Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't seem to pinpoint what's happening under the hood


  • This topic is locked This topic is locked
15 replies to this topic

#1 Paulito

Paulito

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 07 July 2014 - 04:32 PM

First thing that struck me was my mouse cursor constantly flashing as if constant activity, then some programs wouldn't run as the PC would say cannot run in compatibility mode even though nothing has been done to change the compatibility, dds.com being one. I managed to get Junkware removal tool running and that found a bad module asked for a restart then stayed on screen after reboot doing some checks then closed with no log visible.

 

Any help appreciated  :(


Edited by Paulito, 07 July 2014 - 04:56 PM.


BC AdBot (Login to Remove)

 


#2 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 07 July 2014 - 04:46 PM

Managed to get DDS.com running in a sandbox, can't save the attach.txt outside of the sandbox though so would have to paste that if requested.

 

DDS log as follows.

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.17126
Run by Paulito at 22:42:30 on 2014-07-07
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
uRun: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
mRun: [RzWizard] C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe
mRun: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
mRun: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
mRun: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [Malwarebytes Anti-Exploit] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
mRun: [Live Update 5] C:\MSI\Smart Utilities\BootStartLiveupdate.exe /reminder
mRun: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
StartupFolder: C:\Users\Paulito\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SABnzbd.lnk - C:\Program Files (x86)\SABnzbd\SABnzbd.exe
StartupFolder: C:\Users\Paulito\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SAMSUN~1.LNK - C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\KILLER~1.LNK - C:\Windows\Installer\{4692B750-DE88-4DCF-9163-745AF5604B24}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\QUALCO~1.LNK - C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
mPolicies-Windows\System: EnableSmartScreen = dword:0
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
TCP: NameServer = 192.168.1.254 192.168.1.254
TCP: Interfaces\{96C6D24F-6950-4790-ABA8-8CDD42D4034B} : DHCPNameServer = 192.168.1.254 192.168.1.254
SSODL: WebCheck - <orphaned>
x64-mStart Page = about:blank
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [ISCT Tray] C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
x64-Run: [VIRTU MVP 2.0] C:\Program Files\Lucidlogix Technologies\VIRTU MVP 2.0\MVPControlPanel20.Exe /hide
x64-Run: [MBCfg64] C:\WINDOWS\System32\RunDLL32.exe C:\WINDOWS\System32\MBCfg64.dll,RunDLLEntry MBCfg64
x64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe"
x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2014-07-07 21:34:30 -------- d-----w- C:\Users\Paulito\AppData\Roaming\Comodo
2014-07-07 19:40:55 -------- d-----w- C:\WINDOWS\ERUNT
2014-07-07 19:16:39 -------- d-----w- C:\Program Files (x86)\Intel Corporation
2014-07-07 18:41:49 348160 ----a-w- C:\WINDOWS\SysWow64\msvcr71.dll
2014-07-07 18:41:49 1060864 ----a-w- C:\WINDOWS\SysWow64\mfc71.dll
2014-07-07 18:41:03 -------- d-s---w- C:\ProgramData\Shared Space
2014-07-07 18:40:58 -------- d-----w- C:\Program Files\COMODO
2014-07-07 18:33:17 -------- d-----w- C:\Users\Paulito\AppData\Local\Comodo
2014-07-07 18:33:16 57096 ----a-w- C:\WINDOWS\System32\certsentry.dll
2014-07-07 18:33:16 48392 ----a-w- C:\WINDOWS\SysWow64\certsentry.dll
2014-07-07 18:33:11 -------- d-----w- C:\ProgramData\Comodo Downloader
2014-07-07 18:33:11 -------- d-----w- C:\Program Files (x86)\Comodo
2014-07-07 18:32:11 -------- d-----w- C:\ProgramData\Comodo
2014-07-07 17:35:53 -------- d-----w- C:\ProgramData\BitDefender
2014-07-07 17:06:20 -------- d-----w- C:\Users\Paulito\AppData\Roaming\Wise Care 365
2014-07-07 17:05:45 -------- d-----w- C:\Program Files (x86)\Wise
2014-07-07 16:51:05 -------- d-sh--w- C:\Users\Paulito\AppData\Local\EmieUserList
2014-07-07 16:51:05 -------- d-sh--w- C:\Users\Paulito\AppData\Local\EmieSiteList
2014-07-07 16:45:47 2084072 ----a-w- C:\WINDOWS\System32\bdnc.dll
2014-07-07 16:45:47 -------- d-----w- C:\Users\Paulito\AppData\Roaming\LavasoftStatistics
2014-07-07 16:45:45 96160 ----a-w- C:\WINDOWS\System32\bdpredir.dll
2014-07-07 16:45:45 209984 ----a-w- C:\WINDOWS\System32\BdFirewallSDK.dll
2014-07-07 16:45:45 195016 ----a-w- C:\WINDOWS\System32\httproxy.dll
2014-07-07 16:45:45 156936 ----a-w- C:\WINDOWS\System32\bdfwcore.dll
2014-07-07 16:45:45 155912 ----a-w- C:\WINDOWS\System32\bdpop3p.dll
2014-07-07 16:45:45 122928 ----a-w- C:\WINDOWS\System32\OEMbdpredir.dll
2014-07-07 16:45:45 1061776 ----a-w- C:\WINDOWS\System32\bdsmtpp.dll
2014-07-07 16:45:13 -------- d-----w- C:\Program Files\Lavasoft
2014-07-07 16:44:54 -------- d-----w- C:\Program Files (x86)\Lavasoft
2014-07-07 16:44:53 -------- d-----w- C:\Program Files (x86)\Toolbar Cleaner
2014-07-07 16:43:12 -------- d-----w- C:\Program Files\Common Files\Lavasoft
2014-07-07 16:38:25 536576 ----a-w- C:\WINDOWS\SysWow64\sqlite3.dll
2014-07-07 16:38:07 -------- d-----w- C:\AdwCleaner
2014-07-07 16:33:48 -------- d-----w- C:\ProgramData\HitmanPro
2014-07-07 16:10:00 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2014-07-07 06:31:56 -------- d-----w- C:\Users\Paulito\AppData\Local\CrashDumps
2014-07-06 23:35:06 -------- d-----w- C:\WINDOWS\KMSServerService
2014-07-06 23:14:36 -------- d-sh--w- C:\Recovery
2014-07-06 23:14:35 -------- dc----w- C:\WINDOWS\Panther
2014-07-06 23:14:29 -------- d-----w- C:\ProgramData\RogueKiller
2014-07-06 23:14:13 -------- d-----w- C:\Windows.old
2014-07-06 22:46:16 -------- d-----r- C:\WINDOWS\BrowserChoice
2014-07-06 22:44:53 308224 ----a-w- C:\WINDOWS\System32\wusa.exe
2014-07-06 22:16:57 -------- d--h--w- C:\Users\Paulito\AppData
2014-07-06 22:16:57 -------- d-----w- C:\Users\Paulito\AppData\Local\Temp
2014-07-06 22:16:57 -------- d-----w- C:\Users\Paulito\AppData\Local\Microsoft
2014-07-06 22:03:13 -------- d--h--w- C:\$WINDOWS.~BT
2014-07-06 21:44:08 -------- d-----w- C:\ESD
2014-07-06 19:17:12 -------- d-----w- C:\Users\Paulito\AppData\Roaming\XBMC
2014-07-06 19:12:14 -------- d-----w- C:\Users\Paulito\AppData\Roaming\WinPatrol
2014-07-06 19:12:11 -------- d-----w- C:\ProgramData\InstallMate
2014-07-06 19:12:11 -------- d-----w- C:\Program Files (x86)\BillP Studios
2014-07-06 19:09:48 -------- d-----w- C:\Program Files (x86)\XBMC
2014-07-06 19:07:10 -------- d-----w- C:\ProgramData\Samsung
2014-07-06 19:07:10 -------- d-----w- C:\Program Files (x86)\Samsung Magician
2014-07-06 18:54:28 -------- d-----w- C:\Users\Paulito\AppData\Local\sabnzbd
2014-07-06 18:54:04 -------- d-----w- C:\Program Files (x86)\SABnzbd
2014-07-06 18:48:14 -------- d-----w- C:\Program Files (x86)\FileASSASSIN
2014-07-06 18:35:22 -------- d--h--w- C:\msiFastBoot
2014-07-06 18:31:16 144 ----a-w- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-06 18:24:20 -------- d-sh--w- C:\Users\Paulito\IntelGraphicsProfiles
2014-07-06 18:24:15 451 ----a-w- C:\WINDOWS\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-06 18:19:43 -------- d-----w- C:\Users\Paulito\AppData\Local\Secunia PSI
2014-07-06 18:19:27 -------- d-----w- C:\Program Files (x86)\Secunia
2014-07-06 18:18:10 -------- d-----w- C:\ProgramData\Malwarebytes Anti-Exploit
2014-07-06 18:18:09 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Exploit
2014-07-06 18:10:01 53248 ----a-w- C:\WINDOWS\SysWow64\CSVer.dll
2014-07-06 17:58:56 -------- d-----w- C:\Users\Paulito\AppData\Local\Diagnostics
2014-07-06 17:56:42 -------- d-----w- C:\ProgramData\Bigfoot Networks
2014-07-06 17:41:13 -------- d-----w- C:\Program Files\CCleaner
2014-07-06 17:38:21 -------- d-----w- C:\ProgramData\Qualcomm
2014-07-06 17:37:59 -------- d-sha-r- C:\ProgramData\Key-Base
2014-07-06 17:37:58 -------- d-----w- C:\ProgramData\mvp
2014-07-06 17:37:30 -------- d-----w- C:\Users\Paulito\lucidlogix
2014-07-06 17:35:48 25800 ----a-w- C:\WINDOWS\System32\drivers\INETMON.sys
2014-07-06 17:32:50 518896 ----a-w- C:\WINDOWS\System32\SRSTSX64.dll
2014-07-06 17:31:40 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2014-07-06 17:31:38 99288 ----a-w- C:\WINDOWS\System32\drivers\TeeDriverx64.sys
2014-07-06 17:31:38 1795952 ----a-w- C:\WINDOWS\System32\WdfCoInstaller01011.dll
2014-07-06 17:24:27 11248 ----a-w- C:\WINDOWS\acpimof.dll
2014-07-06 17:20:46 -------- d-----w- C:\ProgramData\Microsoft Toolkit
2014-07-06 17:16:30 511328 ----a-w- C:\WINDOWS\System32\d3dx10_43.dll
2014-07-06 17:16:30 470880 ----a-w- C:\WINDOWS\SysWow64\d3dx10_43.dll
2014-07-06 17:16:30 276832 ----a-w- C:\WINDOWS\System32\d3dx11_43.dll
2014-07-06 17:16:30 248672 ----a-w- C:\WINDOWS\SysWow64\d3dx11_43.dll
2014-07-06 17:16:30 2401112 ----a-w- C:\WINDOWS\System32\D3DX9_43.dll
2014-07-06 17:16:30 1998168 ----a-w- C:\WINDOWS\SysWow64\D3DX9_43.dll
2014-07-06 17:16:29 1225920 ----a-w- C:\WINDOWS\System32\nvspcap64.dll
2014-07-06 17:16:29 1081112 ----a-w- C:\WINDOWS\SysWow64\nvspcap.dll
2014-07-06 17:16:29 -------- d-----w- C:\Users\Paulito\AppData\Local\NVIDIA Corporation
2014-07-06 17:16:06 601432 ----a-w- C:\WINDOWS\SysWow64\nvStreaming.exe
2014-07-06 16:58:45 122584 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
2014-07-06 16:58:36 91352 ----a-w- C:\WINDOWS\System32\drivers\mbamchameleon.sys
2014-07-06 16:58:36 64216 ----a-w- C:\WINDOWS\System32\drivers\mwac.sys
2014-07-06 16:58:36 25816 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
2014-07-06 16:58:36 -------- d-----w- C:\ProgramData\Malwarebytes
2014-07-06 16:58:36 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-06 16:49:17 110176 ----a-w- C:\WINDOWS\System32\klfphc.dll
2014-07-06 16:49:00 -------- d-----w- C:\ProgramData\Kaspersky Lab
2014-07-06 16:49:00 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2014-07-06 16:48:54 115296 ----a-w- C:\WINDOWS\System32\drivers\klflt.sys
2014-07-06 16:43:09 -------- d-----w- C:\Users\Paulito\AppData\Local\Razer_Inc
2014-07-06 16:41:53 -------- d-----w- C:\Users\Paulito\AppData\Local\NVIDIA
2014-07-06 16:16:48 -------- d-----w- C:\Program Files\KMSpico
2014-07-06 16:16:38 -------- d-----w- C:\Users\Paulito\AppData\Local\Programs
2014-07-06 15:49:21 10779000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CE2B589E-2A7D-4409-AFEC-8B564255C49D}\mpengine.dll
2014-07-06 15:49:19 270496 ----a-w- C:\WINDOWS\System32\MpSigStub.exe
2014-07-06 15:43:29 -------- d-----w- C:\WINDOWS\System32\MRT
2014-07-06 15:36:07 14848 ----a-w- C:\WINDOWS\SysWow64\rars.rs
2014-07-06 15:36:07 14848 ----a-w- C:\WINDOWS\System32\rars.rs
2014-07-06 15:35:10 -------- d-----w- C:\Users\Paulito\AppData\Local\Google
2014-07-06 15:29:07 -------- d-----w- C:\Program Files\Qualcomm Atheros
2014-07-06 15:27:29 -------- d-----w- C:\MSI
2014-07-06 15:27:21 -------- d-----w- C:\Intel
2014-07-06 15:27:19 -------- d-----w- C:\Program Files (x86)\MSI
.
==================== Find3M  ====================
.
2014-06-11 08:57:41 31520 ----a-w- C:\WINDOWS\System32\nvhdap64.dll
2014-06-11 08:57:41 197408 ----a-w- C:\WINDOWS\System32\drivers\nvhda64v.sys
2014-06-11 08:57:41 1515296 ----a-w- C:\WINDOWS\System32\nvhdagenco6420103.dll
2014-05-31 05:13:24 703992 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2014-05-31 05:13:24 105464 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2014-05-30 09:20:36 752640 ----a-w- C:\WINDOWS\System32\jscript9diag.dll
2014-05-30 09:08:22 5782528 ----a-w- C:\WINDOWS\System32\jscript9.dll
2014-05-30 08:43:06 61952 ----a-w- C:\WINDOWS\SysWow64\iesetup.dll
2014-05-30 08:27:56 592896 ----a-w- C:\WINDOWS\SysWow64\jscript9diag.dll
2014-05-30 08:23:22 2040832 ----a-w- C:\WINDOWS\System32\inetcpl.cpl
2014-05-30 07:56:56 2266112 ----a-w- C:\WINDOWS\System32\wininet.dll
2014-05-30 07:56:50 4244992 ----a-w- C:\WINDOWS\SysWow64\jscript9.dll
2014-05-30 07:49:38 1964544 ----a-w- C:\WINDOWS\SysWow64\inetcpl.cpl
2014-05-30 07:21:10 1790976 ----a-w- C:\WINDOWS\SysWow64\wininet.dll
2014-05-29 06:32:14 80384 ----a-w- C:\WINDOWS\System32\RazerCoinstaller.dll
2014-05-27 13:48:54 65120 ----a-w- C:\WINDOWS\System32\drivers\klwfp.sys
2014-05-27 13:48:54 458336 ----a-w- C:\WINDOWS\System32\drivers\kl1.sys
2014-05-27 13:48:54 30304 ----a-w- C:\WINDOWS\System32\drivers\klim6.sys
2014-05-27 13:48:54 29792 ----a-w- C:\WINDOWS\System32\drivers\klelam.sys
2014-05-27 13:48:54 29280 ----a-w- C:\WINDOWS\System32\drivers\klmouflt.sys
2014-05-27 13:48:54 29280 ----a-w- C:\WINDOWS\System32\drivers\klkbdflt.sys
2014-05-27 13:48:54 178272 ----a-w- C:\WINDOWS\System32\drivers\kneps.sys
2014-05-20 02:44:03 9735256 ----a-w- C:\WINDOWS\SysWow64\nvcuda.dll
2014-05-20 01:25:42 6769096 ----a-w- C:\WINDOWS\System32\nvcpl.dll
2014-05-20 01:25:42 3514144 ----a-w- C:\WINDOWS\System32\nvsvc64.dll
2014-05-20 01:25:39 927520 ----a-w- C:\WINDOWS\System32\nvvsvc.exe
2014-05-20 01:25:38 62808 ----a-w- C:\WINDOWS\System32\nvshext.dll
2014-05-20 01:25:38 387528 ----a-w- C:\WINDOWS\System32\nvmctray.dll
2014-05-19 06:31:41 57856 ----a-w- C:\WINDOWS\System32\drvcfg.exe
2014-05-19 06:21:30 110592 ----a-w- C:\WINDOWS\System32\drvinst.exe
2014-05-19 05:23:45 98816 ----a-w- C:\WINDOWS\SysWow64\drvinst.exe
2014-05-14 23:49:42 3774821 ----a-w- C:\WINDOWS\System32\nvcoproc.bin
2014-05-13 18:09:48 3962840 ----a-w- C:\WINDOWS\System32\drivers\RTKVHD64.sys
2014-05-10 03:46:11 2151424 ----a-w- C:\WINDOWS\System32\msxml3.dll
2014-05-10 03:22:15 1312256 ----a-w- C:\WINDOWS\SysWow64\msxml3.dll
2014-05-09 10:17:44 628952 ----a-w- C:\WINDOWS\System32\RtDataProc64.dll
2014-05-08 23:06:40 295424 ----a-w- C:\WINDOWS\System32\drivers\ks.sys
2014-05-08 15:29:48 2000152 ----a-w- C:\WINDOWS\System32\MBAPO264.dll
2014-05-08 15:29:44 1728280 ----a-w- C:\WINDOWS\SysWow64\MBAPO232.dll
2014-05-06 22:39:17 38296 ----a-w- C:\WINDOWS\System32\drivers\intelaud.sys
2014-05-06 22:39:17 27032 ----a-w- C:\WINDOWS\System32\drivers\iwdbus.sys
2014-05-05 04:02:33 3360256 ----a-w- C:\WINDOWS\System32\rdpcorets.dll
2014-05-03 07:14:50 79872 ----a-w- C:\WINDOWS\System32\WSReset.exe
2014-05-03 04:21:54 249344 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-03 04:07:45 189952 ----a-w- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-03 03:41:41 921088 ----a-w- C:\WINDOWS\System32\WSShared.dll
2014-05-03 03:38:52 754688 ----a-w- C:\WINDOWS\SysWow64\WSShared.dll
2014-05-01 13:31:39 55328 ----a-w- C:\WINDOWS\System32\drivers\wpcfltr.sys
2014-05-01 13:31:39 3048904 ----a-w- C:\WINDOWS\System32\WpcMon.exe
2014-05-01 07:14:57 3118080 ----a-w- C:\WINDOWS\System32\Wpc.dll
2014-05-01 07:05:14 2861056 ----a-w- C:\WINDOWS\System32\WpcWebSync.dll
2014-05-01 06:51:23 2344448 ----a-w- C:\WINDOWS\SysWow64\Wpc.dll
2014-05-01 05:24:11 2834944 ----a-w- C:\WINDOWS\System32\wpccpl.dll
2014-04-30 11:16:57 1336648 ----a-w- C:\WINDOWS\System32\gdi32.dll
2014-04-30 10:34:18 948952 ----a-w- C:\WINDOWS\System32\RCoInstII64.dll
2014-04-30 04:43:27 1975296 ----a-w- C:\WINDOWS\System32\DWrite.dll
2014-04-30 04:26:49 1345536 ----a-w- C:\WINDOWS\System32\FntCache.dll
2014-04-30 03:51:08 1064448 ----a-w- C:\WINDOWS\SysWow64\gdi32.dll
2014-04-30 03:47:50 1509888 ----a-w- C:\WINDOWS\SysWow64\DWrite.dll
2014-04-28 14:48:48 2800344 ----a-w- C:\WINDOWS\System32\RltkAPO64.dll
2014-04-25 12:51:10 2834648 ----a-w- C:\WINDOWS\System32\RtPgEx64.dll
2014-04-25 12:23:36 1022168 ----a-w- C:\WINDOWS\System32\RtkApi64.dll
2014-04-22 16:29:20 389240 ----a-w- C:\WINDOWS\System32\drivers\Trufos.sys
2014-04-22 16:28:12 97816 ----a-w- C:\WINDOWS\System32\drivers\BdfNdisf6.sys
2014-04-18 14:57:16 32600 ----a-w- C:\WINDOWS\System32\ploptin.dll
2014-04-18 14:44:33 1466856 ----a-w- C:\WINDOWS\System32\propsys.dll
2014-04-18 13:29:08 1200288 ----a-w- C:\WINDOWS\SysWow64\propsys.dll
2014-04-18 09:44:23 55296 ----a-w- C:\WINDOWS\System32\energyprov.dll
2014-04-18 09:32:25 13287936 ----a-w- C:\WINDOWS\System32\twinui.dll
2014-04-18 09:14:19 2441216 ----a-w- C:\WINDOWS\apppatch\AcGenral.dll
2014-04-18 08:58:40 11792384 ----a-w- C:\WINDOWS\SysWow64\twinui.dll
2014-04-18 08:32:53 805376 ----a-w- C:\WINDOWS\System32\win32spl.dll
2014-04-18 08:21:09 1126912 ----a-w- C:\WINDOWS\System32\SearchFolder.dll
2014-04-18 08:09:30 8652800 ----a-w- C:\WINDOWS\System32\Windows.UI.Search.dll
2014-04-18 07:51:14 836608 ----a-w- C:\WINDOWS\SysWow64\SearchFolder.dll
2014-04-18 07:49:01 5833216 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
2014-04-16 21:13:02 37560 ----a-w- C:\WINDOWS\System32\drivers\cmdhlp.sys
2014-04-16 21:13:00 748784 ----a-w- C:\WINDOWS\System32\drivers\cmdguard.sys
2014-04-16 21:13:00 23168 ----a-w- C:\WINDOWS\System32\drivers\cmderd.sys
2014-04-14 09:20:34 324888 ----a-w- C:\WINDOWS\System32\MFCaptureEngine.dll
2014-04-14 08:01:02 285144 ----a-w- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
2014-04-11 10:03:36 555736 ----a-w- C:\WINDOWS\System32\twinapi.appcore.dll
2014-04-11 08:25:54 419928 ----a-w- C:\WINDOWS\SysWow64\twinapi.appcore.dll
2014-04-11 04:51:25 250368 ----a-w- C:\WINDOWS\System32\rdpencom.dll
2014-04-11 04:23:52 209920 ----a-w- C:\WINDOWS\SysWow64\rdpencom.dll
2014-04-11 03:54:45 201728 ----a-w- C:\WINDOWS\System32\ubpm.dll
2014-04-11 03:30:42 449536 ----a-w- C:\WINDOWS\System32\defragsvc.dll
2014-04-11 03:06:13 31232 ----a-w- C:\WINDOWS\SysWow64\wuapp.exe
2014-04-11 03:05:40 123904 ----a-w- C:\WINDOWS\SysWow64\wuwebv.dll
2014-04-11 03:02:49 35328 ----a-w- C:\WINDOWS\System32\wuapp.exe
2014-04-11 03:01:46 137728 ----a-w- C:\WINDOWS\System32\wuwebv.dll
2014-04-11 03:00:47 80896 ----a-w- C:\WINDOWS\SysWow64\wudriver.dll
2014-04-11 02:57:31 190976 ----a-w- C:\WINDOWS\System32\storewuauth.dll
2014-04-11 02:56:32 381440 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll
2014-04-11 02:55:36 93696 ----a-w- C:\WINDOWS\System32\wudriver.dll
2014-04-11 02:46:04 1705472 ----a-w- C:\WINDOWS\System32\wucltux.dll
2014-04-11 02:36:22 828928 ----a-w- C:\WINDOWS\SysWow64\twinui.appcore.dll
2014-04-11 02:29:16 1054208 ----a-w- C:\WINDOWS\System32\twinui.appcore.dll
2014-04-10 11:19:56 2101848 ----a-w- C:\WINDOWS\System32\WavesGUILib64.dll
2014-04-10 11:19:54 2041432 ----a-w- C:\WINDOWS\System32\MaxxAudioEQ64.dll
.
============= FINISH: 22:43:44.74 ===============
 


