 - 00076152 _____ () T:\Windows\system32\PnkBstrA.exe
2014-07-06 15:41 - 2014-07-06 15:42 - 00013500 _____ () T:\Users\TD\Desktop\attach.txt
2014-07-06 15:41 - 2014-07-06 15:41 - 00031212 _____ () T:\Users\TD\Desktop\dds.txt
2014-07-06 15:15 - 2014-02-03 21:32 - 01424384 _____ (Microsoft Corporation) T:\Windows\system32\WindowsCodecs.dll
2014-07-06 15:15 - 2014-02-03 21:04 - 01230336 _____ (Microsoft Corporation) T:\Windows\SysWOW64\WindowsCodecs.dll
2014-07-06 15:15 - 2014-01-08 21:22 - 05694464 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mstscax.dll
2014-07-06 15:15 - 2014-01-03 17:44 - 06574592 _____ (Microsoft Corporation) T:\Windows\system32\mstscax.dll
2014-07-06 15:15 - 2013-11-23 13:26 - 00417792 _____ (Microsoft Corporation) T:\Windows\SysWOW64\WMPhoto.dll
2014-07-06 15:15 - 2013-11-23 12:47 - 00465920 _____ (Microsoft Corporation) T:\Windows\system32\WMPhoto.dll
2014-07-06 15:14 - 2012-02-11 01:36 - 00559104 _____ (Microsoft Corporation) T:\Windows\system32\spoolsv.exe
2014-07-06 15:14 - 2012-02-11 01:36 - 00067072 _____ (Microsoft Corporation) T:\Windows\splwow64.exe
2014-07-06 15:14 - 2011-03-11 01:41 - 00410496 _____ (Intel Corporation) T:\Windows\system32\Drivers\iaStorV.sys
2014-07-06 15:14 - 2011-03-11 01:41 - 00166272 _____ (NVIDIA Corporation) T:\Windows\system32\Drivers\nvstor.sys
2014-07-06 15:14 - 2011-03-11 01:41 - 00148352 _____ (NVIDIA Corporation) T:\Windows\system32\Drivers\nvraid.sys
2014-07-06 15:14 - 2011-03-11 01:41 - 00107904 _____ (Advanced Micro Devices) T:\Windows\system32\Drivers\amdsata.sys
2014-07-06 15:14 - 2011-03-11 01:41 - 00027008 _____ (Advanced Micro Devices) T:\Windows\system32\Drivers\amdxata.sys
2014-07-06 15:14 - 2011-03-11 01:33 - 02565632 _____ (Microsoft Corporation) T:\Windows\system32\esent.dll
2014-07-06 15:14 - 2011-03-11 01:30 - 00096768 _____ (Microsoft Corporation) T:\Windows\system32\fsutil.exe
2014-07-06 15:14 - 2011-03-11 00:33 - 01699328 _____ (Microsoft Corporation) T:\Windows\SysWOW64\esent.dll
2014-07-06 15:14 - 2011-03-11 00:31 - 00074240 _____ (Microsoft Corporation) T:\Windows\SysWOW64\fsutil.exe
2014-07-06 15:14 - 2011-03-10 23:37 - 00091648 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\USBSTOR.SYS
2014-07-06 15:14 - 2011-02-25 01:19 - 02871808 _____ (Microsoft Corporation) T:\Windows\explorer.exe
2014-07-06 15:14 - 2011-02-25 00:30 - 02616320 _____ (Microsoft Corporation) T:\Windows\SysWOW64\explorer.exe
2014-07-06 12:31 - 2014-07-06 12:32 - 12134381 _____ () T:\Windows\WinFW222.zip
2014-07-06 12:31 - 2014-07-06 12:32 - 09324979 _____ () T:\Windows\WinFW2.zip
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINWC11132.txt
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINWC11113.txt
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINWA777.txt
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINMS777.txt
2014-07-06 12:31 - 2014-07-04 03:11 - 10651984 ____N (IBuster) T:\Windows\winfaith1.exe
2014-07-06 12:30 - 2014-07-06 12:32 - 00000073 _____ () T:\Windows\WRAR.rar
2014-07-05 11:28 - 2014-07-05 11:28 - 00000000 ____D () T:\Users\TD\AppData\Local\Intel_Corporation
2014-07-05 00:32 - 2014-07-06 17:25 - 00291296 _____ () T:\Windows\SysWOW64\PnkBstrB.xtr
2014-07-05 00:00 - 2014-07-05 12:25 - 00000000 ____D () T:\Users\TD\AppData\Local\DayZ
2014-07-05 00:00 - 2014-07-05 00:14 - 00000000 ____D () T:\Users\TD\Documents\DayZ
2014-07-04 22:41 - 2014-07-04 22:41 - 00000000 ____D () T:\Users\TD\AppData\Local\CrashRpt
2014-07-04 22:37 - 2014-07-04 23:03 - 00000000 ____D () T:\ProgramData\GFACE
2014-07-04 22:37 - 2014-07-04 22:37 - 00000000 ____D () T:\Users\TD\AppData\Local\wf-launcher
2014-07-04 21:59 - 2014-07-04 21:59 - 00000000 ____D () T:\Users\TD\AppData\Local\PunkBuster
2014-07-04 21:58 - 2014-07-04 22:00 - 00000000 ____D () T:\Users\TD\Documents\Battlefield 4
2014-07-04 21:57 - 2014-07-04 21:57 - 00000000 ____D () T:\Users\TD\AppData\Local\ESN
2014-07-04 21:02 - 2014-07-04 21:02 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-04 17:19 - 2014-07-06 19:59 - 00215416 _____ () T:\Windows\SysWOW64\PnkBstrB.exe
2014-07-04 17:19 - 2014-07-06 19:50 - 00214392 _____ () T:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-04 17:19 - 2014-07-04 23:33 - 00076888 _____ () T:\Windows\SysWOW64\PnkBstrA.exe
2014-07-04 17:19 - 2013-12-24 18:09 - 01987584 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10warp.dll
2014-07-04 17:19 - 2013-12-24 17:48 - 02565120 _____ (Microsoft Corporation) T:\Windows\system32\d3d10warp.dll
2014-07-04 17:19 - 2013-11-26 03:16 - 03419136 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d2d1.dll
2014-07-04 17:19 - 2013-11-22 17:48 - 03928064 _____ (Microsoft Corporation) T:\Windows\system32\d2d1.dll
2014-07-04 17:11 - 2014-05-08 04:32 - 03178496 _____ (Microsoft Corporation) T:\Windows\system32\rdpcorets.dll
2014-07-04 17:11 - 2014-05-08 04:32 - 00016384 _____ (Microsoft Corporation) T:\Windows\system32\RdpGroupPolicyExtension.dll
2014-07-04 16:31 - 2013-10-01 21:22 - 00056832 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\TsUsbFlt.sys
2014-07-04 16:31 - 2013-10-01 21:11 - 00013824 _____ (Microsoft Corporation) T:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-07-04 16:31 - 2013-10-01 21:08 - 00012800 _____ (Microsoft Corporation) T:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-04 16:31 - 2013-10-01 20:48 - 00056832 _____ (Microsoft Corporation) T:\Windows\system32\MsRdpWebAccess.dll
2014-07-04 16:31 - 2013-10-01 20:48 - 00018944 _____ (Microsoft Corporation) T:\Windows\system32\wksprtPS.dll
2014-07-04 16:31 - 2013-10-01 20:29 - 00062976 _____ (Microsoft Corporation) T:\Windows\system32\tsgqec.dll
2014-07-04 16:31 - 2013-10-01 20:10 - 00044544 _____ (Microsoft Corporation) T:\Windows\system32\TsUsbGDCoInstaller.dll
2014-07-04 16:31 - 2013-10-01 19:15 - 01057280 _____ (Microsoft Corporation) T:\Windows\system32\rdvidcrl.dll
2014-07-04 16:31 - 2013-10-01 19:14 - 00050176 _____ (Microsoft Corporation) T:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-07-04 16:31 - 2013-10-01 19:14 - 00017920 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wksprtPS.dll
2014-07-04 16:31 - 2013-10-01 19:08 - 00083968 _____ (Microsoft Corporation) T:\Windows\system32\TSWbPrxy.exe
2014-07-04 16:31 - 2013-10-01 19:01 - 00420864 _____ (Microsoft Corporation) T:\Windows\system32\wksprt.exe
2014-07-04 16:31 - 2013-10-01 18:58 - 00053248 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tsgqec.dll
2014-07-04 16:31 - 2013-10-01 18:31 - 01147392 _____ (Microsoft Corporation) T:\Windows\system32\mstsc.exe
2014-07-04 16:31 - 2013-10-01 18:08 - 00855552 _____ (Microsoft Corporation) T:\Windows\SysWOW64\rdvidcrl.dll
2014-07-04 16:31 - 2013-10-01 17:34 - 01068544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mstsc.exe
2014-07-04 16:27 - 2014-07-20 19:21 - 00000000 ____D () T:\Users\TD\Documents\survarium
2014-07-04 16:21 - 2014-07-04 16:21 - 00000000 ____D () T:\ProgramData\Razer
2014-07-04 16:15 - 2014-07-04 16:15 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-07-04 16:14 - 2014-07-04 16:14 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2014-07-04 16:13 - 2014-07-04 16:21 - 00000000 ____D () T:\Users\TD\AppData\Local\Razer
2014-07-04 16:11 - 2014-07-04 16:11 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Adobe
2014-07-04 15:44 - 2014-07-20 18:34 - 96441528 _____ (Microsoft Corporation) T:\Windows\system32\MRT.exe
2014-07-04 15:44 - 2014-07-20 18:34 - 00000000 ____D () T:\Windows\system32\MRT
2014-07-04 15:43 - 2013-05-10 00:56 - 14631424 _____ (Microsoft Corporation) T:\Windows\system32\wmp.dll
2014-07-04 15:43 - 2013-05-10 00:56 - 12625920 _____ (Microsoft Corporation) T:\Windows\system32\wmploc.DLL
2014-07-04 15:43 - 2013-05-09 23:56 - 12625408 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wmploc.DLL
2014-07-04 15:43 - 2013-05-09 23:56 - 11410432 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wmp.dll
2014-07-04 15:36 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) T:\Windows\system32\IEUDINIT.EXE
2014-07-04 15:34 - 2014-07-04 15:34 - 01732032 _____ (Microsoft Corporation) T:\Windows\system32\ntdll.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 01292192 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ntdll.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00942592 _____ (Microsoft Corporation) T:\Windows\system32\jsIntl.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00878080 _____ (Microsoft Corporation) T:\Windows\system32\advapi32.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00859648 _____ (Microsoft Corporation) T:\Windows\system32\tdh.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00774144 _____ (Microsoft Corporation) T:\Windows\system32\jscript.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00645120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jsIntl.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00640512 _____ (Microsoft Corporation) T:\Windows\SysWOW64\advapi32.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00619520 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tdh.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00616104 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieapfltr.dat
2014-07-04 15:34 - 2014-07-04 15:34 - 00616104 _____ (Microsoft Corporation) T:\Windows\system32\ieapfltr.dat
2014-07-04 15:34 - 2014-07-04 15:34 - 00610304 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jscript.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00413696 _____ (Microsoft Corporation) T:\Windows\system32\html.iec
2014-07-04 15:34 - 2014-07-04 15:34 - 00337408 _____ (Microsoft Corporation) T:\Windows\SysWOW64\html.iec
2014-07-04 15:34 - 2014-07-04 15:34 - 00247808 _____ (Microsoft Corporation) T:\Windows\system32\msls31.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00243200 _____ (Microsoft Corporation) T:\Windows\system32\webcheck.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00235520 _____ (Microsoft Corporation) T:\Windows\system32\url.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00235008 _____ (Microsoft Corporation) T:\Windows\system32\elshyph.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00233472 _____ (Microsoft Corporation) T:\Windows\SysWOW64\url.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00208384 _____ (Microsoft Corporation) T:\Windows\SysWOW64\webcheck.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00194048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\elshyph.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00182272 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msls31.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00167424 _____ (Microsoft Corporation) T:\Windows\system32\iexpress.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00151552 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iexpress.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00147968 _____ (Microsoft Corporation) T:\Windows\system32\occache.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00143872 _____ (Microsoft Corporation) T:\Windows\system32\wextract.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00139264 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wextract.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00135680 _____ (Microsoft Corporation) T:\Windows\system32\iepeers.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00131072 _____ (Microsoft Corporation) T:\Windows\system32\IEAdvpack.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00127488 _____ (Microsoft Corporation) T:\Windows\SysWOW64\occache.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00116736 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iepeers.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00111616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\IEAdvpack.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00105984 _____ (Microsoft Corporation) T:\Windows\system32\iesysprep.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00101376 _____ (Microsoft Corporation) T:\Windows\system32\inseng.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00090112 _____ (Microsoft Corporation) T:\Windows\system32\SetIEInstalledDate.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00086016 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iesysprep.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00083456 _____ (Microsoft Corporation) T:\Windows\SysWOW64\inseng.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00081408 _____ (Microsoft Corporation) T:\Windows\system32\icardie.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00077312 _____ (Microsoft Corporation) T:\Windows\system32\tdc.ocx
2014-07-04 15:34 - 2014-07-04 15:34 - 00074240 _____ (Microsoft Corporation) T:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00069120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\icardie.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00062464 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tdc.ocx
2014-07-04 15:34 - 2014-07-04 15:34 - 00062464 _____ (Microsoft Corporation) T:\Windows\system32\pngfilt.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00056832 _____ (Microsoft Corporation) T:\Windows\SysWOW64\pngfilt.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00052224 _____ (Microsoft Corporation) T:\Windows\system32\msfeedsbs.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00048640 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshtmler.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00048640 _____ (Microsoft Corporation) T:\Windows\system32\mshtmler.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00048128 _____ (Microsoft Corporation) T:\Windows\system32\imgutil.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00043008 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msfeedsbs.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00036352 _____ (Microsoft Corporation) T:\Windows\SysWOW64\imgutil.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00030208 _____ (Microsoft Corporation) T:\Windows\system32\licmgr10.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00024576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\licmgr10.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00013824 _____ (Microsoft Corporation) T:\Windows\system32\mshta.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00013312 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshta.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00013312 _____ (Microsoft Corporation) T:\Windows\system32\msfeedssync.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00012800 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msfeedssync.exe
2014-07-04 15:33 - 2014-07-04 15:33 - 04812672 _____ (Piriform Ltd) T:\Users\TD\Downloads\ccsetup415.exe
2014-07-04 15:33 - 2014-07-04 15:33 - 00002768 _____ () T:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-04 15:33 - 2014-07-04 15:33 - 00000693 _____ () T:\Users\Public\Desktop\CCleaner.lnk
2014-07-04 15:20 - 2014-07-04 15:20 - 02776576 _____ (Microsoft Corporation) T:\Windows\system32\msmpeg2vdec.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 02284544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msmpeg2vdec.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01682432 _____ (Microsoft Corporation) T:\Windows\system32\XpsPrint.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01643520 _____ (Microsoft Corporation) T:\Windows\system32\DWrite.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01247744 _____ (Microsoft Corporation) T:\Windows\SysWOW64\DWrite.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01238528 _____ (Microsoft Corporation) T:\Windows\system32\d3d10.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01175552 _____ (Microsoft Corporation) T:\Windows\system32\FntCache.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01158144 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XpsPrint.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01080832 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00648192 _____ (Microsoft Corporation) T:\Windows\system32\d3d10level9.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00604160 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10level9.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00522752 _____ (Microsoft Corporation) T:\Windows\system32\XpsGdiConverter.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00364544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XpsGdiConverter.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00363008 _____ (Microsoft Corporation) T:\Windows\system32\dxgi.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00333312 _____ (Microsoft Corporation) T:\Windows\system32\d3d10_1core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00296960 _____ (Microsoft Corporation) T:\Windows\system32\d3d10core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00293376 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dxgi.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00249856 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10_1core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00245248 _____ (Microsoft Corporation) T:\Windows\system32\WindowsCodecsExt.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00221184 _____ (Microsoft Corporation) T:\Windows\system32\UIAnimation.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00220160 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00207872 _____ (Microsoft Corporation) T:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00194560 _____ (Microsoft Corporation) T:\Windows\system32\d3d10_1.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00187392 _____ (Microsoft Corporation) T:\Windows\SysWOW64\UIAnimation.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00161792 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10_1.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00010752 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00010752 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00009728 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00009728 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00004096 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00002560 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00002560 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-07-04 15:05 - 2012-08-23 09:13 - 00243200 _____ (Microsoft Corporation) T:\Windows\system32\rdpudd.dll
2014-07-04 15:05 - 2012-08-23 09:10 - 00019456 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\rdpvideominiport.sys
2014-07-04 15:05 - 2012-08-23 09:08 - 00030208 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\TsUsbGD.sys
2014-07-04 15:05 - 2012-08-23 06:12 - 00192000 _____ (Microsoft Corporation) T:\Windows\SysWOW64\rdpendp_winip.dll
2014-07-04 15:05 - 2012-08-23 05:51 - 00228864 _____ (Microsoft Corporation) T:\Windows\system32\rdpendp_winip.dll
2014-07-04 14:58 - 2012-07-25 22:08 - 00744448 _____ (Microsoft Corporation) T:\Windows\system32\WUDFx.dll
2014-07-04 14:58 - 2012-07-25 22:08 - 00229888 _____ (Microsoft Corporation) T:\Windows\system32\WUDFHost.exe
2014-07-04 14:58 - 2012-07-25 22:08 - 00194048 _____ (Microsoft Corporation) T:\Windows\system32\WUDFPlatform.dll
2014-07-04 14:58 - 2012-07-25 22:08 - 00084992 _____ (Microsoft Corporation) T:\Windows\system32\WUDFSvc.dll
2014-07-04 14:58 - 2012-07-25 22:08 - 00045056 _____ (Microsoft Corporation) T:\Windows\system32\WUDFCoinstaller.dll
2014-07-04 14:58 - 2012-07-25 21:26 - 00198656 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\WUDFRd.sys
2014-07-04 14:58 - 2012-07-25 21:26 - 00087040 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\WUDFPf.sys
