Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hacker Attack with Trojan BackdoorCIA


  • This topic is locked This topic is locked
17 replies to this topic

#1 Gmer99

Gmer99

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 12 January 2015 - 05:43 PM

Hello , I was attacked by a hacker few days ago from several proxy"s servers in Europe ... This hacker injected me a nasty trojan , who was cleaned by Panda Cloud cleaning tool i found on the internet .... After this attack my pc was behaving strange so i format it and installed Windows 7 again on it .... after few hours after  several updates when I restarted my PC shortcuts on my screen went blank white !!! :crazy:

Microsoft support didn"t helped me too much and I did twice>> https://support2.microsoft.com/kb/2635447/en-us 

Any help will be very appreciated  :thumbup2:


Edited by Gmer99, 12 January 2015 - 05:46 PM.


BC AdBot (Login to Remove)

 


#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,044 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:12:35 AM

Posted 14 January 2015 - 10:37 AM

Hey my friend. :)

Please download FRST (by Farbar) from the link below and save it to your Desktop.

Download Mirror #1

If you are unsure whether you have 32-Bit or 64-Bit Windows, see here
  • Disable all anti-virus and anti-malware software to prevent them inhibiting FRST in any way. If you are unsure how to do this, see THIS.
  • Double-click FRST.exe/FRST64.exe (depending on which version you downloaded) to run it. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • When the disclaimer appears, click Yes.
  • Click Scan to start FRST.
  • When FRST finishes scanning, two logs, FRST.txt and Addition.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of both of these logs into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 14 January 2015 - 04:44 PM

Helllo Machiavelli , I am glad you replyed to me... i was fast and i will post those logs you asked to see >>>

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-01-2015 01

Ran by 19216812 (administrator) on 19216812-PC on 14-01-2015 23:08:40
Running from C:\Users\19216812\Downloads
Loaded Profiles: 19216812 & UpdatusUser (Available profiles: 19216812 & UpdatusUser)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe
(Zemana Ltd.) C:\Program Files\Zemana AntiLogger Free\AntiLogger Free.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(COMODO) C:\Users\19216812\Downloads\cce_1.6.183539.73_x32\CCE\CCE.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\19216812\Downloads\FRST (1).exe
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe [2561848 2014-12-10] (Malwarebytes Corporation)
HKLM\...\Run: [ZALFree] => C:\Program Files\Zemana AntiLogger Free\AntiLogger Free.exe [8205944 2014-12-30] (Zemana Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-11] (AVAST Software)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1243352 2014-12-09] (COMODO)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2015-01-12] (Safer-Networking Ltd.)
HKLM\...\Run: [PSUAMain] => C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe [37624 2015-01-13] (Panda Security, S.L.)
HKU\S-1-5-21-1943437150-2719924850-2090285098-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-01-10] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean.exe==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1943437150-2719924850-2090285098-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1943437150-2719924850-2090285098-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKU\S-1-5-21-1943437150-2719924850-2090285098-1000 -> No Name - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -  No File
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 193.231.252.1 213.154.124.1
 
FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-11]
 
Chrome: 
=======
CHR Profile: C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentări Google) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-10]
CHR Extension: (Google Docs) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-10]
CHR Extension: (WOT) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-01-14]
CHR Extension: (YouTube) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-10]
CHR Extension: (căutare Google) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-10]
CHR Extension: (Foi de calcul Google) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-10]
CHR Extension: (Avira Browser Safety) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-01-14]
CHR Extension: (Google Wallet) - C:\Users\19216812\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-10]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-11] (AVAST Software)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5868440 2014-12-09] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664216 2014-12-09] (COMODO)
R2 MbaeSvc; C:\Program Files\Malwarebytes Anti-Exploit\mbae-svc.exe [555320 2014-12-10] (Malwarebytes Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 NanoServiceMain; C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe [142072 2015-01-13] (Panda Security, S.L.)
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2015-01-13] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-01-13] (Panda Security, S.L.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2015-01-12] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2015-01-12] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2015-01-12] (Safer-Networking Ltd.)
S3 SophosVirusRemovalTool; C:\Program Files\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [153384 2015-01-11] (Sophos Limited)
R2 ZemanaAntiMalwareScheduler; C:\Program Files\Zemana AntiMalware\zemsched.exe [106280 2015-01-10] (Zemana)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2015-01-11] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73480 2015-01-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2015-01-11] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2015-01-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787800 2015-01-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423784 2015-01-11] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [91496 2015-01-11] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206248 2015-01-11] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17088 2014-12-09] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [617536 2014-12-09] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41248 2014-12-09] (COMODO)
R3 cmuda3; C:\Windows\System32\drivers\cmudax3.sys [1872192 2009-12-01] (C-Media Inc)
R1 ESProtectionDriver; C:\Program Files\Malwarebytes Anti-Exploit\mbae.sys [47928 2014-12-10] ()
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-14] (VIA Technologies, Inc.              )
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91200 2014-12-09] (COMODO)
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt32.sys [69816 2014-12-30] (Zemana Ltd.)
R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [79576 2015-01-10] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2015-01-14] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-11-21] (Malwarebytes Corporation)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [88992 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [166816 2014-06-18] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [110624 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [125216 2014-06-04] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [96160 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [61984 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [121888 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [288032 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [208800 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [109856 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [244000 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [96928 2014-06-04] (Panda Security, S.L.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [139536 2014-10-13] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [105232 2014-10-13] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [168208 2014-10-02] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [113936 2014-10-02] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [124688 2014-10-02] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [100112 2014-10-13] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [48736 2014-03-25] (Panda Security, S.L.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-01-14] ()
S3 uji1nje2; C:\Windows\system32\Drivers\uji1nje2.sys [10240 2015-01-13] (Zaitsev Oleg, 2006) [File not signed]
S3 uti1nje2; C:\Windows\system32\Drivers\uti1nje2.sys [7168 2015-01-13] () [File not signed]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
========================== Drivers MD5 =======================
 