#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,744 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:26 AM

Posted 12 July 2014 - 04:35 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/540218 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#4 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 13 July 2014 - 07:32 AM

Hi,

 

I couldn't shake what ever i had on my system off, which is a first, so i decided a reformat would be the best path, after doing a fresh install a trojan was detected in dumphive.3xe, i think i have managed to remove this from the system as the PC seems to be running fine with no visible problems.

 

I am unable to do a DDS log as currently on 8.1 X64

I have the original windows 8 DVD but not 8.1

 

I would appreciate someone looking at the PC though just to be sure.

 

Thanks,

Paulito



#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:26 PM

Posted 17 July 2014 - 03:54 PM

Greetings Paulito and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. I would be happy to take a look at your computer. Please do this.
===================================================

Farbar Recovery Scan Tool (FRST)

--------------------
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • FRST results
  • Addition log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#6 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 20 July 2014 - 06:47 AM

Hi Gary,

 

Did a complete wipe, partitions etc and fingers crossed everything appears to be OK at the moment. would appreciate a 2nd opinion though please :-)

 

as requested please see below, how you know what to look for i don't know  :unsure:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-07-2014
Ran by Predator (administrator) on OMEGA on 20-07-2014 12:28:01
Running from C:\Users\Predator\Downloads
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
() C:\Windows\KMSServerService\KMS Server Service.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP 2.0\LucidSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(BillP Studios) C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Carifred) C:\Program Files\UVK - Ultra Virus Killer\UVK_en.exe
(AVAST Software) C:\Program Files\UVK - Ultra Virus Killer\Third party\Avast_aswMBR.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-04-24] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7174728 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [VIRTU MVP 2.0] => C:\Program Files\Lucidlogix Technologies\VIRTU MVP 2.0\MVPControlPanel20.Exe [1239272 2013-11-26] ()
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64 
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart 
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [382608 2014-06-04] (Malwarebytes Corporation)
HKU\S-1-5-21-1761729439-588820557-3478904116-1001\...\Run: [WinPatrol] => C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [1128000 2014-06-03] (BillP Studios)
HKU\S-1-5-21-1761729439-588820557-3478904116-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1761729439-588820557-3478904116-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [784392 2014-05-29] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1761729439-588820557-3478904116-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs: C:\Windows\system32\appinit_dll.dll => C:\Windows\system32\appinit_dll.dll [531688 2013-11-26] (Lucidlogix Inc.)
AppInit_DLLs-x32: C:\Windows\SysWOW64\appinit_dll.dll => C:\Windows\SysWOW64\appinit_dll.dll [482536 2013-11-26] (Lucidlogix Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{7411487A-FF21-481E-AB53-BF27FF30E042}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
Startup: C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
Startup: C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDock\ObjectDock.exe (No File)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.uk.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE2C9868DD3A2CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll (AdTrustMedia)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll (AdTrustMedia)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.1.254
 
FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-07-18]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-07-18]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-07-18]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-07-18]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-07-18]
 
Chrome: 
=======
CHR HomePage: hxxp://www.sky.com/
CHR StartupUrls: "hxxp://uk.advfn.com/p.php?pid=mon", "hxxp://uk.advfn.com/p.php?pid=quote&symbol=L%5EGKP", "hxxp://www.iii.co.uk/investment/detail/?display=discussion&code=cotn:GKP.L", "hxxp://uk.advfn.com/p.php?pid=staticchart&s=L%5Egkp&p=0&t=48&vol=1", "hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_9&idate=__installtime__&ent=hp&u=___userid___"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\gcswf32.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\14.0.0.4651_0\plugin/content_blocker_npapi.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\14.0.0.4651_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\14.0.0.4651_0\plugin/online_banking_npapi.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\14.0.0.4917_0\plugin/npVKPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\14.0.0.4651_0\plugin/npUrlAdvisor.dll (Kaspersky Lab ZAO)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-18]
CHR Extension: (YouTube) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-18]
CHR Extension: (Google Search) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-18]
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-07-18]
CHR Extension: (MaskMe) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpkiidbpeijnaaacjlfnijncdlkicejg [2014-07-18]
CHR Extension: (DoNotTrackMe: Online Privacy Protection) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd [2014-07-18]
CHR Extension: (AdBlock) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-18]
CHR Extension: (FlashBlock) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gofhjkjmkpinhpoiabjplobcaignabnl [2014-07-18]
CHR Extension: (Safe Money) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-07-18]
CHR Extension: (Dangerous Websites Blocker) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-07-18]
CHR Extension: (Virtual Keyboard) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-07-18]
CHR Extension: (Secure Bookmarks) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\leocjgngiajhfiikjolfhcpiokgbinep [2014-07-18]
CHR Extension: (Google Wallet) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-18]
CHR Extension: (SABconnect++) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod [2014-07-18]
CHR Extension: (Gmail) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-18]
CHR Extension: (Anti-Banner) - C:\Users\Predator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-07-18]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2014-05-27]
 
==================== Services (Whitelisted) =================
 
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2014-05-27] (Kaspersky Lab ZAO)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-17] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-24] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
R2 KMSServerService; C:\Windows\KMSServerService\KMS Server Service.exe [294912 2014-07-18] () [File not signed]
R2 LucidSvc; C:\Program Files\Lucidlogix Technologies\VIRTU MVP 2.0\LucidSvc.exe [20712 2013-11-26] (LucidLogix)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [360592 2014-06-04] (Malwarebytes Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-04-18] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2013-12-09] (Qualcomm Atheros) [File not signed]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174088 2014-05-29] (Sandboxie Holdings, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2014-07-07] (WiseCleaner.com)
 