2014-07-04 14:58 - 2012-06-02 09:57 - 00000003 _____ () T:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-07-04 14:54 - 2014-07-04 15:39 - 00000000 ____D () T:\Windows\pss
2014-07-04 14:50 - 2014-07-20 19:29 - 00122584 _____ (Malwarebytes Corporation) T:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-04 14:50 - 2014-07-04 14:50 - 00000613 _____ () T:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-04 14:50 - 2014-07-04 14:50 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-04 14:50 - 2014-07-04 14:50 - 00000000 ____D () T:\ProgramData\Malwarebytes
2014-07-04 14:50 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) T:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-04 14:50 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) T:\Windows\system32\Drivers\mwac.sys
2014-07-04 14:50 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) T:\Windows\system32\Drivers\mbam.sys
2014-07-04 14:50 - 2014-02-03 21:35 - 00274880 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\msiscsi.sys
2014-07-04 14:50 - 2014-02-03 21:35 - 00190912 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\storport.sys
2014-07-04 14:50 - 2014-02-03 21:35 - 00027584 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\Diskdump.sys
2014-07-04 14:50 - 2014-02-03 21:28 - 00002048 _____ (Microsoft Corporation) T:\Windows\system32\iologmsg.dll
2014-07-04 14:50 - 2014-02-03 21:00 - 00002048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iologmsg.dll
2014-07-04 14:50 - 2014-01-27 21:32 - 00228864 _____ (Microsoft Corporation) T:\Windows\system32\wwansvc.dll
2014-07-04 14:50 - 2013-12-31 18:05 - 00420008 _____ () T:\Windows\SysWOW64\locale.nls
2014-07-04 14:50 - 2013-12-31 18:04 - 00420008 _____ () T:\Windows\system32\locale.nls
2014-07-04 14:50 - 2013-12-03 21:27 - 00488448 _____ (Microsoft Corporation) T:\Windows\system32\secproc.dll
2014-07-04 14:50 - 2013-12-03 21:27 - 00485888 _____ (Microsoft Corporation) T:\Windows\system32\secproc_isv.dll
2014-07-04 14:50 - 2013-12-03 21:27 - 00123392 _____ (Microsoft Corporation) T:\Windows\system32\secproc_ssp_isv.dll
2014-07-04 14:50 - 2013-12-03 21:27 - 00123392 _____ (Microsoft Corporation) T:\Windows\system32\secproc_ssp.dll
2014-07-04 14:50 - 2013-12-03 21:26 - 00528384 _____ (Microsoft Corporation) T:\Windows\system32\msdrm.dll
2014-07-04 14:50 - 2013-12-03 21:16 - 00658432 _____ (Microsoft Corporation) T:\Windows\system32\RMActivate_isv.exe
2014-07-04 14:50 - 2013-12-03 21:16 - 00626176 _____ (Microsoft Corporation) T:\Windows\system32\RMActivate.exe
2014-07-04 14:50 - 2013-12-03 21:16 - 00553984 _____ (Microsoft Corporation) T:\Windows\system32\RMActivate_ssp.exe
2014-07-04 14:50 - 2013-12-03 21:16 - 00552960 _____ (Microsoft Corporation) T:\Windows\system32\RMActivate_ssp_isv.exe
2014-07-04 14:50 - 2013-12-03 21:03 - 00428032 _____ (Microsoft Corporation) T:\Windows\SysWOW64\secproc.dll
2014-07-04 14:50 - 2013-12-03 21:03 - 00423936 _____ (Microsoft Corporation) T:\Windows\SysWOW64\secproc_isv.dll
2014-07-04 14:50 - 2013-12-03 21:03 - 00087040 _____ (Microsoft Corporation) T:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-07-04 14:50 - 2013-12-03 21:03 - 00087040 _____ (Microsoft Corporation) T:\Windows\SysWOW64\secproc_ssp.dll
2014-07-04 14:50 - 2013-12-03 21:02 - 00390144 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msdrm.dll
2014-07-04 14:50 - 2013-12-03 20:54 - 00594944 _____ (Microsoft Corporation) T:\Windows\SysWOW64\RMActivate_isv.exe
2014-07-04 14:50 - 2013-12-03 20:54 - 00572416 _____ (Microsoft Corporation) T:\Windows\SysWOW64\RMActivate.exe
2014-07-04 14:50 - 2013-12-03 20:54 - 00510976 _____ (Microsoft Corporation) T:\Windows\SysWOW64\RMActivate_ssp.exe
2014-07-04 14:50 - 2013-12-03 20:54 - 00508928 _____ (Microsoft Corporation) T:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-07-04 14:50 - 2013-10-29 21:32 - 00335360 _____ (Microsoft Corporation) T:\Windows\system32\msieftp.dll
2014-07-04 14:50 - 2013-10-29 21:19 - 00301568 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msieftp.dll
2014-07-04 14:50 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) T:\Windows\system32\SmartcardCredentialProvider.dll
2014-07-04 14:50 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) T:\Windows\system32\credui.dll
2014-07-04 14:50 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) T:\Windows\system32\authui.dll
2014-07-04 14:50 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-07-04 14:50 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) T:\Windows\SysWOW64\authui.dll
2014-07-04 14:50 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) T:\Windows\SysWOW64\credui.dll
2014-07-04 14:50 - 2013-09-24 21:23 - 01030144 _____ (Microsoft Corporation) T:\Windows\system32\TSWorkspace.dll
2014-07-04 14:50 - 2013-09-24 20:57 - 00792576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\TSWorkspace.dll
2014-07-04 14:50 - 2013-09-07 21:27 - 00327168 _____ (Microsoft Corporation) T:\Windows\system32\mswsock.dll
2014-07-04 14:50 - 2013-09-07 21:03 - 00231424 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mswsock.dll
2014-07-04 14:50 - 2013-08-27 20:12 - 00461312 _____ (Microsoft Corporation) T:\Windows\system32\scavengeui.dll
2014-07-04 14:50 - 2013-08-04 21:25 - 00155584 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\ataport.sys
2014-07-04 14:50 - 2013-07-04 07:57 - 00259584 _____ (Microsoft Corporation) T:\Windows\system32\WebClnt.dll
2014-07-04 14:50 - 2013-07-04 07:50 - 00102400 _____ (Microsoft Corporation) T:\Windows\system32\davclnt.dll
2014-07-04 14:50 - 2013-07-04 06:57 - 00205824 _____ (Microsoft Corporation) T:\Windows\SysWOW64\WebClnt.dll
2014-07-04 14:50 - 2013-07-04 06:51 - 00081920 _____ (Microsoft Corporation) T:\Windows\SysWOW64\davclnt.dll
2014-07-04 14:50 - 2013-07-04 05:11 - 00140800 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\mrxdav.sys
2014-07-04 14:50 - 2013-05-10 00:49 - 00030720 _____ (Microsoft Corporation) T:\Windows\system32\cryptdlg.dll
2014-07-04 14:50 - 2013-05-09 22:20 - 00024576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cryptdlg.dll
2014-07-04 14:50 - 2013-04-25 18:30 - 01505280 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d11.dll
2014-07-04 14:50 - 2013-03-31 17:52 - 01887232 _____ (Microsoft Corporation) T:\Windows\system32\d3d11.dll
2014-07-04 14:50 - 2013-03-19 00:53 - 00048640 _____ (Microsoft Corporation) T:\Windows\system32\wwanprotdim.dll
2014-07-04 14:50 - 2013-01-24 01:01 - 00223752 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\fvevol.sys
2014-07-04 14:50 - 2012-12-07 08:20 - 00441856 _____ (Microsoft Corporation) T:\Windows\system32\Wpc.dll
2014-07-04 14:50 - 2012-12-07 08:15 - 02746368 _____ (Microsoft Corporation) T:\Windows\system32\gameux.dll
2014-07-04 14:50 - 2012-12-07 07:26 - 00308736 _____ (Microsoft Corporation) T:\Windows\SysWOW64\Wpc.dll
2014-07-04 14:50 - 2012-12-07 07:20 - 02576384 _____ (Microsoft Corporation) T:\Windows\SysWOW64\gameux.dll
2014-07-04 14:50 - 2012-12-07 06:20 - 00045568 _____ (Microsoft) T:\Windows\system32\oflc-nz.rs
2014-07-04 14:50 - 2012-12-07 06:20 - 00044544 _____ (Microsoft) T:\Windows\system32\pegibbfc.rs
2014-07-04 14:50 - 2012-12-07 06:20 - 00043520 _____ (Microsoft) T:\Windows\system32\csrr.rs
2014-07-04 14:50 - 2012-12-07 06:20 - 00030720 _____ (Microsoft) T:\Windows\system32\usk.rs
2014-07-04 14:50 - 2012-12-07 06:20 - 00023552 _____ (Microsoft) T:\Windows\system32\oflc.rs
2014-07-04 14:50 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) T:\Windows\system32\pegi-pt.rs
2014-07-04 14:50 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) T:\Windows\system32\pegi-fi.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00055296 _____ (Microsoft) T:\Windows\system32\cero.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00051712 _____ (Microsoft) T:\Windows\system32\esrb.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00046592 _____ (Microsoft) T:\Windows\system32\fpb.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00040960 _____ (Microsoft) T:\Windows\system32\cob-au.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00021504 _____ (Microsoft) T:\Windows\system32\grb.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00020480 _____ (Microsoft) T:\Windows\system32\pegi.rs
2014-07-04 14:50 - 2012-12-07 06:19 - 00015360 _____ (Microsoft) T:\Windows\system32\djctq.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00055296 _____ (Microsoft) T:\Windows\SysWOW64\cero.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00051712 _____ (Microsoft) T:\Windows\SysWOW64\esrb.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00046592 _____ (Microsoft) T:\Windows\SysWOW64\fpb.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00045568 _____ (Microsoft) T:\Windows\SysWOW64\oflc-nz.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00044544 _____ (Microsoft) T:\Windows\SysWOW64\pegibbfc.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00043520 _____ (Microsoft) T:\Windows\SysWOW64\csrr.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00040960 _____ (Microsoft) T:\Windows\SysWOW64\cob-au.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00030720 _____ (Microsoft) T:\Windows\SysWOW64\usk.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00023552 _____ (Microsoft) T:\Windows\SysWOW64\oflc.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00021504 _____ (Microsoft) T:\Windows\SysWOW64\grb.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) T:\Windows\SysWOW64\pegi-pt.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) T:\Windows\SysWOW64\pegi-fi.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) T:\Windows\SysWOW64\pegi.rs
2014-07-04 14:50 - 2012-12-07 05:46 - 00015360 _____ (Microsoft) T:\Windows\SysWOW64\djctq.rs
2014-07-04 14:50 - 2012-10-09 13:17 - 00226816 _____ (Microsoft Corporation) T:\Windows\system32\dhcpcore6.dll
2014-07-04 14:50 - 2012-10-09 13:17 - 00055296 _____ (Microsoft Corporation) T:\Windows\system32\dhcpcsvc6.dll
2014-07-04 14:50 - 2012-10-09 12:40 - 00193536 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dhcpcore6.dll
2014-07-04 14:50 - 2012-10-09 12:40 - 00044032 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dhcpcsvc6.dll
2014-07-04 14:50 - 2012-10-03 12:44 - 00303104 _____ (Microsoft Corporation) T:\Windows\system32\nlasvc.dll
2014-07-04 14:50 - 2012-10-03 12:44 - 00246272 _____ (Microsoft Corporation) T:\Windows\system32\netcorehc.dll
2014-07-04 14:50 - 2012-10-03 12:44 - 00216576 _____ (Microsoft Corporation) T:\Windows\system32\ncsi.dll
2014-07-04 14:50 - 2012-10-03 12:44 - 00070656 _____ (Microsoft Corporation) T:\Windows\system32\nlaapi.dll
2014-07-04 14:50 - 2012-10-03 12:44 - 00018944 _____ (Microsoft Corporation) T:\Windows\system32\netevent.dll
2014-07-04 14:50 - 2012-10-03 12:42 - 00569344 _____ (Microsoft Corporation) T:\Windows\system32\iphlpsvc.dll
2014-07-04 14:50 - 2012-10-03 11:42 - 00175104 _____ (Microsoft Corporation) T:\Windows\SysWOW64\netcorehc.dll
2014-07-04 14:50 - 2012-10-03 11:42 - 00156672 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ncsi.dll
2014-07-04 14:50 - 2012-10-03 11:42 - 00018944 _____ (Microsoft Corporation) T:\Windows\SysWOW64\netevent.dll
2014-07-04 14:50 - 2012-10-03 11:07 - 00045568 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\tcpipreg.sys
2014-07-04 14:50 - 2012-08-22 13:12 - 00950128 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\ndis.sys
2014-07-04 14:50 - 2012-08-21 16:01 - 00245760 _____ (Microsoft Corporation) T:\Windows\system32\OxpsConverter.exe
2014-07-04 14:50 - 2012-07-04 15:26 - 00041472 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\RNDISMP.sys
2014-07-04 14:50 - 2012-05-05 03:36 - 00503808 _____ (Microsoft Corporation) T:\Windows\system32\srcore.dll
2014-07-04 14:50 - 2012-05-05 02:46 - 00043008 _____ (Microsoft Corporation) T:\Windows\SysWOW64\srclient.dll
2014-07-04 14:50 - 2012-05-04 06:00 - 00366592 _____ (Microsoft Corporation) T:\Windows\system32\qdvd.dll
2014-07-04 14:50 - 2012-05-04 04:59 - 00514560 _____ (Microsoft Corporation) T:\Windows\SysWOW64\qdvd.dll
2014-07-04 14:50 - 2012-05-01 00:40 - 00209920 _____ (Microsoft Corporation) T:\Windows\system32\profsvc.dll
2014-07-04 14:50 - 2012-04-07 07:31 - 03216384 _____ (Microsoft Corporation) T:\Windows\system32\msi.dll
2014-07-04 14:50 - 2012-04-07 06:26 - 02342400 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msi.dll
2014-07-04 14:50 - 2012-01-13 02:12 - 00052224 _____ (Microsoft Corporation) T:\Windows\SysWOW64\nlaapi.dll
2014-07-04 14:50 - 2012-01-04 05:44 - 00509952 _____ (Microsoft Corporation) T:\Windows\system32\ntshrui.dll
2014-07-04 14:50 - 2012-01-04 03:58 - 00442880 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ntshrui.dll
2014-07-04 14:50 - 2011-12-30 01:26 - 00515584 _____ (Microsoft Corporation) T:\Windows\system32\timedate.cpl
2014-07-04 14:50 - 2011-12-30 00:27 - 00478720 _____ (Microsoft Corporation) T:\Windows\SysWOW64\timedate.cpl
2014-07-04 14:50 - 2011-06-16 00:49 - 00199680 _____ (Microsoft Corporation) T:\Windows\system32\xmllite.dll
2014-07-04 14:50 - 2011-06-15 23:33 - 00180224 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xmllite.dll
2014-07-04 14:50 - 2011-05-04 00:25 - 02315776 _____ (Microsoft Corporation) T:\Windows\system32\tquery.dll
2014-07-04 14:50 - 2011-05-04 00:22 - 02223616 _____ (Microsoft Corporation) T:\Windows\system32\mssrch.dll
2014-07-04 14:50 - 2011-05-04 00:22 - 00778752 _____ (Microsoft Corporation) T:\Windows\system32\mssvp.dll
2014-07-04 14:50 - 2011-05-04 00:22 - 00491520 _____ (Microsoft Corporation) T:\Windows\system32\mssph.dll
2014-07-04 14:50 - 2011-05-04 00:22 - 00288256 _____ (Microsoft Corporation) T:\Windows\system32\mssphtb.dll
2014-07-04 14:50 - 2011-05-04 00:22 - 00075264 _____ (Microsoft Corporation) T:\Windows\system32\msscntrs.dll
2014-07-04 14:50 - 2011-05-04 00:19 - 00591872 _____ (Microsoft Corporation) T:\Windows\system32\SearchIndexer.exe
2014-07-04 14:50 - 2011-05-04 00:19 - 00249856 _____ (Microsoft Corporation) T:\Windows\system32\SearchProtocolHost.exe
2014-07-04 14:50 - 2011-05-04 00:19 - 00113664 _____ (Microsoft Corporation) T:\Windows\system32\SearchFilterHost.exe
2014-07-04 14:50 - 2011-05-03 23:34 - 01549312 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tquery.dll
2014-07-04 14:50 - 2011-05-03 23:32 - 01401344 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mssrch.dll
2014-07-04 14:50 - 2011-05-03 23:32 - 00666624 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mssvp.dll
2014-07-04 14:50 - 2011-05-03 23:32 - 00337408 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mssph.dll
2014-07-04 14:50 - 2011-05-03 23:32 - 00197120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mssphtb.dll
2014-07-04 14:50 - 2011-05-03 23:32 - 00059392 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msscntrs.dll
2014-07-04 14:50 - 2011-05-03 23:28 - 00427520 _____ (Microsoft Corporation) T:\Windows\SysWOW64\SearchIndexer.exe
2014-07-04 14:50 - 2011-05-03 23:28 - 00164352 _____ (Microsoft Corporation) T:\Windows\SysWOW64\SearchProtocolHost.exe
2014-07-04 14:50 - 2011-05-03 23:28 - 00086528 _____ (Microsoft Corporation) T:\Windows\SysWOW64\SearchFilterHost.exe
2014-07-04 14:50 - 2011-02-18 05:51 - 00031232 _____ (Microsoft Corporation) T:\Windows\system32\prevhost.exe
2014-07-04 14:50 - 2011-02-18 00:39 - 00031232 _____ (Microsoft Corporation) T:\Windows\SysWOW64\prevhost.exe
2014-07-04 14:49 - 2014-01-23 21:37 - 01684928 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\ntfs.sys
2014-07-04 14:48 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) T:\Windows\system32\usp10.dll
2014-07-04 14:48 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) T:\Windows\SysWOW64\usp10.dll
2014-07-04 14:48 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\tcpip.sys
2014-07-04 14:48 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-07-04 14:48 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) T:\Windows\system32\msxml6.dll
2014-07-04 14:48 - 2014-03-26 09:44 - 01882112 _____ (Microsoft Corporation) T:\Windows\system32\msxml3.dll
2014-07-04 14:48 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) T:\Windows\system32\msxml6r.dll
2014-07-04 14:48 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) T:\Windows\system32\msxml3r.dll
2014-07-04 14:48 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msxml6.dll
2014-07-04 14:48 - 2014-03-26 09:27 - 01237504 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msxml3.dll
2014-07-04 14:48 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msxml6r.dll
2014-07-04 14:48 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msxml3r.dll
2014-07-04 14:48 - 2014-03-24 21:43 - 14175744 _____ (Microsoft Corporation) T:\Windows\system32\shell32.dll
2014-07-04 14:48 - 2014-03-24 21:09 - 12874240 _____ (Microsoft Corporation) T:\Windows\SysWOW64\shell32.dll
2014-07-04 14:48 - 2014-01-28 21:32 - 00484864 _____ (Microsoft Corporation) T:\Windows\system32\wer.dll
2014-07-04 14:48 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wer.dll
2014-07-04 14:48 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\netio.sys
2014-07-04 14:48 - 2013-11-11 21:23 - 00002048 _____ (Microsoft Corporation) T:\Windows\system32\tzres.dll
2014-07-04 14:48 - 2013-11-11 21:07 - 00002048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tzres.dll
2014-07-04 14:48 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) T:\Windows\system32\imagehlp.dll
2014-07-04 14:48 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) T:\Windows\SysWOW64\imagehlp.dll
2014-07-04 14:48 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) T:\Windows\system32\crypt32.dll
2014-07-04 14:48 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) T:\Windows\SysWOW64\crypt32.dll
2014-07-04 14:48 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) T:\Windows\system32\wintrust.dll
2014-07-04 14:48 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) T:\Windows\system32\cryptsvc.dll
2014-07-04 14:48 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) T:\Windows\system32\cryptnet.dll
2014-07-04 14:48 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wintrust.dll
2014-07-04 14:48 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cryptsvc.dll
2014-07-04 14:48 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cryptnet.dll
2014-07-04 14:48 - 2013-07-04 07:50 - 00633856 _____ (Microsoft Corporation) T:\Windows\system32\comctl32.dll
2014-07-04 14:48 - 2013-07-04 06:50 - 00530432 _____ (Microsoft Corporation) T:\Windows\SysWOW64\comctl32.dll
2014-07-04 14:48 - 2013-02-27 01:02 - 00111448 _____ (Microsoft Corporation) T:\Windows\system32\consent.exe
2014-07-04 14:48 - 2013-02-27 00:47 - 00070144 _____ (Microsoft Corporation) T:\Windows\system32\appinfo.dll
2014-07-04 14:48 - 2011-11-17 01:35 - 00395776 _____ (Microsoft Corporation) T:\Windows\system32\webio.dll
2014-07-04 14:48 - 2011-11-17 00:35 - 00314880 _____ (Microsoft Corporation) T:\Windows\SysWOW64\webio.dll
2014-07-04 14:48 - 2011-10-26 00:25 - 01572864 _____ (Microsoft Corporation) T:\Windows\system32\quartz.dll
2014-07-04 14:48 - 2011-10-25 23:32 - 01328128 _____ (Microsoft Corporation) T:\Windows\SysWOW64\quartz.dll
2014-07-04 14:48 - 2011-07-08 21:46 - 00288768 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\mrxsmb10.sys
2014-07-04 14:48 - 2011-06-15 05:02 - 00212992 _____ (Microsoft Corporation) T:\Windows\system32\odbctrac.dll
2014-07-04 14:48 - 2011-06-15 05:02 - 00163840 _____ (Microsoft Corporation) T:\Windows\system32\odbccp32.dll
2014-07-04 14:48 - 2011-06-15 05:02 - 00106496 _____ (Microsoft Corporation) T:\Windows\system32\odbccu32.dll
2014-07-04 14:48 - 2011-06-15 05:02 - 00106496 _____ (Microsoft Corporation) T:\Windows\system32\odbccr32.dll
2014-07-04 14:48 - 2011-06-15 03:55 - 00319488 _____ (Microsoft Corporation) T:\Windows\SysWOW64\odbcjt32.dll