C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\system32\drivers\aswHwid.sys 9D23DE88C3B18BA87CD4587177CA6CEA
C:\Windows\system32\drivers\aswMonFlt.sys 98F4C60F5C3E77B4A2CD1F06F7198D49
C:\Windows\system32\drivers\aswRdr2.sys DE8D7912469E4BC5FAED78D9D1076888
C:\Windows\system32\Drivers\aswRvrt.sys 6544697080421E62E97AAFBD0A8AA391
C:\Windows\system32\drivers\aswSnx.sys E73CBE3420ECFA8FF7D0467E170E335D
C:\Windows\system32\drivers\aswSP.sys 1624D5AD126B8AFE2B2E85E5B8364EB6
C:\Windows\system32\drivers\aswStm.sys 401E663D9CBAFB580FF37A1A44AC84D9
C:\Windows\system32\Drivers\aswVmm.sys 0EFBC2962B156E8AC267F96D4D93EF06
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 77361D72A04F18809D0EFB6CCEB74D4B
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cmderd.sys 01373E3D2CCD60E73E40282FC97505B5
C:\Windows\System32\DRIVERS\cmdguard.sys 4E365F817000565B3063B32585F3D200
C:\Windows\System32\DRIVERS\cmdhlp.sys 190CB04514DCA2D1467EB1540485DEED
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\drivers\cmudax3.sys 48CA0EF55ECA320EF7862B75B91662FE
C:\Windows\System32\Drivers\cng.sys 85449EEBE8F8EBD6481EFBF0F352B4EB
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Program Files\Malwarebytes Anti-Exploit\mbae.sys 29D3D1F383139FE0D195C93CEF0CDA2C
C:\Windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fetnd6.sys F5CB6CB6D12F495516BE27CFFCCDE4BF
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\inspect.sys 9A16225EA2653002BCA484FB852C2715
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\system32\drivers\kbdclass.sys ==> MD5 is legit
C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\KeyCrypt32.sys A5DAB4F9C0BAE20478D36B34C9A6F756
C:\Windows\System32\Drivers\ksecdd.sys 4120DA10AA42A9996F4575DB9E3E6E6E
C:\Windows\System32\Drivers\ksecpkg.sys 1E1845606C5A4579F7F3D95796CC1ED1
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbamchameleon.sys CD85463E3AB753443D77B4A04638E418
C:\Windows\system32\drivers\mbam.sys A3F4391DFDF2F9E9FE4EAD193265A5AD
C:\Windows\system32\drivers\MBAMSwissArmy.sys 8E2E9CCD873ABF180F48BCAEEEBE347D
C:\Windows\system32\drivers\mwac.sys 312CD3307F600E7CD340B79B3DCB3A01
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\system32\drivers\mouclass.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 03F899F521D2AAED1C55008F734DF252
C:\Windows\System32\DRIVERS\mrxsmb.sys 5D16C921E3671636C0EBA3BBAAC5FD25
C:\Windows\System32\DRIVERS\mrxsmb10.sys 6D17A4791ACA19328C685D256349FEFC
C:\Windows\System32\DRIVERS\mrxsmb20.sys B81F204D146000BE76651A50670A5E9E
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\NNSAlpc.sys 864515F6B73440C334A9B835753C63D0
C:\Windows\System32\DRIVERS\NNSHttp.sys 0CF11BD87B8BAD0A5D7E28C94E5B9052
C:\Windows\System32\DRIVERS\NNSHttps.sys 21C48BAA1B5EBA59FADEB9476E066DB0
C:\Windows\System32\DRIVERS\NNSIds.sys E48F32473BE824FDEF107D54AE60F83A
C:\Windows\System32\DRIVERS\NNSPicc.sys FA3BDE5E900EAC1B12E57F19C33AF74C
C:\Windows\System32\DRIVERS\NNSPihsw.sys BE3B1D8DB8EACB4DAE995E8DEB3EC4D8
C:\Windows\System32\DRIVERS\NNSPop3.sys 9E1E19F30A8760E5D7F6DB907B5297A5
C:\Windows\System32\DRIVERS\NNSProt.sys ADDB104F28A80DD0732F2A2039C7C9A0
C:\Windows\System32\DRIVERS\NNSPrv.sys D9865534B4A9F2E71A689DE13DDF6B56
C:\Windows\System32\DRIVERS\NNSSmtp.sys BD626B29D484ABA2C39F4F4A47C24FED
C:\Windows\System32\DRIVERS\NNSStrm.sys 9FC72F79D73364CCF234AFE9A351DBF6
C:\Windows\System32\DRIVERS\NNSTlsc.sys DAF1393E6CB67753553A6515D9ABD98C
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\Windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nvlddmkm.sys 9A77B1C13BCCEDDF78DFD7AFC25B4F5E
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\system32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\PSINAflt.sys E95D64FADA7A01A01275303A61C116B9
C:\Windows\System32\DRIVERS\PSINFile.sys 56FA40A6E70ABA91D5E5C618D7E5AE9A
C:\Windows\System32\DRIVERS\psinknc.sys C6A1C1824E011C6DDB24A29256657310
C:\Windows\System32\DRIVERS\PSINProc.sys B0CDB19F932B550EB1DEE71C0D0951DF
C:\Windows\System32\DRIVERS\PSINProt.sys 5457BE4C608866B56E6A3B5658F47F27
C:\Windows\System32\DRIVERS\PSINReg.sys 4FAA7A0AA6B41D8491CFFA46A96656E3
C:\Windows\System32\DRIVERS\PSKMAD.sys 4DBBAECB855EC9CB3A5D960B96686C33
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys ==> MD5 is legit
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys 7FE680A3DFA421C4A8E4879AE4C5AAB0
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\TrueSight.sys FD44FA80DA03EA144153A76DEBBB61B4
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\Drivers\uji1nje2.sys 817D8D89FE54E6E207BF50582C1C0E4B
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\system32\drivers\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\system32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\System32\DRIVERS\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\Windows\system32\Drivers\uti1nje2.sys 524D8D450622DB4A7875B111C299A76B
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\Windows\System32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-14 23:08 - 2015-01-14 23:09 - 00030618 _____ () C:\Users\19216812\Downloads\FRST.txt
2015-01-14 23:08 - 2015-01-14 23:08 - 00000000 ____D () C:\FRST
2015-01-14 23:07 - 2015-01-14 23:07 - 01116672 _____ (Farbar) C:\Users\19216812\Downloads\FRST (1).exe
2015-01-14 23:00 - 2015-01-14 23:00 - 00176939 _____ () C:\Users\19216812\Downloads\FRST.exe
2015-01-14 22:49 - 2015-01-14 22:50 - 36843848 _____ () C:\Users\19216812\Downloads\360TS_Setup_Beta_6.0.0.1108.exe
2015-01-14 22:36 - 2015-01-14 22:37 - 160095704 _____ () C:\Users\19216812\Downloads\akfvwh2y.exe
2015-01-14 15:14 - 2015-01-14 15:14 - 03971512 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-01-14 15:14 - 2015-01-14 15:14 - 03916728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 15:13 - 2015-01-14 15:13 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 15:13 - 2015-01-14 15:13 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 15:13 - 2015-01-14 15:13 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 15:13 - 2015-01-14 15:13 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 02:02 - 2015-01-14 02:02 - 233630919 _____ () C:\Windows\MEMORY.DMP
2015-01-14 02:02 - 2015-01-14 02:02 - 00135216 _____ () C:\Windows\Minidump\011415-32625-01.dmp
2015-01-14 01:49 - 2015-01-14 01:49 - 00000120 ___RH () C:\Users\19216812\Downloads\Stinger.opt
2015-01-14 01:10 - 2015-01-14 01:10 - 00002041 _____ () C:\Users\19216812\Desktop\Remove Avira PC Cleaner.lnk
2015-01-14 01:10 - 2015-01-14 01:10 - 00001985 _____ () C:\Users\19216812\Desktop\Avira PC Cleaner.lnk
2015-01-14 01:09 - 2015-01-14 01:09 - 02318824 _____ () C:\Users\19216812\Downloads\avira_pc_cleaner_en.exe
2015-01-14 00:56 - 2015-01-14 00:56 - 00000000 __SHD () C:\Users\19216812\AppData\Local\EmieUserList
2015-01-14 00:56 - 2015-01-14 00:56 - 00000000 __SHD () C:\Users\19216812\AppData\Local\EmieSiteList
2015-01-14 00:56 - 2015-01-14 00:56 - 00000000 __SHD () C:\Users\19216812\AppData\Local\EmieBrowserModeList
2015-01-14 00:40 - 2015-01-14 01:43 - 00000860 _____ () C:\Users\19216812\Downloads\Stinger_14012015_004056.html
2015-01-14 00:39 - 2015-01-14 01:49 - 00000000 ____D () C:\Program Files\stinger
2015-01-14 00:37 - 2015-01-14 00:38 - 11165040 _____ (McAfee Inc) C:\Users\19216812\Downloads\stinger32.exe
2015-01-14 00:24 - 2015-01-14 00:25 - 15340120 _____ () C:\Users\19216812\Downloads\RogueKiller (1).exe
2015-01-14 00:09 - 2015-01-14 00:09 - 00000420 _____ () C:\Users\19216812\Desktop\Local Area Connection - Shortcut.lnk
2015-01-13 23:53 - 2015-01-13 23:53 - 00000000 ____D () C:\ProgramData\CSIS
2015-01-13 23:51 - 2015-01-13 23:52 - 04177016 _____ (CSIS Security Group) C:\Users\19216812\Downloads\HeimdalSetup.exe
2015-01-13 23:31 - 2014-03-25 15:15 - 00048736 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2015-01-13 21:14 - 2015-01-13 23:27 - 00007168 _____ () C:\Windows\system32\Drivers\uti1nje2.sys
2015-01-13 21:13 - 2015-01-13 21:13 - 00010240 _____ (Zaitsev Oleg, 2006) C:\Windows\system32\Drivers\uji1nje2.sys
2015-01-13 21:04 - 2015-01-13 21:08 - 00000000 ____D () C:\Users\19216812\Desktop\BASE
2015-01-13 21:01 - 2015-01-13 21:01 - 00790528 _____ (Лаборатория Касперского, 2007-2013) C:\Users\19216812\Desktop\avz.exe
2015-01-13 20:53 - 2015-01-13 20:56 - 09370136 _____ () C:\Users\19216812\Downloads\avz4.zip
2015-01-13 20:30 - 2015-01-13 20:31 - 00004492 _____ () C:\Users\19216812\Desktop\Rkill.txt
2015-01-13 19:07 - 2015-01-13 19:07 - 00131072 ____N () C:\Windows\Minidump\011315-30718-01.dmp
2015-01-13 16:59 - 2015-01-13 23:30 - 00149546 _____ () C:\Windows\PFRO.log
2015-01-13 16:32 - 2015-01-14 19:53 - 00000000 ____D () C:\Users\19216812\AppData\Local\CrashDumps
2015-01-13 16:16 - 2015-01-08 09:55 - 00249488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-13 15:21 - 2015-01-13 15:27 - 160004640 _____ () C:\Users\19216812\Downloads\odb14agg.exe
2015-01-13 15:05 - 2015-01-13 15:08 - 00000000 ____D () C:\Users\19216812\AppData\Local\Screamer Radio
2015-01-13 15:05 - 2015-01-13 15:05 - 00000000 ____D () C:\Users\19216812\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screamer Radio
2015-01-13 15:04 - 2015-01-13 15:05 - 02771494 _____ () C:\Users\19216812\Downloads\screamer044.exe
2015-01-13 15:01 - 2015-01-13 15:01 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-01-13 15:01 - 2015-01-13 15:01 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-01-13 14:42 - 2015-01-14 19:46 - 00001466 _____ () C:\Windows\setupact.log
2015-01-13 14:42 - 2015-01-13 14:42 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-13 01:25 - 2015-01-13 01:25 - 00000000 ____D () C:\Users\19216812\AppData\Roaming\Panda Security
2015-01-13 01:23 - 2015-01-13 01:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2015-01-13 01:14 - 2015-01-13 01:14 - 01630952 _____ () C:\Users\19216812\Downloads\PANDAFREEAV.exe
2015-01-13 01:09 - 2015-01-13 01:09 - 02645984 _____ (Panda Security S.L.) C:\Users\19216812\Downloads\PandaCloudCleanerUSB.exe
2015-01-13 00:55 - 2015-01-13 00:55 - 00602112 _____ (OldTimer Tools) C:\Users\19216812\Downloads\OTL.exe
2015-01-12 22:03 - 2015-01-12 22:03 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-01-12 22:03 - 2015-01-12 22:03 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-01-12 22:03 - 2015-01-12 22:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-01-12 22:03 - 2015-01-12 22:03 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-01-12 22:03 - 2015-01-12 22:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-01-12 21:42 - 2015-01-12 21:42 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-01-12 21:33 - 2015-01-12 21:33 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-01-12 21:33 - 2015-01-12 21:33 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-01-12 21:33 - 2015-01-12 21:33 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-01-12 21:33 - 2015-01-12 21:33 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-01-12 21:33 - 2015-01-12 21:33 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-01-12 21:33 - 2015-01-12 21:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-01-12 21:33 - 2015-01-12 21:33 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-01-12 21:33 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-01-12 21:13 - 2015-01-12 21:13 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-01-12 21:13 - 2015-01-12 21:13 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-01-12 21:10 - 2015-01-12 21:10 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-01-12 21:10 - 2015-01-12 21:10 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-01-12 21:10 - 2015-01-12 21:10 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-01-12 21:10 - 2015-01-12 21:10 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-01-12 21:10 - 2015-01-12 21:10 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-01-12 21:10 - 2015-01-12 21:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-01-12 21:10 - 2015-01-12 21:10 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-01-12 21:10 - 2015-01-12 21:10 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-01-12 21:00 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-01-12 20:54 - 2015-01-12 20:54 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-01-12 19:54 - 2015-01-12 19:54 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-01-12 19:54 - 2015-01-12 19:54 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-01-12 19:54 - 2015-01-12 19:54 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-01-12 19:54 - 2015-01-12 19:54 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-01-12 19:54 - 2015-01-12 19:54 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-01-12 19:54 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2015-01-12 19:44 - 2015-01-12 19:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-12 17:44 - 2015-01-13 01:25 - 00000000 ____D () C:\ProgramData\Panda Security
2015-01-12 17:42 - 2015-01-12 17:43 - 01649936 _____ () C:\Users\19216812\Downloads\PANDAAP15.exe
2015-01-12 17:31 - 2015-01-12 17:31 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-19216812-PC-Microsoft-Windows-7-Ultimate-(32-bit).dat
2015-01-12 17:30 - 2015-01-12 17:30 - 00000000 ____D () C:\RegBackup
2015-01-12 02:18 - 2015-01-12 02:18 - 00001244 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2015-01-12 02:17 - 2015-01-13 01:25 - 00000000 ____D () C:\Program Files\Panda Security
2015-01-12 02:17 - 2015-01-12 02:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2015-01-12 02:15 - 2015-01-12 02:15 - 32518056 _____ (Panda Security ) C:\Users\19216812\Downloads\PandaCloudCleaner.exe
2015-01-12 02:07 - 2015-01-12 02:07 - 00002121 _____ () C:\Users\19216812\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2015-01-12 02:07 - 2015-01-12 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2015-01-12 02:07 - 2015-01-12 02:07 - 00000000 ____D () C:\Program Files\Tweaking.com
2015-01-12 02:02 - 2015-01-12 02:02 - 09817304 _____ () C:\Users\19216812\Downloads\tweaking.com_windows_repair_aio_setup.exe
2015-01-12 01:59 - 2015-01-12 02:04 - 00022178 _____ () C:\Users\19216812\Desktop\Show-Hidden.txt
2015-01-12 01:57 - 2015-01-12 01:57 - 00386464 _____ (Bleeping Computer, LLC) C:\Users\19216812\Downloads\show-hidden.exe
2015-01-12 01:55 - 2015-01-12 01:55 - 03443632 _____ () C:\Users\19216812\Downloads\tweaking.com_simple_system_tweaker_setup.exe
2015-01-12 01:24 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-01-12 01:24 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-01-12 01:23 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-01-12 01:23 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-01-12 01:02 - 2015-01-12 00:09 - 00000768 _____ () C:\Windows\system32\Drivers\etc\hosts.20150112-010208.backup
2015-01-12 00:53 - 2014-11-22 03:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-01-12 00:53 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-01-12 00:52 - 2014-11-11 04:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-12 00:42 - 2015-01-12 00:42 - 00000000 ____D () C:\Users\19216812\Documents\ProcAlyzer Dumps
2015-01-12 00:42 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-01-12 00:33 - 2015-01-12 00:33 - 00002135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-01-12 00:33 - 2015-01-12 00:33 - 00002123 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-01-12 00:33 - 2015-01-12 00:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-01-12 00:32 - 2015-01-12 02:33 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-12 00:32 - 2015-01-12 00:39 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2015-01-12 00:32 - 2015-01-12 00:32 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2015-01-12 00:31 - 2015-01-12 00:31 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\19216812\Downloads\spybot-2.4.exe
2015-01-12 00:15 - 2015-01-12 00:15 - 00000000 ____D () C:\Users\19216812\Desktop\Data
2015-01-11 23:12 - 2015-01-11 23:13 - 00000000 ____D () C:\ProgramData\Sophos
2015-01-11 23:11 - 2015-01-11 23:11 - 00002747 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2015-01-11 23:11 - 2015-01-11 23:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2015-01-11 23:10 - 2015-01-11 23:10 - 00000000 ____D () C:\Program Files\Sophos
2015-01-11 22:48 - 2015-01-11 22:49 - 108464240 _____ (Sophos Limited) C:\Users\19216812\Downloads\Sophos Virus Removal Tool.exe
2015-01-11 20:50 - 2015-01-11 20:50 - 00000000 ____D () C:\8954de19f08c33c966fd