==================== Drivers (Whitelisted) ====================
 
S3 AcpiCtlDrv; C:\Windows\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R0 asstor64; C:\Windows\System32\drivers\asstor64.sys [84816 2014-01-27] (Asmedia Technology)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [748784 2014-04-16] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [37560 2014-04-16] (COMODO)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [62392 2014-06-04] ()
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [22216 2014-02-03] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [22728 2014-02-03] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] ()
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127664 2014-04-16] (COMODO)
R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-02-03] ()
R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [163536 2013-03-20] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-05-27] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2014-05-27] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-05-27] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625760 2014-05-27] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-05-27] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-05-27] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2014-05-27] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [65120 2014-05-27] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2014-05-27] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-20] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-05-29] (Sandboxie Holdings, LLC)
U3 aswMBR; \??\C:\Users\Predator\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\Users\Predator\AppData\Local\Temp\aswVmm.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-20 12:28 - 2014-07-20 12:28 - 00026597 _____ () C:\Users\Predator\Downloads\FRST.txt
2014-07-20 12:27 - 2014-07-20 12:28 - 00000000 ____D () C:\FRST
2014-07-20 12:27 - 2014-07-20 12:27 - 02089984 _____ (Farbar) C:\Users\Predator\Downloads\FRST64.exe
2014-07-20 12:16 - 2014-07-20 12:16 - 00002579 _____ () C:\Users\Predator\Desktop\aswMBR.txt
2014-07-20 12:16 - 2014-07-20 12:16 - 00000512 _____ () C:\Users\Predator\Desktop\MBR.dat
2014-07-20 12:03 - 2014-07-19 21:58 - 00001314 _____ () C:\Users\Predator\Desktop\Options - Shortcut - Copy.lnk
2014-07-20 11:58 - 2014-07-20 11:58 - 00512982 _____ () C:\Users\Predator\Downloads\Start_Orb_Shortcut.zip
2014-07-20 11:28 - 2014-07-20 11:28 - 00212352 _____ () C:\Users\Predator\Downloads\Stardock_Fences_Free_v1.0.exe
2014-07-20 11:17 - 2014-07-20 11:17 - 21291984 _____ () C:\Users\Predator\Downloads\ObjectDock-cnet-setup (1).exe
2014-07-20 11:17 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator\Documents\Stardock
2014-07-20 11:17 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Stardock
2014-07-20 11:17 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator\AppData\Local\Stardock
2014-07-19 22:38 - 2014-07-20 03:15 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\vlc
2014-07-19 22:38 - 2014-07-19 22:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-07-19 22:38 - 2014-07-19 22:38 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-07-19 22:37 - 2014-07-19 22:37 - 24677393 _____ () C:\Users\Predator\Downloads\vlc-2.1.3-win32.exe
2014-07-19 22:36 - 2014-07-19 22:36 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\MPC-HC
2014-07-19 22:34 - 2014-07-19 22:34 - 27992636 _____ ( ) C:\Users\Predator\Downloads\K-Lite_Codec_Pack_1060_Full.exe
2014-07-19 22:34 - 2014-07-19 22:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-07-19 22:34 - 2014-07-19 22:34 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-07-19 22:34 - 2014-06-14 15:03 - 00260696 _____ () C:\Windows\system32\unrar64.dll
2014-07-19 22:34 - 2014-06-14 15:03 - 00218200 _____ () C:\Windows\SysWOW64\unrar.dll
2014-07-19 22:30 - 2014-07-19 19:31 - 00001706 _____ () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2014-07-19 22:24 - 2014-07-20 11:49 - 00002484 _____ () C:\Windows\PFRO.log
2014-07-19 21:58 - 2014-07-19 21:58 - 00001314 _____ () C:\Users\Predator\Desktop\Options - Shortcut.lnk
2014-07-19 20:52 - 2014-07-19 20:52 - 02356494 _____ () C:\Users\Predator\Downloads\enigma_by_kaelri-d1ptasn.rmskin
2014-07-19 20:33 - 2014-07-19 20:33 - 00005733 _____ () C:\Users\Predator\Documents\MYD2013_.rmskin
2014-07-19 20:21 - 2014-07-19 20:21 - 00000000 ____D () C:\Program Files (x86)\Stardock
2014-07-19 20:20 - 2014-07-19 20:20 - 21291984 _____ () C:\Users\Predator\Downloads\ObjectDock-cnet-setup.exe
2014-07-19 20:20 - 2014-07-19 20:20 - 00000000 ____D () C:\Users\Predator\Downloads\Stardock
2014-07-19 19:31 - 2014-07-19 20:42 - 00000000 ____D () C:\Program Files\Rainmeter
2014-07-19 19:31 - 2014-07-19 19:31 - 00001706 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2014-07-19 19:31 - 2014-07-19 19:31 - 00000000 ____D () C:\Users\Predator\Documents\Rainmeter
2014-07-19 19:31 - 2014-07-19 19:31 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Rainmeter
2014-07-19 19:30 - 2014-07-19 19:30 - 02293760 _____ () C:\Users\Predator\Downloads\Rainmeter-3.2-r2302-beta.exe
2014-07-19 16:52 - 2014-07-19 16:52 - 00000000 ____D () C:\ProgramData\UVK
2014-07-19 16:46 - 2014-07-19 16:49 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-19 16:46 - 2014-07-19 16:46 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-19 16:45 - 2014-07-19 16:45 - 11188736 _____ (SurfRight B.V.) C:\Users\Predator\Downloads\HitmanPro_x64 (1).exe
2014-07-19 16:45 - 2014-07-19 16:45 - 09741664 _____ (SurfRight B.V.) C:\Users\Predator\Downloads\HitmanPro_x64.exe
2014-07-19 16:43 - 2014-07-20 12:11 - 00000000 ____D () C:\Program Files\UVK - Ultra Virus Killer
2014-07-19 16:43 - 2014-07-19 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UVK - Ultra Virus Killer
2014-07-19 16:42 - 2014-07-19 16:42 - 05736448 _____ (Carifred) C:\Users\Predator\Downloads\UVKSetup.exe
2014-07-19 16:15 - 2014-07-19 16:15 - 00000000 ___RD () C:\Sandbox
2014-07-19 15:59 - 2014-07-20 11:18 - 00001852 _____ () C:\Windows\Sandboxie.ini
2014-07-19 15:59 - 2014-07-19 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2014-07-19 15:58 - 2014-07-19 15:58 - 02656264 _____ (Sandboxie Holdings, LLC) C:\Users\Predator\Downloads\SandboxieInstall.exe
2014-07-19 15:58 - 2014-07-19 15:58 - 00000000 ____D () C:\Program Files\Sandboxie
2014-07-19 15:22 - 2014-07-19 15:22 - 01376768 _____ () C:\Users\Predator\Downloads\7z920-x64.msi
2014-07-19 15:22 - 2014-07-19 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-07-19 15:22 - 2014-07-19 15:22 - 00000000 ____D () C:\Program Files\7-Zip
2014-07-19 15:20 - 2014-07-19 15:20 - 00053831 _____ () C:\Users\Predator\Downloads\skin_rocketdock_windows_8_by_gericat-d4xf4wb.rar
2014-07-19 15:18 - 2014-07-19 15:18 - 06463660 _____ (Punk Software ) C:\Users\Predator\Downloads\RocketDock-v1.3.5.exe
2014-07-19 15:18 - 2014-07-19 15:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2014-07-19 15:18 - 2014-07-19 15:18 - 00000000 ____D () C:\Program Files (x86)\RocketDock
2014-07-19 14:43 - 2014-07-19 14:43 - 00000000 ____D () C:\Users\Predator\AppData\Local\AdTrustMedia
2014-07-19 07:14 - 2014-07-18 12:58 - 00000000 ____D () C:\Windows\Panther
2014-07-19 07:13 - 2012-08-10 03:31 - 00000013 ____R () C:\Windows\csup.txt
2014-07-18 23:32 - 2014-07-18 23:32 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-18 23:32 - 2014-06-26 17:40 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-18 23:15 - 2014-04-12 10:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-07-18 23:15 - 2014-04-12 10:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-07-18 23:15 - 2014-04-12 10:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-07-18 23:15 - 2014-04-12 10:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-18 23:15 - 2014-04-12 10:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-18 23:15 - 2014-04-12 10:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-18 23:15 - 2014-04-12 10:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-18 23:15 - 2014-04-12 10:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-18 23:15 - 2014-04-12 08:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-07-18 23:15 - 2014-04-12 08:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-18 23:15 - 2014-04-12 08:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-18 23:15 - 2014-04-12 08:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-18 23:15 - 2014-04-12 08:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-18 23:15 - 2014-04-12 08:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-18 23:15 - 2014-04-12 07:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-07-18 23:15 - 2014-03-11 04:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-18 23:15 - 2014-03-11 04:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-07-18 23:15 - 2014-03-11 01:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-07-18 23:15 - 2014-03-11 01:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-18 23:15 - 2014-03-11 01:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-07-18 23:15 - 2014-03-11 01:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-07-18 23:15 - 2014-03-11 01:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-07-18 23:15 - 2014-03-11 01:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-07-18 23:15 - 2014-03-11 01:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-18 23:15 - 2014-03-11 01:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-07-18 23:15 - 2014-03-11 01:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-07-18 23:15 - 2014-03-11 01:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-07-18 23:15 - 2014-03-11 01:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-07-18 23:15 - 2014-03-10 04:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-07-18 23:15 - 2014-03-10 02:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-18 23:15 - 2014-03-04 00:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-07-18 23:14 - 2014-07-18 23:14 - 00001325 _____ () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security.lnk
2014-07-18 23:14 - 2014-07-18 23:14 - 00000167 _____ () C:\Windows\system32\netcfg-583406.txt
2014-07-18 23:14 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2014-07-18 23:13 - 2014-07-20 12:13 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-07-18 23:13 - 2014-07-18 23:13 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-07-18 23:13 - 2014-06-19 03:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-18 23:13 - 2014-06-19 03:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-18 23:13 - 2014-06-19 03:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-18 23:13 - 2014-06-19 03:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-18 23:13 - 2014-06-19 03:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-18 23:13 - 2014-06-19 03:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-18 23:13 - 2014-06-19 03:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-18 23:13 - 2014-06-19 03:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-18 23:13 - 2014-06-19 03:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-18 23:13 - 2014-06-19 03:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-18 23:13 - 2014-06-19 01:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-18 23:13 - 2014-06-19 01:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-18 23:13 - 2014-06-19 01:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-18 23:13 - 2014-06-19 01:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-18 23:13 - 2014-06-19 01:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-18 23:13 - 2014-06-19 01:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-18 23:13 - 2014-06-19 01:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-18 23:13 - 2014-06-19 01:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-18 23:13 - 2014-06-19 01:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-18 23:13 - 2014-06-18 23:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-18 23:13 - 2014-05-27 14:48 - 00625760 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-07-18 23:13 - 2014-05-27 14:48 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-07-18 23:13 - 2014-01-13 00:30 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-07-18 23:13 - 2014-01-13 00:30 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-07-18 23:13 - 2013-11-20 01:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-07-18 23:13 - 2013-11-20 00:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-07-18 23:13 - 2013-05-04 08:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2014-07-18 23:13 - 2013-05-04 07:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-07-18 23:13 - 2013-05-04 07:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-07-18 23:13 - 2013-05-04 07:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2014-07-18 23:13 - 2013-05-04 07:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-07-18 23:13 - 2013-05-04 07:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2014-07-18 23:13 - 2013-05-04 07:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-07-18 23:13 - 2013-05-04 07:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-07-18 23:13 - 2013-05-04 07:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2014-07-18 23:13 - 2013-05-04 07:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2014-07-18 23:13 - 2013-05-04 07:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2014-07-18 23:13 - 2013-05-04 07:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2014-07-18 23:13 - 2013-05-04 05:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2014-07-18 23:13 - 2013-05-04 05:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-07-18 23:13 - 2013-05-04 05:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2014-07-18 23:13 - 2013-05-04 05:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2014-07-18 23:13 - 2013-05-04 05:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2014-07-18 23:13 - 2013-05-04 05:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2014-07-18 23:13 - 2013-05-04 05:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2014-07-18 23:13 - 2013-05-04 05:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2014-07-18 23:13 - 2013-05-04 05:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-07-18 23:13 - 2013-05-04 05:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2014-07-18 23:13 - 2013-05-04 05:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2014-07-18 23:13 - 2013-05-04 05:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2014-07-18 23:13 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2014-07-18 23:13 - 2013-05-04 05:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-07-18 23:13 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2014-07-18 23:13 - 2013-04-09 06:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-07-18 23:13 - 2013-04-09 06:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-07-18 23:13 - 2013-04-09 06:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-07-18 23:13 - 2013-04-09 06:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2014-07-18 23:13 - 2013-04-09 06:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2014-07-18 23:13 - 2013-04-09 06:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2014-07-18 23:13 - 2013-04-09 06:17 - 01829408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-18 23:13 - 2013-04-09 05:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-07-18 23:13 - 2013-04-09 05:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2014-07-18 23:13 - 2013-04-09 05:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-07-18 23:13 - 2013-04-09 05:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-07-18 23:13 - 2013-04-09 05:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-18 23:13 - 2013-04-09 05:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-07-18 23:13 - 2013-04-09 05:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-07-18 23:13 - 2013-04-09 05:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2014-07-18 23:13 - 2013-04-09 05:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2014-07-18 23:13 - 2013-04-09 05:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-07-18 23:13 - 2013-04-09 05:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-07-18 23:13 - 2013-04-09 05:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2014-07-18 23:13 - 2013-04-09 05:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2014-07-18 23:13 - 2013-04-09 05:48 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-07-18 23:13 - 2013-04-09 03:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2014-07-18 23:13 - 2013-04-09 03:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2014-07-18 23:13 - 2013-04-09 03:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-07-18 23:13 - 2013-04-09 03:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2014-07-18 23:13 - 2013-04-09 00:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2014-07-18 23:13 - 2013-04-09 00:39 - 01408896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-18 23:13 - 2013-04-09 00:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-07-18 23:13 - 2013-04-09 00:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-07-18 23:13 - 2013-04-08 22:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-07-18 23:13 - 2013-04-08 22:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-07-18 23:13 - 2013-04-08 22:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-07-18 23:13 - 2013-04-08 22:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-07-18 23:13 - 2013-04-08 22:52 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-18 23:13 - 2013-04-08 22:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2014-07-18 23:13 - 2013-04-08 22:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2014-07-18 23:13 - 2013-04-05 00:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-07-18 23:13 - 2013-03-15 23:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-07-18 23:13 - 2013-03-15 23:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2014-07-18 23:13 - 2013-03-02 03:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-07-18 23:13 - 2013-03-02 03:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2014-07-18 23:13 - 2013-02-02 09:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2014-07-18 23:13 - 2013-02-02 09:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2014-07-18 23:13 - 2013-02-02 09:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2014-07-18 23:13 - 2013-02-02 09:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-07-18 23:13 - 2013-01-10 02:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-07-18 23:13 - 2012-11-20 05:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2014-07-18 23:13 - 2012-11-06 08:33 - 00522640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-07-18 23:13 - 2012-11-06 06:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-07-18 23:13 - 2012-11-06 05:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-07-18 23:13 - 2012-11-06 05:18 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-07-18 23:13 - 2012-11-06 05:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2014-07-18 23:13 - 2012-10-11 06:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-07-18 23:13 - 2012-10-11 06:44 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2014-07-18 23:13 - 2012-10-11 06:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2014-07-18 23:13 - 2012-10-11 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-07-18 23:13 - 2012-09-20 07:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2014-07-18 23:13 - 2012-09-20 07:33 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2014-07-18 23:13 - 2012-09-20 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2014-07-18 23:13 - 2012-09-20 07:32 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2014-07-18 23:13 - 2012-09-20 07:32 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2014-07-18 23:13 - 2012-09-20 07:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2014-07-18 23:13 - 2012-09-20 07:32 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2014-07-18 23:13 - 2012-09-20 07:32 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-07-18 23:13 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-07-18 23:13 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2014-07-18 23:13 - 2012-09-20 07:31 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2014-07-18 23:13 - 2012-09-20 07:12 - 09374208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-07-18 23:13 - 2012-09-20 07:09 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2014-07-18 23:13 - 2012-09-20 06:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2014-07-18 23:13 - 2012-09-20 06:55 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2014-07-18 23:13 - 2012-09-20 06:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2014-07-18 23:13 - 2012-09-20 06:54 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2014-07-18 23:13 - 2012-09-20 06:54 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2014-07-18 23:13 - 2012-09-20 06:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2014-07-18 23:13 - 2012-09-20 06:54 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-07-18 23:13 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-07-18 23:13 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-07-18 23:13 - 2012-09-20 06:32 - 09374208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-07-18 23:12 - 2014-06-19 03:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-18 23:12 - 2014-06-19 03:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-18 23:12 - 2014-06-19 01:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-18 23:12 - 2014-06-19 01:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-18 23:12 - 2014-06-19 01:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-18 23:12 - 2014-06-19 01:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-18 23:12 - 2014-06-19 01:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-18 