2014-07-04 14:48 - 2011-06-15 03:55 - 00163840 _____ (Microsoft Corporation) T:\Windows\SysWOW64\odbctrac.dll
2014-07-04 14:48 - 2011-06-15 03:55 - 00122880 _____ (Microsoft Corporation) T:\Windows\SysWOW64\odbccp32.dll
2014-07-04 14:48 - 2011-06-15 03:55 - 00086016 _____ (Microsoft Corporation) T:\Windows\SysWOW64\odbccu32.dll
2014-07-04 14:48 - 2011-06-15 03:55 - 00081920 _____ (Microsoft Corporation) T:\Windows\SysWOW64\odbccr32.dll
2014-07-04 14:48 - 2011-04-26 21:40 - 00158208 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\mrxsmb.sys
2014-07-04 14:48 - 2011-04-26 21:39 - 00128000 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\mrxsmb20.sys
2014-07-04 14:48 - 2011-04-09 01:58 - 00142336 _____ (Microsoft Corporation) T:\Windows\system32\poqexec.exe
2014-07-04 14:48 - 2011-04-09 00:56 - 00123904 _____ (Microsoft Corporation) T:\Windows\SysWOW64\poqexec.exe
2014-07-04 14:48 - 2010-12-23 05:42 - 01118720 _____ (Microsoft Corporation) T:\Windows\system32\sbe.dll
2014-07-04 14:48 - 2010-12-23 05:42 - 00961024 _____ (Microsoft Corporation) T:\Windows\system32\CPFilters.dll
2014-07-04 14:48 - 2010-12-23 05:36 - 00259072 _____ (Microsoft Corporation) T:\Windows\system32\mpg2splt.ax
2014-07-04 14:48 - 2010-12-23 00:54 - 00850944 _____ (Microsoft Corporation) T:\Windows\SysWOW64\sbe.dll
2014-07-04 14:48 - 2010-12-23 00:54 - 00642048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\CPFilters.dll
2014-07-04 14:48 - 2010-12-23 00:50 - 00199680 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mpg2splt.ax
2014-07-04 14:47 - 2014-07-04 14:47 - 17292760 _____ (Malwarebytes Corporation ) T:\Users\TD\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-04 14:47 - 2014-07-04 14:47 - 17292760 _____ (Malwarebytes Corporation ) T:\Users\TD\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-07-04 14:47 - 2014-07-04 14:47 - 00000000 ____D () T:\Users\TD\AppData\Temp
2014-07-04 14:47 - 2014-04-11 21:22 - 00155072 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\ksecpkg.sys
2014-07-04 14:47 - 2014-04-11 21:22 - 00095680 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\ksecdd.sys
2014-07-04 14:47 - 2014-04-11 21:19 - 00136192 _____ (Microsoft Corporation) T:\Windows\system32\sspicli.dll
2014-07-04 14:47 - 2014-04-11 21:19 - 00031232 _____ (Microsoft Corporation) T:\Windows\system32\lsass.exe
2014-07-04 14:47 - 2014-04-11 21:19 - 00029184 _____ (Microsoft Corporation) T:\Windows\system32\sspisrv.dll
2014-07-04 14:47 - 2014-04-11 21:19 - 00028160 _____ (Microsoft Corporation) T:\Windows\system32\secur32.dll
2014-07-04 14:47 - 2014-03-04 04:47 - 05550016 _____ (Microsoft Corporation) T:\Windows\system32\ntoskrnl.exe
2014-07-04 14:47 - 2014-03-04 04:44 - 01163264 _____ (Microsoft Corporation) T:\Windows\system32\kernel32.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00728064 _____ (Microsoft Corporation) T:\Windows\system32\kerberos.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00722944 _____ (Microsoft Corporation) T:\Windows\system32\objsel.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00424960 _____ (Microsoft Corporation) T:\Windows\system32\KernelBase.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00362496 _____ (Microsoft Corporation) T:\Windows\system32\wow64win.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00340992 _____ (Microsoft Corporation) T:\Windows\system32\schannel.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00314880 _____ (Microsoft Corporation) T:\Windows\system32\msv1_0.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00243712 _____ (Microsoft Corporation) T:\Windows\system32\wow64.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00210944 _____ (Microsoft Corporation) T:\Windows\system32\wdigest.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00086528 _____ (Microsoft Corporation) T:\Windows\system32\TSpkg.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00039936 _____ (Microsoft Corporation) T:\Windows\system32\wincredprovider.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00016384 _____ (Microsoft Corporation) T:\Windows\system32\ntvdm64.dll
2014-07-04 14:47 - 2014-03-04 04:44 - 00013312 _____ (Microsoft Corporation) T:\Windows\system32\wow64cpu.dll
2014-07-04 14:47 - 2014-03-04 04:43 - 00455168 _____ (Microsoft Corporation) T:\Windows\system32\winlogon.exe
2014-07-04 14:47 - 2014-03-04 04:43 - 00057344 _____ (Microsoft Corporation) T:\Windows\system32\cngprovider.dll
2014-07-04 14:47 - 2014-03-04 04:43 - 00056832 _____ (Microsoft Corporation) T:\Windows\system32\adprovider.dll
2014-07-04 14:47 - 2014-03-04 04:43 - 00053760 _____ (Microsoft Corporation) T:\Windows\system32\capiprovider.dll
2014-07-04 14:47 - 2014-03-04 04:43 - 00052736 _____ (Microsoft Corporation) T:\Windows\system32\dpapiprovider.dll
2014-07-04 14:47 - 2014-03-04 04:43 - 00044544 _____ (Microsoft Corporation) T:\Windows\system32\dimsroam.dll
2014-07-04 14:47 - 2014-03-04 04:43 - 00022016 _____ (Microsoft Corporation) T:\Windows\system32\credssp.dll
2014-07-04 14:47 - 2014-03-04 04:20 - 03969984 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ntkrnlpa.exe
2014-07-04 14:47 - 2014-03-04 04:20 - 03914176 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ntoskrnl.exe
2014-07-04 14:47 - 2014-03-04 04:17 - 00550912 _____ (Microsoft Corporation) T:\Windows\SysWOW64\kerberos.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00538112 _____ (Microsoft Corporation) T:\Windows\SysWOW64\objsel.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00259584 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msv1_0.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00247808 _____ (Microsoft Corporation) T:\Windows\SysWOW64\schannel.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00172032 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wdigest.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00065536 _____ (Microsoft Corporation) T:\Windows\SysWOW64\TSpkg.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00051200 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cngprovider.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00049664 _____ (Microsoft Corporation) T:\Windows\SysWOW64\adprovider.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00048128 _____ (Microsoft Corporation) T:\Windows\SysWOW64\capiprovider.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00047616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dpapiprovider.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00036864 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dimsroam.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00035328 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wincredprovider.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00017408 _____ (Microsoft Corporation) T:\Windows\SysWOW64\credssp.dll
2014-07-04 14:47 - 2014-03-04 04:17 - 00014336 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ntvdm64.dll
2014-07-04 14:47 - 2014-03-04 04:16 - 01114112 _____ (Microsoft Corporation) T:\Windows\SysWOW64\kernel32.dll
2014-07-04 14:47 - 2014-03-04 04:16 - 00274944 _____ (Microsoft Corporation) T:\Windows\SysWOW64\KernelBase.dll
2014-07-04 14:47 - 2014-03-04 04:16 - 00025600 _____ (Microsoft Corporation) T:\Windows\SysWOW64\setup16.exe
2014-07-04 14:47 - 2014-03-04 04:16 - 00005120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wow32.dll
2014-07-04 14:47 - 2014-03-04 03:09 - 00007680 _____ (Microsoft Corporation) T:\Windows\SysWOW64\instnm.exe
2014-07-04 14:47 - 2014-03-04 03:09 - 00002048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\user.exe
2014-07-04 14:47 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usbhub.sys
2014-07-04 14:47 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usbport.sys
2014-07-04 14:47 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usbccgp.sys
2014-07-04 14:47 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usbehci.sys
2014-07-04 14:47 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usbd.sys
2014-07-04 14:47 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\drmk.sys
2014-07-04 14:47 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\portcls.sys
2014-07-04 14:47 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) T:\Windows\system32\gdi32.dll
2014-07-04 14:47 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) T:\Windows\SysWOW64\gdi32.dll
2014-07-04 14:47 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) T:\Windows\system32\ncrypt.dll
2014-07-04 14:47 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ncrypt.dll
2014-07-04 14:47 - 2013-08-01 21:14 - 00215040 _____ (Microsoft Corporation) T:\Windows\system32\winsrv.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00043520 _____ (Microsoft Corporation) T:\Windows\system32\csrsrv.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00006656 _____ (Microsoft Corporation) T:\Windows\system32\apisetschema.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00006144 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00005120 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00006656 _____ (Microsoft Corporation) T:\Windows\SysWOW64\apisetschema.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00005120 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00004608 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 20:09 - 00338432 _____ (Microsoft Corporation) T:\Windows\system32\conhost.exe
2014-07-04 14:47 - 2013-08-01 19:59 - 00112640 _____ (Microsoft Corporation) T:\Windows\system32\smss.exe
2014-07-04 14:47 - 2013-08-01 19:43 - 00006144 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 19:43 - 00004608 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 19:43 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-07-04 14:47 - 2013-08-01 19:43 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-07-04 14:47 - 2013-07-25 21:24 - 00197120 _____ (Microsoft Corporation) T:\Windows\system32\shdocvw.dll
2014-07-04 14:47 - 2013-07-25 20:55 - 00180224 _____ (Microsoft Corporation) T:\Windows\SysWOW64\shdocvw.dll
2014-07-04 14:47 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) T:\Windows\system32\WMVDECOD.DLL
2014-07-04 14:47 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) T:\Windows\SysWOW64\WMVDECOD.DLL
2014-07-04 14:47 - 2013-07-20 05:33 - 00124112 _____ (Microsoft Corporation) T:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-07-04 14:47 - 2013-07-20 05:33 - 00102608 _____ (Microsoft Corporation) T:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-07-04 14:47 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usbcir.sys
2014-07-04 14:47 - 2013-07-09 00:51 - 01217024 _____ (Microsoft Corporation) T:\Windows\system32\rpcrt4.dll
2014-07-04 14:47 - 2013-07-08 23:52 - 00663552 _____ (Microsoft Corporation) T:\Windows\SysWOW64\rpcrt4.dll
2014-07-04 14:47 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\cng.sys
2014-07-04 14:47 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\hidclass.sys
2014-07-04 14:47 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\hidparse.sys
2014-07-04 14:47 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\Wdf01000.sys
2014-07-04 14:47 - 2013-06-14 23:32 - 00039936 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\tssecsrv.sys
2014-07-04 14:47 - 2013-06-06 00:50 - 00041472 _____ (Microsoft Corporation) T:\Windows\system32\lpk.dll
2014-07-04 14:47 - 2013-06-06 00:49 - 00100864 _____ (Microsoft Corporation) T:\Windows\system32\fontsub.dll
2014-07-04 14:47 - 2013-06-06 00:49 - 00014336 _____ (Microsoft Corporation) T:\Windows\system32\dciman32.dll
2014-07-04 14:47 - 2013-06-06 00:47 - 00046080 _____ (Adobe Systems) T:\Windows\system32\atmlib.dll
2014-07-04 14:47 - 2013-06-05 23:57 - 00025600 _____ (Microsoft Corporation) T:\Windows\SysWOW64\lpk.dll
2014-07-04 14:47 - 2013-06-05 23:51 - 00070656 _____ (Microsoft Corporation) T:\Windows\SysWOW64\fontsub.dll
2014-07-04 14:47 - 2013-06-05 23:50 - 00010240 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dciman32.dll
2014-07-04 14:47 - 2013-06-05 22:30 - 00368128 _____ (Adobe Systems Incorporated) T:\Windows\system32\atmfd.dll
2014-07-04 14:47 - 2013-06-05 22:01 - 00295424 _____ (Adobe Systems Incorporated) T:\Windows\SysWOW64\atmfd.dll
2014-07-04 14:47 - 2013-06-05 22:01 - 00034304 _____ (Adobe Systems) T:\Windows\SysWOW64\atmlib.dll
2014-07-04 14:47 - 2013-04-26 00:51 - 00751104 _____ (Microsoft Corporation) T:\Windows\system32\win32spl.dll
2014-07-04 14:47 - 2013-04-25 23:55 - 00492544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\win32spl.dll
2014-07-04 14:47 - 2013-02-11 23:12 - 00019968 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\usb8023.sys
2014-07-04 14:47 - 2012-11-22 22:13 - 00068608 _____ (Microsoft Corporation) T:\Windows\system32\taskhost.exe
2014-07-04 14:47 - 2012-11-02 00:59 - 00478208 _____ (Microsoft Corporation) T:\Windows\system32\dpnet.dll
2014-07-04 14:47 - 2012-11-02 00:11 - 00376832 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dpnet.dll
2014-07-04 14:47 - 2012-09-25 17:47 - 00078336 _____ (Microsoft Corporation) T:\Windows\SysWOW64\synceng.dll
2014-07-04 14:47 - 2012-09-25 17:46 - 00095744 _____ (Microsoft Corporation) T:\Windows\system32\synceng.dll
2014-07-04 14:47 - 2012-04-27 22:55 - 00210944 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\rdpwd.sys
2014-07-04 14:47 - 2012-04-26 00:41 - 00149504 _____ (Microsoft Corporation) T:\Windows\system32\rdpcorekmts.dll
2014-07-04 14:47 - 2012-04-26 00:41 - 00077312 _____ (Microsoft Corporation) T:\Windows\system32\rdpwsx.dll
2014-07-04 14:47 - 2012-04-26 00:34 - 00009216 _____ (Microsoft Corporation) T:\Windows\system32\rdrmemptylst.exe
2014-07-04 14:47 - 2012-03-17 02:58 - 00075120 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\partmgr.sys
2014-07-04 14:47 - 2011-08-17 00:26 - 00613888 _____ (Microsoft Corporation) T:\Windows\system32\psisdecd.dll
2014-07-04 14:47 - 2011-08-17 00:25 - 00108032 _____ (Microsoft Corporation) T:\Windows\system32\psisrndr.ax
2014-07-04 14:47 - 2011-08-16 23:24 - 00465408 _____ (Microsoft Corporation) T:\Windows\SysWOW64\psisdecd.dll
2014-07-04 14:47 - 2011-08-16 23:19 - 00075776 _____ (Microsoft Corporation) T:\Windows\SysWOW64\psisrndr.ax
2014-07-04 14:47 - 2011-05-24 06:42 - 00404480 _____ (Microsoft Corporation) T:\Windows\system32\umpnpmgr.dll
2014-07-04 14:47 - 2011-05-24 05:40 - 00064512 _____ (Microsoft Corporation) T:\Windows\SysWOW64\devobj.dll
2014-07-04 14:47 - 2011-05-24 05:40 - 00044544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\devrtl.dll
2014-07-04 14:47 - 2011-05-24 05:39 - 00145920 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cfgmgr32.dll
2014-07-04 14:47 - 2011-05-24 05:37 - 00252928 _____ (Microsoft Corporation) T:\Windows\SysWOW64\drvinst.exe
2014-07-04 14:47 - 2011-04-28 22:06 - 00467456 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\srv.sys
2014-07-04 14:47 - 2011-04-28 22:05 - 00410112 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\srv2.sys
2014-07-04 14:47 - 2011-04-28 22:05 - 00168448 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\srvnet.sys
2014-07-04 14:47 - 2011-03-11 01:34 - 01395712 _____ (Microsoft Corporation) T:\Windows\system32\mfc42.dll
2014-07-04 14:47 - 2011-03-11 01:34 - 01359872 _____ (Microsoft Corporation) T:\Windows\system32\mfc42u.dll
2014-07-04 14:47 - 2011-03-11 00:33 - 01164288 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mfc42u.dll
2014-07-04 14:47 - 2011-03-11 00:33 - 01137664 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mfc42.dll
2014-07-04 14:47 - 2011-03-03 01:24 - 00357888 _____ (Microsoft Corporation) T:\Windows\system32\dnsapi.dll
2014-07-04 14:47 - 2011-03-03 01:24 - 00183296 _____ (Microsoft Corporation) T:\Windows\system32\dnsrslvr.dll
2014-07-04 14:47 - 2011-03-03 01:21 - 00030208 _____ (Microsoft Corporation) T:\Windows\system32\dnscacheugc.exe
2014-07-04 14:47 - 2011-03-03 00:38 - 00270336 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dnsapi.dll
2014-07-04 14:47 - 2011-03-03 00:36 - 00028672 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dnscacheugc.exe
2014-07-04 14:47 - 2011-02-05 12:10 - 00642944 _____ (Microsoft Corporation) T:\Windows\system32\winload.efi
2014-07-04 14:47 - 2011-02-05 12:10 - 00020352 _____ (Microsoft Corporation) T:\Windows\system32\kdusb.dll
2014-07-04 14:47 - 2011-02-05 12:10 - 00019328 _____ (Microsoft Corporation) T:\Windows\system32\kd1394.dll
2014-07-04 14:47 - 2011-02-05 12:10 - 00017792 _____ (Microsoft Corporation) T:\Windows\system32\kdcom.dll
2014-07-04 14:47 - 2011-02-05 12:06 - 00605552 _____ (Microsoft Corporation) T:\Windows\system32\winload.exe
2014-07-04 14:47 - 2011-02-05 12:06 - 00566208 _____ (Microsoft Corporation) T:\Windows\system32\winresume.efi
2014-07-04 14:47 - 2011-02-05 12:06 - 00518672 _____ (Microsoft Corporation) T:\Windows\system32\winresume.exe
2014-07-04 14:44 - 2013-05-13 00:50 - 00052224 _____ (Microsoft Corporation) T:\Windows\system32\certenc.dll
2014-07-04 14:44 - 2013-05-12 22:43 - 01192448 _____ (Microsoft Corporation) T:\Windows\system32\certutil.exe
2014-07-04 14:44 - 2013-05-12 22:08 - 00903168 _____ (Microsoft Corporation) T:\Windows\SysWOW64\certutil.exe
2014-07-04 14:44 - 2013-05-12 22:08 - 00043008 _____ (Microsoft Corporation) T:\Windows\SysWOW64\certenc.dll
2014-07-04 14:44 - 2012-07-04 17:16 - 00073216 _____ (Microsoft Corporation) T:\Windows\system32\netapi32.dll
2014-07-04 14:44 - 2012-07-04 17:13 - 00136704 _____ (Microsoft Corporation) T:\Windows\system32\browser.dll
2014-07-04 14:44 - 2012-07-04 17:13 - 00059392 _____ (Microsoft Corporation) T:\Windows\system32\browcli.dll
2014-07-04 14:44 - 2012-07-04 16:16 - 00057344 _____ (Microsoft Corporation) T:\Windows\SysWOW64\netapi32.dll
2014-07-04 14:44 - 2012-07-04 16:14 - 00041984 _____ (Microsoft Corporation) T:\Windows\SysWOW64\browcli.dll
2014-07-04 14:44 - 2011-12-16 03:46 - 00634880 _____ (Microsoft Corporation) T:\Windows\system32\msvcrt.dll
2014-07-04 14:44 - 2011-12-16 02:52 - 00690688 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msvcrt.dll
2014-07-04 14:44 - 2011-05-03 00:29 - 00976896 _____ (Microsoft Corporation) T:\Windows\system32\inetcomm.dll
2014-07-04 14:44 - 2011-05-02 23:30 - 00741376 _____ (Microsoft Corporation) T:\Windows\SysWOW64\inetcomm.dll
2014-07-04 14:44 - 2011-02-12 06:34 - 00267776 _____ (Microsoft Corporation) T:\Windows\system32\FXSCOVER.exe
2014-07-04 14:43 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) T:\Windows\system32\wshom.ocx
2014-07-04 14:43 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) T:\Windows\system32\scrrun.dll
2014-07-04 14:43 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) T:\Windows\system32\nshwfp.dll
2014-07-04 14:43 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) T:\Windows\system32\IKEEXT.DLL
2014-07-04 14:43 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) T:\Windows\system32\FWPUCLNT.DLL
2014-07-04 14:43 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wshom.ocx
2014-07-04 14:43 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) T:\Windows\SysWOW64\nshwfp.dll
2014-07-04 14:43 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) T:\Windows\SysWOW64\scrrun.dll
2014-07-04 14:43 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\FWPUCLNT.DLL
2014-07-04 14:43 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) T:\Windows\system32\wscript.exe
2014-07-04 14:43 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) T:\Windows\system32\cscript.exe
2014-07-04 14:43 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wscript.exe
2014-07-04 14:43 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cscript.exe
2014-07-04 14:43 - 2013-08-01 07:09 - 00983488 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\dxgkrnl.sys
2014-07-04 14:43 - 2013-04-10 01:01 - 00265064 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\dxgmms1.sys