2015-01-11 20:08 - 2015-01-11 20:08 - 19749376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 12836864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 04299264 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-01-11 20:08 - 2015-01-11 20:08 - 02277888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 02052096 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-01-11 20:08 - 2015-01-11 20:08 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-01-11 20:08 - 2015-01-11 20:08 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00342200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-01-11 20:08 - 2015-01-11 20:08 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-01-11 20:08 - 2015-01-11 20:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-01-11 20:08 - 2015-01-11 20:08 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-01-11 20:08 - 2015-01-11 20:08 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-01-11 20:03 - 2015-01-11 20:03 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-01-11 20:03 - 2015-01-11 20:03 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-01-11 20:03 - 2015-01-11 20:03 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-01-11 20:03 - 2015-01-11 20:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-01-11 20:03 - 2015-01-11 20:03 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-01-11 20:02 - 2015-01-11 20:02 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-01-11 20:01 - 2015-01-11 20:01 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-01-11 19:50 - 2015-01-11 19:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-01-11 19:50 - 2015-01-11 19:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-01-11 19:45 - 2015-01-11 19:45 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-01-11 19:02 - 2015-01-14 01:52 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-01-11 19:02 - 2015-01-11 19:02 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-01-11 19:00 - 2015-01-11 19:01 - 15340120 _____ () C:\Users\19216812\Downloads\RogueKiller.exe
2015-01-11 17:19 - 2015-01-11 17:19 - 00380416 _____ () C:\Users\19216812\Downloads\leyypj3l.exe
2015-01-11 17:09 - 2015-01-11 17:10 - 23732069 _____ () C:\Users\19216812\Downloads\cce_2.5.242177.201_x32.zip
2015-01-11 17:07 - 2015-01-11 17:07 - 00000000 ____D () C:\Users\19216812\Downloads\cce_1.6.183539.73_x32
2015-01-11 16:51 - 2015-01-11 16:51 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\19216812\Downloads\rkill.exe
2015-01-11 16:50 - 2015-01-11 16:50 - 00441592 _____ (Bleeping Computer, LLC) C:\Users\19216812\Downloads\sc-cleaner.exe
2015-01-11 16:45 - 2015-01-11 16:46 - 02091520 _____ (Conner Bernhard) C:\Users\19216812\Downloads\NetAdapterRepair1.2.exe
2015-01-11 16:31 - 2015-01-14 02:02 - 00000000 ____D () C:\Windows\Minidump
2015-01-11 15:43 - 2015-01-11 15:43 - 00000000 ____D () C:\147f81b65721a8565b519345fa
2015-01-11 15:24 - 2015-01-11 15:26 - 23503560 _____ () C:\Users\19216812\Downloads\cce_1.6.183539.73_x32.zip
2015-01-11 15:19 - 2015-01-11 15:19 - 00001870 _____ () C:\Users\Public\Desktop\COMODO Firewall.lnk
2015-01-11 15:19 - 2015-01-11 15:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2015-01-11 15:15 - 2015-01-11 15:15 - 00000000 ____D () C:\ProgramData\Shared Space
2015-01-11 15:15 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-11 15:15 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-11 15:15 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-01-11 15:15 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-11 15:14 - 2015-01-11 15:14 - 00000000 ____D () C:\Program Files\COMODO
2015-01-11 15:14 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-11 15:14 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-01-11 15:14 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-11 15:13 - 2015-01-11 15:13 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2015-01-11 15:13 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-11 15:13 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-11 15:12 - 2015-01-11 15:19 - 00000000 ____D () C:\ProgramData\Comodo
2015-01-11 14:56 - 2015-01-11 14:58 - 226075376 _____ (COMODO) C:\Users\19216812\Downloads\cfw_installer_6106_53.exe
2015-01-11 14:56 - 2015-01-11 14:56 - 00002121 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-11 14:56 - 2015-01-11 14:56 - 00000000 ____D () C:\Users\19216812\AppData\Roaming\AVAST Software
2015-01-11 14:55 - 2015-01-11 14:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-11 14:54 - 2015-01-11 14:55 - 00787800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-11 14:54 - 2015-01-11 14:55 - 00423784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-01-11 14:54 - 2015-01-11 14:55 - 00073480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-01-11 14:54 - 2015-01-11 14:54 - 00291352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-11 14:54 - 2015-01-11 14:54 - 00206248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-11 14:54 - 2015-01-11 14:54 - 00091496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-11 14:54 - 2015-01-11 14:54 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-11 14:54 - 2015-01-11 14:54 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-11 14:54 - 2015-01-11 14:54 - 00043152 ____H (AVAST Software) C:\Windows\avastSS.scr
2015-01-11 14:54 - 2015-01-11 14:54 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-11 14:52 - 2015-01-11 14:52 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-11 14:50 - 2015-01-11 14:52 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-11 14:50 - 2015-01-11 14:50 - 04864824 _____ (AVAST Software) C:\Users\19216812\Downloads\avast_free_antivirus_setup_online.exe
2015-01-11 13:53 - 2015-01-13 19:21 - 00000000 ____D () C:\Qoobox
2015-01-11 13:53 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-01-11 13:53 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-01-11 13:53 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-01-11 13:53 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-01-11 13:53 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-01-11 13:53 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2015-01-11 13:53 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2015-01-11 13:53 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2015-01-11 13:52 - 2015-01-11 14:02 - 00000000 ____D () C:\Windows\erdnt
2015-01-11 00:59 - 2014-10-30 03:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-01-11 00:58 - 2014-10-03 03:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-11 00:58 - 2014-10-03 03:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-01-11 00:58 - 2014-10-03 03:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-01-11 00:58 - 2014-10-03 03:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-01-11 00:58 - 2014-10-03 03:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-01-11 00:57 - 2014-11-11 03:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-01-11 00:57 - 2014-11-08 04:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-11 00:53 - 2014-11-11 04:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-01-11 00:53 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-01-11 00:52 - 2014-10-14 03:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-01-11 00:50 - 2014-10-14 03:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-01-11 00:50 - 2014-10-14 03:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-01-11 00:50 - 2014-10-14 03:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-01-11 00:50 - 2014-10-14 03:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-01-11 00:50 - 2014-10-14 03:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-01-11 00:50 - 2014-08-21 08:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-01-11 00:50 - 2014-08-21 08:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-01-11 00:47 - 2014-10-10 02:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-01-11 00:46 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-01-11 00:46 - 2014-10-18 03:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-01-11 00:45 - 2014-10-03 03:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-11 00:45 - 2014-10-03 03:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-01-11 00:45 - 2014-10-03 03:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-01-11 00:45 - 2014-10-03 03:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-11 00:45 - 2014-10-03 03:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-11 00:45 - 2014-08-12 03:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-01-11 00:44 - 2014-09-19 11:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-01-11 00:44 - 2014-09-19 11:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-01-11 00:44 - 2014-09-19 11:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-01-11 00:44 - 2014-09-19 11:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-01-11 00:44 - 2014-09-19 11:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-01-11 00:44 - 2014-09-19 11:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-01-11 00:42 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-11 00:41 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-01-11 00:41 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-01-11 00:41 - 2014-07-17 03:39 - 00919552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-01-11 00:41 - 2014-07-17 03:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-01-11 00:41 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-01-11 00:41 - 2014-07-17 03:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-01-11 00:41 - 2014-07-17 03:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-01-11 00:41 - 2014-07-17 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-01-11 00:41 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-01-11 00:41 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-01-11 00:41 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-01-11 00:41 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-01-11 00:41 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-01-11 00:41 - 2013-07-04 14:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-01-11 00:41 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-01-11 00:41 - 2012-04-26 06:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-01-11 00:41 - 2012-04-26 06:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-01-11 00:38 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-01-11 00:36 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-01-11 00:36 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-01-11 00:36 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-01-11 00:35 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-01-11 00:34 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-01-11 00:30 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-01-11 00:29 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-01-11 00:29 - 2013-01-24 06:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-01-11 00:28 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-01-11 00:28 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-01-11 00:28 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-01-11 00:28 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-01-11 00:26 - 2012-05-05 09:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-11 00:22 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-01-11 00:22 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-01-11 00:21 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-01-11 00:21 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-01-11 00:21 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-01-11 00:21 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-01-11 00:21 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-01-11 00:21 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-01-11 00:21 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-01-11 00:21 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-01-11 00:21 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-01-11 00:21 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-01-11 00:20 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-01-11 00:19 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-01-11 00:17 - 2015-01-11 00:17 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2015-01-11 00:17 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-01-11 00:17 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-01-11 00:17 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-01-11 00:16 - 2015-01-14 21:33 - 01506799 _____ () C:\Windows\WindowsUpdate.log
2015-01-11 00:16 - 2015-01-11 00:16 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-01-11 00:16 - 2015-01-11 00:16 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-01-11 00:16 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-01-11 00:16 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-01-11 00:16 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-01-11 00:14 - 2015-01-11 00:14 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-01-11 00:13 - 2013-02-12 05:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-01-11 00:12 - 2015-01-12 23:46 - 00000000 ____D () C:\Windows\Panther
2015-01-11 00:12 - 2015-01-11 00:12 - 00008192 __RSH () C:\BOOTSECT.BAK
2015-01-11 00:12 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-01-11 00:12 - 2010-11-20 14:40 - 00383786 __RSH () C:\bootmgr
2015-01-11 00:09 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-01-11 00:09 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-01-11 00:09 - 2012-07-04 23:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-01-11 00:09 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-01-11 00:09 - 2012-05-14 06:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-11 00:08 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-01-11 00:07 - 2012-03-17 09:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-01-11 00:06 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-01-11 00:05 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-01-11 00:05 - 2012-02-17 06:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-01-11 00:05 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-01-11 00:04 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-01-11 00:03 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-01-11 00:03 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-01-11 00:03 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-01-11 00:02 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-01-11 00:01 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2015-01-11 00:01 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-01-11 00:01 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-01-11 00:01 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-01-11 00:01 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-01-11 00:01 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-01-11 00:00 - 2011-07-09 04:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-01-11 00:00 - 2011-05-24 12:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-01-11 00:00 - 2011-04-29 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-01-11 00:00 - 2011-04-29 04:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-01-11 00:00 - 2011-04-29 04:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-01-11 00:00 - 2011-04-27 04:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-01-11 00:00 - 2011-04-27 04:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-01-10 23:59 - 2011-02-23 06:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2015-01-10 23:58 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-01-10 23:58 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-01-10 23:58 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-01-10 23:58 - 2011-03-03 07:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-01-10 23:58 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-01-10 23:57 - 2011-02-12 07:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-01-10 23:56 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-01-10 23:56 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-01-10 23:56 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-01-10 23:54 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-01-10 23:48 - 2014-05-30 08:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-01-10 23:47 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-01-10 23:46 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-01-10 