23:12 - 2014-06-18 00:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-18 23:12 - 2014-06-18 00:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-18 23:12 - 2014-06-11 05:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-18 23:12 - 2014-04-19 10:39 - 00628024 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-07-18 23:12 - 2014-04-19 09:45 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-18 23:12 - 2014-04-19 09:45 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-18 23:12 - 2014-04-19 07:57 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-18 23:12 - 2014-04-19 07:57 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-18 23:12 - 2014-03-28 09:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-07-18 23:12 - 2014-03-28 07:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-07-18 23:12 - 2014-01-31 01:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-07-18 23:12 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-07-18 23:12 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-07-18 23:12 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2014-07-18 23:12 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2014-07-18 23:12 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2014-07-18 23:12 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-07-18 23:12 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-07-18 23:12 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2014-07-18 23:12 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2014-07-18 23:12 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2014-07-18 23:12 - 2013-08-15 23:43 - 00083968 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2014-07-18 23:12 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-07-18 23:12 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2014-07-18 23:12 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2014-07-18 23:12 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2014-07-18 23:12 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-07-18 23:12 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-07-18 23:12 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2014-07-18 23:12 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2014-07-18 23:12 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-07-18 23:12 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2014-07-18 23:12 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2014-07-18 23:12 - 2013-04-24 00:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-07-18 23:12 - 2013-04-24 00:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-07-18 23:12 - 2013-04-23 23:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-07-18 23:12 - 2013-04-23 23:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-07-18 23:12 - 2013-03-02 11:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2014-07-18 23:12 - 2013-03-02 11:39 - 00495336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-07-18 23:12 - 2013-03-02 09:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-07-18 23:12 - 2013-03-02 09:23 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2014-07-18 23:12 - 2013-03-02 09:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-07-18 23:12 - 2013-03-02 09:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2014-07-18 23:12 - 2013-03-02 09:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-07-18 23:12 - 2013-03-02 09:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2014-07-18 23:12 - 2013-03-02 09:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2014-07-18 23:12 - 2013-03-02 09:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-07-18 23:12 - 2013-03-02 03:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2014-07-18 23:12 - 2013-03-02 03:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2014-07-18 23:12 - 2013-03-02 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-07-18 23:12 - 2013-03-02 03:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2014-07-18 23:12 - 2013-03-02 03:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2014-07-18 23:12 - 2013-03-02 03:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2014-07-18 23:12 - 2013-03-02 03:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-07-18 23:12 - 2013-03-02 03:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2014-07-18 23:12 - 2013-03-01 05:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2014-07-18 23:12 - 2013-02-02 09:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2014-07-18 23:12 - 2013-02-02 09:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2014-07-18 23:12 - 2013-02-02 09:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2014-07-18 23:12 - 2013-02-02 09:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2014-07-18 23:12 - 2013-02-02 09:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2014-07-18 23:12 - 2013-02-02 09:39 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-07-18 23:12 - 2013-02-02 09:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2014-07-18 23:12 - 2013-02-02 09:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2014-07-18 23:12 - 2013-02-02 09:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2014-07-18 23:12 - 2013-02-02 09:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-07-18 23:12 - 2013-02-02 09:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2014-07-18 23:12 - 2013-02-02 09:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2014-07-18 23:12 - 2013-02-02 09:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-07-18 23:12 - 2013-02-02 09:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-07-18 23:12 - 2013-02-02 09:21 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-07-18 23:12 - 2013-02-02 09:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2014-07-18 23:12 - 2013-02-02 09:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2014-07-18 23:12 - 2013-02-02 08:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-07-18 23:12 - 2012-11-27 04:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2014-07-18 23:12 - 2012-11-27 04:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2014-07-18 23:12 - 2012-11-10 05:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-07-18 23:12 - 2012-11-10 05:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-07-18 23:12 - 2012-11-10 05:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2014-07-18 23:12 - 2012-11-10 05:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2014-07-18 23:12 - 2012-11-10 05:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2014-07-18 23:12 - 2012-09-20 07:33 - 00110592 _____ () C:\Windows\system32\OEMLicense.dll
2014-07-18 23:12 - 2012-09-20 07:32 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-07-18 23:12 - 2012-09-20 07:32 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-07-18 23:11 - 2014-05-30 00:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-18 23:11 - 2014-05-30 00:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-18 23:11 - 2014-05-30 00:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-18 23:11 - 2014-05-30 00:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-18 23:11 - 2014-03-28 20:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-07-18 23:11 - 2014-03-23 23:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-07-18 23:11 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-07-18 23:11 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-07-18 23:11 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-07-18 23:11 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-07-18 23:11 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2014-07-18 23:11 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2014-07-18 23:11 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-07-18 23:11 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-07-18 23:11 - 2013-03-06 08:10 - 00112872 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-07-18 23:11 - 2013-03-06 07:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-07-18 23:11 - 2013-03-02 11:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-07-18 23:11 - 2013-03-02 03:43 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-07-18 23:11 - 2013-02-07 02:33 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-07-18 23:11 - 2013-01-10 02:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2014-07-18 23:11 - 2013-01-10 02:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-07-18 23:11 - 2013-01-10 00:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2014-07-18 23:11 - 2013-01-10 00:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2014-07-18 23:11 - 2013-01-10 00:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2014-07-18 23:11 - 2013-01-10 00:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-07-18 23:11 - 2013-01-10 00:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2014-07-18 23:11 - 2013-01-10 00:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2014-07-18 23:11 - 2013-01-10 00:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2014-07-18 23:11 - 2013-01-10 00:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-07-18 23:11 - 2013-01-10 00:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-07-18 23:11 - 2013-01-10 00:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-07-18 23:11 - 2013-01-10 00:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2014-07-18 23:11 - 2013-01-10 00:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-07-18 23:11 - 2013-01-10 00:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2014-07-18 23:11 - 2013-01-10 00:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2014-07-18 23:11 - 2012-11-02 06:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2014-07-18 23:11 - 2012-11-02 06:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2014-07-18 23:11 - 2012-11-02 06:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2014-07-18 23:11 - 2012-11-02 06:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2014-07-18 23:11 - 2012-11-02 06:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2014-07-18 23:11 - 2012-11-02 06:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2014-07-18 23:11 - 2012-10-06 05:53 - 02893824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-07-18 23:11 - 2012-10-06 05:15 - 02400256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-07-18 23:11 - 2012-08-31 01:53 - 00017888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2014-07-18 23:11 - 2012-08-31 01:52 - 00017888 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2014-07-18 23:10 - 2014-07-18 23:10 - 00000000 ____D () C:\ProgramData\Razer
2014-07-18 23:10 - 2014-06-06 15:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-18 23:10 - 2014-06-06 11:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-18 23:10 - 2014-06-02 23:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-18 23:10 - 2014-05-29 23:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-18 23:10 - 2014-05-03 06:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-07-18 23:10 - 2014-05-03 04:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-07-18 23:10 - 2014-04-29 23:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-07-18 23:10 - 2014-04-29 23:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-07-18 23:10 - 2014-04-03 12:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-07-18 23:10 - 2014-03-28 09:23 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-07-18 23:10 - 2014-03-07 01:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-07-18 23:10 - 2014-03-07 01:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-07-18 23:10 - 2014-01-31 01:48 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-07-18 23:10 - 2014-01-31 01:06 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-07-18 23:10 - 2013-12-09 01:45 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-18 23:10 - 2013-12-09 00:59 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-18 23:10 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-07-18 23:10 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-07-18 23:10 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-07-18 23:10 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-07-18 23:10 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-07-18 23:10 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-07-18 23:10 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-07-18 23:10 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-07-18 23:10 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-07-18 23:10 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-07-18 23:10 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2014-07-18 23:10 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-07-18 23:10 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-07-18 23:10 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-07-18 23:10 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-07-18 23:10 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-07-18 23:10 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-07-18 23:10 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-07-18 23:10 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-07-18 23:10 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-07-18 23:10 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-07-18 23:10 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-07-18 23:10 - 2013-07-05 23:02 - 00121984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2014-07-18 23:10 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-07-18 23:10 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-07-18 23:10 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-07-18 23:10 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2014-07-18 23:10 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-07-18 23:10 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-07-18 23:10 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-07-18 23:10 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-07-18 23:10 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-07-18 23:10 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-07-18 23:10 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-07-18 23:10 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-07-18 23:10 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-07-18 23:10 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-07-18 23:10 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-07-18 23:10 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-07-18 23:10 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-07-18 23:10 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-07-18 23:10 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-07-18 23:10 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-07-18 23:10 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-07-18 23:10 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-07-18 23:10 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-07-18 23:10 - 2013-05-15 03:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-07-18 23:10 - 2013-05-15 03:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-07-18 23:10 - 2013-05-15 03:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2014-07-18 23:10 - 2013-05-15 03:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-07-18 23:10 - 2013-05-04 05:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-07-18 23:10 - 2013-04-27 06:20 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-07-18 23:10 - 2013-04-11 23:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-07-18 23:10 - 2013-04-11 23:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-07-18 23:10 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-07-18 23:10 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-07-18 23:10 - 2013-03-15 01:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-07-18 23:10 - 2013-03-02 10:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-07-18 23:10 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-07-18 23:10 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2014-07-18 23:10 - 2013-02-12 01:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-07-18 23:10 - 2013-02-02 06:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-07-18 23:10 - 2013-02-02 06:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-07-18 23:10 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-07-18 23:10 - 2012-11-26 05:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-07-18 23:10 - 2012-11-26 05:20 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-07-18 23:10 - 2012-11-20 05:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-07-18 23:10 - 2012-11-08 05:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-07-18 23:10 - 2012-11-08 05:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-07-18 23:10 - 2012-11-08 05:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-07-18 23:10 - 2012-11-08 05:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-07-18 23:10 - 2012-11-08 05:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-07-18 23:10 - 2012-11-08 05:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-07-18 23:10 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2014-07-18 23:10 - 2012-11-03 06:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-07-18 23:10 - 2012-11-03 06:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2014-07-18 23:10 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2014-07-18 23:10 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2014-07-18 23:10 - 2012-11-03 06:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2014-07-18 23:10 - 2012-11-03 06:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2014-07-18 23:10 - 2012-11-03 06:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2014-07-18 23:10 - 2012-11-03 06:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2014-07-18 23:10 - 2012-11-01 05:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-07-18 23:10 - 2012-11-01 05:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-07-18 23:10 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-07-18 23:10 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-07-18 23:10 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-07-18 23:10 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-07-18 23:10 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2014-07-18 23:10 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2014-07-18 23:10 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-07-18 23:10 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2014-07-18 23:10 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2014-07-18 23:10 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2014-07-18 23:10 - 2012-10-12 09:08 - 00027880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-07-18 23:10 - 2012-10-12 07:14 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-07-18 23:10 - 2012-10-11 06:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-07-18 23:10 - 2012-10-11 06:19 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2014-07-18 23:10 - 2012-10-11 06:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-07-18 23:10 - 2012-10-10 08:04 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-07-18 23:10 - 2012-10-10 07:31 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-07-18 23:05 - 2012-12-13 05:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-07-18 23:05 - 2012-12-13 04:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-07-18 23:04 - 2014-07-18 23:04 - 00000117 _____ () C:\Windows\system32\netcfg-4703.txt
2014-07-18 23:04 - 2014-07-18 23:04 - 00000117 _____ () C:\Windows\system32\netcfg-4609.txt
2014-07-18 22:58 - 2014-07-20 01:00 - 00000000 ____D () C:\Users\Predator\AppData\Local\NVIDIA
2014-07-18 22:57 - 2014-07-18 22:57 - 00000117 _____ () C:\Windows\system32\netcfg-5875.txt
2014-07-18 22:57 - 2014-07-18 22:57 - 00000117 _____ () C:\Windows\system32\netcfg-5781.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00003028 _____ () C:\Windows\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-07-18 22:54 - 2014-07-18 22:54 - 00000167 _____ () C:\Windows\system32\netcfg-258187.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00000117 _____ () C:\Windows\system32\netcfg-258390.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00000117 _____ () C:\Windows\system32\netcfg-258375.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Adtrustmedia
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Program Files\COMODO
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Program Files\AdTrustMedia
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Program Files (x86)\AdTrustMedia
2014-07-18 22:53 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Comodo
2014-07-18 22:53 - 2014-07-18 13:41 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-07-18 22:53 - 2014-07-18 13:41 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-18 22:53 - 2014-07-18 13:41 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-18 22:51 - 2014-07-19 14:41 - 00000000 ____D () C:\Windows\AutoKMS
2014-07-18 22:51 - 2014-07-18 22:51 - 00000000 ____D () C:\Windows\KMSServerService
2014-07-18 22:51 - 2014-07-18 22:51 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-07-18 22:50 - 2014-07-18 22:50 - 00000117 _____ () C:\Windows\system32\netcfg-4281.txt
2014-07-18 22:50 - 2014-07-18 22:50 - 00000117 _____ () C:\Windows\system32\netcfg-4062.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00001226 _____ () C:\Windows\system32\netcfg-816296.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000258 _____ () C:\Windows\system32\netcfg-817843.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-826593.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-823265.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-823250.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-819437.txt
2014-07-18 22:49 - 2014-07-18 12:44 - 00005431 _____ () C:\Users\Predator\AppData\Local\killertool.log
2014-07-18 22:49 - 2014-07-18 12:40 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