2014-07-04 14:43 - 2012-06-06 01:02 - 01133568 _____ (Microsoft Corporation) T:\Windows\system32\cdosys.dll
2014-07-04 14:43 - 2012-06-06 00:03 - 00805376 _____ (Microsoft Corporation) T:\Windows\SysWOW64\cdosys.dll
2014-07-04 14:43 - 2012-05-14 00:26 - 00956928 _____ (Microsoft Corporation) T:\Windows\system32\localspl.dll
2014-07-04 14:43 - 2011-11-19 09:58 - 00077312 _____ (Microsoft Corporation) T:\Windows\system32\packager.dll
2014-07-04 14:43 - 2011-11-19 09:01 - 00067072 _____ (Microsoft Corporation) T:\Windows\SysWOW64\packager.dll
2014-07-04 14:43 - 2011-10-15 01:31 - 00723456 _____ (Microsoft Corporation) T:\Windows\system32\EncDec.dll
2014-07-04 14:43 - 2011-10-15 00:38 - 00534528 _____ (Microsoft Corporation) T:\Windows\SysWOW64\EncDec.dll
2014-07-04 14:43 - 2011-08-27 00:37 - 00861696 _____ (Microsoft Corporation) T:\Windows\system32\oleaut32.dll
2014-07-04 14:43 - 2011-08-27 00:37 - 00331776 _____ (Microsoft Corporation) T:\Windows\system32\oleacc.dll
2014-07-04 14:43 - 2011-08-26 23:26 - 00571904 _____ (Microsoft Corporation) T:\Windows\SysWOW64\oleaut32.dll
2014-07-04 14:43 - 2011-08-26 23:26 - 00233472 _____ (Microsoft Corporation) T:\Windows\SysWOW64\oleacc.dll
2014-07-04 14:43 - 2011-02-22 23:55 - 00090624 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\bowser.sys
2014-07-04 14:43 - 2011-02-03 06:25 - 00144384 _____ (Microsoft Corporation) T:\Windows\system32\cdd.dll
2014-07-04 14:42 - 2012-03-01 01:46 - 00023408 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\fs_rec.sys
2014-07-04 14:42 - 2012-03-01 01:28 - 00005120 _____ (Microsoft Corporation) T:\Windows\system32\wmi.dll
2014-07-04 14:42 - 2012-03-01 00:29 - 00005120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wmi.dll
2014-07-04 14:38 - 2014-07-20 19:18 - 00001416 _____ () T:\Windows\Tasks\e2a59d95-31d0-48e9-a5d9-e501564d2ffa-5_user.job
2014-07-04 14:37 - 2014-07-20 19:18 - 00000916 _____ () T:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-04 14:37 - 2014-07-06 20:42 - 00000920 _____ () T:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-04 14:37 - 2014-07-04 14:38 - 00000128 _____ () T:\Windows\Reimage.ini
2014-07-04 14:37 - 2014-07-04 14:37 - 00003918 _____ () T:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-07-04 14:37 - 2014-07-04 14:37 - 00003664 _____ () T:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-07-04 14:37 - 2014-07-04 14:37 - 00000282 _____ () T:\Windows\system32\bddel.dat
2014-07-04 14:37 - 2014-07-04 14:37 - 00000000 ____D () T:\Users\TD\AppData\Local\globalUpdate
2014-07-04 14:37 - 2014-07-04 14:37 - 00000000 ____D () T:\Program Files (x86)\globalUpdate
2014-07-04 14:35 - 2014-07-04 14:35 - 00929416 _____ (CNET Download.com) T:\Users\TD\Downloads\cbsidlm-cbsi188-CrystalDiskInfo-SEO-10832082.exe
2014-07-04 00:13 - 2014-07-06 15:59 - 00000000 ____D () T:\Windows\Panther
2014-07-04 00:11 - 2014-07-04 00:11 - 00000000 ____D () T:\Windows.old
2014-07-04 00:06 - 2014-07-04 00:06 - 00076944 _____ (BitDefender) T:\Windows\system32\Drivers\bdvedisk.sys
2014-07-03 23:57 - 2014-07-03 23:57 - 02167408 _____ ( ) T:\Users\TD\Downloads\023f.exe
2014-07-03 23:44 - 2014-06-12 19:19 - 00609056 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvStreaming.exe
2014-07-03 23:42 - 2014-06-12 21:59 - 01890264 _____ (NVIDIA Corporation) T:\Windows\system32\nvdispco6434043.dll
2014-07-03 23:42 - 2014-06-12 21:59 - 01542088 _____ (NVIDIA Corporation) T:\Windows\system32\nvdispgenco6434043.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 13911928 _____ (NVIDIA Corporation) T:\Windows\system32\nvopencl.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 13824408 _____ (NVIDIA Corporation) T:\Windows\system32\nvcuda.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 11272544 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvopencl.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 11211224 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvcuda.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 04248520 _____ (NVIDIA Corporation) T:\Windows\system32\nvcuvid.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 03989464 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvcuvid.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 00946120 _____ (NVIDIA Corporation) T:\Windows\system32\NvIFR64.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 00909256 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\NvIFR.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 00902616 _____ (NVIDIA Corporation) T:\Windows\system32\NvFBC64.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 00869336 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\NvFBC.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 00391456 _____ (NVIDIA Corporation) T:\Windows\system32\NvIFROpenGL.dll
2014-07-03 23:42 - 2014-06-12 21:48 - 00348120 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\NvIFROpenGL.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 31512352 _____ (NVIDIA Corporation) T:\Windows\system32\nvoglv64.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 24198616 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvoglv32.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 18625768 _____ (NVIDIA Corporation) T:\Windows\system32\nvwgf2umx.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 17553032 _____ (NVIDIA Corporation) T:\Windows\system32\nvd3dumx.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 16122344 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvwgf2um.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 12860888 _____ (NVIDIA Corporation) T:\Windows\system32\Drivers\nvlddmkm.sys
2014-07-03 23:42 - 2014-06-12 21:47 - 00502048 _____ (NVIDIA Corporation) T:\Windows\system32\nvEncodeAPI64.dll
2014-07-03 23:42 - 2014-06-12 21:47 - 00417568 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvEncodeAPI.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 22994392 _____ (NVIDIA Corporation) T:\Windows\system32\nvcompiler.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 15294296 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvcompiler.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 00846832 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvumdshim.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 00354016 _____ (NVIDIA Corporation) T:\Windows\system32\nvoglshim64.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 00305600 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvoglshim32.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 00166568 _____ (NVIDIA Corporation) T:\Windows\system32\nvinitx.dll
2014-07-03 23:42 - 2014-06-12 21:46 - 00146480 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvinit.dll
2014-07-03 23:34 - 2014-07-20 19:18 - 00000000 ____D () T:\ProgramData\NVIDIA
2014-07-03 23:34 - 2014-07-03 23:34 - 00000000 ____D () T:\Program Files (x86)\AGEIA Technologies
2014-07-03 23:34 - 2014-06-12 21:48 - 00075040 _____ (Khronos Group) T:\Windows\system32\OpenCL.dll
2014-07-03 23:34 - 2014-06-12 21:48 - 00062920 _____ (Khronos Group) T:\Windows\SysWOW64\OpenCL.dll
2014-07-03 23:34 - 2014-06-12 21:11 - 06783960 _____ (NVIDIA Corporation) T:\Windows\system32\nvcpl.dll
2014-07-03 23:34 - 2014-06-12 21:11 - 03523360 _____ (NVIDIA Corporation) T:\Windows\system32\nvsvc64.dll
2014-07-03 23:34 - 2014-06-12 21:11 - 00933208 _____ (NVIDIA Corporation) T:\Windows\system32\nvvsvc.exe
2014-07-03 23:34 - 2014-06-12 21:11 - 00387528 _____ (NVIDIA Corporation) T:\Windows\system32\nvmctray.dll
2014-07-03 23:34 - 2014-06-12 21:11 - 00062808 _____ (NVIDIA Corporation) T:\Windows\system32\nvshext.dll
2014-07-03 23:34 - 2014-06-06 12:40 - 03802247 _____ () T:\Windows\system32\nvcoproc.bin
2014-07-03 23:33 - 2014-06-12 21:59 - 00026353 _____ () T:\Windows\system32\nvinfo.pb
2014-07-03 23:33 - 2014-06-12 21:47 - 14497528 ____C (NVIDIA Corporation) T:\Windows\SysWOW64\nvd3dum.dll
2014-07-03 23:33 - 2014-06-12 21:46 - 02814120 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvapi.dll
2014-07-03 23:33 - 2014-06-12 21:46 - 00965312 _____ (NVIDIA Corporation) T:\Windows\system32\nvumdshimx.dll
2014-07-03 23:33 - 2014-06-12 21:45 - 03196304 _____ (NVIDIA Corporation) T:\Windows\system32\nvapi64.dll
2014-07-03 23:33 - 2014-06-11 03:57 - 01515296 _____ (NVIDIA Corporation) T:\Windows\system32\nvhdagenco6420103.dll
2014-07-03 23:33 - 2014-06-11 03:57 - 00197408 _____ (NVIDIA Corporation) T:\Windows\system32\Drivers\nvhda64v.sys
2014-07-03 23:33 - 2014-06-11 03:57 - 00031520 _____ (NVIDIA Corporation) T:\Windows\system32\nvhdap64.dll
2014-07-03 23:33 - 2014-05-19 21:44 - 01889112 _____ (NVIDIA Corporation) T:\Windows\system32\nvdispco6433788.dll
2014-07-03 23:33 - 2014-05-19 21:44 - 01541576 _____ (NVIDIA Corporation) T:\Windows\system32\nvdispgenco6433788.dll
2014-07-03 23:31 - 2014-07-04 16:23 - 00000000 ____D () T:\Program Files (x86)\NVIDIA Corporation
2014-07-03 23:31 - 2014-07-04 16:22 - 00000000 ____D () T:\Program Files\NVIDIA Corporation
2014-07-03 23:31 - 2014-07-03 23:44 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-03 23:31 - 2014-07-03 23:34 - 00000000 ____D () T:\ProgramData\NVIDIA Corporation
2014-07-03 23:31 - 2014-07-03 23:31 - 00000000 ____D () T:\Users\TD\AppData\Local\NVIDIA Corporation
2014-07-03 23:31 - 2014-07-03 23:31 - 00000000 ____D () T:\Users\TD\AppData\Local\NVIDIA
2014-07-03 23:31 - 2014-05-29 18:00 - 01291232 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvspbridge.dll
2014-07-03 23:31 - 2014-05-29 18:00 - 01122312 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvspcap.dll
2014-07-03 23:31 - 2014-05-29 17:59 - 01715176 _____ (NVIDIA Corporation) T:\Windows\system32\nvspbridge64.dll
2014-07-03 23:31 - 2014-05-29 17:59 - 01279480 _____ (NVIDIA Corporation) T:\Windows\system32\nvspcap64.dll
2014-07-03 23:31 - 2014-03-31 11:42 - 00040392 _____ (NVIDIA Corporation) T:\Windows\system32\Drivers\nvvad64v.sys
2014-07-03 23:31 - 2014-03-31 11:42 - 00037320 _____ (NVIDIA Corporation) T:\Windows\system32\nvaudcap64v.dll
2014-07-03 23:31 - 2014-03-31 11:42 - 00034760 _____ (NVIDIA Corporation) T:\Windows\SysWOW64\nvaudcap32v.dll
2014-07-03 23:14 - 2014-07-03 23:14 - 00001345 _____ () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-07-03 23:14 - 2014-07-03 23:14 - 00001326 _____ () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-07-03 23:06 - 2014-07-03 23:06 - 00000000 ____D () T:\ProgramData\Qualcomm
2014-07-03 23:05 - 2014-07-04 21:43 - 00002976 _____ () T:\Windows\System32\Tasks\RTSS
2014-07-03 22:57 - 2014-07-03 22:57 - 00000000 ____D () T:\Windows\SysWOW64\RTCOM
2014-07-03 22:57 - 2014-07-03 22:57 - 00000000 ____D () T:\Program Files\Realtek
2014-07-03 22:57 - 2014-05-13 19:09 - 03962840 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-03 22:57 - 2014-05-13 16:56 - 01065618 _____ () T:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-03 22:57 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RtDataProc64.dll
2014-07-03 22:57 - 2014-05-08 16:29 - 02000152 _____ (Creative Technology Ltd.) T:\Windows\system32\MBAPO264.dll
2014-07-03 22:57 - 2014-05-08 16:29 - 01728280 _____ (Creative Technology Ltd.) T:\Windows\SysWOW64\MBAPO232.dll
2014-07-03 22:57 - 2014-04-30 11:34 - 00948952 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RCoInstII64.dll
2014-07-03 22:57 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RltkAPO64.dll
2014-07-03 22:57 - 2014-04-25 13:51 - 02834648 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RtPgEx64.dll
2014-07-03 22:57 - 2014-04-25 13:23 - 01022168 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RtkApi64.dll
2014-07-03 22:57 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) T:\Windows\system32\WavesGUILib64.dll
2014-07-03 22:57 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) T:\Windows\system32\MaxxAudioEQ64.dll
2014-07-03 22:57 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) T:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-03 22:57 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RTSnMg64.cpl
2014-07-03 22:57 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) T:\Windows\system32\FMAPO64.dll
2014-07-03 22:57 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RTCOM64.dll
2014-07-03 22:57 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) T:\Windows\system32\MBWrp64.dll
2014-07-03 22:57 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) T:\Windows\system32\AERTAC64.dll
2014-07-03 22:57 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) T:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-03 22:57 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) T:\Windows\system32\AERTAR64.dll
2014-07-03 22:57 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RtlCPAPI64.dll
2014-07-03 22:57 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RtkCoLDR64.dll
2014-07-03 22:57 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) T:\Windows\system32\RTEEP64A.dll
2014-07-03 22:57 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) T:\Windows\system32\RP3DHT64.dll
2014-07-03 22:57 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) T:\Windows\system32\RP3DAA64.dll
2014-07-03 22:57 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) T:\Windows\system32\RTEED64A.dll
2014-07-03 22:57 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) T:\Windows\system32\RTEEL64A.dll
2014-07-03 22:57 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) T:\Windows\system32\RTEEG64A.dll
2014-07-03 22:57 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) T:\Windows\system32\RtkCfg64.dll
2014-07-03 22:57 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) T:\Windows\system32\MaxxAudioAPO20.dll
2014-07-03 22:57 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) T:\Windows\system32\SRSTSX64.dll
2014-07-03 22:57 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) T:\Windows\system32\SRSTSH64.dll
2014-07-03 22:57 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) T:\Windows\system32\SRSHP64.dll
2014-07-03 22:57 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) T:\Windows\system32\SRSWOW64.dll
2014-07-03 22:57 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) T:\Windows\system32\Drivers\MBfilt64.sys
2014-07-03 22:56 - 2014-07-03 23:41 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Origin
2014-07-03 22:55 - 2014-07-20 19:22 - 00000000 ____D () T:\ProgramData\Origin
2014-07-03 22:48 - 2014-07-03 22:48 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2014-07-03 22:48 - 2014-04-03 09:53 - 00025800 _____ () T:\Windows\system32\Drivers\INETMON.sys
2014-07-03 22:43 - 2014-07-03 22:43 - 00000000 ____D () T:\ProgramData\Downloaded Installations
2014-07-03 22:41 - 2014-07-05 11:32 - 00000000 ____D () T:\ProgramData\Package Cache
2014-07-03 22:41 - 2014-07-03 23:49 - 00000000 ____D () T:\uninstall
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files\Microsoft Synchronization Services
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files\Microsoft SQL Server Compact Edition
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files (x86)\Microsoft Synchronization Services
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-03 22:39 - 2014-07-03 22:39 - 00000000 ____H () T:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2014-07-03 22:39 - 2014-07-03 22:39 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-07-03 22:39 - 2013-09-17 03:20 - 01795952 _____ (Microsoft Corporation) T:\Windows\system32\WdfCoInstaller01011.dll
2014-07-03 22:39 - 2013-09-17 03:20 - 00099288 _____ (Intel Corporation) T:\Windows\system32\Drivers\TeeDriverx64.sys
2014-07-03 22:39 - 2012-07-25 23:55 - 00054376 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\WdfLdr.sys
2014-07-03 22:39 - 2012-07-25 21:36 - 00009728 _____ (Microsoft Corporation) T:\Windows\system32\Wdfres.dll
2014-07-03 22:39 - 2012-06-02 09:35 - 00000003 _____ () T:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-07-03 22:38 - 2014-07-06 15:16 - 00000682 ____H () T:\bdr-cf01
2014-07-03 22:38 - 2014-07-03 22:38 - 00427872 _____ () T:\ProgramData\1404445062.bdinstall.bin
2014-07-03 22:38 - 2014-07-03 22:38 - 00253404 ____H () T:\bdr-ld01
2014-07-03 22:38 - 2014-07-03 22:38 - 00009216 ____H () T:\bdr-ld01.mbr
2014-07-03 22:38 - 2014-07-03 22:38 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender
2014-07-03 22:38 - 2013-09-24 16:38 - 46879860 ____H () T:\bdr-im01.gz
2014-07-03 22:38 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) T:\Windows\system32\Drivers\gzflt.sys
2014-07-03 22:38 - 2013-08-13 13:38 - 03271472 ____H () T:\bdr-bz01
2014-07-03 22:38 - 2013-08-07 13:46 - 00389240 _____ (BitDefender S.R.L.) T:\Windows\system32\Drivers\trufos.sys
2014-07-03 22:36 - 2014-07-03 22:36 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-07-03 22:33 - 2014-07-03 22:33 - 00000000 ____D () T:\Program Files (x86)\Realtek
2014-07-03 22:32 - 2014-07-03 22:32 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2014-07-03 22:31 - 2014-07-03 22:31 - 00000597 _____ () T:\Users\TD\Desktop\MSI Afterburner.lnk
2014-07-03 22:31 - 2014-07-03 22:31 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-07-03 22:28 - 2014-07-04 16:27 - 00000000 ____D () T:\Windows\SysWOW64\directx
2014-07-03 22:27 - 2014-07-03 22:27 - 00000592 _____ () T:\Users\Public\Desktop\MSI Command Center.lnk
2014-07-03 22:26 - 2014-03-06 10:08 - 00791024 _____ (Intel Corporation) T:\Windows\system32\Drivers\iusb3xhc.sys
2014-07-03 22:26 - 2014-03-06 10:08 - 00370672 _____ (Intel Corporation) T:\Windows\system32\Drivers\iusb3hub.sys
2014-07-03 22:26 - 2014-03-06 10:08 - 00020464 _____ (Intel Corporation) T:\Windows\system32\Drivers\iusb3hcs.sys
2014-07-03 22:25 - 2014-07-06 15:56 - 00010016 _____ () T:\Windows\SysWOW64\Utility.xml
2014-07-03 22:25 - 2014-07-04 21:59 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-07-03 22:25 - 2014-07-03 22:25 - 00000642 _____ () T:\Users\Public\Desktop\MSI Live Update 6.lnk
2014-07-03 22:25 - 2012-08-22 10:19 - 00011832 _____ (Windows ® Codename Longhorn DDK provider) T:\Windows\acpimof.dll
2014-07-03 22:24 - 2014-07-04 18:23 - 00773912 _____ () T:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-03 22:21 - 2014-07-03 22:21 - 00074512 _____ (BitDefender SRL) T:\Windows\system32\bdsandboxuiskin32.dll
2014-07-03 22:20 - 2014-07-03 22:20 - 00502894 _____ () T:\ProgramData\1404443903.bdinstall.bin
2014-07-03 22:20 - 2014-07-03 22:20 - 00000385 _____ () T:\Users\TD\AppData\Roaminguser_gensett.xml
2014-07-03 22:19 - 2014-07-03 22:38 - 00000798 _____ () T:\Users\Public\Desktop\Bitdefender Antivirus Plus.lnk
2014-07-03 22:19 - 2014-07-03 22:38 - 00000000 ____D () T:\ProgramData\Bitdefender
2014-07-03 22:19 - 2014-07-03 22:20 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Bitdefender
2014-07-03 22:19 - 2013-12-02 12:58 - 00635392 _____ (BitDefender) T:\Windows\system32\Drivers\avckf.sys
2014-07-03 22:19 - 2013-12-02 12:56 - 00893440 _____ (BitDefender) T:\Windows\system32\Drivers\avc3.sys
2014-07-03 22:19 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) T:\Windows\system32\Drivers\bdsandbox.sys
2014-07-03 22:13 - 2014-07-03 22:13 - 00249336 _____ () T:\ProgramData\1404443552.bdinstall.bin
2014-07-03 22:11 - 2014-07-03 22:11 - 00514628 _____ () T:\ProgramData\1404443378.bdinstall.bin
2014-07-03 22:11 - 2014-07-03 22:11 - 00000385 _____ () T:\Windows\system32\user_gensett.xml
2014-07-03 22:11 - 2014-07-03 22:11 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-07-03 22:11 - 2014-07-03 22:11 - 00000000 ____D () T:\ProgramData\BDLogging
2014-07-03 22:11 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) T:\Windows\SysWOW64\bdsandboxuiskin32.dll
2014-07-03 22:11 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) T:\Windows\system32\Drivers\avchv.sys
2014-07-03 22:11 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) T:\Windows\capicom.dll