23:46 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-01-10 23:45 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-01-10 23:44 - 2014-04-05 04:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-01-10 23:44 - 2014-04-05 04:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-01-10 23:44 - 2013-11-26 13:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-01-10 23:38 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-01-10 23:38 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-01-10 23:35 - 2014-01-24 04:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-01-10 23:34 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-01-10 23:34 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-01-10 23:34 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-01-10 23:34 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-01-10 23:33 - 2014-03-04 11:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-01-10 23:33 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-01-10 23:33 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-01-10 23:33 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-01-10 23:32 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-10 23:32 - 2014-01-28 04:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-01-10 23:32 - 2013-03-19 05:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-01-10 23:31 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-01-10 23:31 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-01-10 23:31 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-01-10 23:31 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-01-10 23:31 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-01-10 23:31 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-01-10 23:31 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-01-10 23:31 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-01-10 23:31 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-01-10 23:27 - 2013-11-27 03:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-01-10 23:27 - 2013-11-27 03:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-01-10 23:27 - 2013-11-27 03:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-01-10 23:27 - 2013-11-27 03:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-01-10 23:27 - 2013-11-27 03:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-01-10 23:27 - 2013-11-27 03:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-01-10 23:27 - 2013-11-27 03:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-01-10 23:26 - 2013-10-04 03:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-01-10 23:26 - 2013-10-04 03:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-01-10 23:25 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-01-10 23:25 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-01-10 23:25 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-01-10 23:25 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-01-10 23:25 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-01-10 23:24 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-01-10 23:24 - 2012-03-01 07:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-01-10 23:24 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-01-10 23:19 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-01-10 23:19 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-01-10 23:18 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-01-10 23:18 - 2013-10-12 04:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-01-10 23:18 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-01-10 23:18 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-01-10 23:18 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-01-10 23:18 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-01-10 23:16 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-01-10 23:15 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-01-10 23:15 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-01-10 23:12 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-10 23:11 - 2013-07-03 05:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-01-10 23:11 - 2013-07-03 05:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-01-10 23:10 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-01-10 23:09 - 2013-07-12 12:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-01-10 23:09 - 2013-06-26 00:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-01-10 23:09 - 2012-11-29 00:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-01-10 23:09 - 2012-11-29 00:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-01-10 23:09 - 2012-11-29 00:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-01-10 23:07 - 2013-08-28 02:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-01-10 23:07 - 2013-06-06 06:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-01-10 23:07 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-01-10 23:07 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-01-10 23:07 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-01-10 23:07 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-01-10 23:06 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-01-10 23:04 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-01-10 23:02 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-01-10 23:01 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-01-10 22:58 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-01-10 22:58 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-01-10 22:56 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-10 22:55 - 2015-01-10 22:55 - 00000000 ____D () C:\Users\19216812\Downloads\mbam-chameleon-3.1.7.0
2015-01-10 22:55 - 2013-02-27 06:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-01-10 22:48 - 2015-01-10 22:48 - 04187592 _____ (Kaspersky Lab ZAO) C:\Users\19216812\Downloads\tdsskiller.exe
2015-01-10 22:47 - 2015-01-10 22:50 - 168610592 _____ () C:\Users\19216812\Downloads\setup_11.0.3.8.x01_2015_01_10_23_36.exe
2015-01-10 22:45 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-01-10 22:45 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-01-10 22:42 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-01-10 22:42 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-10 22:42 - 2012-10-03 18:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-10 22:42 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-01-10 22:42 - 2012-10-03 18:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-01-10 22:42 - 2012-10-03 17:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-01-10 22:38 - 2012-08-21 22:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-01-10 22:37 - 2012-08-22 19:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-01-10 22:37 - 2012-07-04 21:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-01-10 22:34 - 2015-01-10 22:35 - 05609736 ____R (Swearware) C:\Users\19216812\Downloads\ComboFix.exe
2015-01-10 22:33 - 2015-01-10 22:33 - 00000000 ____D () C:\Users\19216812\Desktopix
2015-01-10 22:26 - 2015-01-10 22:26 - 02191360 _____ () C:\Users\19216812\Downloads\adwcleaner_4.107 (1).exe
2015-01-10 22:23 - 2015-01-13 20:37 - 00000000 ____D () C:\AdwCleaner
2015-01-10 22:21 - 2015-01-10 22:22 - 02191360 _____ () C:\Users\19216812\Downloads\adwcleaner_4.107.exe
2015-01-10 22:18 - 2015-01-10 22:18 - 00000000 ____D () C:\Users\19216812\AppData\Roaming\WinRAR
2015-01-10 22:17 - 2015-01-10 22:17 - 00000989 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-01-10 22:17 - 2015-01-10 22:17 - 00000983 _____ () C:\Users\Public\Desktop\WinRAR.lnk
2015-01-10 22:17 - 2015-01-10 22:17 - 00000000 ____D () C:\Users\19216812\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-10 22:17 - 2015-01-10 22:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-10 22:16 - 2015-01-12 02:45 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-10 22:16 - 2015-01-10 22:16 - 01851352 _____ () C:\Users\19216812\Downloads\wrar520ro.exe
2015-01-10 22:14 - 2015-01-10 22:15 - 16448208 _____ (Malwarebytes Corp.) C:\Users\19216812\Downloads\mbar-1.08.2.1001.exe
2015-01-10 22:13 - 2015-01-10 22:14 - 04909382 _____ () C:\Users\19216812\Downloads\mbam-chameleon-3.1.7.0.zip
2015-01-10 20:42 - 2015-01-10 20:42 - 00678974 _____ () C:\Users\19216812\Downloads\UDP-Unicorn.zip
2015-01-10 19:24 - 2015-01-10 19:24 - 00000000 ____D () C:\Program Files\ESET
2015-01-10 19:23 - 2015-01-10 19:24 - 02347384 _____ (ESET) C:\Users\19216812\Downloads\esetsmartinstaller_enu (1).exe
2015-01-10 19:23 - 2015-01-10 19:23 - 02347384 _____ (ESET) C:\Users\19216812\Downloads\esetsmartinstaller_enu.exe
2015-01-10 19:12 - 2015-01-10 19:12 - 00000000 ____D () C:\Windows\system32\SPReview
2015-01-10 18:06 - 2015-01-10 18:06 - 00000000 ____D () C:\Windows\system32\EventProviders
2015-01-10 17:29 - 2010-11-20 14:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2015-01-10 17:29 - 2010-11-20 14:30 - 00245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00175360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00085376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2015-01-10 17:29 - 2010-11-20 14:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2015-01-10 17:29 - 2010-11-20 14:29 - 00520064 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-01-10 17:29 - 2010-11-20 14:29 - 00274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-01-10 17:29 - 2010-11-20 14:29 - 00014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2015-01-10 17:29 - 2010-11-20 14:24 - 00690680 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-01-10 17:29 - 2010-11-20 14:24 - 00508904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-01-10 17:29 - 2010-11-20 14:24 - 00442720 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-01-10 17:29 - 2010-11-20 14:24 - 00271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-01-10 17:29 - 2010-11-20 14:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-10 17:29 - 2010-11-20 14:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2015-01-10 17:29 - 2010-11-20 14:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2015-01-10 17:29 - 2010-11-20 14:20 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2015-01-10 17:29 - 2010-11-20 14:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-01-10 17:29 - 2010-11-20 14:20 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 02151936 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2015-01-10 17:29 - 2010-11-20 14:19 - 00732160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2015-01-10 17:29 - 2010-11-20 14:19 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2015-01-10 17:29 - 2010-11-20 14:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 02522624 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 01371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00854016 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00762880 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-01-10 17:29 - 2010-11-20 14:18 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00252928 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-01-10 17:29 - 2010-11-20 14:18 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2015-01-10 17:29 - 2010-11-20 14:17 - 03367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00080896 _____ () C:\Windows\system32\RDVGHelper.exe
2015-01-10 17:29 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2015-01-10 17:29 - 2010-11-20 14:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-01-10 17:29 - 2010-11-20 14:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-01-10 17:29 - 2010-11-20 14:16 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2015-01-10 17:29 - 2010-11-20 13:54 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-01-10 17:29 - 2010-11-20 12:24 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-01-10 17:29 - 2010-11-20 12:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2015-01-10 17:29 - 2010-11-20 12:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-01-10 17:29 - 2010-11-20 12:22 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2015-01-10 17:29 - 2010-11-20 12:21 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-01-10 17:29 - 2010-11-20 12:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
2015-01-10 17:29 - 2010-11-20 11:14 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2015-01-10 17:29 - 2010-11-20 10:44 - 00388096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2015-01-10 17:29 - 2010-11-20 10:44 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-01-10 17:29 - 2010-11-20 10:42 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-01-10 17:29 - 2010-11-20 10:40 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-01-10 17:29 - 2010-11-05 04:20 - 00146852 _____ () C:\Windows\system32\systemsf.ebd
2015-01-10 17:29 - 2010-11-05 03:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2015-01-10 17:29 - 2010-11-05 03:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2015-01-10 17:29 - 2010-11-05 03:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2015-01-10 17:29 - 2010-11-05 03:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2015-01-10 17:28 - 2010-11-20 14:36 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-01-10 17:28 - 2010-11-20 14:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
2015-01-10 17:28 - 2010-11-20 14:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
2015-01-10 17:28 - 2010-11-20 14:30 - 00173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2015-01-10 17:28 - 2010-11-20 14:30 - 00140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2015-01-10 17:28 - 2010-11-20 14:30 - 00130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2015-01-10 17:28 - 2010-11-20 14:30 - 00078208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-01-10 17:28 - 2010-11-20 14:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2015-01-10 17:28 - 2010-11-20 14:30 - 00040704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2015-01-10 17:28 - 2010-11-20 14:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsc.sys
2015-01-10 17:28 - 2010-11-20 14:29 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
2015-01-10 17:28 - 2010-11-20 14:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2015-01-10 17:28 - 2010-11-20 14:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-01-10 17:28 - 2010-11-20 14:29 - 00137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2015-01-10 17:28 - 2010-11-20 14:29 - 00043392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2015-01-10 17:28 - 2010-11-20 14:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2015-01-10 17:28 - 2010-11-20 14:21 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2015-01-10 17:28 - 2010-11-20 14:21 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2015-01-10 17:28 - 2010-11-20 14:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2015-01-10 17:28 - 2010-11-20 14:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2015-01-10 17:28 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-01-10 17:28 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2015-01-10 17:28 - 2010-11-20 14:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-01-10 17:28 - 2010-11-20 14:20 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2015-01-10 17:28 - 2010-11-20 14:20 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2015-01-10 17:28 - 2010-11-20 14:20 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2015-01-10 17:28 - 2010-11-20 14:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2015-01-10 17:28 - 2010-11-20 14:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00093696 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\system32\fms.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2015-01-10 17:28 - 2010-11-20 14:19 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-01-10 17:28 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 03727872 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 01400320 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 01040384 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 01003520 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00665600 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00537600 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00418816 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2015-01-10 17:28 - 2010-11-20 14:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-01-10 17:28 - 2010-11-20 14:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2015-01-10 17:28 - 2010-11-20 14:17 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00098816 _____ (Microsoft) C:\Windows\system32\Robocopy.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00066048 _____ () C:\Windows\system32\PrintBrmUi.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\query.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2015-01-10 17:28 - 2010-11-20 14:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2015-01-10 17:28 - 2010-11-20 14:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2015-01-10 17:28 - 2010-11-20 14:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-01-10 17:28 - 2010-11-20 14:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2015-01-10 17:28 - 2010-11-20 14:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2015-01-10 17:28 - 2010-11-20 14:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2015-01-10 17:28 - 2010-11-20 14:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2015-01-10 17:28 - 2010-11-20 14:16 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2015-01-10 17:28 - 2010-11-20 14:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2015-01-10 17:28 - 2010-11-20 14:16 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2015-01-10 17:28 - 2010-11-20 14:16 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe
2015-01-10 17:28 - 2010-11-20 14:16 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\change.exe
2015-01-10 17:28 - 2010-11-20 14:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2015-01-10 17:28 - 2010-11-20 14:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
2015-01-10 17:28 - 2010-11-20 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2015-01-10 17:28 - 2010-11-20 14:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
2015-01-10 17:28 - 2010-11-20 14:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
2015-01-10 17:28 - 2010-11-20 14:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2015-01-10 17:28 - 2010-11-20 14:03 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll
2015-01-10 17:28 - 2010-11-20 14:03 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll
2015-01-10 17:28 - 2010-11-20 14:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2015-01-10 17:28 - 2010-11-20 14:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2015-01-10 17:28 - 2010-11-20 14:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
2015-01-10 17:28 - 2010-11-20 14:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
2015-01-10 17:28 - 2010-11-20 14:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
2015-01-10 17:28 - 2010-11-20 13:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-01-10 17:28 - 2010-11-20 13:56 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
2015-01-10 17:28 - 2010-11-20 12:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
2015-01-10 17:28 - 2010-11-20 12:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-01-10 17:28 - 2010-11-20 12:22 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
2015-01-10 17:28 - 2010-11-20 12:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
2015-01-10 17:28 - 2010-11-20 12:21 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys
2015-01-10 17:28 - 2010-11-20 12:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2015-01-10 17:28 - 2010-11-20 12:07 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-01-10 17:28 - 2010-11-20 12:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-01-10 17:28 - 2010-11-20 12:06 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-01-10 17:28 - 2010-11-20 12:06 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-01-10 17:28 - 2010-11-20 12:06 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
2015-01-10 17:28 - 2010-11-20 12:00 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2015-01-10 17:28 - 2010-11-20 12:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
2015-01-10 17:28 - 2010-11-20 12:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2015-01-10 17:28 - 2010-11-20 12:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2015-01-10 17:28 - 2010-11-20 11:59 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-01-10 17:28 - 2010-11-20 11:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-01-10 17:28 - 2010-11-20 11:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-01-10 17:28 - 2010-11-20 11:50 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
2015-01-10 17:28 - 2010-11-20 11:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-01-10 17:28 - 2010-11-20 11:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2015-01-10 17:28 - 2010-11-20 11:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-01-10 17:28 - 2010-11-20 11:24 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2015-01-10 17:28 - 2010-11-20 11:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-01-10 17:28 - 2010-11-20 11:14 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll
2015-01-10 17:28 - 2010-11-20 11:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2015-01-10 17:28 - 2010-11-20 11:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2015-01-10 17:28 - 2010-11-20 11:14 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2015-01-10 17:28 - 2010-11-20 11:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys
2015-01-10 17:28 - 2010-11-20 11:14 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2015-01-10 17:28 - 2010-11-20 11:14 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys
2015-01-10 17:28 - 2010-11-20 10:47 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2015-01-10 17:28 - 2010-11-20 10:42 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-01-10 17:28 - 2010-11-20 10:39 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2015-01-10 17:28 - 2010-11-20 10:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
2015-01-10 17:28 - 2010-11-20 10:38 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2015-01-10 17:28 - 2010-11-20 07:23 - 00053600 _____ () C:\Windows\system32\dosx.exe
2015-01-10 17:28 - 2010-11-10 03:45 - 00010429 _____ () C:\Windows\system32\ScavengeSpace.xml
2015-01-10 17:28 - 2010-11-05 04:20 - 00105559 _____ () C:\Windows\system32\RacRules.xml
2015-01-10 17:28 - 2010-11-05 04:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2015-01-10 17:27 - 2010-11-20 14:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2015-01-10 16:41 - 2015-01-13 16:44 - 00000000 ____D () C:\Users\19216812\Doctor Web
2015-01-10 16:28 - 2015-01-10 16:29 - 159759144 _____ () C:\Users\19216812\Downloads\mtt4g7sl.exe
2015-01-10 16:24 - 2015-01-14 01:02 - 00002167 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-10 16:24 - 2015-01-10 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-10 16:22 - 2015-01-14 22:27 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-10 16:22 - 2015-01-14 19:48 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-10 16:22 - 2015-01-10 16:24 - 00000000 ____D () C:\Users\19216812\AppData\Local\Google
2015-01-10 16:22 - 2015-01-10 16:23 - 00000000 ____D () C:\Program Files\Google
2015-01-10 16:20 - 2015-01-13 01:25 - 00058488 _____ () C:\Users\19216812\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-10 16:20 - 2015-01-10 16:21 - 00000000 ____D () C:\Users\19216812\AppData\Local\Deployment
2015-01-10 16:20 - 2015-01-10 16:20 - 00000000 ____D () C:\Users\19216812\AppData\Local\Apps\2.0
2015-01-10 15:29 - 2015-01-10 15:29 - 00001102 _____ () C:\Users\Public\Desktop\AntiLogger Free.lnk
2015-01-10 15:29 - 2015-01-10 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiLogger Free
2015-01-10 15:29 - 2015-01-10 15:29 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-01-10 15:28 - 2015-01-10 15:29 - 00000000 ____D () C:\Program Files\Zemana AntiLogger Free
2015-01-10 15:28 - 2015-01-10 15:29 - 00000000 ____D () C:\Program Files\KeyCryptSDK
2015-01-10 15:28 - 2014-12-30 13:18 - 00069816 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\KeyCrypt32.sys
2015-01-10 15:26 - 2015-01-10 15:26 - 00000000 ____D () C:\Users\19216812\AppData\Local\AntiLogger Free
2015-01-10 15:23 - 2015-01-11 17:43 - 00000000 ____D () C:\Program Files\Zemana AntiMalware
2015-01-10 15:23 - 2015-01-10 15:36 - 00000000 ____D () C:\ProgramData\Zemana AntiMalware
2015-01-10 15:23 - 2015-01-10 15:23 - 00002026 _____ () C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2015-01-10 15:23 - 2015-01-10 15:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2015-01-10 15:20 - 2015-01-10 15:20 - 00000969 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-10 15:20 - 2015-01-10 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-10 15:19 - 2015-01-10 15:20 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-10 15:12 - 2015-01-10 15:13 - 00000000 ____D () C:\Users\19216812\Desktop\mbar
2015-01-10 15:09 - 2015-01-14 16:55 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-10 15:09 - 2015-01-14 16:49 - 110348472 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-10 15:07 - 2015-01-14 18:22 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2015-01-10 15:07 - 2015-01-10 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2015-01-10 15:07 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-01-10 15:06 - 2015-01-10 15:07 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Exploit
2015-01-10 15:03 - 2015-01-10 15:03 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2015-01-10 15:03 - 2015-01-10 15:03 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-10 15:03 - 2009-07-14 06:42 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-10 15:03 - 2009-07-14 06:37 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-10 15:02 - 2013-01-31 11:01 - 03970848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-10 15:02 - 2013-01-31 11:01 - 02859296 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2015-01-10 15:02 - 2013-01-31 11:00 - 02557728 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-10 15:02 - 2013-01-31 11:00 - 00634656 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-10 15:02 - 2013-01-31 11:00 - 00108832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-10 15:02 - 2013-01-31 11:00 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-10 15:01 - 2015-01-14 21:31 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-10 15:01 - 2015-01-10 15:01 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-10 15:01 - 2015-01-10 15:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-10 15:00 - 2015-01-10 15:13 - 00079576 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-10 15:00 - 2015-01-10 15:01 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-01-10 15:00 - 2015-01-10 15:00 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-10 15:00 - 2014-11-21 06:14 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-10 15:00 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-10 14:59 - 2013-02-19 21:33 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-01-10 14:57 - 2015-01-10 15:03 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-10 14:57 - 2015-01-10 14:58 - 00000000 ____D () C:\Users\19216812\AppData\Temp
2015-01-10 14:57 - 2015-01-10 14:57 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-10 14:53 - 2015-01-10 14:53 - 00000136 _____ () C:\Windows\system\Dlap.pfx
2015-01-10 14:53 - 2015-01-10 14:53 - 00000082 _____ () C:\Windows\Cmicnfg3.ini.cfl
2015-01-10 14:53 - 2009-12-08 11:53 - 00557056 ____N () C:\Windows\system32\Cmeaupci.exe
2015-01-10 14:53 - 2009-10-30 05:39 - 08151040 ____N (C-Media Corporation) C:\Windows\system\CMICNFG3.cpl
2015-01-10 14:53 - 2009-04-02 11:59 - 00143360 ____N () C:\Windows\system\VmixP6.dll
2015-01-10 14:52 - 2015-01-10 14:53 - 00000206 _____ () C:\Windows\Cmicnfg3.ini.imi
2015-01-10 14:52 - 2015-01-10 14:52 - 00000145 _____ () C:\Windows\system\Cmicnfg3.ini
2015-01-10 14:52 - 2009-12-11 06:28 - 00002754 ____N () C:\Windows\cmudax3.ini
2015-01-10 14:52 - 2009-08-19 11:00 - 00303104 ____N () C:\Windows\system32\CmiInstallResAll.dll
2015-01-10 14:52 - 2008-10-15 10:41 - 00002123 ____N () C:\Windows\Cmicnfg3.ini.cfg
2015-01-10 14:52 - 2006-10-06 00:47 - 00319968 _____ (Microsoft Corporation) C:\Windows\difxapi.dll
2015-01-10 14:47 - 2015-01-10 14:47 - 00221685 __RSH () C:\PSMZT
2015-01-10 14:47 - 2015-01-10 14:47 - 00000020 __RSH () C:\win7.ld
2015-01-10 14:40 - 2015-01-10 14:40 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2015-01-10 14:40 - 2015-01-10 14:40 - 00000385 _____ () C:\Users\19216812\AppData\Roaminguser_gensett.xml
2015-01-10 14:39 - 2015-01-10 14:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-01-10 14:39 - 2009-07-14 12:27 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-01-10 14:38 - 2013-11-04 15:47 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll
2015-01-10 14:38 - 2013-11-04 15:46 - 00027168 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2015-01-10 14:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2015-01-10 14:33 - 2015-01-11 14:45 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2015-01-10 14:33 - 2015-01-10 14:33 - 00000000 ____D () C:\Users\19216812\AppData\Roaming\QuickScan
2015-01-10 14:23 - 2015-01-14 19:54 - 00923450 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-10 14:20 - 2015-01-14 22:39 - 00000000 ____D () C:\Users\19216812
2015-01-10 14:20 - 2015-01-12 01:43 - 00000000 ____D () C:\Users\19216812\AppData\Local\VirtualStore
2015-01-10 14:20 - 2015-01-10 14:20 - 00001417 _____ () C:\Users\19216812\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-10 14:20 - 2015-01-10 14:20 - 00000020 ___SH () C:\Users\19216812\ntuser.ini
2015-01-10 14:20 - 2015-01-10 14:20 - 00000000 ____D () C:\Recovery
2015-01-10 14:20 - 2009-07-14 06:42 - 00000000 ___RD () C:\Users\19216812\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-10 14:20 - 2009-07-14 06:37 - 00000000 ___RD () C:\Users\19216812\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-14 20:05 - 2009-07-14 06:34 - 00016624 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-14 20:05 - 2009-07-14 06:34 - 00016624 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-14 19:46 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-14 19:18 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-01-14 05:06 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2015-01-13 19:18 - 2009-07-14 04:04 - 00000215 _____ () C:\Windows\system.ini
2015-01-13 14:41 - 2009-07-14 06:33 - 00299960 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-13 02:28 - 2014-01-16 19:41 - 00040192 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\NNSNAHSL.sys
2015-01-12 03:23 - 2009-07-14 09:50 - 00000000 ____D () C:\Program Files\Windows Journal
2015-01-12 03:23 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2015-01-11 14:03 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-01-11 00:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-01-11 00:16 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-11 00:16 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-11 00:14 - 2009-07-14 09:49 - 00000000 ____D () C:\Windows\CSC
2015-01-11 00:12 - 2009-07-14 06:57 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2015-01-11 00:12 - 2009-07-14 06:52 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2015-01-10 20:43 - 2011-04-09 12:36 - 00416768 _____ () C:\Users\19216812\Desktop\UDP Unicorn.exe
2015-01-10 20:19 - 2009-07-14 09:49 - 00000000 __SHD () C:\Windows\BitLockerDiscoveryVolumeContents
2015-01-10 20:19 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2015-01-10 20:19 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2015-01-10 20:19 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-01-10 20:19 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\DVD Maker
2015-01-10 20:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-01-10 19:26 - 2009-07-14 04:05 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-01-10 16:05 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\Offline Web Pages
2015-01-10 15:01 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Help
2015-01-10 14:53 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system
2015-01-10 14:38 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-01-10 14:36 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\system32\restore
2015-01-10 14:21 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Public\Libraries
2015-01-10 14:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\Recovery
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== BCD ================================
Access is denied.
LastRegBack: 2015-01-11 16:24
==================== End Of Log ============================
 