Continued..

 

2014-07-18 22:48 - 2014-07-18 22:48 - 00000000 ____D () C:\Intel
2014-07-18 22:48 - 2014-07-18 12:24 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-07-18 22:48 - 2014-07-18 02:29 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-07-18 22:48 - 2014-07-18 02:29 - 00000000 ____D () C:\MSI
2014-07-18 22:43 - 2014-07-18 14:25 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1761729439-588820557-3478904116-1001
2014-07-18 22:30 - 2014-07-20 12:17 - 00101383 _____ () C:\Windows\WindowsUpdate.log
2014-07-18 22:30 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator
2014-07-18 22:30 - 2014-07-18 22:30 - 00001430 _____ () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-18 22:30 - 2014-07-18 22:30 - 00000020 ___SH () C:\Users\Predator\ntuser.ini
2014-07-18 22:30 - 2014-07-18 22:30 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Adobe
2014-07-18 22:30 - 2014-07-18 22:30 - 00000000 ____D () C:\Users\Predator\AppData\Local\VirtualStore
2014-07-18 22:30 - 2014-07-18 00:45 - 00000000 ____D () C:\Users\Predator\AppData\Local\Packages
2014-07-18 22:30 - 2014-07-18 00:45 - 00000000 ____D () C:\ProgramData\PRICache
2014-07-18 22:30 - 2012-07-26 09:13 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-18 22:30 - 2012-07-26 09:13 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-18 22:30 - 2012-07-26 09:13 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-18 22:30 - 2012-07-26 09:13 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-18 22:14 - 2014-07-18 22:14 - 00000185 _____ () C:\Windows\system32\netcfg-21890.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000164 _____ () C:\Windows\system32\netcfg-17390.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000161 _____ () C:\Windows\system32\netcfg-21015.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000160 _____ () C:\Windows\system32\netcfg-19187.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000160 _____ () C:\Windows\system32\netcfg-19093.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000160 _____ () C:\Windows\system32\netcfg-17515.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000159 _____ () C:\Windows\system32\netcfg-17140.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000157 _____ () C:\Windows\system32\netcfg-19296.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000157 _____ () C:\Windows\system32\netcfg-18968.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000150 _____ () C:\Windows\system32\netcfg-19406.txt
2014-07-18 21:55 - 2014-07-18 22:15 - 00000000 __SHD () C:\Recovery
2014-07-18 13:58 - 2014-07-18 13:58 - 00057322 _____ () C:\Users\Predator\Downloads\repository.superrepo.org.gotham.all-0.5.1.zip
2014-07-18 13:58 - 2014-07-18 13:58 - 00057322 _____ () C:\repository.superrepo.org.gotham.all-0.5.1.zip
2014-07-18 13:47 - 2014-07-20 01:27 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\XBMC
2014-07-18 13:46 - 2014-07-18 13:46 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2014-07-18 13:46 - 2014-07-18 13:46 - 00000000 ____D () C:\Program Files (x86)\XBMC
2014-07-18 13:43 - 2014-07-18 13:44 - 63722695 _____ () C:\Users\Predator\Downloads\xbmc-13.1-Gotham.exe
2014-07-18 13:41 - 2014-07-18 13:41 - 00000000 ____D () C:\Users\Predator\AppData\Local\NVIDIA Corporation
2014-07-18 13:41 - 2014-07-18 13:41 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-07-18 13:41 - 2014-04-30 19:27 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-07-18 13:41 - 2014-04-30 19:26 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-07-18 13:41 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-07-18 13:41 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-07-18 13:41 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-07-18 13:41 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-07-18 13:40 - 2014-07-20 12:07 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-18 13:40 - 2014-07-18 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-18 13:40 - 2014-05-20 03:44 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-07-18 13:40 - 2014-05-20 03:44 - 00052056 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-07-18 13:40 - 2014-05-20 02:25 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-07-18 13:40 - 2014-05-20 02:25 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-07-18 13:40 - 2014-05-20 02:25 - 02560968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-07-18 13:40 - 2014-05-20 02:25 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-07-18 13:40 - 2014-05-20 02:25 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-07-18 13:40 - 2014-05-20 02:25 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-07-18 13:40 - 2014-05-20 00:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-07-18 13:40 - 2014-05-15 00:49 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-07-18 13:39 - 2014-07-20 12:07 - 00001079 _____ () C:\Windows\setupact.log
2014-07-18 13:39 - 2014-07-18 13:39 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-18 13:39 - 2014-05-20 03:44 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-07-18 13:39 - 2014-05-20 03:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-07-18 13:39 - 2014-05-20 03:44 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-07-18 13:39 - 2014-05-20 03:44 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2014-07-18 13:38 - 2014-07-18 13:38 - 00000000 ____D () C:\NVIDIA
2014-07-18 13:38 - 2014-03-31 17:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-07-18 13:38 - 2014-03-31 17:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-07-18 13:38 - 2014-03-31 17:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-07-18 13:29 - 2014-07-18 13:29 - 00142744 _____ () C:\Users\Predator\Downloads\vtuploader2.2.exe
2014-07-18 13:29 - 2014-07-18 13:29 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
2014-07-18 13:29 - 2014-07-18 13:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
2014-07-18 13:29 - 2014-07-18 13:29 - 00000000 ____D () C:\Program Files (x86)\VirusTotalUploader2
2014-07-18 13:15 - 2014-07-18 13:15 - 03358176 _____ () C:\Users\Predator\Downloads\advisorinstaller.exe
2014-07-18 13:15 - 2014-07-18 13:15 - 00002132 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2014-07-18 13:15 - 2014-07-18 13:15 - 00000000 ____D () C:\Program Files (x86)\Belarc
2014-07-18 13:12 - 2014-07-18 13:12 - 01064488 _____ (BillP Studios) C:\Users\Predator\Downloads\wpsetup.exe
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\WinPatrol
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\ProgramData\InstallMate
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\Program Files (x86)\BillP Studios
2014-07-18 13:05 - 2014-07-20 12:07 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-18 13:04 - 2014-07-18 13:04 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Predator\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-18 13:04 - 2014-07-18 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-18 13:04 - 2014-07-18 13:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-18 13:04 - 2014-07-18 13:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-18 13:04 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-18 13:04 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-18 13:04 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-18 13:03 - 2014-07-20 11:53 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2014-07-18 13:03 - 2014-07-18 13:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2014-07-18 13:03 - 2014-07-18 13:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Exploit
2014-07-18 13:01 - 2014-07-18 13:01 - 04812672 _____ (Piriform Ltd) C:\Users\Predator\Downloads\ccsetup415.exe
2014-07-18 13:01 - 2014-07-18 13:01 - 00002778 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-18 13:01 - 2014-07-18 13:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-18 13:01 - 2014-07-18 13:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-18 12:57 - 2014-07-18 12:58 - 00000000 ____D () C:\Program Files (x86)\SlimCleaner
2014-07-18 12:57 - 2014-07-18 12:57 - 00801088 _____ (SlimWare Utilities, Inc.) C:\Users\Predator\Downloads\SlimCleaner-setup.exe
2014-07-18 12:57 - 2014-07-18 12:57 - 00003014 _____ () C:\Windows\System32\Tasks\SlimCleaner Run
2014-07-18 12:57 - 2014-07-18 12:57 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-07-18 12:57 - 2014-07-18 12:57 - 00000000 ____D () C:\Users\Predator\AppData\Local\SlimWare Utilities Inc
2014-07-18 12:57 - 2014-07-18 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner
2014-07-18 12:49 - 2014-07-18 12:49 - 25543261 _____ () C:\Users\Predator\Downloads\cce_2.5.242177.201_x64.zip
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 ____D () C:\ProgramData\Qualcomm
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 ____D () C:\Program Files\Qualcomm Atheros
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 _____ () C:\Users\Predator\AppData\Local\Driver_LOM_8161Present.flag
2014-07-18 11:36 - 2014-07-18 11:36 - 00000000 _____ () C:\Users\Predator\agent.log
2014-07-18 02:13 - 2014-07-20 12:07 - 00000440 _____ () C:\Windows\Tasks\Wise Care 365.job
2014-07-18 02:13 - 2014-07-20 02:00 - 00000420 _____ () C:\Windows\Tasks\Wise Turbo Checker.job
2014-07-18 02:13 - 2014-07-18 02:13 - 00003074 _____ () C:\Windows\System32\Tasks\Wise Turbo Checker
2014-07-18 02:13 - 2014-07-18 02:13 - 00002852 _____ () C:\Windows\System32\Tasks\Wise Care 365
2014-07-18 02:11 - 2014-07-20 12:07 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Wise Care 365
2014-07-18 02:11 - 2014-07-18 11:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
2014-07-18 02:11 - 2014-07-18 02:11 - 00000000 ____D () C:\Program Files (x86)\Wise
2014-07-18 02:07 - 2014-07-18 02:08 - 00000000 ____D () C:\AdwCleaner
2014-07-18 02:00 - 2014-07-20 12:10 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-18 02:00 - 2014-07-20 12:10 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-18 02:00 - 2014-07-18 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-18 02:00 - 2014-07-18 12:05 - 00003886 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-07-18 02:00 - 2014-07-18 12:05 - 00003650 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-07-18 02:00 - 2014-07-18 02:22 - 00000000 ____D () C:\Users\Predator\AppData\Local\Google
2014-07-18 02:00 - 2014-07-18 02:00 - 00000000 ____D () C:\ProgramData\Google
2014-07-18 02:00 - 2014-07-18 02:00 - 00000000 ____D () C:\Program Files\Google
2014-07-18 02:00 - 2014-07-18 02:00 - 00000000 ____D () C:\Program Files (x86)\Google
2014-07-18 02:00 - 2013-03-29 14:42 - 03379272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-18 02:00 - 2013-03-29 10:10 - 00449481 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-18 02:00 - 2013-03-27 09:57 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-18 02:00 - 2013-03-27 07:28 - 01102104 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2014-07-18 02:00 - 2013-03-27 07:28 - 00918296 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2014-07-18 02:00 - 2013-03-26 10:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-18 02:00 - 2013-03-26 08:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-07-18 02:00 - 2013-03-26 07:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-18 02:00 - 2013-03-20 06:16 - 02102040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-07-18 02:00 - 2013-03-20 06:16 - 00910104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-18 02:00 - 2013-03-12 11:16 - 00613448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-18 02:00 - 2013-02-28 06:10 - 02032408 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-07-18 02:00 - 2013-02-20 11:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-18 02:00 - 2013-02-19 11:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-18 02:00 - 2012-06-08 09:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-07-18 01:59 - 2014-07-18 01:59 - 00000033 _____ () C:\Killer.log
2014-07-18 01:59 - 2013-03-26 10:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-07-18 01:59 - 2013-03-22 20:43 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-18 01:59 - 2012-06-20 10:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-18 01:55 - 2014-07-18 02:00 - 00000000 ____D () C:\Windows\LastGood
2014-07-18 01:48 - 2014-07-18 01:48 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-07-18 01:26 - 2014-07-20 12:07 - 00000000 _RSHD () C:\ProgramData\Key-Base
2014-07-18 01:26 - 2014-07-18 01:26 - 00000000 ____D () C:\ProgramData\mvp
2014-07-18 01:24 - 2014-07-18 01:24 - 00000000 ____D () C:\Users\Predator\lucidlogix
2014-07-18 01:22 - 2014-07-18 02:29 - 00000000 ____D () C:\uninstall
2014-07-18 01:22 - 2014-07-18 01:22 - 00000179 _____ () C:\SBCsetup.log
2014-07-18 01:22 - 2014-07-18 01:22 - 00000159 ___RH () C:\Windows\ctfile.rfc
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIRTU MVP 2.0
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Lucidlogix
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Creative
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files\Lucidlogix Technologies
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-07-18 01:22 - 2013-11-26 12:53 - 00094440 _____ (Lucidlogix Inc.) C:\Windows\system32\Drivers\VirtuWDDM.sys
2014-07-18 01:22 - 2013-11-26 12:52 - 00531688 _____ (Lucidlogix Inc.) C:\Windows\system32\appinit_dll.dll
2014-07-18 01:22 - 2013-11-26 12:52 - 00482536 _____ (Lucidlogix Inc.) C:\Windows\SysWOW64\appinit_dll.dll
2014-07-18 01:22 - 2013-08-29 11:18 - 00040576 ____N (Creative Technology Ltd.) C:\Windows\system32\MBCfg64.dll
2014-07-18 01:22 - 2013-08-29 11:18 - 00036992 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\MBCfg32.dll
2014-07-18 01:22 - 2013-07-03 15:20 - 00002835 ____N () C:\Windows\MBCfg_SP_APOIM.ini
2014-07-18 01:22 - 2013-07-03 15:20 - 00002783 ____N () C:\Windows\MBCfg_APOIM.ini
2014-07-18 01:22 - 2013-07-03 15:20 - 00002747 ____N () C:\Windows\MBCfg_HP_APOIM.ini
2014-07-18 01:22 - 2013-04-23 10:54 - 00332928 ____N (Creative Technology Ltd.) C:\Windows\system32\ChezSC64.DLL
2014-07-18 01:22 - 2013-04-23 10:54 - 00288896 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\ChezSC32.DLL
2014-07-18 01:22 - 2013-04-23 10:54 - 00148096 ____N (Creative Technology Ltd.) C:\Windows\system32\MBCfg64.exe
2014-07-18 01:22 - 2013-04-23 10:53 - 00138880 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\MBCfg32.exe
2014-07-18 01:22 - 2013-04-23 10:53 - 00015488 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\ResDefA.exe
2014-07-18 01:22 - 2013-01-08 10:11 - 00008570 ____N () C:\Windows\system32\MBCfg64.ini
2014-07-18 01:22 - 2013-01-08 10:11 - 00005856 ____N () C:\Windows\system32\MBCfgUninstall64.ini
2014-07-18 01:22 - 2013-01-08 10:10 - 00008570 ____N () C:\Windows\SysWOW64\MBCfg32.ini
2014-07-18 01:22 - 2013-01-08 10:10 - 00005856 ____N () C:\Windows\SysWOW64\MBCfgUninstall32.ini
2014-07-18 01:22 - 2012-11-01 11:23 - 00089600 _____ () C:\Windows\system32\CmdRtr64.DLL
2014-07-18 01:22 - 2012-11-01 11:22 - 00074240 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2014-07-18 01:22 - 2012-11-01 11:21 - 00325120 _____ () C:\Windows\system32\APOMgr64.DLL
2014-07-18 01:22 - 2012-11-01 11:19 - 00246272 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-07-18 01:22 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-07-18 01:22 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-07-18 01:22 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-07-18 01:22 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-07-18 01:22 - 2000-05-11 01:00 - 00090112 ____N (Creative Technology Ltd.) C:\Windows\Updreg.EXE
2014-07-18 01:21 - 2014-07-18 02:00 - 00002534 _____ () C:\RHDSetup.log
2014-07-18 01:21 - 2014-07-18 02:00 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-07-18 01:21 - 2014-07-18 02:00 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-18 01:21 - 2014-07-18 01:21 - 00000000 ____D () C:\Program Files\Realtek
2014-07-18 01:21 - 2014-07-18 01:21 - 00000000 ____D () C:\Program Files (x86)\Setup Files
2014-07-18 01:21 - 2014-07-18 01:21 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-07-18 01:21 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-07-18 01:21 - 2014-02-26 15:16 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-07-18 01:21 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-18 01:21 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-18 01:21 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-18 01:21 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-18 01:21 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-18 01:21 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-18 01:21 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-18 01:21 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-18 01:21 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-18 01:21 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-18 01:21 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-07-18 01:21 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-18 01:21 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-07-18 01:21 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-07-18 01:21 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-18 01:21 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2014-07-18 01:14 - 2014-07-18 01:14 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Macromedia
2014-07-18 01:10 - 2014-07-20 11:49 - 00281088 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-18 01:10 - 2014-07-18 01:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2014-07-18 01:10 - 2014-04-03 09:53 - 00025800 _____ () C:\Windows\system32\Drivers\INETMON.sys
2014-07-18 01:07 - 2014-07-18 12:40 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-07-18 01:06 - 2014-07-18 02:29 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-18 01:06 - 2014-07-18 01:06 - 00003936 _____ () C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-07-18 01:06 - 2014-07-18 01:06 - 00003690 _____ () C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-07-18 01:06 - 2014-07-18 01:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-07-18 01:06 - 2014-07-18 01:06 - 00000000 ____D () C:\Program Files (x86)\ASM106xSATA
2014-07-18 01:06 - 2013-09-17 03:20 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-07-18 01:05 - 2014-07-18 01:10 - 00000000 ____D () C:\ProgramData\Intel
2014-07-18 01:05 - 2014-07-18 01:06 - 00000000 ____D () C:\Program Files\Intel
2014-07-18 01:05 - 2014-07-18 01:05 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-07-18 01:05 - 2013-09-17 03:20 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-07-18 01:05 - 2013-09-17 03:20 - 00099288 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-07-18 01:00 - 2014-07-18 01:00 - 00000000 ____D () C:\Users\Predator\AppData\Local\Razer_Inc
2014-07-18 00:52 - 2014-04-03 12:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-07-18 00:52 - 2014-04-03 04:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-07-18 00:52 - 2014-03-31 23:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-07-18 00:52 - 2014-03-25 00:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-07-18 00:52 - 2014-03-24 23:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-07-18 00:52 - 2014-02-04 00:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-07-18 00:52 - 2014-02-04 00:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-07-18 00:52 - 2014-01-31 01:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-07-18 00:52 - 2014-01-31 01:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-07-18 00:52 - 2014-01-27 04:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-07-18 00:52 - 2014-01-16 00:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-07-18 00:52 - 2014-01-11 07:48 - 05979648 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-07-18 00:52 - 2014-01-11 06:06 - 05092352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-07-18 00:52 - 2014-01-03 00:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-07-18 00:52 - 2014-01-03 00:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-07-18 00:52 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-07-18 00:52 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2014-07-18 00:52 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-07-18 00:52 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-07-18 00:52 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2014-07-18 00:52 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-07-18 00:52 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2014-07-18 00:52 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2014-07-18 00:52 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2014-07-18 00:52 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-07-18 00:52 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-07-18 00:52 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2014-07-18 00:52 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2014-07-18 00:52 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-07-18 00:52 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2014-07-18 00:52 - 2012-11-20 06:24 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-07-18 00:52 - 2012-11-20 06:17 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-07-18 00:52 - 2012-11-20 06:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2014-07-18 00:52 - 2012-11-20 05:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDKURD.DLL