2014-07-03 22:10 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) T:\Windows\system32\BDSandBoxUISkin.dll
2014-07-03 22:10 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) T:\Windows\system32\BDSandBoxUH.dll
2014-07-03 22:09 - 2014-07-03 22:38 - 00000000 ____D () T:\Program Files\Common Files\Bitdefender
2014-07-03 22:09 - 2014-07-03 22:09 - 00000000 ____D () T:\Users\TD\AppData\Roaming\QuickScan
2014-07-03 21:56 - 2012-02-17 01:38 - 01031680 _____ (Microsoft Corporation) T:\Windows\system32\rdpcore.dll
2014-07-03 21:56 - 2012-02-17 00:34 - 00826880 _____ (Microsoft Corporation) T:\Windows\SysWOW64\rdpcore.dll
2014-07-03 21:56 - 2012-02-16 23:57 - 00023552 _____ (Microsoft Corporation) T:\Windows\system32\Drivers\tdtcp.sys
2014-07-03 21:55 - 2014-07-04 18:01 - 00058016 _____ () T:\Users\TD\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-03 21:55 - 2014-07-03 21:55 - 00000000 ____D () T:\Users\TD\AppData\Local\Deployment
2014-07-03 21:55 - 2014-07-03 21:55 - 00000000 ____D () T:\Users\TD\AppData\Local\Apps\2.0
2014-07-03 21:55 - 2014-07-03 21:55 - 00000000 ____D () T:\Program Files (x86)\Google
2014-07-03 21:54 - 2012-06-02 17:19 - 02428952 _____ (Microsoft Corporation) T:\Windows\system32\wuaueng.dll
2014-07-03 21:54 - 2012-06-02 17:19 - 00701976 _____ (Microsoft Corporation) T:\Windows\system32\wuapi.dll
2014-07-03 21:54 - 2012-06-02 17:19 - 00057880 _____ (Microsoft Corporation) T:\Windows\system32\wuauclt.exe
2014-07-03 21:54 - 2012-06-02 17:19 - 00044056 _____ (Microsoft Corporation) T:\Windows\system32\wups2.dll
2014-07-03 21:54 - 2012-06-02 17:19 - 00038424 _____ (Microsoft Corporation) T:\Windows\system32\wups.dll
2014-07-03 21:54 - 2012-06-02 17:15 - 02622464 _____ (Microsoft Corporation) T:\Windows\system32\wucltux.dll
2014-07-03 21:54 - 2012-06-02 17:15 - 00099840 _____ (Microsoft Corporation) T:\Windows\system32\wudriver.dll
2014-07-03 21:54 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) T:\Windows\system32\wuwebv.dll
2014-07-03 21:54 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) T:\Windows\system32\wuapp.exe
2014-07-03 21:46 - 2014-07-03 21:46 - 00000928 _____ () T:\Users\Public\Desktop\NETGEAR WNDA3100v2 Genie.lnk
2014-07-03 21:46 - 2014-07-03 21:46 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNDA3100v2 Genie
2014-07-03 21:46 - 2014-07-03 21:46 - 00000000 ____D () T:\Program Files (x86)\NETGEAR
2014-07-03 21:46 - 2011-07-22 10:33 - 00025056 _____ (Windows ® Win 7 DDK provider) T:\Windows\system32\Drivers\SCMNdisP.sys
2014-07-03 21:45 - 2014-07-03 21:45 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_bcmwlhigh664_01009.Wdf
2014-07-03 21:45 - 2011-12-12 17:42 - 03566592 _____ (Broadcom Corporation) T:\Windows\system32\bcmihvui64.dll
2014-07-03 21:45 - 2011-12-12 17:42 - 01256192 _____ (Broadcom Corporation) T:\Windows\system32\Drivers\bcmwlhigh664.sys
2014-07-03 21:45 - 2011-12-12 17:42 - 00095544 _____ (Broadcom Corporation) T:\Windows\system32\bcmwlcoi.dll
2014-07-03 21:45 - 2011-12-12 17:41 - 03900928 _____ (Broadcom Corporation) T:\Windows\system32\bcmihvsrv64.dll
2014-07-03 21:44 - 2014-07-03 21:44 - 00000000 ____D () T:\Users\TD\AppData\Roaming\InstallShield
2014-07-03 21:44 - 2010-02-03 11:21 - 00281104 _____ (CACE Technologies, Inc.) T:\Windows\SysWOW64\wpcap.dll
2014-07-03 21:44 - 2010-02-03 11:21 - 00096784 _____ (CACE Technologies, Inc.) T:\Windows\SysWOW64\Packet.dll
2014-07-03 21:44 - 2010-02-03 11:21 - 00053299 _____ () T:\Windows\SysWOW64\pthreadVC.dll
2014-07-03 21:44 - 2010-02-03 11:21 - 00047632 _____ (CACE Technologies, Inc.) T:\Windows\system32\Drivers\npf.sys
2014-07-03 21:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_7.dll
2014-07-03 21:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_7.dll
2014-07-03 21:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_7.dll
2014-07-03 21:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_7.dll
2014-07-03 21:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) T:\Windows\system32\XAPOFX1_5.dll
2014-07-03 21:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAPOFX1_5.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) T:\Windows\system32\d3dcsx_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dcsx_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) T:\Windows\system32\d3dx11_43.dll
2014-07-03 21:34 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx11_43.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_6.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_6.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_6.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_6.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) T:\Windows\system32\XAPOFX1_4.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAPOFX1_4.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) T:\Windows\system32\X3DAudio1_7.dll
2014-07-03 21:34 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) T:\Windows\SysWOW64\X3DAudio1_7.dll
2014-07-03 21:34 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_5.dll
2014-07-03 21:34 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_5.dll
2014-07-03 21:34 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_5.dll
2014-07-03 21:34 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_5.dll
2014-07-03 21:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) T:\Windows\system32\XAPOFX1_3.dll
2014-07-03 21:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAPOFX1_3.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) T:\Windows\system32\d3dcsx_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dcsx_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) T:\Windows\system32\d3dx11_42.dll
2014-07-03 21:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx11_42.dll
2014-07-03 21:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_4.dll
2014-07-03 21:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_4.dll
2014-07-03 21:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_4.dll
2014-07-03 21:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_4.dll
2014-07-03 21:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) T:\Windows\system32\X3DAudio1_6.dll
2014-07-03 21:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) T:\Windows\SysWOW64\X3DAudio1_6.dll
2014-07-03 21:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_41.dll
2014-07-03 21:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_41.dll
2014-07-03 21:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_41.dll
2014-07-03 21:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_41.dll
2014-07-03 21:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_41.dll
2014-07-03 21:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_41.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_3.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_3.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_3.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_3.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) T:\Windows\system32\XAPOFX1_2.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAPOFX1_2.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) T:\Windows\system32\X3DAudio1_5.dll
2014-07-03 21:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) T:\Windows\SysWOW64\X3DAudio1_5.dll
2014-07-03 21:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_40.dll
2014-07-03 21:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_40.dll
2014-07-03 21:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_40.dll
2014-07-03 21:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_40.dll
2014-07-03 21:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_40.dll
2014-07-03 21:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_40.dll
2014-07-03 21:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_2.dll
2014-07-03 21:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_2.dll
2014-07-03 21:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) T:\Windows\system32\XAPOFX1_1.dll
2014-07-03 21:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAPOFX1_1.dll
2014-07-03 21:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_2.dll
2014-07-03 21:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_2.dll
2014-07-03 21:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_39.dll
2014-07-03 21:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_39.dll
2014-07-03 21:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_39.dll
2014-07-03 21:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_39.dll
2014-07-03 21:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_39.dll
2014-07-03 21:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_39.dll
2014-07-03 21:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_1.dll
2014-07-03 21:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_1.dll
2014-07-03 21:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_1.dll
2014-07-03 21:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_1.dll
2014-07-03 21:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) T:\Windows\system32\XAPOFX1_0.dll
2014-07-03 21:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAPOFX1_0.dll
2014-07-03 21:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) T:\Windows\SysWOW64\X3DAudio1_4.dll
2014-07-03 21:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) T:\Windows\system32\X3DAudio1_4.dll
2014-07-03 21:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_38.dll
2014-07-03 21:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_38.dll
2014-07-03 21:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_38.dll
2014-07-03 21:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_38.dll
2014-07-03 21:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_38.dll
2014-07-03 21:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_38.dll
2014-07-03 21:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) T:\Windows\system32\XAudio2_0.dll
2014-07-03 21:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XAudio2_0.dll
2014-07-03 21:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine3_0.dll
2014-07-03 21:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) T:\Windows\system32\xactengine3_0.dll
2014-07-03 21:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) T:\Windows\system32\X3DAudio1_3.dll
2014-07-03 21:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) T:\Windows\SysWOW64\X3DAudio1_3.dll
2014-07-03 21:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) T:\Windows\system32\D3DX9_37.dll
2014-07-03 21:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DX9_37.dll
2014-07-03 21:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_37.dll
2014-07-03 21:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_37.dll
2014-07-03 21:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_37.dll
2014-07-03 21:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_37.dll
2014-07-03 21:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_10.dll
2014-07-03 21:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_10.dll
2014-07-03 21:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) T:\Windows\system32\X3DAudio1_2.dll
2014-07-03 21:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) T:\Windows\SysWOW64\X3DAudio1_2.dll
2014-07-03 21:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_36.dll
2014-07-03 21:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_36.dll
2014-07-03 21:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_36.dll
2014-07-03 21:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_36.dll
2014-07-03 21:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_36.dll
2014-07-03 21:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_36.dll
2014-07-03 21:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_9.dll
2014-07-03 21:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_9.dll
2014-07-03 21:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_35.dll
2014-07-03 21:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_35.dll
2014-07-03 21:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_35.dll
2014-07-03 21:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_35.dll
2014-07-03 21:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_35.dll
2014-07-03 21:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_35.dll
2014-07-03 21:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_8.dll
2014-07-03 21:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_8.dll
2014-07-03 21:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_34.dll
2014-07-03 21:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_34.dll
2014-07-03 21:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_34.dll
2014-07-03 21:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_34.dll
2014-07-03 21:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_34.dll
2014-07-03 21:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_34.dll
2014-07-03 21:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_7.dll
2014-07-03 21:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_7.dll
2014-07-03 21:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) T:\Windows\system32\xinput1_3.dll
2014-07-03 21:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xinput1_3.dll
2014-07-03 21:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10_33.dll
2014-07-03 21:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10_33.dll
2014-07-03 21:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_33.dll
2014-07-03 21:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_33.dll
2014-07-03 21:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) T:\Windows\system32\D3DCompiler_33.dll
2014-07-03 21:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) T:\Windows\SysWOW64\D3DCompiler_33.dll
2014-07-03 21:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) T:\Windows\system32\x3daudio1_1.dll
2014-07-03 21:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) T:\Windows\SysWOW64\x3daudio1_1.dll
2014-07-03 21:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_6.dll
2014-07-03 21:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_6.dll
2014-07-03 21:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_5.dll
2014-07-03 21:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_5.dll
2014-07-03 21:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_32.dll
2014-07-03 21:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_32.dll
2014-07-03 21:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) T:\Windows\system32\d3dx10.dll
2014-07-03 21:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx10.dll
2014-07-03 21:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_31.dll
2014-07-03 21:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_31.dll
2014-07-03 21:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_4.dll
2014-07-03 21:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_4.dll
2014-07-03 21:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) T:\Windows\system32\xinput1_2.dll
2014-07-03 21:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_3.dll
2014-07-03 21:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_3.dll
2014-07-03 21:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xinput1_2.dll
2014-07-03 21:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_2.dll
2014-07-03 21:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_2.dll
2014-07-03 21:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_30.dll
2014-07-03 21:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_30.dll
2014-07-03 21:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_1.dll
2014-07-03 21:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_1.dll
2014-07-03 21:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) T:\Windows\system32\xinput1_1.dll
2014-07-03 21:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xinput1_1.dll
2014-07-03 21:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_29.dll
2014-07-03 21:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_29.dll
2014-07-03 21:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) T:\Windows\system32\xactengine2_0.dll
2014-07-03 21:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) T:\Windows\SysWOW64\xactengine2_0.dll
2014-07-03 21:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) T:\Windows\system32\x3daudio1_0.dll
2014-07-03 21:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) T:\Windows\SysWOW64\x3daudio1_0.dll
2014-07-03 21:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_28.dll
2014-07-03 21:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_28.dll
2014-07-03 21:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_27.dll
2014-07-03 21:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_27.dll
2014-07-03 21:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_26.dll
2014-07-03 21:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_26.dll
2014-07-03 21:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_25.dll
2014-07-03 21:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_25.dll
2014-07-03 21:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) T:\Windows\system32\d3dx9_24.dll
2014-07-03 21:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3dx9_24.dll
2014-07-03 21:30 - 2014-07-05 11:32 - 00000000 ____D () T:\Program Files\Intel
2014-07-03 21:30 - 2014-07-03 22:52 - 00000000 ____D () T:\ProgramData\Intel
2014-07-03 21:30 - 2013-09-17 03:20 - 00016344 _____ (Intel Corporation) T:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-07-03 21:29 - 2014-07-20 19:18 - 00000886 _____ () T:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-03 21:29 - 2014-07-06 20:00 - 00000890 _____ () T:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-03 21:29 - 2014-07-03 21:55 - 00003886 _____ () T:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-07-03 21:29 - 2014-07-03 21:55 - 00003634 _____ () T:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-07-03 21:29 - 2014-07-03 21:55 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-03 21:29 - 2014-07-03 21:29 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2014-07-03 21:29 - 2014-07-03 21:29 - 00000000 ____D () T:\Users\TD\AppData\Local\Google
2014-07-03 21:28 - 2014-07-03 22:58 - 00000000 ___HD () T:\Program Files (x86)\Temp
2014-07-03 21:28 - 2014-02-26 15:16 - 02080472 _____ (Realtek Semiconductor Corp.) T:\Windows\RtlExUpd.dll
2014-07-03 21:27 - 2014-07-04 16:22 - 00000000 ___HD () T:\Program Files (x86)\InstallShield Installation Information
2014-07-03 21:27 - 2014-07-04 16:22 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2014-07-03 21:27 - 2014-07-04 16:22 - 00000000 ____D () T:\Program Files\Qualcomm Atheros
2014-07-03 21:25 - 2014-07-04 16:22 - 00000656 _____ () T:\Users\TD\AppData\Local\killertool.log
2014-07-03 21:24 - 2013-02-27 15:37 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) T:\Windows\SysWOW64\CSVer.dll
2014-07-03 21:20 - 2014-07-03 23:50 - 00000000 ____D () T:\Program Files (x86)\Intel
2014-07-03 21:20 - 2014-07-03 21:20 - 00000000 ____D () T:\Program Files (x86)\MSI
2014-07-03 21:20 - 2014-07-03 21:20 - 00000000 ____D () T:\MSI
2014-07-03 21:20 - 2014-07-03 21:20 - 00000000 ____D () T:\Intel
2014-07-03 21:18 - 2014-07-20 19:25 - 01593658 _____ () T:\Windows\WindowsUpdate.log
2014-07-03 21:18 - 2014-07-03 23:36 - 00000000 ____D () T:\Users\TD\AppData\Local\VirtualStore
2014-07-03 21:18 - 2014-07-03 21:18 - 00000020 ___SH () T:\Users\TD\ntuser.ini
2014-07-03 21:18 - 2014-07-03 21:18 - 00000000 __SHD () T:\Recovery
2014-07-03 21:18 - 2014-07-03 21:18 - 00000000 ____D () T:\Users\TD
2014-07-03 21:18 - 2009-07-13 23:54 - 00000000 ___RD () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-03 21:18 - 2009-07-13 23:49 - 00000000 ___RD () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-03 20:44 - 2014-07-03 20:44 - 00000000 ____D () T:\WindowsImageBackup
 