 
 


#4 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 14 January 2015 - 04:49 PM

It was a pain in the butt to upload both logs on one page so I split them in two ... :smash:

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-01-2015 01
Ran by 19216812 at 2015-01-14 23:11:09
Running from C:\Users\19216812\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Panda Free Antivirus (Disabled - Up to date) {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Panda Free Antivirus (Disabled - Up to date) {8F3797EF-DB90-F073-3C72-40C753554CD1}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Comodo Defense+ (Disabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}
FW: Panda Firewall (Disabled) {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
AntiLogger Free version 1.8.2.198 (HKLM\...\{A80DB23D-0618-405B-89D9-28F99814E287}_is1) (Version: 1.8.2.198 - Zemana Ltd.)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
C-Media PCI Audio Device (HKLM\...\C-Media PCI Audio Driver) (Version:  - )
COMODO Firewall (HKLM\...\{18F14F4B-D8A9-4309-817E-3BC0B7664E53}) (Version: 8.0.0.4344 - COMODO Security Solutions Inc.)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Malwarebytes Anti-Exploit version 1.05.1.1016 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.05.1.1016 - Malwarebytes)
Malwarebytes Anti-Malware versiunea 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA Graphics Driver 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Panda Cloud Cleaner (HKLM\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
Panda Devices Agent (HKLM\...\Panda Devices Agent) (Version: 1.03.04 - Panda Security)
Panda Devices Agent (Version: 1.05.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM\...\Panda Universal Agent Endpoint) (Version: 15.00.04.0002 - Panda Security)
Panda Free Antivirus (Version: 7.23.00.0000 - Panda Security) Hidden
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Tweaking.com - Windows Repair (All in One) (HKLM\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.10.2 - Tweaking.com)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
Zemana Antimalware (HKLM\...\ZemanaAntiMalware) (Version: 3.7.3.192 - Zemana)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 04:04 - 2015-01-13 19:38 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0696AB78-9A25-4BEB-9C61-52C84EBDE0C6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {1E5782E1-6DCB-4DA9-B747-B72062C43315} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-10] (Google Inc.)
Task: {27F6538B-2659-441C-8C0B-9292FB64FC83} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {3FDF1D7C-E228-49B0-8C58-6871E9C3ECAC} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-12-09] (COMODO)
Task: {5BEEB723-326D-4CA6-8CFF-D56CFE5BE19D} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-12-09] (COMODO)
Task: {68E647EF-7FA2-4537-AA8C-A9ED0CDF8169} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-11] (AVAST Software)
Task: {8DC40049-B632-414C-B4A6-3AEB56F4A97A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-10] (Google Inc.)
Task: {A3FD5FA9-DBF7-4892-AB98-895D8BCCC312} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {D361E599-0B62-4BC0-A97E-CCCEFBD0EA67} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {F2084C4B-09BC-46F0-B497-7DA7075EF0D2} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-12-09] (COMODO)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2015-01-11 14:54 - 2015-01-11 14:54 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-13 00:25 - 2014-12-13 00:25 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1048.dll
2015-01-11 17:07 - 2015-01-11 17:07 - 00267592 _____ () C:\Users\19216812\Downloads\cce_1.6.183539.73_x32\CCE\themes\CCE.THEME
2015-01-11 17:07 - 2015-01-11 17:07 - 00068424 _____ () C:\Users\19216812\Downloads\cce_1.6.183539.73_x32\CCE\scanners\smart.cav
2015-01-14 01:01 - 2015-01-09 02:35 - 01077064 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\libglesv2.dll
2015-01-14 01:01 - 2015-01-09 02:35 - 00211272 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\libegl.dll
2015-01-14 01:01 - 2015-01-09 02:35 - 09009480 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\pdf.dll
2015-01-14 01:01 - 2015-01-09 02:35 - 01677128 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\ffmpegsumo.dll
2015-01-14 01:01 - 2015-01-09 02:35 - 14913352 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Windows\explorer.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\d3d10warp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fsutil.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KBDBASH.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KBDRU.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KBDRU1.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KBDTAT.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KBDYAK.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmpeg2vdec.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sdnclean.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\spoolsv.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFCoinstaller.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFPlatform.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\amdsata.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\amdxata.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\iaStorV.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\NNSNAHSL.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvraid.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvstor.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\USBSTOR.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WUDFPf.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WUDFRd.sys:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Desktop\122251-2.jpg:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Desktop\avz.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Desktop\avz.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Desktop\ce-bine-e-sa-nu-faci-nimic-asa-i_poze_haioase_prietenas.ro_1-600x531.jpg:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Desktop\dc800cd571b4eaa12001cb6f704dbc36.jpg:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Desktop\leo-twitter-bg.jpg:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Desktop\scienceTIME-cat.jpg:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\360TS_Setup_Beta_6.0.0.1108.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\360TS_Setup_Beta_6.0.0.1108.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\adwcleaner_4.107 (1).exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\adwcleaner_4.107.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\akfvwh2y.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\akfvwh2y.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\avira_pc_cleaner_en.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\avira_pc_cleaner_en.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\avz4.zip:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\cce_1.6.183539.73_x32.zip:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\cce_2.5.242177.201_x32.zip:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\ComboFix.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\esetsmartinstaller_enu (1).exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\esetsmartinstaller_enu.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\FRST (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\FRST (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\FRST.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\FRST.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\HeimdalSetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\HeimdalSetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\leyypj3l.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\leyypj3l.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\mbar-1.08.2.1001.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\mtt4g7sl.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\NetAdapterRepair1.2.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\NetAdapterRepair1.2.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\odb14agg.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\OTL.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\OTL.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\PANDAAP15.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\PANDAAP15.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\PandaCloudCleaner.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\PandaCloudCleaner.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\PandaCloudCleanerUSB.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\PandaCloudCleanerUSB.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\PANDAFREEAV.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\PANDAFREEAV.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\rkill.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\rkill.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\RogueKiller (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\RogueKiller (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\RogueKiller.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\RogueKiller.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\sc-cleaner.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\sc-cleaner.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\screamer044.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\screamer044.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\setup_11.0.3.8.x01_2015_01_10_23_36.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\show-hidden.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\show-hidden.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\Sophos Virus Removal Tool.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\spybot-2.4.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\stinger32.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\stinger32.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\tdsskiller.exe:BDU
AlternateDataStreams: C:\Users\19216812\Downloads\tweaking.com_simple_system_tweaker_setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\19216812\Downloads\tweaking.com_simple_system_tweaker_setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\19216812\Downloads\wrar520ro.exe:BDU
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
========================= Accounts: ==========================
 