2014-07-18 00:52 - 2012-11-06 08:33 - 01566432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-07-18 00:52 - 2012-11-06 05:48 - 01150160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-07-18 00:52 - 2012-11-06 05:20 - 00883712 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2014-07-18 00:52 - 2012-11-06 05:20 - 00516608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2014-07-18 00:52 - 2012-11-06 05:20 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-07-18 00:52 - 2012-11-06 05:20 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2014-07-18 00:52 - 2012-11-06 05:20 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2014-07-18 00:52 - 2012-11-06 05:20 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-07-18 00:52 - 2012-11-06 05:20 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2014-07-18 00:52 - 2012-11-06 05:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 08552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2014-07-18 00:52 - 2012-11-06 05:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2014-07-18 00:52 - 2012-11-06 05:18 - 11459584 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2014-07-18 00:52 - 2012-11-06 05:18 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2014-07-18 00:52 - 2012-11-06 05:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-07-18 00:52 - 2012-11-06 05:18 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2014-07-18 00:52 - 2012-11-06 05:18 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2014-07-18 00:52 - 2012-11-06 05:17 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-07-18 00:52 - 2012-11-06 05:17 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2014-07-18 00:52 - 2012-11-06 05:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2014-07-18 00:52 - 2012-11-06 04:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-07-18 00:52 - 2012-11-06 04:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-07-18 00:52 - 2012-11-06 04:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2014-07-18 00:52 - 2012-11-06 04:55 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2014-07-18 00:52 - 2012-11-06 04:55 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2014-07-18 00:52 - 2012-11-06 04:55 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2014-07-18 00:52 - 2012-11-06 04:55 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fxppm.sys
2014-07-18 00:52 - 2012-10-24 05:54 - 00396008 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-07-18 00:52 - 2012-10-17 05:32 - 01172992 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2014-07-18 00:52 - 2012-10-17 05:32 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2014-07-18 00:52 - 2012-10-17 05:32 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-07-18 00:52 - 2012-10-17 04:57 - 00929792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2014-07-18 00:52 - 2012-10-17 04:57 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2014-07-18 00:52 - 2012-10-17 04:57 - 00513024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-07-18 00:52 - 2012-10-12 07:13 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\dskquota.dll
2014-07-18 00:52 - 2012-10-12 06:39 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2014-07-18 00:52 - 2012-10-11 08:47 - 00793200 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-07-18 00:52 - 2012-10-11 08:25 - 00056552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2014-07-18 00:52 - 2012-10-11 08:23 - 00441576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-07-18 00:52 - 2012-10-11 08:13 - 00033512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys
2014-07-18 00:52 - 2012-10-11 06:46 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2014-07-18 00:52 - 2012-10-11 06:46 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2014-07-18 00:52 - 2012-10-11 06:46 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2014-07-18 00:52 - 2012-10-11 06:45 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2014-07-18 00:52 - 2012-10-11 06:45 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2014-07-18 00:52 - 2012-10-11 06:45 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2014-07-18 00:52 - 2012-10-11 06:44 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-07-18 00:52 - 2012-10-11 06:44 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2014-07-18 00:52 - 2012-10-11 06:44 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 01280000 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-07-18 00:52 - 2012-10-11 06:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-07-18 00:52 - 2012-10-11 06:42 - 00612416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-07-18 00:52 - 2012-10-11 06:23 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-pdc.dll
2014-07-18 00:52 - 2012-10-11 06:23 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\kbdhebl3.dll
2014-07-18 00:52 - 2012-10-11 06:07 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2014-07-18 00:52 - 2012-10-11 06:07 - 00414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2014-07-18 00:52 - 2012-10-11 06:07 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2014-07-18 00:52 - 2012-10-11 06:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2014-07-18 00:52 - 2012-10-11 06:06 - 00289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-07-18 00:52 - 2012-10-11 06:06 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2014-07-18 00:52 - 2012-10-11 06:06 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2014-07-18 00:52 - 2012-10-11 06:06 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-07-18 00:52 - 2012-10-11 06:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2014-07-18 00:52 - 2012-10-11 06:06 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-07-18 00:52 - 2012-10-11 06:05 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2014-07-18 00:52 - 2012-10-11 05:42 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdhebl3.dll
2014-07-18 00:52 - 2012-10-11 01:45 - 00478424 _____ () C:\Windows\SysWOW64\locale.nls
2014-07-18 00:52 - 2012-10-11 01:44 - 00478424 _____ () C:\Windows\system32\locale.nls
2014-07-18 00:51 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-18 00:51 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-07-18 00:51 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-07-18 00:51 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-07-18 00:51 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-18 00:51 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-07-18 00:51 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-18 00:51 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-07-18 00:51 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-18 00:51 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-07-18 00:51 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-07-18 00:51 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-07-18 00:51 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-18 00:51 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-07-18 00:51 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-07-18 00:51 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-07-18 00:51 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-07-18 00:51 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-07-18 00:51 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-07-18 00:51 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-07-18 00:51 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2014-07-18 00:51 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-07-18 00:51 - 2013-06-16 23:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-07-18 00:51 - 2013-06-01 12:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-07-18 00:51 - 2013-06-01 12:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-07-18 00:51 - 2013-06-01 11:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-07-18 00:51 - 2013-06-01 10:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2014-07-18 00:51 - 2013-06-01 10:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-07-18 00:51 - 2013-06-01 10:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2014-07-18 00:51 - 2013-06-01 10:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2014-07-18 00:51 - 2013-06-01 10:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-07-18 00:51 - 2013-06-01 10:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-07-18 00:51 - 2013-06-01 10:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-07-18 00:51 - 2013-06-01 10:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2014-07-18 00:51 - 2013-06-01 10:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-07-18 00:51 - 2013-06-01 10:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-07-18 00:51 - 2013-06-01 10:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-07-18 00:51 - 2013-06-01 10:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-07-18 00:51 - 2013-06-01 10:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2014-07-18 00:51 - 2013-06-01 10:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2014-07-18 00:51 - 2013-06-01 10:19 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-07-18 00:51 - 2013-06-01 10:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2014-07-18 00:51 - 2013-06-01 04:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2014-07-18 00:51 - 2013-05-24 23:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-07-18 00:51 - 2013-05-24 23:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-07-18 00:51 - 2013-05-24 23:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-07-18 00:51 - 2013-05-24 23:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-07-18 00:51 - 2012-11-27 07:39 - 01122768 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2014-07-18 00:51 - 2012-11-27 05:49 - 01027152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2014-07-18 00:51 - 2012-11-27 05:20 - 01217536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2014-07-18 00:51 - 2012-11-27 05:20 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-07-18 00:51 - 2012-11-27 05:20 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-07-18 00:51 - 2012-11-27 05:20 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2014-07-18 00:51 - 2012-11-27 05:20 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2014-07-18 00:51 - 2012-11-27 05:20 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2014-07-18 00:51 - 2012-11-27 05:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2014-07-18 00:51 - 2012-11-27 05:19 - 01536512 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-07-18 00:51 - 2012-11-27 05:19 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2014-07-18 00:51 - 2012-11-27 05:19 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2014-07-18 00:51 - 2012-11-27 05:19 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2014-07-18 00:51 - 2012-09-27 08:17 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2014-07-18 00:51 - 2012-09-27 08:17 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2014-07-18 00:51 - 2012-09-27 08:15 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-07-18 00:51 - 2012-09-27 07:35 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2014-07-18 00:51 - 2012-09-27 07:35 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2014-07-18 00:51 - 2012-09-27 07:34 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2014-07-18 00:51 - 2012-09-20 10:08 - 00027280 _____ (Microsoft Corporation) C:\Windows\system32\avrt.dll
2014-07-18 00:51 - 2012-09-20 09:40 - 00389360 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-07-18 00:51 - 2012-09-20 09:31 - 00425192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-07-18 00:51 - 2012-09-20 08:55 - 03265256 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys
2014-07-18 00:51 - 2012-09-20 08:55 - 00533224 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys
2014-07-18 00:51 - 2012-09-20 07:47 - 00307192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 03964416 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 01513984 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 01342464 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00866304 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00699392 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00545280 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00420352 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2014-07-18 00:51 - 2012-09-20 07:33 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2014-07-18 00:51 - 2012-09-20 07:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2014-07-18 00:51 - 2012-09-20 07:32 - 01739264 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 01019392 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\perfos.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\perfctrs.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2014-07-18 00:51 - 2012-09-20 07:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2014-07-18 00:51 - 2012-09-20 07:31 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\mmcss.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2014-07-18 00:51 - 2012-09-20 07:31 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2014-07-18 00:51 - 2012-09-20 07:30 - 02016256 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2014-07-18 00:51 - 2012-09-20 07:30 - 01743872 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2014-07-18 00:51 - 2012-09-20 07:30 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-07-18 00:51 - 2012-09-20 07:30 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-07-18 00:51 - 2012-09-20 07:30 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2014-07-18 00:51 - 2012-09-20 07:30 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2014-07-18 00:51 - 2012-09-20 07:30 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2014-07-18 00:51 - 2012-09-20 07:13 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-07-18 00:51 - 2012-09-20 07:13 - 00023656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avrt.dll
2014-07-18 00:51 - 2012-09-20 07:09 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2014-07-18 00:51 - 2012-09-20 07:08 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-18 00:51 - 2012-09-20 06:55 - 00995328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-07-18 00:51 - 2012-09-20 06:55 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2014-07-18 00:51 - 2012-09-20 06:55 - 00417280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-07-18 00:51 - 2012-09-20 06:55 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2014-07-18 00:51 - 2012-09-20 06:55 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2014-07-18 00:51 - 2012-09-20 06:55 - 00263168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2014-07-18 00:51 - 2012-09-20 06:55 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2014-07-18 00:51 - 2012-09-20 06:55 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2014-07-18 00:51 - 2012-09-20 06:55 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-07-18 00:51 - 2012-09-20 06:55 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2014-07-18 00:51 - 2012-09-20 06:55 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2014-07-18 00:51 - 2012-09-20 06:54 - 01369600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 01196032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 01137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00449024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00413184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfos.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfdisk.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2014-07-18 00:51 - 2012-09-20 06:54 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2014-07-18 00:51 - 2012-09-20 06:53 - 02007040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2014-07-18 00:51 - 2012-09-20 06:53 - 01247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2014-07-18 00:51 - 2012-09-20 06:53 - 00675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2014-07-18 00:51 - 2012-09-20 06:53 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2014-07-18 00:51 - 2012-09-20 06:53 - 00461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-07-18 00:51 - 2012-09-20 06:53 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-07-18 00:51 - 2012-09-20 06:53 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2014-07-18 00:51 - 2012-09-20 06:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2014-07-18 00:51 - 2012-09-20 05:10 - 01126912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-07-18 00:51 - 2012-09-11 06:28 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2014-07-18 00:51 - 2012-09-11 06:27 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2014-07-18 00:49 - 2014-03-01 10:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-07-18 00:49 - 2014-03-01 10:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-07-18 00:49 - 2014-03-01 09:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-07-18 00:49 - 2014-03-01 07:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-07-18 00:49 - 2014-02-27 00:18 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-07-18 00:49 - 2014-02-27 00:18 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-07-18 00:49 - 2014-02-27 00:18 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-07-18 00:49 - 2014-02-15 05:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-07-18 00:49 - 2013-11-26 00:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-07-18 00:49 - 2013-10-31 06:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-07-18 00:49 - 2013-10-31 06:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2014-07-18 00:49 - 2013-10-31 05:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2014-07-18 00:49 - 2013-10-31 04:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2014-07-18 00:49 - 2013-10-13 21:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-07-18 00:49 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2014-07-18 00:49 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-07-18 00:49 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2014-07-18 00:49 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-07-18 00:49 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2014-07-18 00:49 - 2013-08-27 06:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-07-18 00:49 - 2013-08-27 06:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-07-18 00:49 - 2013-08-26 23:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-07-18 00:49 - 2013-08-26 23:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-07-18 00:49 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-07-18 00:49 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2014-07-18 00:49 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-07-18 00:49 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-07-18 00:49 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2014-07-18 00:49 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-07-18 00:49 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2014-07-18 00:49 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-07-18 00:49 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2014-07-18 00:49 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-07-18 00:49 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2014-07-18 00:49 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-07-18 00:49 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-18 00:49 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-07-18 00:49 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-07-18 00:49 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-07-18 00:49 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-07-18 00:49 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2014-07-18 00:49 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2014-07-18 00:49 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-07-18 00:49 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-07-18 00:49 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-07-18 00:49 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2014-07-18 00:49 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-07-18 00:49 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2014-07-18 00:49 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-07-18 00:49 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2014-07-18 00:49 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-07-18 00:49 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2014-07-18 00:49 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2014-07-18 00:49 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2014-07-18 00:49 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-07-18 00:49 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-07-18 00:49 - 2012-10-11 06:46 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2014-07-18 00:49 - 2012-10-11 06:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2014-07-18 00:49 - 2012-10-11 06:07 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2014-07-18 00:49 - 2012-10-02 08:34 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-07-18 00:49 - 2012-09-20 07:48 - 00062488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2014-07-18 00:45 - 2014-07-18 00:45 - 00003550 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask
2014-07-18 00:45 - 2012-08-14 22:43 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk
2014-07-18 00:43 - 2014-07-18 00:45 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-07-18 00:35 - 2014-07-18 01:17 - 00010854 _____ () C:\Windows\SysWOW64\Utility.xml
2014-07-18 00:35 - 2014-04-30 16:23 - 00011248 _____ (Windows ® Win 7 DDK provider) C:\Windows\acpimof.dll
 