==================== One Month Modified Files and Folders =======
 
2014-07-20 19:33 - 2014-07-20 19:33 - 00000000 ____D () T:\FRST
2014-07-20 19:29 - 2014-07-04 14:50 - 00122584 _____ (Malwarebytes Corporation) T:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-20 19:25 - 2014-07-20 19:25 - 00017695 _____ () T:\Users\TD\Desktop\download.htm
2014-07-20 19:25 - 2014-07-03 21:18 - 01593658 _____ () T:\Windows\WindowsUpdate.log
2014-07-20 19:24 - 2009-07-14 00:13 - 00781790 _____ () T:\Windows\system32\PerfStringBackup.INI
2014-07-20 19:23 - 2009-07-13 23:45 - 00021888 ____H () T:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-20 19:23 - 2009-07-13 23:45 - 00021888 ____H () T:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-20 19:22 - 2014-07-03 22:55 - 00000000 ____D () T:\ProgramData\Origin
2014-07-20 19:21 - 2014-07-04 16:27 - 00000000 ____D () T:\Users\TD\Documents\survarium
2014-07-20 19:21 - 2009-07-14 00:32 - 00000000 ___RD () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-20 19:18 - 2014-07-20 18:12 - 00002512 _____ () T:\Windows\setupact.log
2014-07-20 19:18 - 2014-07-04 14:38 - 00001416 _____ () T:\Windows\Tasks\e2a59d95-31d0-48e9-a5d9-e501564d2ffa-5_user.job
2014-07-20 19:18 - 2014-07-04 14:37 - 00000916 _____ () T:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-20 19:18 - 2014-07-03 23:34 - 00000000 ____D () T:\ProgramData\NVIDIA
2014-07-20 19:18 - 2014-07-03 21:29 - 00000886 _____ () T:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-20 19:18 - 2009-07-14 00:08 - 00000006 ____H () T:\Windows\Tasks\SA.DAT
2014-07-20 19:18 - 2009-07-13 23:45 - 00275712 _____ () T:\Windows\system32\FNTCACHE.DAT
2014-07-20 19:17 - 2011-04-12 03:28 - 00000000 ____D () T:\Program Files\Windows Journal
2014-07-20 18:34 - 2014-07-04 15:44 - 96441528 _____ (Microsoft Corporation) T:\Windows\system32\MRT.exe
2014-07-20 18:34 - 2014-07-04 15:44 - 00000000 ____D () T:\Windows\system32\MRT
2014-07-20 18:12 - 2014-07-20 18:12 - 00000000 _____ () T:\Windows\setuperr.log
2014-07-06 20:58 - 2014-07-06 20:58 - 00000000 ____D () T:\Users\TD\AppData\Roaming\NVIDIA
2014-07-06 20:42 - 2014-07-04 14:37 - 00000920 _____ () T:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-06 20:00 - 2014-07-03 21:29 - 00000890 _____ () T:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-06 19:59 - 2014-07-06 19:59 - 00076152 _____ () T:\Windows\system32\PnkBstrA.exe
2014-07-06 19:59 - 2014-07-04 17:19 - 00215416 _____ () T:\Windows\SysWOW64\PnkBstrB.exe
2014-07-06 19:50 - 2014-07-04 17:19 - 00214392 _____ () T:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-06 17:25 - 2014-07-05 00:32 - 00291296 _____ () T:\Windows\SysWOW64\PnkBstrB.xtr
2014-07-06 15:59 - 2014-07-04 00:13 - 00000000 ____D () T:\Windows\Panther
2014-07-06 15:56 - 2014-07-03 22:25 - 00010016 _____ () T:\Windows\SysWOW64\Utility.xml
2014-07-06 15:42 - 2014-07-06 15:41 - 00013500 _____ () T:\Users\TD\Desktop\attach.txt
2014-07-06 15:41 - 2014-07-06 15:41 - 00031212 _____ () T:\Users\TD\Desktop\dds.txt
2014-07-06 15:16 - 2014-07-03 22:38 - 00000682 ____H () T:\bdr-cf01
2014-07-06 15:16 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\PLA
2014-07-06 12:32 - 2014-07-06 12:31 - 12134381 _____ () T:\Windows\WinFW222.zip
2014-07-06 12:32 - 2014-07-06 12:31 - 09324979 _____ () T:\Windows\WinFW2.zip
2014-07-06 12:32 - 2014-07-06 12:30 - 00000073 _____ () T:\Windows\WRAR.rar
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINWC11132.txt
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINWC11113.txt
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINWA777.txt
2014-07-06 12:31 - 2014-07-06 12:31 - 00000000 _____ () T:\Windows\WINMS777.txt
2014-07-05 12:25 - 2014-07-05 00:00 - 00000000 ____D () T:\Users\TD\AppData\Local\DayZ
2014-07-05 11:32 - 2014-07-03 22:41 - 00000000 ____D () T:\ProgramData\Package Cache
2014-07-05 11:32 - 2014-07-03 21:30 - 00000000 ____D () T:\Program Files\Intel
2014-07-05 11:28 - 2014-07-05 11:28 - 00000000 ____D () T:\Users\TD\AppData\Local\Intel_Corporation
2014-07-05 00:14 - 2014-07-05 00:00 - 00000000 ____D () T:\Users\TD\Documents\DayZ
2014-07-04 23:33 - 2014-07-04 17:19 - 00076888 _____ () T:\Windows\SysWOW64\PnkBstrA.exe
2014-07-04 23:03 - 2014-07-04 22:37 - 00000000 ____D () T:\ProgramData\GFACE
2014-07-04 22:41 - 2014-07-04 22:41 - 00000000 ____D () T:\Users\TD\AppData\Local\CrashRpt
2014-07-04 22:37 - 2014-07-04 22:37 - 00000000 ____D () T:\Users\TD\AppData\Local\wf-launcher
2014-07-04 22:00 - 2014-07-04 21:58 - 00000000 ____D () T:\Users\TD\Documents\Battlefield 4
2014-07-04 21:59 - 2014-07-04 21:59 - 00000000 ____D () T:\Users\TD\AppData\Local\PunkBuster
2014-07-04 21:59 - 2014-07-03 22:25 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-07-04 21:57 - 2014-07-04 21:57 - 00000000 ____D () T:\Users\TD\AppData\Local\ESN
2014-07-04 21:43 - 2014-07-03 23:05 - 00002976 _____ () T:\Windows\System32\Tasks\RTSS
2014-07-04 21:02 - 2014-07-04 21:02 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-04 18:23 - 2014-07-03 22:24 - 00773912 _____ () T:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-04 18:01 - 2014-07-03 21:55 - 00058016 _____ () T:\Users\TD\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-04 16:27 - 2014-07-03 22:28 - 00000000 ____D () T:\Windows\SysWOW64\directx
2014-07-04 16:23 - 2014-07-03 23:31 - 00000000 ____D () T:\Program Files (x86)\NVIDIA Corporation
2014-07-04 16:22 - 2014-07-03 23:31 - 00000000 ____D () T:\Program Files\NVIDIA Corporation
2014-07-04 16:22 - 2014-07-03 21:27 - 00000000 ___HD () T:\Program Files (x86)\InstallShield Installation Information
2014-07-04 16:22 - 2014-07-03 21:27 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2014-07-04 16:22 - 2014-07-03 21:27 - 00000000 ____D () T:\Program Files\Qualcomm Atheros
2014-07-04 16:22 - 2014-07-03 21:25 - 00000656 _____ () T:\Users\TD\AppData\Local\killertool.log
2014-07-04 16:21 - 2014-07-04 16:21 - 00000000 ____D () T:\ProgramData\Razer
2014-07-04 16:21 - 2014-07-04 16:13 - 00000000 ____D () T:\Users\TD\AppData\Local\Razer
2014-07-04 16:15 - 2014-07-04 16:15 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-07-04 16:14 - 2014-07-04 16:14 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_rzendpt_01009.Wdf
2014-07-04 16:11 - 2014-07-04 16:11 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Adobe
2014-07-04 16:11 - 2009-07-13 22:20 - 00000000 ___RD () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-04 16:10 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\security
2014-07-04 16:01 - 2009-07-14 00:32 - 00000000 ____D () T:\Program Files\Windows Defender
2014-07-04 16:01 - 2009-07-14 00:32 - 00000000 ____D () T:\Program Files (x86)\Windows Defender
2014-07-04 16:01 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\SysWOW64\zh-HK
2014-07-04 16:01 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\SysWOW64\tr-TR
2014-07-04 16:01 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\system32\zh-HK
2014-07-04 16:01 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\system32\tr-TR
2014-07-04 16:01 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\PolicyDefinitions
2014-07-04 16:01 - 2009-07-13 22:20 - 00000000 ____D () T:\Program Files\Common Files\System
2014-07-04 15:39 - 2014-07-04 14:54 - 00000000 ____D () T:\Windows\pss
2014-07-04 15:34 - 2014-07-04 15:34 - 01732032 _____ (Microsoft Corporation) T:\Windows\system32\ntdll.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 01292192 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ntdll.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00942592 _____ (Microsoft Corporation) T:\Windows\system32\jsIntl.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00878080 _____ (Microsoft Corporation) T:\Windows\system32\advapi32.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00859648 _____ (Microsoft Corporation) T:\Windows\system32\tdh.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00774144 _____ (Microsoft Corporation) T:\Windows\system32\jscript.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00645120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jsIntl.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00640512 _____ (Microsoft Corporation) T:\Windows\SysWOW64\advapi32.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00619520 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tdh.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00616104 _____ (Microsoft Corporation) T:\Windows\SysWOW64\ieapfltr.dat
2014-07-04 15:34 - 2014-07-04 15:34 - 00616104 _____ (Microsoft Corporation) T:\Windows\system32\ieapfltr.dat
2014-07-04 15:34 - 2014-07-04 15:34 - 00610304 _____ (Microsoft Corporation) T:\Windows\SysWOW64\jscript.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00413696 _____ (Microsoft Corporation) T:\Windows\system32\html.iec
2014-07-04 15:34 - 2014-07-04 15:34 - 00337408 _____ (Microsoft Corporation) T:\Windows\SysWOW64\html.iec
2014-07-04 15:34 - 2014-07-04 15:34 - 00247808 _____ (Microsoft Corporation) T:\Windows\system32\msls31.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00243200 _____ (Microsoft Corporation) T:\Windows\system32\webcheck.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00235520 _____ (Microsoft Corporation) T:\Windows\system32\url.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00235008 _____ (Microsoft Corporation) T:\Windows\system32\elshyph.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00233472 _____ (Microsoft Corporation) T:\Windows\SysWOW64\url.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00208384 _____ (Microsoft Corporation) T:\Windows\SysWOW64\webcheck.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00194048 _____ (Microsoft Corporation) T:\Windows\SysWOW64\elshyph.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00182272 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msls31.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00167424 _____ (Microsoft Corporation) T:\Windows\system32\iexpress.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00151552 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iexpress.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00147968 _____ (Microsoft Corporation) T:\Windows\system32\occache.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00143872 _____ (Microsoft Corporation) T:\Windows\system32\wextract.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00139264 _____ (Microsoft Corporation) T:\Windows\SysWOW64\wextract.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00135680 _____ (Microsoft Corporation) T:\Windows\system32\iepeers.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00131072 _____ (Microsoft Corporation) T:\Windows\system32\IEAdvpack.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00127488 _____ (Microsoft Corporation) T:\Windows\SysWOW64\occache.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00116736 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iepeers.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00111616 _____ (Microsoft Corporation) T:\Windows\SysWOW64\IEAdvpack.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00105984 _____ (Microsoft Corporation) T:\Windows\system32\iesysprep.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00101376 _____ (Microsoft Corporation) T:\Windows\system32\inseng.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00090112 _____ (Microsoft Corporation) T:\Windows\system32\SetIEInstalledDate.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00086016 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iesysprep.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00083456 _____ (Microsoft Corporation) T:\Windows\SysWOW64\inseng.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00081408 _____ (Microsoft Corporation) T:\Windows\system32\icardie.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00077312 _____ (Microsoft Corporation) T:\Windows\system32\tdc.ocx
2014-07-04 15:34 - 2014-07-04 15:34 - 00074240 _____ (Microsoft Corporation) T:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00069120 _____ (Microsoft Corporation) T:\Windows\SysWOW64\icardie.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00062464 _____ (Microsoft Corporation) T:\Windows\SysWOW64\tdc.ocx
2014-07-04 15:34 - 2014-07-04 15:34 - 00062464 _____ (Microsoft Corporation) T:\Windows\system32\pngfilt.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00056832 _____ (Microsoft Corporation) T:\Windows\SysWOW64\pngfilt.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00052224 _____ (Microsoft Corporation) T:\Windows\system32\msfeedsbs.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00048640 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshtmler.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00048640 _____ (Microsoft Corporation) T:\Windows\system32\mshtmler.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00048128 _____ (Microsoft Corporation) T:\Windows\system32\imgutil.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00043008 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msfeedsbs.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00036352 _____ (Microsoft Corporation) T:\Windows\SysWOW64\imgutil.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00030208 _____ (Microsoft Corporation) T:\Windows\system32\licmgr10.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00024576 _____ (Microsoft Corporation) T:\Windows\SysWOW64\licmgr10.dll
2014-07-04 15:34 - 2014-07-04 15:34 - 00013824 _____ (Microsoft Corporation) T:\Windows\system32\mshta.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00013312 _____ (Microsoft Corporation) T:\Windows\SysWOW64\mshta.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00013312 _____ (Microsoft Corporation) T:\Windows\system32\msfeedssync.exe
2014-07-04 15:34 - 2014-07-04 15:34 - 00012800 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msfeedssync.exe