19216812 (S-1-5-21-1943437150-2719924850-2090285098-1000 - Administrator - Enabled) => C:\Users\19216812
Administrator (S-1-5-21-1943437150-2719924850-2090285098-500 - Administrator - Disabled)
Guest (S-1-5-21-1943437150-2719924850-2090285098-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1943437150-2719924850-2090285098-1002 - Limited - Enabled)
UpdatusUser (S-1-5-21-1943437150-2719924850-2090285098-1003 - Limited - Enabled) => C:\Users\UpdatusUser
 
==================== Faulty Device Manager Devices =============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (01/14/2015 11:05:29 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=39.0.2171.99;lang=;guid=108E414975534D9C99F269618B4F2F6C;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\e6145817-9214-4b40-bf2d-7eb114406f96.dmp
 
Error: (01/14/2015 07:53:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PCloudCleaner.exe, version: 1.0.0.1533, time stamp: 0x00000000
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea91c
Exception code: 0xc0000005
Fault offset: 0x00055f99
Faulting process id: 0xfe4
Faulting application start time: 0xPCloudCleaner.exe0
Faulting application path: PCloudCleaner.exe1
Faulting module path: PCloudCleaner.exe2
Report Id: PCloudCleaner.exe3
 
Error: (01/13/2015 11:07:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build.Conversion.v4.0, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002
 
Error: (01/13/2015 11:07:54 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build.Conversion.v4.0, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002
 
Error: (01/13/2015 11:07:49 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002
 
Error: (01/13/2015 11:07:32 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002
 
Error: (01/13/2015 11:07:11 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Activities.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070002
 
Error: (01/13/2015 11:07:07 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Activities.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070002
 
Error: (01/13/2015 11:07:00 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: C:\Windows\Microsoft.NET\Framework\v4.0.30319\WsatConfig.exe . Error code = 0x80070002
 
Error: (01/13/2015 11:06:58 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: C:\Windows\Microsoft.NET\Framework\v4.0.30319\WsatConfig.exe . Error code = 0x80070002
 
 
System errors:
=============
Error: (01/14/2015 07:49:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect.
 
Error: (01/14/2015 07:47:12 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMService service.
 
Error: (01/14/2015 07:46:53 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (01/14/2015 07:19:08 PM) (Source: mbamchameleon) (EventID: 28674) (User: )
Description: Failed to parse a certificate.
 
Error: (01/14/2015 07:19:08 PM) (Source: mbamchameleon) (EventID: 28674) (User: )
Description: Failed to parse a certificate.
 
Error: (01/14/2015 07:19:08 PM) (Source: mbamchameleon) (EventID: 28674) (User: )
Description: Failed to parse a certificate.
 
Error: (01/14/2015 07:19:08 PM) (Source: mbamchameleon) (EventID: 28674) (User: )
Description: Failed to parse a certificate.
 
Error: (01/14/2015 07:10:48 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (01/14/2015 05:36:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Name Resolution Protocol service depends on the Peer Networking Identity Manager service which failed to start because of the following error: 
%%1053
 
Error: (01/14/2015 05:36:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Networking Identity Manager service which failed to start because of the following error: 
%%1053
 
 
Microsoft Office Sessions:
=========================
Error: (01/14/2015 11:05:29 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=39.0.2171.99;lang=;guid=108E414975534D9C99F269618B4F2F6C;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\e6145817-9214-4b40-bf2d-7eb114406f96.dmp
 
Error: (01/14/2015 07:53:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PCloudCleaner.exe1.0.0.153300000000ntdll.dll6.1.7601.18247521ea91cc000000500055f99fe401d030228ca9efbaC:\Program Files\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exeC:\Windows\SYSTEM32\ntdll.dll2eb251df-9c16-11e4-b20f-0019b08df1bd
 
Error: (01/13/2015 11:07:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build.Conversion.v4.0, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002 
Microsoft.Build.Conversion.v4.0, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
 
Error: (01/13/2015 11:07:54 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build.Conversion.v4.0, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002 
Microsoft.Build.Conversion.v4.0, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
 
Error: (01/13/2015 11:07:49 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002 
Microsoft.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
 
Error: (01/13/2015 11:07:32 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070002 
Microsoft.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
 
Error: (01/13/2015 11:07:11 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Activities.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070002 
Microsoft.Activities.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35
 
Error: (01/13/2015 11:07:07 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: Microsoft.Activities.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070002 
Microsoft.Activities.Build, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35
 
Error: (01/13/2015 11:07:00 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: C:\Windows\Microsoft.NET\Framework\v4.0.30319\WsatConfig.exe . Error code = 0x80070002 
C:\Windows\Microsoft.NET\Framework\v4.0.30319\WsatConfig.exe
 
Error: (01/13/2015 11:06:58 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: C:\Windows\Microsoft.NET\Framework\v4.0.30319\WsatConfig.exe . Error code = 0x80070002 
C:\Windows\Microsoft.NET\Framework\v4.0.30319\WsatConfig.exe
 
 
==================== Memory info =========================== 
 
Processor: Intel® Pentium® 4 CPU 3.00GHz
Percentage of memory in use: 46%
Total physical RAM: 2559.24 MB
Available physical RAM: 1371.3 MB
Total Pagefile: 5116.77 MB
Available Pagefile: 2602.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1893.14 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:134.4 GB) (Free:111.78 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: () (Fixed) (Total:14.55 GB) (Free:3.38 GB) NTFS
Drive e: (GRMCULFRER_EN_DVD) (CDROM) (Total:2.33 GB) (Free:0 GB) UDF
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 0007D90A)
Partition 1: (Not Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=134.4 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (Size: 7.6 GB) (Disk ID: 00000000)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================
Thanks for helping me , I will wait your reply message ...  :thumbup2:


#5 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,044 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:12:35 AM

Posted 15 January 2015 - 10:16 AM

Hey,
please move FRST to your Desktop. :)

Step 1: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1
  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.
Note: The log can also be found in here: C:\AdwCleaner\

Step 2: Malwarebytes

Please download Malwarebytes Anti-Malware to your desktop Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings.JPG

Go back to the Dashboard and select Scan Now

MBAMScan.JPG

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG

MBAMLog.JPG

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log

Step 3: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#6 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 15 January 2015 - 05:11 PM

Hey ..  AdwCleaner log here >>

# AdwCleaner v4.107 - Report created 15/01/2015 at 20:18:56
# Updated 07/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows 7 Ultimate  (32 bits)
# Username : 192168.1.2 - 19216812-PC
# Running from : C:\Users\192168.1.2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\888TKCYQ\AdwCleaner[1].exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16385

*************************

AdwCleaner[R0].txt - [636 octets] - [15/01/2015 20:18:57]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [695 octets] ##########

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/15/2015
Scan Time: 11:37:52 PM
Logfile: Mbam log.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.15.13
Rootkit Database: v2015.01.14.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: 192168.1.2

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 328298
Time Elapsed: 26 min, 10 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end) 

 

I will reply the rest of logs tomorrow... thanks for your reply...



#7 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 15 January 2015 - 05:22 PM

Ok here is the first log

# AdwCleaner v4.107 - Report created 15/01/2015 at 20:18:56
# Updated 07/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows 7 Ultimate  (32 bits)
# Username : 192168.1.2 - 19216812-PC
# Running from : C:\Users\192168.1.2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\888TKCYQ\AdwCleaner[1].exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16385

*************************

AdwCleaner[R0].txt - [636 octets] - [15/01/2015 20:18:57]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [695 octets] ##########

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/15/2015
Scan Time: 11:37:52 PM
Logfile: Mbam log.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.15.13
Rootkit Database: v2015.01.14.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: 192168.1.2

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 328298
Time Elapsed: 26 min, 10 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

 

I will post the next 2 logs tomorrow... thanks for reply :warrior: 



#8 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,044 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:12:35 AM

Posted 16 January 2015 - 07:50 AM

OK :)

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#9 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 16 January 2015 - 08:26 AM

Farbar log here >>

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2015 01
Ran by 192168.1.2 (administrator) on 19216812-PC on 16-01-2015 15:12:26
Running from C:\Users\192168.1.2\Desktop
Loaded Profiles: 192168.1.2 & UpdatusUser (Available profiles: 192168.1.2 & UpdatusUser)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Emsisoft GmbH) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(G Data Software AG) C:\Program Files\G DATA\USB KEYBOARD GUARD\GD2NDKBB.exe
(Zemana Ltd.) C:\Program Files\Zemana AntiLogger Free\AntiLogger Free.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Emsisoft GmbH) C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1813152 2014-11-14] (Bitdefender)
HKLM\...\Run: [CmPCIaudio] => RunDll32 CMICNFG3.cpl,CMICtrlWnd
HKLM\...\Run: [GDataUsbProtection] => C:\Program Files\G DATA\USB KEYBOARD GUARD\GD2NDKBB.exe [1412216 2014-09-05] (G Data Software AG)
HKLM\...\Run: [ZALFree] => C:\Program Files\Zemana AntiLogger Free\AntiLogger Free.exe [8205944 2014-12-30] (Zemana Ltd.)
HKLM\...\Run: [emsisoft anti-malware] => c:\program files\emsisoft anti-malware\a2guard.exe [4997872 2014-12-31] (Emsisoft GmbH)
HKU\S-1-5-21-673009231-1445533930-3774973693-1001\...\Run: [Agent portofel Bitdefender] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [670888 2014-11-14] (Bitdefender)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-01-15] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~1\KEYCRY~1\KEYCRY~3.DLL => C:\Program Files\KeyCryptSDK\KeyCrypt32(1).dll [86400 2014-12-30] (Zemana Ltd.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-673009231-1445533930-3774973693-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ro/
HKU\S-1-5-21-673009231-1445533930-3774973693-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: Portofel Bitdefender -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM - Portofel Bitdefender - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKU\S-1-5-21-673009231-1445533930-3774973693-1001 -> Portofel Bitdefender - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 193.231.252.1 213.154.124.1

FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-01-15]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-01-15]

Chrome:
=======
CHR Profile: C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentări Google) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-16]
CHR Extension: (Google Docs) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-16]
CHR Extension: (Disc Google) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-16]
CHR Extension: (YouTube) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-16]
CHR Extension: (căutare Google) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-16]
CHR Extension: (Bitdefender Wallet) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-01-16]
CHR Extension: (Foi de calcul Google) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-16]
CHR Extension: (Google Wallet) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-16]
CHR Extension: (Gmail) - C:\Users\192168.1.2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-16]
CHR HKLM\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - No Path