==================== One Month Modified Files and Folders =======
 
2014-07-20 12:28 - 2014-07-20 12:28 - 00026597 _____ () C:\Users\Predator\Downloads\FRST.txt
2014-07-20 12:28 - 2014-07-20 12:27 - 00000000 ____D () C:\FRST
2014-07-20 12:27 - 2014-07-20 12:27 - 02089984 _____ (Farbar) C:\Users\Predator\Downloads\FRST64.exe
2014-07-20 12:17 - 2014-07-18 22:30 - 00101383 _____ () C:\Windows\WindowsUpdate.log
2014-07-20 12:16 - 2014-07-20 12:16 - 00002579 _____ () C:\Users\Predator\Desktop\aswMBR.txt
2014-07-20 12:16 - 2014-07-20 12:16 - 00000512 _____ () C:\Users\Predator\Desktop\MBR.dat
2014-07-20 12:13 - 2014-07-18 23:13 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-07-20 12:13 - 2012-07-26 08:28 - 00803370 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-20 12:11 - 2014-07-19 16:43 - 00000000 ____D () C:\Program Files\UVK - Ultra Virus Killer
2014-07-20 12:10 - 2014-07-18 02:00 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-20 12:10 - 2014-07-18 02:00 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-20 12:08 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-20 12:07 - 2014-07-18 13:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-20 12:07 - 2014-07-18 13:39 - 00001079 _____ () C:\Windows\setupact.log
2014-07-20 12:07 - 2014-07-18 13:05 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-20 12:07 - 2014-07-18 02:13 - 00000440 _____ () C:\Windows\Tasks\Wise Care 365.job
2014-07-20 12:07 - 2014-07-18 02:11 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Wise Care 365
2014-07-20 12:07 - 2014-07-18 01:26 - 00000000 _RSHD () C:\ProgramData\Key-Base
2014-07-20 12:07 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-20 11:58 - 2014-07-20 11:58 - 00512982 _____ () C:\Users\Predator\Downloads\Start_Orb_Shortcut.zip
2014-07-20 11:53 - 2014-07-18 13:03 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2014-07-20 11:49 - 2014-07-19 22:24 - 00002484 _____ () C:\Windows\PFRO.log
2014-07-20 11:49 - 2014-07-18 01:10 - 00281088 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-20 11:28 - 2014-07-20 11:28 - 00212352 _____ () C:\Users\Predator\Downloads\Stardock_Fences_Free_v1.0.exe
2014-07-20 11:18 - 2014-07-19 15:59 - 00001852 _____ () C:\Windows\Sandboxie.ini
2014-07-20 11:17 - 2014-07-20 11:17 - 21291984 _____ () C:\Users\Predator\Downloads\ObjectDock-cnet-setup (1).exe
2014-07-20 11:17 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator\Documents\Stardock
2014-07-20 11:17 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Stardock
2014-07-20 11:17 - 2014-07-20 11:17 - 00000000 ____D () C:\Users\Predator\AppData\Local\Stardock
2014-07-20 11:17 - 2014-07-18 22:30 - 00000000 ____D () C:\Users\Predator
2014-07-20 10:53 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-20 03:15 - 2014-07-19 22:38 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\vlc
2014-07-20 02:00 - 2014-07-18 02:13 - 00000420 _____ () C:\Windows\Tasks\Wise Turbo Checker.job
2014-07-20 01:27 - 2014-07-18 13:47 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\XBMC
2014-07-20 01:00 - 2014-07-18 22:58 - 00000000 ____D () C:\Users\Predator\AppData\Local\NVIDIA
2014-07-19 22:38 - 2014-07-19 22:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-07-19 22:38 - 2014-07-19 22:38 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-07-19 22:37 - 2014-07-19 22:37 - 24677393 _____ () C:\Users\Predator\Downloads\vlc-2.1.3-win32.exe
2014-07-19 22:36 - 2014-07-19 22:36 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\MPC-HC
2014-07-19 22:34 - 2014-07-19 22:34 - 27992636 _____ ( ) C:\Users\Predator\Downloads\K-Lite_Codec_Pack_1060_Full.exe
2014-07-19 22:34 - 2014-07-19 22:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-07-19 22:34 - 2014-07-19 22:34 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-07-19 21:58 - 2014-07-20 12:03 - 00001314 _____ () C:\Users\Predator\Desktop\Options - Shortcut - Copy.lnk
2014-07-19 21:58 - 2014-07-19 21:58 - 00001314 _____ () C:\Users\Predator\Desktop\Options - Shortcut.lnk
2014-07-19 20:52 - 2014-07-19 20:52 - 02356494 _____ () C:\Users\Predator\Downloads\enigma_by_kaelri-d1ptasn.rmskin
2014-07-19 20:42 - 2014-07-19 19:31 - 00000000 ____D () C:\Program Files\Rainmeter
2014-07-19 20:33 - 2014-07-19 20:33 - 00005733 _____ () C:\Users\Predator\Documents\MYD2013_.rmskin
2014-07-19 20:21 - 2014-07-19 20:21 - 00000000 ____D () C:\Program Files (x86)\Stardock
2014-07-19 20:20 - 2014-07-19 20:20 - 21291984 _____ () C:\Users\Predator\Downloads\ObjectDock-cnet-setup.exe
2014-07-19 20:20 - 2014-07-19 20:20 - 00000000 ____D () C:\Users\Predator\Downloads\Stardock
2014-07-19 19:31 - 2014-07-19 22:30 - 00001706 _____ () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2014-07-19 19:31 - 2014-07-19 19:31 - 00001706 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2014-07-19 19:31 - 2014-07-19 19:31 - 00000000 ____D () C:\Users\Predator\Documents\Rainmeter
2014-07-19 19:31 - 2014-07-19 19:31 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Rainmeter
2014-07-19 19:30 - 2014-07-19 19:30 - 02293760 _____ () C:\Users\Predator\Downloads\Rainmeter-3.2-r2302-beta.exe
2014-07-19 17:30 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-07-19 16:52 - 2014-07-19 16:52 - 00000000 ____D () C:\ProgramData\UVK
2014-07-19 16:49 - 2014-07-19 16:46 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-07-19 16:46 - 2014-07-19 16:46 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-19 16:45 - 2014-07-19 16:45 - 11188736 _____ (SurfRight B.V.) C:\Users\Predator\Downloads\HitmanPro_x64 (1).exe
2014-07-19 16:45 - 2014-07-19 16:45 - 09741664 _____ (SurfRight B.V.) C:\Users\Predator\Downloads\HitmanPro_x64.exe
2014-07-19 16:43 - 2014-07-19 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UVK - Ultra Virus Killer
2014-07-19 16:42 - 2014-07-19 16:42 - 05736448 _____ (Carifred) C:\Users\Predator\Downloads\UVKSetup.exe
2014-07-19 16:15 - 2014-07-19 16:15 - 00000000 ___RD () C:\Sandbox
2014-07-19 15:59 - 2014-07-19 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2014-07-19 15:58 - 2014-07-19 15:58 - 02656264 _____ (Sandboxie Holdings, LLC) C:\Users\Predator\Downloads\SandboxieInstall.exe
2014-07-19 15:58 - 2014-07-19 15:58 - 00000000 ____D () C:\Program Files\Sandboxie
2014-07-19 15:22 - 2014-07-19 15:22 - 01376768 _____ () C:\Users\Predator\Downloads\7z920-x64.msi
2014-07-19 15:22 - 2014-07-19 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-07-19 15:22 - 2014-07-19 15:22 - 00000000 ____D () C:\Program Files\7-Zip
2014-07-19 15:20 - 2014-07-19 15:20 - 00053831 _____ () C:\Users\Predator\Downloads\skin_rocketdock_windows_8_by_gericat-d4xf4wb.rar
2014-07-19 15:18 - 2014-07-19 15:18 - 06463660 _____ (Punk Software ) C:\Users\Predator\Downloads\RocketDock-v1.3.5.exe
2014-07-19 15:18 - 2014-07-19 15:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2014-07-19 15:18 - 2014-07-19 15:18 - 00000000 ____D () C:\Program Files (x86)\RocketDock
2014-07-19 14:43 - 2014-07-19 14:43 - 00000000 ____D () C:\Users\Predator\AppData\Local\AdTrustMedia
2014-07-19 14:41 - 2014-07-18 22:51 - 00000000 ____D () C:\Windows\AutoKMS
2014-07-19 07:13 - 2012-07-26 09:13 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-07-18 23:32 - 2014-07-18 23:32 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-18 23:32 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-18 23:14 - 2014-07-18 23:14 - 00001325 _____ () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security.lnk
2014-07-18 23:14 - 2014-07-18 23:14 - 00000167 _____ () C:\Windows\system32\netcfg-583406.txt
2014-07-18 23:13 - 2014-07-18 23:13 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-07-18 23:13 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-07-18 23:10 - 2014-07-18 23:10 - 00000000 ____D () C:\ProgramData\Razer
2014-07-18 23:04 - 2014-07-18 23:04 - 00000117 _____ () C:\Windows\system32\netcfg-4703.txt
2014-07-18 23:04 - 2014-07-18 23:04 - 00000117 _____ () C:\Windows\system32\netcfg-4609.txt
2014-07-18 22:57 - 2014-07-18 22:57 - 00000117 _____ () C:\Windows\system32\netcfg-5875.txt
2014-07-18 22:57 - 2014-07-18 22:57 - 00000117 _____ () C:\Windows\system32\netcfg-5781.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00003028 _____ () C:\Windows\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-07-18 22:54 - 2014-07-18 22:54 - 00000167 _____ () C:\Windows\system32\netcfg-258187.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00000117 _____ () C:\Windows\system32\netcfg-258390.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00000117 _____ () C:\Windows\system32\netcfg-258375.txt
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\ProgramData\Adtrustmedia
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Program Files\COMODO
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Program Files\AdTrustMedia
2014-07-18 22:54 - 2014-07-18 22:54 - 00000000 ____D () C:\Program Files (x86)\AdTrustMedia
2014-07-18 22:54 - 2014-07-18 22:53 - 00000000 ____D () C:\ProgramData\Comodo
2014-07-18 22:51 - 2014-07-18 22:51 - 00000000 ____D () C:\Windows\KMSServerService
2014-07-18 22:51 - 2014-07-18 22:51 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-07-18 22:50 - 2014-07-18 22:50 - 00000117 _____ () C:\Windows\system32\netcfg-4281.txt
2014-07-18 22:50 - 2014-07-18 22:50 - 00000117 _____ () C:\Windows\system32\netcfg-4062.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00001226 _____ () C:\Windows\system32\netcfg-816296.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000258 _____ () C:\Windows\system32\netcfg-817843.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-826593.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-823265.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-823250.txt
2014-07-18 22:49 - 2014-07-18 22:49 - 00000117 _____ () C:\Windows\system32\netcfg-819437.txt
2014-07-18 22:49 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\restore
2014-07-18 22:48 - 2014-07-18 22:48 - 00000000 ____D () C:\Intel
2014-07-18 22:30 - 2014-07-18 22:30 - 00001430 _____ () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-18 22:30 - 2014-07-18 22:30 - 00000020 ___SH () C:\Users\Predator\ntuser.ini
2014-07-18 22:30 - 2014-07-18 22:30 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Adobe
2014-07-18 22:30 - 2014-07-18 22:30 - 00000000 ____D () C:\Users\Predator\AppData\Local\VirtualStore
2014-07-18 22:15 - 2014-07-18 21:55 - 00000000 __SHD () C:\Recovery
2014-07-18 22:15 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\Recovery
2014-07-18 22:14 - 2014-07-18 22:14 - 00000185 _____ () C:\Windows\system32\netcfg-21890.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000164 _____ () C:\Windows\system32\netcfg-17390.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000161 _____ () C:\Windows\system32\netcfg-21015.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000160 _____ () C:\Windows\system32\netcfg-19187.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000160 _____ () C:\Windows\system32\netcfg-19093.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000160 _____ () C:\Windows\system32\netcfg-17515.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000159 _____ () C:\Windows\system32\netcfg-17140.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000157 _____ () C:\Windows\system32\netcfg-19296.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000157 _____ () C:\Windows\system32\netcfg-18968.txt
2014-07-18 22:14 - 2014-07-18 22:14 - 00000150 _____ () C:\Windows\system32\netcfg-19406.txt
2014-07-18 14:25 - 2014-07-18 22:43 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1761729439-588820557-3478904116-1001
2014-07-18 13:58 - 2014-07-18 13:58 - 00057322 _____ () C:\Users\Predator\Downloads\repository.superrepo.org.gotham.all-0.5.1.zip
2014-07-18 13:58 - 2014-07-18 13:58 - 00057322 _____ () C:\repository.superrepo.org.gotham.all-0.5.1.zip
2014-07-18 13:46 - 2014-07-18 13:46 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2014-07-18 13:46 - 2014-07-18 13:46 - 00000000 ____D () C:\Program Files (x86)\XBMC
2014-07-18 13:44 - 2014-07-18 13:43 - 63722695 _____ () C:\Users\Predator\Downloads\xbmc-13.1-Gotham.exe
2014-07-18 13:41 - 2014-07-18 22:53 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-07-18 13:41 - 2014-07-18 22:53 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-18 13:41 - 2014-07-18 22:53 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-18 13:41 - 2014-07-18 13:41 - 00000000 ____D () C:\Users\Predator\AppData\Local\NVIDIA Corporation
2014-07-18 13:41 - 2014-07-18 13:41 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-07-18 13:41 - 2014-07-18 13:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-18 13:40 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\Help
2014-07-18 13:39 - 2014-07-18 13:39 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-18 13:38 - 2014-07-18 13:38 - 00000000 ____D () C:\NVIDIA
2014-07-18 13:29 - 2014-07-18 13:29 - 00142744 _____ () C:\Users\Predator\Downloads\vtuploader2.2.exe
2014-07-18 13:29 - 2014-07-18 13:29 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
2014-07-18 13:29 - 2014-07-18 13:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
2014-07-18 13:29 - 2014-07-18 13:29 - 00000000 ____D () C:\Program Files (x86)\VirusTotalUploader2
2014-07-18 13:15 - 2014-07-18 13:15 - 03358176 _____ () C:\Users\Predator\Downloads\advisorinstaller.exe
2014-07-18 13:15 - 2014-07-18 13:15 - 00002132 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2014-07-18 13:15 - 2014-07-18 13:15 - 00000000 ____D () C:\Program Files (x86)\Belarc
2014-07-18 13:12 - 2014-07-18 13:12 - 01064488 _____ (BillP Studios) C:\Users\Predator\Downloads\wpsetup.exe
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\WinPatrol
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\ProgramData\InstallMate
2014-07-18 13:12 - 2014-07-18 13:12 - 00000000 ____D () C:\Program Files (x86)\BillP Studios
2014-07-18 13:04 - 2014-07-18 13:04 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Predator\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-18 13:04 - 2014-07-18 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-18 13:04 - 2014-07-18 13:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-18 13:04 - 2014-07-18 13:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-18 13:03 - 2014-07-18 13:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2014-07-18 13:03 - 2014-07-18 13:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Exploit
2014-07-18 13:01 - 2014-07-18 13:01 - 04812672 _____ (Piriform Ltd) C:\Users\Predator\Downloads\ccsetup415.exe
2014-07-18 13:01 - 2014-07-18 13:01 - 00002778 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-18 13:01 - 2014-07-18 13:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-18 13:01 - 2014-07-18 13:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-18 12:58 - 2014-07-19 07:14 - 00000000 ____D () C:\Windows\Panther
2014-07-18 12:58 - 2014-07-18 12:57 - 00000000 ____D () C:\Program Files (x86)\SlimCleaner
2014-07-18 12:57 - 2014-07-18 12:57 - 00801088 _____ (SlimWare Utilities, Inc.) C:\Users\Predator\Downloads\SlimCleaner-setup.exe
2014-07-18 12:57 - 2014-07-18 12:57 - 00003014 _____ () C:\Windows\System32\Tasks\SlimCleaner Run
2014-07-18 12:57 - 2014-07-18 12:57 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-07-18 12:57 - 2014-07-18 12:57 - 00000000 ____D () C:\Users\Predator\AppData\Local\SlimWare Utilities Inc
2014-07-18 12:57 - 2014-07-18 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner
2014-07-18 12:49 - 2014-07-18 12:49 - 25543261 _____ () C:\Users\Predator\Downloads\cce_2.5.242177.201_x64.zip
2014-07-18 12:44 - 2014-07-18 22:49 - 00005431 _____ () C:\Users\Predator\AppData\Local\killertool.log
2014-07-18 12:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-18 12:40 - 2014-07-18 22:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 ____D () C:\ProgramData\Qualcomm
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 ____D () C:\Program Files\Qualcomm Atheros
2014-07-18 12:40 - 2014-07-18 12:40 - 00000000 _____ () C:\Users\Predator\AppData\Local\Driver_LOM_8161Present.flag
2014-07-18 12:40 - 2014-07-18 01:07 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-07-18 12:24 - 2014-07-18 22:48 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-07-18 12:11 - 2014-07-18 02:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-18 12:05 - 2014-07-18 02:00 - 00003886 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-07-18 12:05 - 2014-07-18 02:00 - 00003650 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-07-18 11:38 - 2014-07-18 02:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
2014-07-18 11:36 - 2014-07-18 11:36 - 00000000 _____ () C:\Users\Predator\agent.log
2014-07-18 02:29 - 2014-07-18 22:48 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-07-18 02:29 - 2014-07-18 22:48 - 00000000 ____D () C:\MSI
2014-07-18 02:29 - 2014-07-18 01:22 - 00000000 ____D () C:\uninstall
2014-07-18 02:29 - 2014-07-18 01:06 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-18 02:22 - 2014-07-18 02:00 - 00000000 ____D () C:\Users\Predator\AppData\Local\Google
2014-07-18 02:13 - 2014-07-18 02:13 - 00003074 _____ () C:\Windows\System32\Tasks\Wise Turbo Checker
2014-07-18 02:13 - 2014-07-18 02:13 - 00002852 _____ () C:\Windows\System32\Tasks\Wise Care 365
2014-07-18 02:11 - 2014-07-18 02:11 - 00000000 ____D () C:\Program Files (x86)\Wise
2014-07-18 02:08 - 2014-07-18 02:07 - 00000000 ____D () C:\AdwCleaner
2014-07-18 02:00 - 2014-07-18 02:00 - 00000000 ____D () C:\ProgramData\Google
2014-07-18 02:00 - 2014-07-18 02:00 - 00000000 ____D () C:\Program Files\Google
2014-07-18 02:00 - 2014-07-18 02:00 - 00000000 ____D () C:\Program Files (x86)\Google
2014-07-18 02:00 - 2014-07-18 01:55 - 00000000 ____D () C:\Windows\LastGood
2014-07-18 02:00 - 2014-07-18 01:21 - 00002534 _____ () C:\RHDSetup.log
2014-07-18 02:00 - 2014-07-18 01:21 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-07-18 02:00 - 2014-07-18 01:21 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-18 01:59 - 2014-07-18 01:59 - 00000033 _____ () C:\Killer.log
2014-07-18 01:48 - 2014-07-18 01:48 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-07-18 01:45 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-18 01:26 - 2014-07-18 01:26 - 00000000 ____D () C:\ProgramData\mvp
2014-07-18 01:24 - 2014-07-18 01:24 - 00000000 ____D () C:\Users\Predator\lucidlogix
2014-07-18 01:22 - 2014-07-18 01:22 - 00000179 _____ () C:\SBCsetup.log
2014-07-18 01:22 - 2014-07-18 01:22 - 00000159 ___RH () C:\Windows\ctfile.rfc
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIRTU MVP 2.0
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Lucidlogix
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\ProgramData\Creative
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files\Lucidlogix Technologies
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-18 01:22 - 2014-07-18 01:22 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-07-18 01:21 - 2014-07-18 01:21 - 00000000 ____D () C:\Program Files\Realtek
2014-07-18 01:21 - 2014-07-18 01:21 - 00000000 ____D () C:\Program Files (x86)\Setup Files
2014-07-18 01:21 - 2014-07-18 01:21 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-07-18 01:17 - 2014-07-18 00:35 - 00010854 _____ () C:\Windows\SysWOW64\Utility.xml
2014-07-18 01:14 - 2014-07-18 01:14 - 00000000 ____D () C:\Users\Predator\AppData\Roaming\Macromedia
2014-07-18 01:10 - 2014-07-18 01:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2014-07-18 01:10 - 2014-07-18 01:05 - 00000000 ____D () C:\ProgramData\Intel
2014-07-18 01:06 - 2014-07-18 01:06 - 00003936 _____ () C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-07-18 01:06 - 2014-07-18 01:06 - 00003690 _____ () C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-07-18 01:06 - 2014-07-18 01:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-07-18 01:06 - 2014-07-18 01:06 - 00000000 ____D () C:\Program Files (x86)\ASM106xSATA
2014-07-18 01:06 - 2014-07-18 01:05 - 00000000 ____D () C:\Program Files\Intel
2014-07-18 01:05 - 2014-07-18 01:05 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-07-18 01:05 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-07-18 01:00 - 2014-07-18 01:00 - 00000000 ____D () C:\Users\Predator\AppData\Local\Razer_Inc
2014-07-18 00:58 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-07-18 00:58 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-07-18 00:58 - 2012-07-26 09:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-18 00:58 - 2012-07-26 09:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-18 00:58 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\oobe
2014-07-18 00:55 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-18 00:45 - 2014-07-18 22:30 - 00000000 ____D () C:\Users\Predator\AppData\Local\Packages
2014-07-18 00:45 - 2014-07-18 22:30 - 00000000 ____D () C:\ProgramData\PRICache
2014-07-18 00:45 - 2014-07-18 00:45 - 00003550 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask
2014-07-18 00:45 - 2014-07-18 00:43 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-07-18 00:44 - 2012-07-26 06:37 - 00000000 ____D () C:\Windows\servicing
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-07-18 00:43 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-07-18 00:43 - 2012-07-26 08:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-18 00:43 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-18 00:43 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\Dism
2014-06-26 21:53 - 2012-07-26 09:14 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 21:53 - 2012-07-26 09:14 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 17:40 - 2014-07-18 23:32 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
 