2014-07-04 15:33 - 2014-07-04 15:33 - 04812672 _____ (Piriform Ltd) T:\Users\TD\Downloads\ccsetup415.exe
2014-07-04 15:33 - 2014-07-04 15:33 - 00002768 _____ () T:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-04 15:33 - 2014-07-04 15:33 - 00000693 _____ () T:\Users\Public\Desktop\CCleaner.lnk
2014-07-04 15:20 - 2014-07-04 15:20 - 02776576 _____ (Microsoft Corporation) T:\Windows\system32\msmpeg2vdec.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 02284544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\msmpeg2vdec.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01682432 _____ (Microsoft Corporation) T:\Windows\system32\XpsPrint.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01643520 _____ (Microsoft Corporation) T:\Windows\system32\DWrite.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01247744 _____ (Microsoft Corporation) T:\Windows\SysWOW64\DWrite.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01238528 _____ (Microsoft Corporation) T:\Windows\system32\d3d10.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01175552 _____ (Microsoft Corporation) T:\Windows\system32\FntCache.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01158144 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XpsPrint.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 01080832 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00648192 _____ (Microsoft Corporation) T:\Windows\system32\d3d10level9.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00604160 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10level9.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00522752 _____ (Microsoft Corporation) T:\Windows\system32\XpsGdiConverter.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00364544 _____ (Microsoft Corporation) T:\Windows\SysWOW64\XpsGdiConverter.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00363008 _____ (Microsoft Corporation) T:\Windows\system32\dxgi.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00333312 _____ (Microsoft Corporation) T:\Windows\system32\d3d10_1core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00296960 _____ (Microsoft Corporation) T:\Windows\system32\d3d10core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00293376 _____ (Microsoft Corporation) T:\Windows\SysWOW64\dxgi.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00249856 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10_1core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00245248 _____ (Microsoft Corporation) T:\Windows\system32\WindowsCodecsExt.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00221184 _____ (Microsoft Corporation) T:\Windows\system32\UIAnimation.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00220160 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10core.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00207872 _____ (Microsoft Corporation) T:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00194560 _____ (Microsoft Corporation) T:\Windows\system32\d3d10_1.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00187392 _____ (Microsoft Corporation) T:\Windows\SysWOW64\UIAnimation.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00161792 _____ (Microsoft Corporation) T:\Windows\SysWOW64\d3d10_1.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00010752 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00010752 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00009728 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00009728 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00005632 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00004096 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00004096 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003584 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003584 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00003072 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00002560 ____H (Microsoft Corporation) T:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-07-04 15:20 - 2014-07-04 15:20 - 00002560 ____H (Microsoft Corporation) T:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-07-04 14:50 - 2014-07-04 14:50 - 00000613 _____ () T:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-04 14:50 - 2014-07-04 14:50 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-04 14:50 - 2014-07-04 14:50 - 00000000 ____D () T:\ProgramData\Malwarebytes
2014-07-04 14:47 - 2014-07-04 14:47 - 17292760 _____ (Malwarebytes Corporation ) T:\Users\TD\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-04 14:47 - 2014-07-04 14:47 - 17292760 _____ (Malwarebytes Corporation ) T:\Users\TD\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-07-04 14:47 - 2014-07-04 14:47 - 00000000 ____D () T:\Users\TD\AppData\Temp
2014-07-04 14:38 - 2014-07-04 14:37 - 00000128 _____ () T:\Windows\Reimage.ini
2014-07-04 14:37 - 2014-07-04 14:37 - 00003918 _____ () T:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-07-04 14:37 - 2014-07-04 14:37 - 00003664 _____ () T:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-07-04 14:37 - 2014-07-04 14:37 - 00000282 _____ () T:\Windows\system32\bddel.dat
2014-07-04 14:37 - 2014-07-04 14:37 - 00000000 ____D () T:\Users\TD\AppData\Local\globalUpdate
2014-07-04 14:37 - 2014-07-04 14:37 - 00000000 ____D () T:\Program Files (x86)\globalUpdate
2014-07-04 14:35 - 2014-07-04 14:35 - 00929416 _____ (CNET Download.com) T:\Users\TD\Downloads\cbsidlm-cbsi188-CrystalDiskInfo-SEO-10832082.exe
2014-07-04 03:11 - 2014-07-06 12:31 - 10651984 ____N (IBuster) T:\Windows\winfaith1.exe
2014-07-04 00:13 - 2009-07-14 00:38 - 00025600 ___SH () T:\Windows\system32\config\BCD-Template.LOG
2014-07-04 00:13 - 2009-07-14 00:32 - 00028672 _____ () T:\Windows\system32\config\BCD-Template
2014-07-04 00:11 - 2014-07-04 00:11 - 00000000 ____D () T:\Windows.old
2014-07-04 00:06 - 2014-07-04 00:06 - 00076944 _____ (BitDefender) T:\Windows\system32\Drivers\bdvedisk.sys
2014-07-03 23:57 - 2014-07-03 23:57 - 02167408 _____ ( ) T:\Users\TD\Downloads\023f.exe
2014-07-03 23:50 - 2014-07-03 21:20 - 00000000 ____D () T:\Program Files (x86)\Intel
2014-07-03 23:49 - 2014-07-03 22:41 - 00000000 ____D () T:\uninstall
2014-07-03 23:44 - 2014-07-03 23:31 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-03 23:41 - 2014-07-03 22:56 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Origin
2014-07-03 23:36 - 2014-07-03 21:18 - 00000000 ____D () T:\Users\TD\AppData\Local\VirtualStore
2014-07-03 23:34 - 2014-07-03 23:34 - 00000000 ____D () T:\Program Files (x86)\AGEIA Technologies
2014-07-03 23:34 - 2014-07-03 23:31 - 00000000 ____D () T:\ProgramData\NVIDIA Corporation
2014-07-03 23:34 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\Help
2014-07-03 23:31 - 2014-07-03 23:31 - 00000000 ____D () T:\Users\TD\AppData\Local\NVIDIA Corporation
2014-07-03 23:31 - 2014-07-03 23:31 - 00000000 ____D () T:\Users\TD\AppData\Local\NVIDIA
2014-07-03 23:16 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\rescache
2014-07-03 23:14 - 2014-07-03 23:14 - 00001345 _____ () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-07-03 23:14 - 2014-07-03 23:14 - 00001326 _____ () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-07-03 23:14 - 2009-07-13 22:20 - 00000000 ____D () T:\Windows\system32\sysprep
2014-07-03 23:06 - 2014-07-03 23:06 - 00000000 ____D () T:\ProgramData\Qualcomm
2014-07-03 22:58 - 2014-07-03 21:28 - 00000000 ___HD () T:\Program Files (x86)\Temp
2014-07-03 22:57 - 2014-07-03 22:57 - 00000000 ____D () T:\Windows\SysWOW64\RTCOM
2014-07-03 22:57 - 2014-07-03 22:57 - 00000000 ____D () T:\Program Files\Realtek
2014-07-03 22:52 - 2014-07-03 21:30 - 00000000 ____D () T:\ProgramData\Intel
2014-07-03 22:48 - 2014-07-03 22:48 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2014-07-03 22:43 - 2014-07-03 22:43 - 00000000 ____D () T:\ProgramData\Downloaded Installations
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files\Microsoft Synchronization Services
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files\Microsoft SQL Server Compact Edition
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files (x86)\Microsoft Synchronization Services
2014-07-03 22:41 - 2014-07-03 22:41 - 00000000 ____D () T:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-03 22:39 - 2014-07-03 22:39 - 00000000 ____H () T:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2014-07-03 22:39 - 2014-07-03 22:39 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-07-03 22:38 - 2014-07-03 22:38 - 00427872 _____ () T:\ProgramData\1404445062.bdinstall.bin
2014-07-03 22:38 - 2014-07-03 22:38 - 00253404 ____H () T:\bdr-ld01
2014-07-03 22:38 - 2014-07-03 22:38 - 00009216 ____H () T:\bdr-ld01.mbr
2014-07-03 22:38 - 2014-07-03 22:38 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender
2014-07-03 22:38 - 2014-07-03 22:19 - 00000798 _____ () T:\Users\Public\Desktop\Bitdefender Antivirus Plus.lnk
2014-07-03 22:38 - 2014-07-03 22:19 - 00000000 ____D () T:\ProgramData\Bitdefender
2014-07-03 22:38 - 2014-07-03 22:09 - 00000000 ____D () T:\Program Files\Common Files\Bitdefender
2014-07-03 22:36 - 2014-07-03 22:36 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-07-03 22:33 - 2014-07-03 22:33 - 00000000 ____D () T:\Program Files (x86)\Realtek
2014-07-03 22:32 - 2014-07-03 22:32 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2014-07-03 22:31 - 2014-07-03 22:31 - 00000597 _____ () T:\Users\TD\Desktop\MSI Afterburner.lnk
2014-07-03 22:31 - 2014-07-03 22:31 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-07-03 22:27 - 2014-07-03 22:27 - 00000592 _____ () T:\Users\Public\Desktop\MSI Command Center.lnk
2014-07-03 22:25 - 2014-07-03 22:25 - 00000642 _____ () T:\Users\Public\Desktop\MSI Live Update 6.lnk
2014-07-03 22:21 - 2014-07-03 22:21 - 00074512 _____ (BitDefender SRL) T:\Windows\system32\bdsandboxuiskin32.dll
2014-07-03 22:20 - 2014-07-03 22:20 - 00502894 _____ () T:\ProgramData\1404443903.bdinstall.bin
2014-07-03 22:20 - 2014-07-03 22:20 - 00000385 _____ () T:\Users\TD\AppData\Roaminguser_gensett.xml
2014-07-03 22:20 - 2014-07-03 22:19 - 00000000 ____D () T:\Users\TD\AppData\Roaming\Bitdefender
2014-07-03 22:13 - 2014-07-03 22:13 - 00249336 _____ () T:\ProgramData\1404443552.bdinstall.bin
2014-07-03 22:11 - 2014-07-03 22:11 - 00514628 _____ () T:\ProgramData\1404443378.bdinstall.bin
2014-07-03 22:11 - 2014-07-03 22:11 - 00000385 _____ () T:\Windows\system32\user_gensett.xml
2014-07-03 22:11 - 2014-07-03 22:11 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-07-03 22:11 - 2014-07-03 22:11 - 00000000 ____D () T:\ProgramData\BDLogging
2014-07-03 22:09 - 2014-07-03 22:09 - 00000000 ____D () T:\Users\TD\AppData\Roaming\QuickScan
2014-07-03 21:55 - 2014-07-03 21:55 - 00000000 ____D () T:\Users\TD\AppData\Local\Deployment
2014-07-03 21:55 - 2014-07-03 21:55 - 00000000 ____D () T:\Users\TD\AppData\Local\Apps\2.0
2014-07-03 21:55 - 2014-07-03 21:55 - 00000000 ____D () T:\Program Files (x86)\Google
2014-07-03 21:55 - 2014-07-03 21:29 - 00003886 _____ () T:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-07-03 21:55 - 2014-07-03 21:29 - 00003634 _____ () T:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-07-03 21:55 - 2014-07-03 21:29 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-03 21:46 - 2014-07-03 21:46 - 00000928 _____ () T:\Users\Public\Desktop\NETGEAR WNDA3100v2 Genie.lnk
2014-07-03 21:46 - 2014-07-03 21:46 - 00000000 ____D () T:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNDA3100v2 Genie
2014-07-03 21:46 - 2014-07-03 21:46 - 00000000 ____D () T:\Program Files (x86)\NETGEAR
2014-07-03 21:45 - 2014-07-03 21:45 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_bcmwlhigh664_01009.Wdf
2014-07-03 21:44 - 2014-07-03 21:44 - 00000000 ____D () T:\Users\TD\AppData\Roaming\InstallShield
2014-07-03 21:30 - 2009-07-13 22:20 - 00000000 ____D () T:\Program Files\Common Files\Microsoft Shared
2014-07-03 21:29 - 2014-07-03 21:29 - 00000000 ____H () T:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2014-07-03 21:29 - 2014-07-03 21:29 - 00000000 ____D () T:\Users\TD\AppData\Local\Google
2014-07-03 21:27 - 2009-07-14 00:32 - 00000000 ____D () T:\Windows\system32\restore
2014-07-03 21:20 - 2014-07-03 21:20 - 00000000 ____D () T:\Program Files (x86)\MSI
2014-07-03 21:20 - 2014-07-03 21:20 - 00000000 ____D () T:\MSI
2014-07-03 21:20 - 2014-07-03 21:20 - 00000000 ____D () T:\Intel
2014-07-03 21:18 - 2014-07-03 21:18 - 00000020 ___SH () T:\Users\TD\ntuser.ini
2014-07-03 21:18 - 2014-07-03 21:18 - 00000000 __SHD () T:\Recovery
2014-07-03 21:18 - 2014-07-03 21:18 - 00000000 ____D () T:\Users\TD
2014-07-03 20:44 - 2014-07-03 20:44 - 00000000 ____D () T:\WindowsImageBackup
2014-06-20 15:14 - 2014-07-20 18:22 - 00266424 _____ (Microsoft Corporation) T:\Windows\system32\iedkcs32.dll
2014-06-20 14:39 - 2014-07-20 18:22 - 00240824 _____ (Microsoft Corporation) T:\Windows\SysWOW64\iedkcs32.dll
 
==================== Bamital & volsnap Check =================
 
T:\Windows\System32\winlogon.exe => File is digitally signed
T:\Windows\System32\wininit.exe => File is digitally signed
T:\Windows\SysWOW64\wininit.exe => File is digitally signed
T:\Windows\explorer.exe => File is digitally signed
T:\Windows\SysWOW64\explorer.exe => File is digitally signed
T:\Windows\System32\svchost.exe => File is digitally signed
T:\Windows\SysWOW64\svchost.exe => File is digitally signed
T:\Windows\System32\services.exe => File is digitally signed
T:\Windows\System32\User32.dll => File is digitally signed
T:\Windows\SysWOW64\User32.dll => File is digitally signed
T:\Windows\System32\userinit.exe => File is digitally signed
T:\Windows\SysWOW64\userinit.exe => File is digitally signed
T:\Windows\System32\rpcss.dll => File is digitally signed
T:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-04 17:38
 
==================== End Of Log ============================
 

 

Attached Files


Edited by xXToffeeXx, 21 July 2014 - 08:55 AM.