Some content of TEMP:
====================
C:\Users\Predator\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Predator\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Predator\AppData\Local\Temp\nvStInst.exe
C:\Users\Predator\AppData\Local\Temp\vcredist_x64.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-18 22:14
 
==================== End Of Log ============================


#7 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 20 July 2014 - 06:49 AM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-07-2014
Ran by Predator at 2014-07-20 12:28:20
Running from C:\Users\Predator\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
 
==================== Installed Programs ======================
 
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.000 - Asmedia Technology)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
COMODO Firewall (HKLM\...\{2736B6BD-31EC-4FC8-A48C-F0A5C914C0B6}) (Version: 7.0.55655.4142 - COMODO Security Solutions Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.221 - SurfRight B.V.)
Intel® Chipset Device Software (Version: 10.0.17 - Intel Corporation) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.17 - Intel® Corporation) Hidden
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Smart Connect Technology (HKLM\...\{1D5C9D08-546D-4A7E-B0F1-F33E94257B09}) (Version: 5.0.10.2832 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
K-Lite Codec Pack 10.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Malwarebytes Anti-Exploit version 1.03.1.1220 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.03.1.1220 - Malwarebytes)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation) Hidden
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Control Panel 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.154.1168 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
PrivDog (HKLM-x32\...\PrivDog) (Version: 2.2.0.14 - privdog.com)
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.38.1281 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.38.1281 - Qualcomm Atheros) Hidden
Qualcomm Atheros Network Manager (Version: 1.1.38.1281 - Qualcomm Atheros) Hidden
Qualcomm Atheros Performance Suite (HKLM-x32\...\{70352071-9C2B-4EF0-88E6-9F16FEBAEB36}) (Version: 1.1.38.1281 - Qualcomm Atheros)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2 beta r2302 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
Sandboxie 4.12 (64-bit) (HKLM\...\Sandboxie) (Version: 4.12 - Sandboxie Holdings, LLC)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SlimCleaner (HKLM-x32\...\{6B8D6199-EE44-4FD7-813A-6D8C62C9B384}) (Version: 4.0.30878 - SlimWare Utilities, Inc.)
Sound Blaster Cinema (HKLM-x32\...\{8801CA65-921A-4CCC-9D63-879D1D0BAA97}) (Version: 1.00.05 - Creative Technology Limited)
UVK - Ultra Virus Killer (HKLM\...\UVK - Ultra virus killer) (Version: 6.6.0.0 - Carifred)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.8 - MSI)
VIRTU MVP 2.0 3.0.108 (HKLM\...\VIRTU MVP 2.0_is1) (Version: 3.0.108 - Lucidlogix Technologies LTD)
VirusTotal Uploader 2.2 (HKLM-x32\...\VTUploader) (Version:  - )
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinPatrol (HKLM\...\{84481A87-2316-4923-8FAB-3BA8CA29323D}) (Version: 31.0.2014.0 - BillP Studios)
Wise Care 365 3.16 (HKLM-x32\...\Wise Care 365_is1) (Version: 3.16 - WiseCleaner.com, Inc.)
XBMC (HKCU\...\XBMC) (Version:  - Team XBMC)
 
==================== Restore Points  =========================
 
18-07-2014 11:25:58 Installed Intel® Network Connections.
19-07-2014 14:22:18 Installed 7-Zip 9.20 (x64 edition)
 
==================== Hosts content: ==========================
 
2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {05137F41-9F58-4686-994B-27B9B9709284} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)
Task: {18A3E3B5-50FD-4364-8970-EE83D1D279C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-18] (Google Inc.)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {4536A267-5295-4429-A0BC-7537F8C2A431} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2014-07-07] (WiseCleaner.COM)
Task: {4A7C9569-0356-43A1-B387-1E41499056FE} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {51F9DEF5-B9A8-46A4-AF46-2DC67A210711} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25] (COMODO)
Task: {605FEEE3-D041-4FE4-A1C7-71B831D7D78A} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {60C3747A-C39F-4983-9F5E-A116397B4FD3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-18] (Google Inc.)
Task: {65743F49-2E1F-4B2C-B56B-9FBC25BE305F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-26] (Microsoft Corporation)
Task: {7252290E-27CC-4C36-BFFF-C44C6106864B} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {7F2400AA-E1AB-4912-BFDA-ED1660353C2D} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-04-19] (Microsoft Corporation)
Task: {9E63F42F-8EAE-4E54-916F-57C8138D75BB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {BA9F71AA-00AA-4A7C-BE6F-DA440960FFA5} - \AutoKMS No Task File <==== ATTENTION
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {CA0CCEDB-123C-4774-AC56-CFD8C4E778ED} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2014-07-07] (WiseCleaner.com)
Task: {E1E38B2B-0DD4-489D-986A-7E08D91C15AD} - System32\Tasks\SlimCleaner Run => C:\Program Files (x86)\SlimCleaner\SlimCleaner.exe [2013-07-10] (SlimWare Utilities, Inc.)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\Windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-07-18 13:40 - 2014-05-20 02:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-04-24 12:24 - 2014-04-24 12:24 - 00209712 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
2014-04-24 12:24 - 2014-04-24 12:24 - 00057648 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
2014-04-24 12:24 - 2014-04-24 12:24 - 00057648 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\ISCTEncryptionCheck.dll
2014-04-24 12:24 - 2014-04-24 12:24 - 00037168 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\ISCTNetMon.dll
2014-07-18 22:51 - 2014-07-18 22:51 - 00294912 _____ () C:\Windows\KMSServerService\KMS Server Service.exe
2014-07-18 01:22 - 2013-11-26 12:52 - 00179432 _____ () C:\Program Files\Lucidlogix Technologies\VIRTU MVP 2.0\GuiCommon.dll
2014-07-18 01:22 - 2012-11-01 11:23 - 00089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2014-07-18 01:22 - 2012-11-01 11:21 - 00325120 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-07-19 15:18 - 2007-09-02 13:58 - 00495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2013-12-09 15:07 - 2013-12-09 15:07 - 00300544 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
2014-07-14 14:28 - 2014-07-14 14:28 - 00036536 _____ () C:\Program Files\Rainmeter\Rainmeter.exe
2014-07-14 14:28 - 2014-07-14 14:28 - 00747192 _____ () C:\Program Files\Rainmeter\Rainmeter.dll
2014-07-14 14:27 - 2014-07-14 14:27 - 00056832 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL
2014-07-14 14:26 - 2014-07-14 14:26 - 00011776 _____ () C:\Program Files\Rainmeter\Plugins\PowerPlugin.DLL
2014-07-14 14:27 - 2014-07-14 14:27 - 00408064 _____ () C:\Program Files\Rainmeter\Plugins\NowPlaying.DLL
2014-07-14 14:27 - 2014-07-14 14:27 - 00022528 _____ () C:\Program Files\Rainmeter\Plugins\WifiStatus.DLL
2014-07-14 14:26 - 2014-07-14 14:26 - 00011776 _____ () C:\Program Files\Rainmeter\Plugins\RecycleManager.DLL
2014-07-14 14:27 - 2014-07-14 14:27 - 00019968 _____ () C:\Program Files\Rainmeter\Plugins\SysInfo.DLL
2014-07-14 14:27 - 2014-07-14 14:27 - 00024064 _____ () C:\Program Files\Rainmeter\Plugins\QuotePlugin.DLL
2014-07-14 14:27 - 2014-07-14 14:27 - 00022528 _____ () C:\Program Files\Rainmeter\Plugins\InputText.DLL
2014-07-14 14:26 - 2014-07-14 14:26 - 00016896 _____ () C:\Program Files\Rainmeter\Plugins\AdvancedCPU.DLL
2014-07-14 14:27 - 2014-07-14 14:27 - 00023040 _____ () C:\Program Files\Rainmeter\Plugins\Win7AudioPlugin.DLL
2014-07-14 14:26 - 2014-07-14 14:26 - 00010752 _____ () C:\Program Files\Rainmeter\Plugins\Process.DLL
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2014-07-19 15:18 - 2007-09-02 13:57 - 00069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2014-07-18 12:11 - 2014-07-15 10:24 - 00718664 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libglesv2.dll
2014-07-18 12:11 - 2014-07-15 10:24 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libegl.dll
2014-07-18 12:11 - 2014-07-15 10:24 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll
2014-07-18 12:11 - 2014-07-15 10:24 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll
2014-07-18 12:11 - 2014-07-15 10:24 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
2014-07-18 12:11 - 2014-07-15 10:24 - 14664008 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll
2014-07-18 01:05 - 2013-09-17 03:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/20/2014 00:28:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:28Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:27:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:58Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:27:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:28Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:26:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:58Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:26:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:28Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:25:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:58Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:25:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:28Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:24:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:58Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:24:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:28Z. Error Code: 0x80070005.
 
Error: (07/20/2014 00:23:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2014-07-24T23:58:58Z. Error Code: 0x80070005.
 
 
System errors:
=============
Error: (07/20/2014 10:53:32 AM) (Source: DCOM) (EventID: 10010) (User: Omega)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 
Error: (07/18/2014 00:22:43 PM) (Source: DCOM) (EventID: 10010) (User: Omega)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 
Error: (07/18/2014 02:24:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel® Extreme Tuning Utility Service service failed to start due to the following error: 
%%1053
 
Error: (07/18/2014 02:24:18 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Extreme Tuning Utility Service service to connect.
 
Error: (07/18/2014 02:19:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel® Extreme Tuning Utility Service service failed to start due to the following error: 
%%1053
 
Error: (07/18/2014 02:19:30 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Extreme Tuning Utility Service service to connect.
 
Error: (07/18/2014 02:16:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel® Extreme Tuning Utility Service service failed to start due to the following error: 
%%1053
 
Error: (07/18/2014 02:16:05 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Extreme Tuning Utility Service service to connect.
 
Error: (07/18/2014 02:11:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel® Extreme Tuning Utility Service service failed to start due to the following error: 
%%1053
 
Error: (07/18/2014 02:11:26 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Extreme Tuning Utility Service service to connect.
 
 
Microsoft Office Sessions:
=========================
Error: (07/20/2014 00:28:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:28Z
 
Error: (07/20/2014 00:27:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:58Z
 
Error: (07/20/2014 00:27:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:28Z
 
Error: (07/20/2014 00:26:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:58Z
 
Error: (07/20/2014 00:26:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:28Z
 
Error: (07/20/2014 00:25:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:58Z
 
Error: (07/20/2014 00:25:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:28Z
 
Error: (07/20/2014 00:24:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:58Z
 
Error: (07/20/2014 00:24:28 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:28Z
 
Error: (07/20/2014 00:23:58 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800700052014-07-24T23:58:58Z
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-20 12:26:41.733
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 12:07:20.658
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 12:04:59.304
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 11:49:18.786
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 11:43:52.223
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 11:08:07.638
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 10:59:34.757
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 10:53:59.175
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 10:49:31.126
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-20 10:36:49.383
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 18%
Total physical RAM: 16328.54 MB
Available physical RAM: 13321.25 MB
Total Pagefile: 21960.54 MB
Available Pagefile: 17933.11 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:83.66 GB) (Free:38.73 GB) NTFS
Drive d: () (Fixed) (Total:465.76 GB) (Free:111.71 GB) NTFS
Drive f: (New Volume) (Fixed) (Total:27.62 GB) (Free:27.52 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 112 GB) (Disk ID: 86CB6508)
 
Partition: GPT Partition Type.
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 0BB4413C)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:26 PM

Posted 20 July 2014 - 08:45 AM

Greetings,

There is nothing of concern in your logs. I think you are good to go.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#9 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 21 July 2014 - 08:56 AM

Cheers Gary, much appreciated :-)



#10 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:26 PM

Posted 21 July 2014 - 01:02 PM

Greetings,

My pleasure. This one was easy!

Now that your computer is running well it is my great pleasure to proclaim to you the Good News!

===================================================

All Clean!

--------------

Your machine appears to be clean and you may delete any programs or logs on your computer as a result of our efforts. Please take the time to read below on how to secure the machine and take the necessary steps to keep it clean :thumbsup:

Lawrence Abrams, the founder of BleepingComputer.com, has developed an excellent tutorial which will provide you with the information you need to know to keep your computer secure and clean. Please take the time to read:

In addition, here are some more links you might find of interest:

I will leave this topic open for just a day or so in case you have any further issues then it will be closed shortly thereafter.

Thank you for placing your trust in BleepingComputer. It was a pleasure serving you. OhMy_done.gif


Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#11 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:26 PM

Posted 22 July 2014 - 02:43 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#12 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:26 PM

Posted 26 July 2014 - 03:47 PM

This topic has been re-opened at the request of the person who originally posted.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#13 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 26 July 2014 - 03:48 PM

Hi Gary,

 

Thought i was ok then malware bytes picked up browser hijack and cleaned it, just ran roguekiller and found this.

 

I'm hoping it's not too bad :-/

 

Thank's for reopening the thread.

 

Cheers,

 

Paulito

 

 

 

 

 

 

RogueKiller V9.2.4.0 [Jul 11 2014] by Adlice Software
 
Operating System : Windows 8 (6.2.9200 ) 64 bits version
Started in : Normal mode
User : Predator [Admin rights]
Mode : Scan -- Date : 07/26/2014  21:06:29
 
¤¤¤ Bad processes : 3 ¤¤¤
[Proc.Svchost] svchost.exe -- [x] -> KILLED [TermProc]
[Proc.Svchost] svchost.exe -- [x] -> KILLED [TermProc]
[Proc.Svchost] svchost.exe -- [x] -> KILLED [TermProc]
 
¤¤¤ Registry Entries : 8 ¤¤¤
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-1761729439-588820557-3478904116-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {645FF040-5081-101B-9F08-00AA002F954E} : 1  -> FOUND
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-1761729439-588820557-3478904116-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {645FF040-5081-101B-9F08-00AA002F954E} : 1  -> FOUND
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> FOUND
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> FOUND
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> FOUND
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> FOUND
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-1761729439-588820557-3478904116-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {645FF040-5081-101B-9F08-00AA002F954E} : 1  -> FOUND
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-1761729439-588820557-3478904116-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {645FF040-5081-101B-9F08-00AA002F954E} : 1  -> FOUND
 
¤¤¤ Scheduled tasks : 0 ¤¤¤
 
¤¤¤ Files : 0 ¤¤¤
 
¤¤¤ HOSTS File : 0 ¤¤¤
 
¤¤¤ Antirootkit : 0 (Driver: NOT LOADED [0xc000036b]) ¤¤¤
 
¤¤¤ Web browsers : 0 ¤¤¤
 
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: Samsung SSD 840 EVO 120GB +++++
--- User ---
[MBR] 273d820e719ada709e0b0982865c26c9
[BSP] 1b12301f76832f1e20ce018e2325a284 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK
User = LL2 ... OK
 
+++++ PhysicalDrive1: ST3500320AS +++++
--- User ---
[MBR] 06981f0ef9c5e154886be93392c02465
[BSP] f0627e30e8296d2e9c17155742bd3c1f : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 476937 MB
User = LL1 ... OK
User = LL2 ... OK


#14 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 26 July 2014 - 03:50 PM

PS not clicked on delete or anything on roguekiller, will await your instructions.

 

Cheers,



#15 Paulito

Paulito
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:26 AM

Posted 26 July 2014 - 04:10 PM

Looking on Chrome history noticed a couple of traffic outbrain redirects as well.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users