#8 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 21 July 2014 - 08:56 AM

Just for ease, I'm making a post with your Addition.txt log

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-07-2014

Ran by TD at 2014-07-20 19:33:27
Running from C:\Download
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.28.0.1191 - Bitdefender)
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Intel® Chipset Device Software (Version: 10.0.14 - Intel Corporation) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.14 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Smart Connect Technology (HKLM\...\{185A77DF-D606-4AD2-B85D-A647A9DAA045}) (Version: 5.0.10.2808 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation) Hidden
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.0.68 - MSI)
MSI Live Update (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.005 - MSI)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
NVIDIA Control Panel 340.43 (Version: 340.43 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.42.1045 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7245 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.1.2 (HKLM-x32\...\RTSS) (Version: 6.1.2 - Unwinder)
SHIELD Streaming (Version: 2.1.214 - NVIDIA Corporation) Hidden
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version:  - Valve)
 
==================== Restore Points  =========================
 
 
==================== Hosts content: ==========================
 
2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A T:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {2C87D3F1-D08A-4039-92C9-97CFB6B7116A} - System32\Tasks\CCleanerSkipUAC => C:\Command Center\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)
Task: {5C2A20B8-0A89-4A2D-BAD0-232B5BCB060A} - System32\Tasks\globalUpdateUpdateTaskMachineUA => T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-04] (globalUpdate) <==== ATTENTION
Task: {6488EA78-D5B0-4D88-9756-20EF853F25C2} - System32\Tasks\GoogleUpdateTaskMachineUA => T:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-03] (Google Inc.)
Task: {73DD315F-2011-428F-A5D3-9C020CAEDFE1} - System32\Tasks\GoogleUpdateTaskMachineCore => T:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-03] (Google Inc.)
Task: {A84603BF-9D43-479B-AC20-443FBEFF7DB3} - System32\Tasks\globalUpdateUpdateTaskMachineCore => T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-04] (globalUpdate) <==== ATTENTION
Task: {C6C931DB-F7C8-48B3-9646-2229B9EC63B5} - System32\Tasks\e2a59d95-31d0-48e9-a5d9-e501564d2ffa-5_user => T:\Program Files (x86)\enformation\e2a59d95-31d0-48e9-a5d9-e501564d2ffa-5.exe
Task: {D220B35A-9993-4D4D-9420-BD276E6EF410} - System32\Tasks\RTSS => C:\RivaTuner Statistics Server\RTSS.exe [2014-06-05] ()
Task: T:\Windows\Tasks\e2a59d95-31d0-48e9-a5d9-e501564d2ffa-5_user.job => T:\Program Files (x86)\enformation\e2a59d95-31d0-48e9-a5d9-e501564d2ffa-5.exe
Task: T:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: T:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => T:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: T:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => T:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: T:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => T:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-07-03 22:19 - 2013-06-19 12:45 - 00265080 ____N () C:\Bitdefender\Bitdefender\txmlutil.dll
2014-07-03 22:19 - 2014-05-22 15:21 - 00003072 _____ () C:\Bitdefender\Bitdefender\UI\accessl.ui
2014-07-03 22:19 - 2014-05-22 15:21 - 00004608 _____ () C:\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-07-03 22:43 - 2014-07-03 22:43 - 00780592 _____ () C:\Bitdefender\Bitdefender\otengines_00046_002\ashttpbr.mdl
2014-07-03 22:43 - 2014-07-03 22:43 - 00568400 _____ () C:\Bitdefender\Bitdefender\otengines_00046_002\ashttpdsp.mdl
2014-07-03 22:43 - 2014-07-03 22:43 - 02599584 _____ () C:\Bitdefender\Bitdefender\otengines_00046_002\ashttpph.mdl
2014-07-03 22:43 - 2014-07-03 22:43 - 01322896 _____ () C:\Bitdefender\Bitdefender\otengines_00046_002\ashttprbl.mdl
2014-04-03 14:57 - 2014-04-03 14:57 - 00209712 _____ () T:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
2014-04-03 14:57 - 2014-04-03 14:57 - 00057648 _____ () T:\Program Files\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
2014-04-03 14:57 - 2014-04-03 14:57 - 00037168 _____ () T:\Program Files\Intel\Intel® Smart Connect Technology Agent\ISCTNetMon.dll
2014-04-03 14:56 - 2014-04-03 14:56 - 00057648 _____ () T:\Program Files\Intel\Intel® Smart Connect Technology Agent\ISCTEncryptionCheck.dll
2014-07-03 22:27 - 2014-06-03 17:37 - 01990144 _____ () C:\Command Center\MSIControlService.exe
2014-07-06 19:59 - 2014-07-06 19:59 - 00076152 _____ () T:\Windows\system32\PnkBstrA.exe
2014-07-03 21:46 - 2011-12-14 17:53 - 00303360 _____ () T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2014-07-03 23:34 - 2014-06-12 21:11 - 00118728 _____ () T:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-05 04:41 - 2014-06-05 04:41 - 00399360 _____ () C:\RivaTuner Statistics Server\RTSSHooks64.dll
2014-06-05 04:41 - 2014-06-05 04:41 - 00188928 _____ () C:\RivaTuner Statistics Server\RTSS.exe
2014-07-03 21:46 - 2011-12-14 17:55 - 08453376 _____ () T:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2014-06-05 04:40 - 2014-06-05 04:40 - 00026112 _____ () C:\RivaTuner Statistics Server\EncoderServer.exe
2014-06-05 04:41 - 2014-06-05 04:41 - 00088576 _____ () C:\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2014-07-03 22:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Bitdefender\Bitdefender\bdmetrics.dll
2014-07-03 22:38 - 2014-05-20 13:45 - 00468496 _____ () C:\Bitdefender\Bitdefender\bdidntconp.dll
2014-07-03 22:19 - 2014-05-22 15:21 - 00202752 _____ () C:\Bitdefender\Bitdefender\UI\bdidntconp.ui
2014-07-03 21:46 - 2011-12-14 10:22 - 00368640 _____ () T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2014-06-05 04:40 - 2014-06-05 04:40 - 00056320 _____ () C:\RivaTuner Statistics Server\RTFC.dll
2014-06-05 04:40 - 2014-06-05 04:40 - 00127488 _____ () C:\RivaTuner Statistics Server\RTUI.dll
2014-06-05 04:40 - 2014-06-05 04:40 - 00071680 _____ () C:\RivaTuner Statistics Server\RTMUI.dll
2014-06-05 04:40 - 2014-06-05 04:40 - 00354816 ____N () C:\RivaTuner Statistics Server\RTSSHooks.dll
2014-07-03 22:38 - 2014-03-15 01:05 - 00204280 _____ () C:\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2014-07-03 21:46 - 2011-12-14 10:43 - 00278528 _____ () T:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2014-07-03 21:55 - 2014-06-05 08:58 - 00716616 ____C () T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-07-03 21:55 - 2014-06-05 08:58 - 00126280 ____C () T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-07-03 21:55 - 2014-06-05 08:58 - 04217672 ____C () T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-07-03 21:55 - 2014-06-05 08:58 - 00414536 ____C () T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-07-03 21:55 - 2014-06-05 08:58 - 01732424 ____C () T:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2014-07-03 22:39 - 2013-09-17 03:20 - 01242584 _____ () T:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: T:\Users\TD\Downloads\023f.exe:BDU
 
==================== Safe Mode (whitelisted) ===================
 
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
MSCONFIG\startupfolder: T:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => T:\Windows\pss\Killer Network Manager.lnk.CommonStartup
MSCONFIG\startupfolder: T:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Qualcomm Atheros Killer Network Manager.lnk => T:\Windows\pss\Qualcomm Atheros Killer Network Manager.lnk.CommonStartup
MSCONFIG\startupreg: Command Center => C:\Command Center\StartCommandCenter.exe
MSCONFIG\startupreg: Live Update => C:\Live Update\StartLiveUpdate.exe /REMINDER
MSCONFIG\startupreg: Malwarebytes Anti-Malware (cleanup) => "T:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "T:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
 
==================== Faulty Device Manager Devices =============
 
Name: Killer e2200 Gigabit Ethernet Controller (NDIS 6.30)
Description: Killer e2200 Gigabit Ethernet Controller (NDIS 6.30)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros
Service: Ke2200
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/20/2014 07:20:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/20/2014 06:18:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/20/2014 06:13:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/20/2014 06:12:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (07/20/2014 06:12:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (07/20/2014 06:12:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (07/06/2014 08:58:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DayZ.exe, version: 0.46.124.490, time stamp: 0x53b2afef
Faulting module name: DayZ.exe, version: 0.46.124.490, time stamp: 0x53b2afef
Exception code: 0xc0000005
Fault offset: 0x006fdb05
Faulting process id: 0x2b48
Faulting application start time: 0xDayZ.exe0
Faulting application path: DayZ.exe1
Faulting module path: DayZ.exe2
Report Id: DayZ.exe3
 
Error: (07/06/2014 06:48:26 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-328720128-2849278223-3807603218-1000}/">.
 
Error: (07/06/2014 06:48:21 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-328720128-2849278223-3807603218-1000}/">.
 
Error: (07/06/2014 06:47:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (07/20/2014 06:13:12 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WSWNDA3100v2 service.
 
Error: (07/20/2014 06:12:28 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (07/20/2014 06:12:28 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (07/20/2014 06:12:28 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (07/06/2014 04:43:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MSICPU_CC service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (07/06/2014 03:12:34 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
%%1056
 
Error: (07/06/2014 03:12:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (07/06/2014 03:12:04 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.
 
Error: (07/06/2014 02:50:20 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
%%1056
 
Error: (07/06/2014 02:49:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (07/20/2014 07:20:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/20/2014 06:18:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/20/2014 06:13:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/20/2014 06:12:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (07/20/2014 06:12:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (07/20/2014 06:12:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (07/06/2014 08:58:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: DayZ.exe0.46.124.49053b2afefDayZ.exe0.46.124.49053b2afefc0000005006fdb052b4801cf99822ec1ee9bC:\Steam\steamapps\common\DayZ\DayZ.exeC:\Steam\steamapps\common\DayZ\DayZ.exe270e25e8-057a-11e4-80c2-d713b76c646f
 
Error: (07/06/2014 06:48:26 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 300x80040d07iehistory://{S-1-5-21-328720128-2849278223-3807603218-1000}/
 
Error: (07/06/2014 06:48:21 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 300x80040d07iehistory://{S-1-5-21-328720128-2849278223-3807603218-1000}/
 
Error: (07/06/2014 06:47:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 16%
Total physical RAM: 16327.95 MB
Available physical RAM: 13679.63 MB
Total Pagefile: 32654.08 MB
Available Pagefile: 29802.5 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:490.99 GB) (Free:471.75 GB) NTFS
Drive e: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive t: (SSD) (Fixed) (Total:101.51 GB) (Free:37.33 GB) NTFS
Drive x: (SSD2) (Fixed) (Total:119.24 GB) (Free:119.12 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 617D0EA8)
Partition 1: (Not Active) - (Size=119 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D7C77D76)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=491 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: ED200E95)
Partition 1: (Not Active) - (Size=102 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#9 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 21 July 2014 - 09:15 AM

Hi Tanner,
 
We need to run a fix with FRST:

  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter.
  • Copy and paste the script below in the notepad document:​
(IBuster) T:\Windows\winfaith1.exe
HKLM-x32\...\Run: [Calculator] => T:\Windows\winfaith1.exe [10651984 2014-07-04] (IBuster)
HKLM-x32\...\Run: [Calculator2] => T:\Windows\winfaith1.exe [10651984 2014-07-04] (IBuster)
HKLM-x32\...\Run: [Notepad] => T:\Windows\winfaith3.exe
HKLM-x32\...\Run: [Notepad2] => T:\Windows\winfaith3.exe
T:\Windows\winfaith3.exe
T:\Windows\winfaith1.exe
  • Save the file to your desktop and name it as fixlist.txt

Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

  • Run FRST.exe/FRST64.exe and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run.
  • Please copy and paste the log in your next reply.

--------------

Running a Malwarebytes scan:

  • Double-click on the Malwarebytes icon on your desktop
  • The program will open and click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

--------------
 
This scan can take a long time, so it is best done overnight or when you do not need the computer
 
I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

--------------
 
How is your computer running? Does G-Buster spyware still occur?
 
--------------
 
To recap, in your next reply I would like to see the following. Make sure to copy & paste them unless I ask otherwise:

  • Fixlog.txt
  • Malwarebytes log
  • ESET log

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#10 tdeeez

tdeeez
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:19 AM

Posted 21 July 2014 - 08:24 PM

FIXLOG.TXT
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-07-2014
Ran by TD at 2014-07-21 19:15:54 Run:1
Running from T:\Users\TD\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
(IBuster) T:\Windows\winfaith1.exe
HKLM-x32\...\Run: [Calculator] => T:\Windows\winfaith1.exe [10651984 2014-07-04] (IBuster)
HKLM-x32\...\Run: [Calculator2] => T:\Windows\winfaith1.exe [10651984 2014-07-04] (IBuster)
HKLM-x32\...\Run: [Notepad] => T:\Windows\winfaith3.exe
HKLM-x32\...\Run: [Notepad2] => T:\Windows\winfaith3.exe
T:\Windows\winfaith3.exe
T:\Windows\winfaith1.exe
*****************
 
[2524] T:\Windows\winfaith1.exe => Process closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Calculator => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Calculator2 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Notepad => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Notepad2 => value deleted successfully.
"T:\Windows\winfaith3.exe" => File/Directory not found.
T:\Windows\winfaith1.exe => Moved successfully.
 
==== End of Fixlog ====
 
 
 
MBAM RESULTS:
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/21/14
Scan Time: 19:16:51
Logfile: 
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.07.21.09
Rootkit Database: v2014.07.17.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: TD
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 279322
Time Elapsed: 2 min, 9 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 1
PUP.Optional.Conduit.A, T:\Users\TD\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (      "startup_urls": [ "http://search.conduit.com/?ctid=CT3319434&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP93D0317C-CA62-41EC-8CEC-1D0CFE5CEF4E&SSPV=", "http://www.google.com/", "http://search.conduit.com/?ctid=CT3227981&SearchSource=48&CUI=UN34590837651765547&UM=2", "http://mysearch.avg.com/?cid={5CBC7A68-33E1-473C-B77C-699CCDDD3173}&mid=cca5a05293dc4a3ea874091bf954178b-56c4b4dc654f7a7e858c00bfa9aa32fe7ace64d9&lang=en&ds=hk018&pr=sa&d=2013-09-24%2020:39:16&v=15.4.0.5&pid=safeguard&sg=0&sap=hp", "http://www.google.com/" ],), Replaced,[c06d148e3a411b1b2ac609d34fb57a86]
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
ESET LOG:
T:\FRST\Quarantine\T\Windows\winfaith1.exe.xBAD a variant of Win32/Packed.PrivateEXEProtector.J potentially unwanted application deleted - quarantined
T:\Users\TD\Downloads\cbsidlm-cbsi188-CrystalDiskInfo-SEO-10832082.exe a variant of Win32/CNETInstaller.B potentially unwanted application deleted - quarantined
T:\Users\TD\Downloads\ccsetup415.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
T:\Windows\WinFW2.zip a variant of Win32/Packed.PrivateEXEProtector.J potentially unwanted application deleted - quarantined
T:\Windows\WinFW222.zip a variant of Win32/Packed.PrivateEXEProtector.J potentially unwanted application deleted - quarantined
 
 
I will reboot to see if G-Buster is still occuring.
 
Edit: There was NO popup displaying the G-buster spyware notification. Thank you Toffee!

Edited by tdeeez, 21 July 2014 - 08:25 PM.


#11 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 22 July 2014 - 12:32 PM

Hi tdeeez,
 
You are welcome, and I believe we are done here as long as there are no more problems.
 
Your machine is clean! Feel free to enjoy the use of your cleaned computer. Please take the time to follow this last post which tells you how to remove the tools we have used and how to keep your computer clean   :thumbsup:
 
---------------
 
Download 51a5ce45263de-delfix.pngDelfix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.
 
Double-click Delfix.exe to start the tool.
Make sure the following items are checked:

  • Activate UAC
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings

Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't need to copy and paste it into your next reply.
 
--------------
 
Also, feel free to delete any leftover desktop icons and other various files which have been created throughout the process.
 
---------------
 
I have also compiled a list of links which you may be interested in:

This topic will be left open for 3 days in case you have any problems, otherwise it will closed after that time.
 
xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#12 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,086 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:19 PM

Posted 25 July 2014 - 09:16 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users