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [4920104 2014-12-31] (Emsisoft GmbH)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [69880 2014-10-07] (Bitdefender)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [54424 2014-10-27] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1291984 2014-11-14] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 a2acc; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [58200 2014-05-12] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [22056 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [38248 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [18552 2014-05-12] (Emsisoft GmbH)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1073160 2014-09-25] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [244480 2014-10-03] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [528248 2014-05-16] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [77632 2013-11-13] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [93648 2012-10-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [108008 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [66832 2013-11-04] (BitDefender SRL)
R1 bdselfpr; C:\Program Files\Bitdefender\Bitdefender 2015\bdselfpr.sys [135600 2013-07-26] (BitDefender LLC)
R3 cleanhlp; C:\Program Files\Emsisoft Anti-Malware\cleanhlp32.sys [50200 2013-12-04] (Emsisoft GmbH)
R3 cmuda3; C:\Windows\System32\drivers\cmudax3.sys [1872192 2009-12-01] (C-Media Inc)
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-14] (VIA Technologies, Inc.              )
R3 GDKBBlocker; C:\Windows\system32\drivers\GDKBBlocker32.sys [27648 2015-01-15] (G Data Software AG)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [165744 2013-08-23] (BitDefender LLC)
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt32.sys [69816 2014-12-30] (Zemana Ltd.)
R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [79576 2015-01-15] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2015-01-16] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-11-21] (Malwarebytes Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [408280 2014-10-15] (BitDefender S.R.L.)
S3 efavdrv; \??\C:\Windows\system32\drivers\efavdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-16 15:12 - 2015-01-16 15:13 - 00010803 _____ () C:\Users\192168.1.2\Desktop\FRST.txt
2015-01-16 15:12 - 2015-01-16 15:12 - 00000000 ____D () C:\FRST
2015-01-16 14:07 - 2015-01-16 14:07 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-16 14:07 - 2015-01-16 14:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-16 14:05 - 2015-01-16 15:10 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-16 14:05 - 2015-01-16 14:10 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-16 14:05 - 2015-01-16 14:07 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\Google
2015-01-16 14:05 - 2015-01-16 14:06 - 00000000 ____D () C:\Program Files\Google
2015-01-16 14:04 - 2015-01-16 14:04 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\Deployment
2015-01-16 14:04 - 2015-01-16 14:04 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\Apps\2.0
2015-01-16 01:42 - 2015-01-16 01:42 - 00057560 _____ () C:\Users\192168.1.2\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-16 01:21 - 2015-01-16 01:21 - 00000000 ____D () C:\Users\192168.1.2\Doctor Web
2015-01-16 00:50 - 2015-01-16 14:01 - 00976658 _____ () C:\Windows\WindowsUpdate.log
2015-01-16 00:50 - 2015-01-16 00:50 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-01-16 00:50 - 2015-01-16 00:50 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-01-16 00:49 - 2015-01-16 00:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-01-16 00:48 - 2015-01-16 00:50 - 00001313 _____ () C:\Windows\TSSysprep.log
2015-01-16 00:46 - 2015-01-16 00:46 - 00008192 __RSH () C:\BOOTSECT.BAK
2015-01-16 00:46 - 2015-01-15 14:55 - 00000000 ____D () C:\Windows\Panther
2015-01-16 00:46 - 2010-11-20 14:40 - 00383786 __RSH () C:\bootmgr
2015-01-16 00:37 - 2015-01-16 00:37 - 132469808 _____ (AVAST Software) C:\Users\192168.1.2\Downloads\avast_free_antivirus_setup.exe
2015-01-16 00:24 - 2015-01-16 00:24 - 01116672 _____ (Farbar) C:\Users\192168.1.2\Desktop\FRST.exe
2015-01-16 00:12 - 2015-01-16 00:12 - 00002747 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2015-01-16 00:12 - 2015-01-16 00:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2015-01-15 23:37 - 2015-01-15 23:37 - 01707939 _____ (Thisisu) C:\Users\192168.1.2\Desktop\JRT.exe
2015-01-15 23:14 - 2015-01-15 23:14 - 00000420 _____ () C:\Users\192168.1.2\Desktop\Local Area Connection - Shortcut.lnk
2015-01-15 23:04 - 2015-01-15 23:04 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\CrashDumps
2015-01-15 22:42 - 2015-01-15 22:42 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-01-15 22:42 - 2015-01-15 22:42 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-01-15 20:40 - 2015-01-15 20:40 - 00000000 ____D () C:\ProgramData\Emsisoft
2015-01-15 20:18 - 2015-01-15 20:28 - 00000000 ____D () C:\AdwCleaner
2015-01-15 20:03 - 2015-01-15 20:03 - 05609736 _____ (Swearware) C:\Users\192168.1.2\Desktop\ComboFix.exe
2015-01-15 19:54 - 2015-01-15 19:54 - 00000000 ____D () C:\Users\192168.1.2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screamer Radio
2015-01-15 19:53 - 2015-01-15 20:04 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\Screamer Radio
2015-01-15 19:45 - 2015-01-15 19:45 - 15340120 _____ () C:\Users\192168.1.2\Desktop\RogueKiller.exe
2015-01-15 19:41 - 2015-01-15 19:41 - 00000000 ____D () C:\Windows\system32\SPReview
2015-01-15 19:40 - 2015-01-15 19:40 - 00000000 ____D () C:\Windows\system32\EventProviders
2015-01-15 19:25 - 2010-11-20 14:29 - 00520064 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 12872192 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 00915456 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2015-01-15 19:25 - 2010-11-20 14:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-15 19:25 - 2010-11-20 14:20 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 10990080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 03215872 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 03207680 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 02064384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2015-01-15 19:25 - 2010-11-20 14:19 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2015-01-15 19:25 - 2010-11-20 14:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-01-15 19:25 - 2010-11-20 14:18 - 01171456 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-01-15 19:25 - 2010-11-20 14:18 - 00739840 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-01-15 19:25 - 2010-11-20 14:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-01-15 19:25 - 2010-11-20 14:17 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-01-15 19:25 - 2010-11-20 14:17 - 00080896 _____ () C:\Windows\system32\RDVGHelper.exe
2015-01-15 19:25 - 2010-11-20 12:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-01-15 19:25 - 2010-11-05 03:58 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-01-15 19:25 - 2010-11-05 03:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2015-01-15 19:24 - 2010-11-20 14:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2015-01-15 19:24 - 2010-11-20 14:30 - 01290112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-01-15 19:24 - 2010-11-20 14:30 - 01211264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-01-15 19:24 - 2010-11-20 14:30 - 00233344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-01-15 19:24 - 2010-11-20 14:30 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-01-15 19:24 - 2010-11-20 14:30 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-01-15 19:24 - 2010-11-20 14:29 - 00728448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-01-15 19:24 - 2010-11-20 14:29 - 00014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2015-01-15 19:24 - 2010-11-20 14:24 - 01288488 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01619456 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-01-15 19:24 - 2010-11-20 14:21 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01229824 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00980992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00521216 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2015-01-15 19:24 - 2010-11-20 14:21 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-01-15 19:24 - 2010-11-20 14:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 02151936 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 01698816 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00857600 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00804864 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00768512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00732160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-01-15 19:24 - 2010-11-20 14:19 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-01-15 19:24 - 2010-11-20 14:19 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 02522624 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 01792000 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 01371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 01076736 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00252928 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2015-01-15 19:24 - 2010-11-20 14:18 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2015-01-15 19:24 - 2010-11-20 14:17 - 03367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 01049600 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2015-01-15 19:24 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2015-01-15 19:24 - 2010-11-20 12:24 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-01-15 19:24 - 2010-11-20 12:22 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2015-01-15 19:24 - 2010-11-20 12:22 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-01-15 19:24 - 2010-11-20 11:09 - 02329088 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-01-15 19:24 - 2010-11-20 10:45 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-01-15 19:24 - 2010-11-20 10:44 - 00388096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2015-01-15 19:24 - 2010-11-20 10:44 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-01-15 19:24 - 2010-11-20 05:52 - 00419880 _____ () C:\Windows\system32\locale.nls
2015-01-15 19:24 - 2010-11-05 04:20 - 00146852 _____ () C:\Windows\system32\systemsf.ebd
2015-01-15 19:24 - 2010-11-05 03:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2015-01-15 19:24 - 2010-11-05 03:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2015-01-15 19:24 - 2010-11-05 03:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2015-01-15 19:23 - 2010-11-20 14:30 - 00712576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00240000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00175360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00085376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2015-01-15 19:23 - 2010-11-20 14:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2015-01-15 19:23 - 2010-11-20 14:29 - 00101760 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-01-15 19:23 - 2010-11-20 14:29 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-01-15 19:23 - 2010-11-20 14:29 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-01-15 19:23 - 2010-11-20 14:24 - 00690680 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-01-15 19:23 - 2010-11-20 14:24 - 00508904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-01-15 19:23 - 2010-11-20 14:24 - 00442720 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-01-15 19:23 - 2010-11-20 14:24 - 00271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-01-15 19:23 - 2010-11-20 14:24 - 00194800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-01-15 19:23 - 2010-11-20 14:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00826368 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2015-01-15 19:23 - 2010-11-20 14:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2015-01-15 19:23 - 2010-11-20 14:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2015-01-15 19:23 - 2010-11-20 14:20 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-01-15 19:23 - 2010-11-20 14:20 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-15 19:23 - 2010-11-20 14:20 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 02341376 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 01236992 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2015-01-15 19:23 - 2010-11-20 14:19 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2015-01-15 19:23 - 2010-11-20 14:19 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2015-01-15 19:23 - 2010-11-20 14:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00854016 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00762880 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-01-15 19:23 - 2010-11-20 14:18 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-01-15 19:23 - 2010-11-20 14:18 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-01-15 19:23 - 2010-11-20 14:17 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2015-01-15 19:23 - 2010-11-20 14:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2015-01-15 19:23 - 2010-11-20 14:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-01-15 19:23 - 2010-11-20 14:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-01-15 19:23 - 2010-11-20 14:16 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2015-01-15 19:23 - 2010-11-20 13:56 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-01-15 19:23 - 2010-11-20 12:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2015-01-15 19:23 - 2010-11-20 12:21 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-01-15 19:23 - 2010-11-20 12:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys
2015-01-15 19:23 - 2010-11-20 12:00 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-01-15 19:23 - 2010-11-20 11:14 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2015-01-15 19:23 - 2010-11-20 10:44 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-01-15 19:23 - 2010-11-20 10:44 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-01-15 19:23 - 2010-11-20 10:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-01-15 19:23 - 2010-11-20 10:42 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-01-15 19:23 - 2010-11-20 10:42 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-15 19:23 - 2010-11-20 10:40 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-01-15 19:22 - 2010-11-20 14:36 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-01-15 19:22 - 2010-11-20 14:30 - 00173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00078208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00067456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00056192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00040704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2015-01-15 19:22 - 2010-11-20 14:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsc.sys
2015-01-15 19:22 - 2010-11-20 14:29 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
2015-01-15 19:22 - 2010-11-20 14:29 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-01-15 19:22 - 2010-11-20 14:29 - 00274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-01-15 19:22 - 2010-11-20 14:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2015-01-15 19:22 - 2010-11-20 14:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-01-15 19:22 - 2010-11-20 14:29 - 00187776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-01-15 19:22 - 2010-11-20 14:29 - 00132992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-01-15 19:22 - 2010-11-20 14:29 - 00043392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2015-01-15 19:22 - 2010-11-20 14:29 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-01-15 19:22 - 2010-11-20 14:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00850432 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2015-01-15 19:22 - 2010-11-20 14:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2015-01-15 19:22 - 2010-11-20 14:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2015-01-15 19:22 - 2010-11-20 14:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2015-01-15 19:22 - 2010-11-20 14:19 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-01-15 19:22 - 2010-11-20 14:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2015-01-15 19:22 - 2010-11-20 14:19 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2015-01-15 19:22 - 2010-11-20 14:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-01-15 19:22 - 2010-11-20 14:19 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 03727872 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 01400320 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 01040384 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 01003520 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00665600 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00418816 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-01-15 19:22 - 2010-11-20 14:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-01-15 19:22 - 2010-11-20 14:17 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00098816 _____ (Microsoft) C:\Windows\system32\Robocopy.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-01-15 19:22 - 2010-11-20 14:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2015-01-15 19:22 - 2010-11-20 14:16 - 01466368 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-01-15 19:22 - 2010-11-20 14:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2015-01-15 19:22 - 2010-11-20 14:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-01-15 19:22 - 2010-11-20 14:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-01-15 19:22 - 2010-11-20 14:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2015-01-15 19:22 - 2010-11-20 14:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2015-01-15 19:22 - 2010-11-20 14:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2015-01-15 19:22 - 2010-11-20 14:16 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-01-15 19:22 - 2010-11-20 14:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2015-01-15 19:22 - 2010-11-20 14:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-01-15 19:22 - 2010-11-20 14:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2015-01-15 19:22 - 2010-11-20 14:16 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2015-01-15 19:22 - 2010-11-20 14:16 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-01-15 19:22 - 2010-11-20 13:54 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-01-15 19:22 - 2010-11-20 12:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-01-15 19:22 - 2010-11-20 12:01 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-01-15 19:22 - 2010-11-20 12:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-01-15 19:22 - 2010-11-20 11:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-01-15 19:22 - 2010-11-20 11:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-01-15 19:22 - 2010-11-20 11:06 - 00294400 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-01-15 19:22 - 2010-11-20 10:44 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-01-15 19:22 - 2010-11-20 10:42 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-01-15 19:22 - 2010-11-20 10:40 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-01-15 19:22 - 2010-11-20 10:39 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2015-01-15 19:22 - 2010-11-05 04:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2015-01-15 19:22 - 2010-11-05 03:58 - 00155472 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-01-15 19:22 - 2010-11-05 03:58 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-01-15 19:21 - 2010-11-20 14:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
2015-01-15 19:21 - 2010-11-20 14:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
2015-01-15 19:21 - 2010-11-20 14:29 - 00137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2015-01-15 19:21 - 2010-11-20 14:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-01-15 19:21 - 2010-11-20 14:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00656384 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2015-01-15 19:21 - 2010-11-20 14:20 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00093696 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\system32\fms.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2015-01-15 19:21 - 2010-11-20 14:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00537600 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00402944 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2015-01-15 19:21 - 2010-11-20 14:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2015-01-15 19:21 - 2010-11-20 14:17 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2015-01-15 19:21 - 2010-11-20 14:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2015-01-15 19:21 - 2010-11-20 14:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2015-01-15 19:21 - 2010-11-20 14:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-01-15 19:21 - 2010-11-20 14:16 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2015-01-15 19:21 - 2010-11-20 14:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-01-15 19:21 - 2010-11-20 14:16 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2015-01-15 19:21 - 2010-11-20 14:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2015-01-15 19:21 - 2010-11-20 14:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2015-01-15 19:21 - 2010-11-20 14:16 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-01-15 19:21 - 2010-11-20 14:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2015-01-15 19:21 - 2010-11-20 14:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2015-01-15 19:21 - 2010-11-20 14:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2015-01-15 19:21 - 2010-11-20 14:16 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2015-01-15 19:21 - 2010-11-20 14:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2015-01-15 19:21 - 2010-11-20 14:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2015-01-15 19:21 - 2010-11-20 14:16 - 00065024 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2015-01-15 19:21 - 2010-11-20 12:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-01-15 19:21 - 2010-11-20 12:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-01-15 19:21 - 2010-11-20 12:06 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-01-15 19:21 - 2010-11-20 11:59 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-01-15 19:21 - 2010-11-20 11:07 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-01-15 19:21 - 2010-11-20 10:39 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-01-15 19:20 - 2010-11-20 14:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2015-01-15 19:20 - 2010-11-20 14:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2015-01-15 19:20 - 2010-11-20 14:21 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2015-01-15 19:20 - 2010-11-20 14:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2015-01-15 19:20 - 2010-11-20 14:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-01-15 19:20 - 2010-11-20 14:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2015-01-15 19:20 - 2010-11-20 14:20 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2015-01-15 19:20 - 2010-11-20 14:20 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-01-15 19:20 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-01-15 19:20 - 2010-11-20 14:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2015-01-15 19:20 - 2010-11-20 14:17 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00066048 _____ () C:\Windows\system32\PrintBrmUi.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\query.exe
2015-01-15 19:20 - 2010-11-20 14:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-15 19:20 - 2010-11-20 14:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2015-01-15 19:20 - 2010-11-20 14:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2015-01-15 19:20 - 2010-11-20 14:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-01-15 19:20 - 2010-11-20 14:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2015-01-15 19:20 - 2010-11-20 14:16 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2015-01-15 19:20 - 2010-11-20 14:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2015-01-15 19:20 - 2010-11-20 14:16 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe
2015-01-15 19:20 - 2010-11-20 14:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe
2015-01-15 19:20 - 2010-11-20 14:16 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe
2015-01-15 19:20 - 2010-11-20 14:16 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\change.exe
2015-01-15 19:20 - 2010-11-20 14:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2015-01-15 19:20 - 2010-11-20 14:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2015-01-15 19:20 - 2010-11-20 14:03 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll
2015-01-15 19:20 - 2010-11-20 14:03 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll
2015-01-15 19:20 - 2010-11-20 14:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2015-01-15 19:20 - 2010-11-20 12:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys
2015-01-15 19:20 - 2010-11-20 12:07 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-01-15 19:20 - 2010-11-20 12:06 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys
2015-01-15 19:20 - 2010-11-20 12:00 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-01-15 19:20 - 2010-11-20 11:50 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys
2015-01-15 19:20 - 2010-11-20 10:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys
2015-01-15 19:20 - 2010-11-20 10:38 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2015-01-15 19:20 - 2010-11-20 07:23 - 00053600 _____ () C:\Windows\system32\dosx.exe
2015-01-15 19:20 - 2010-11-10 03:45 - 00010429 _____ () C:\Windows\system32\ScavengeSpace.xml
2015-01-15 19:19 - 2010-11-20 14:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2015-01-15 19:19 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-01-15 19:19 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-01-15 19:19 - 2010-11-20 14:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2015-01-15 19:19 - 2010-11-20 14:20 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-01-15 19:19 - 2010-11-20 14:18 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-01-15 19:19 - 2010-11-20 14:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2015-01-15 19:19 - 2010-11-20 14:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2015-01-15 19:19 - 2010-11-20 14:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2015-01-15 19:19 - 2010-11-20 14:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2015-01-15 19:19 - 2010-11-20 14:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-01-15 19:19 - 2010-11-20 14:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2015-01-15 19:19 - 2010-11-20 14:17 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-01-15 19:19 - 2010-11-20 14:17 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2015-01-15 19:19 - 2010-11-20 14:08 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-01-15 19:19 - 2010-11-20 14:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll
2015-01-15 19:19 - 2010-11-20 14:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-15 19:19 - 2010-11-20 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2015-01-15 19:19 - 2010-11-20 14:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll
2015-01-15 19:19 - 2010-11-20 14:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll
2015-01-15 19:19 - 2010-11-20 14:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2015-01-15 19:19 - 2010-11-20 14:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll
2015-01-15 19:19 - 2010-11-20 14:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-01-15 19:19 - 2010-11-20 14:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL
2015-01-15 19:19 - 2010-11-20 13:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-01-15 19:19 - 2010-11-20 13:56 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll
2015-01-15 19:19 - 2010-11-20 12:49 - 00386048 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-01-15 19:19 - 2010-11-20 12:22 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys
2015-01-15 19:19 - 2010-11-20 12:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RDPREFDD.dll
2015-01-15 19:19 - 2010-11-20 12:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-01-15 19:19 - 2010-11-20 12:21 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys
2015-01-15 19:19 - 2010-11-20 12:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2015-01-15 19:19 - 2010-11-20 12:07 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-01-15 19:19 - 2010-11-20 12:06 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-01-15 19:19 - 2010-11-20 12:00 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2015-01-15 19:19 - 2010-11-20 12:00 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys
2015-01-15 19:19 - 2010-11-20 12:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2015-01-15 19:19 - 2010-11-20 12:00 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2015-01-15 19:19 - 2010-11-20 11:59 - 00132224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-01-15 19:19 - 2010-11-20 11:59 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-01-15 19:19 - 2010-11-20 11:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-01-15 19:19 - 2010-11-20 11:58 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-01-15 19:19 - 2010-11-20 11:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-01-15 19:19 - 2010-11-20 11:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2015-01-15 19:19 - 2010-11-20 11:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-01-15 19:19 - 2010-11-20 11:24 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2015-01-15 19:19 - 2010-11-20 11:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-01-15 19:19 - 2010-11-20 11:14 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll
2015-01-15 19:19 - 2010-11-20 11:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2015-01-15 19:19 - 2010-11-20 11:14 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2015-01-15 19:19 - 2010-11-20 11:14 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2015-01-15 19:19 - 2010-11-20 11:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys
2015-01-15 19:19 - 2010-11-20 11:14 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2015-01-15 19:19 - 2010-11-20 11:14 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys
2015-01-15 19:19 - 2010-11-20 10:47 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2015-01-15 19:19 - 2010-11-20 10:42 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-01-15 19:19 - 2010-11-05 04:20 - 00105559 _____ () C:\Windows\system32\RacRules.xml
2015-01-15 19:18 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2015-01-15 19:17 - 2010-11-20 14:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2015-01-15 19:09 - 2015-01-15 19:09 - 00001049 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-01-15 19:09 - 2015-01-15 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-01-15 19:07 - 2015-01-16 14:31 - 00000000 ____D () C:\Program Files\Emsisoft Anti-Malware
2015-01-15 19:00 - 2015-01-16 14:53 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-15 19:00 - 2015-01-15 19:00 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-01-15 19:00 - 2015-01-15 19:00 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-01-15 19:00 - 2015-01-15 19:00 - 00000000 ____D () C:\Windows\system32\Macromed
2015-01-15 19:00 - 2015-01-15 19:00 - 00000000 ____D () C:\Users\192168.1.2\AppData\Roaming\Macromedia
2015-01-15 19:00 - 2015-01-15 19:00 - 00000000 ____D () C:\Users\192168.1.2\AppData\Roaming\Adobe
2015-01-15 17:42 - 2015-01-15 17:42 - 00002043 _____ () C:\Users\192168.1.2\Desktop\Remove Avira PC Cleaner.lnk
2015-01-15 17:42 - 2015-01-15 17:42 - 00001987 _____ () C:\Users\192168.1.2\Desktop\Avira PC Cleaner.lnk
2015-01-15 17:16 - 2015-01-15 17:16 - 00000000 ____D () C:\Users\192168.1.2\Documents\revouninstaller[1]
2015-01-15 17:11 - 2015-01-15 17:11 - 00001098 _____ () C:\Users\Public\Desktop\AntiLogger Free.lnk
2015-01-15 17:11 - 2015-01-15 17:11 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\AntiLogger Free
2015-01-15 17:11 - 2015-01-15 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiLogger Free
2015-01-15 17:11 - 2015-01-15 17:11 - 00000000 ____D () C:\Program Files\Zemana AntiLogger Free
2015-01-15 17:11 - 2015-01-15 17:11 - 00000000 ____D () C:\Program Files\KeyCryptSDK
2015-01-15 17:11 - 2014-12-30 13:18 - 00069816 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\KeyCrypt32.sys
2015-01-15 17:08 - 2015-01-15 17:11 - 00000000 ____D () C:\ProgramData\Zemana AntiMalware
2015-01-15 17:08 - 2015-01-15 17:08 - 00135464 _____ (SurfRight B.V.) C:\Windows\system32\LnkProtect.dll
2015-01-15 16:57 - 2015-01-15 16:57 - 00027648 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBBlocker32.sys
2015-01-15 16:57 - 2015-01-15 16:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBBlocker32_01007.Wdf
2015-01-15 16:57 - 2015-01-15 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA USB KEYBOARD GUARD
2015-01-15 16:57 - 2015-01-15 16:57 - 00000000 ____D () C:\Program Files\G DATA
2015-01-15 16:56 - 2015-01-15 16:56 - 00000000 ____D () C:\ProgramData\G Data
2015-01-15 16:48 - 2015-01-15 16:48 - 00000000 ____D () C:\Users\192168.1.2\Documents\mbam-chameleon-3.1.7.0[1]
2015-01-15 16:42 - 2015-01-15 16:42 - 00000000 ____D () C:\Users\192168.1.2\Desktop\mbar
2015-01-15 16:41 - 2015-01-16 14:34 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-15 16:41 - 2015-01-15 16:41 - 00001060 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-15 16:41 - 2015-01-15 16:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-15 16:40 - 2015-01-15 16:42 - 00079576 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-15 16:40 - 2015-01-15 16:41 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-01-15 16:40 - 2015-01-15 16:40 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-15 16:40 - 2014-11-21 06:14 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-15 16:40 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-15 16:30 - 2015-01-15 16:30 - 00000000 ____D () C:\Program Files\ESET
2015-01-15 16:29 - 2015-01-15 16:29 - 00000000 ____D () C:\ProgramData\ESET
2015-01-15 16:19 - 2015-01-15 16:19 - 00000385 _____ () C:\Users\192168.1.2\AppData\Roaminguser_gensett.xml
2015-01-15 15:57 - 2015-01-15 15:57 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2015-01-15 15:56 - 2015-01-16 13:53 - 00083444 _____ () C:\Windows\PFRO.log
2015-01-15 15:37 - 2015-01-16 00:12 - 00000000 ____D () C:\Program Files\Sophos
2015-01-15 15:37 - 2015-01-15 17:22 - 00000000 ____D () C:\Users\192168.1.2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2015-01-15 15:37 - 2015-01-15 15:38 - 00000000 ____D () C:\ProgramData\Sophos
2015-01-15 15:23 - 2015-01-15 15:27 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 15:23 - 2014-12-31 13:15 - 110348472 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-15 15:21 - 2015-01-15 15:21 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-01-15 15:19 - 2011-04-09 08:02 - 03967872 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-01-15 15:19 - 2011-04-09 08:02 - 03912576 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-15 15:19 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-01-15 15:18 - 2010-12-17 09:07 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-01-15 15:17 - 2015-01-15 15:17 - 00000000 ____D () C:\Users\192168.1.2\AppData\Temp
2015-01-15 15:14 - 2015-01-15 15:14 - 00072704 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2015-01-15 15:06 - 2015-01-15 15:06 - 00535990 _____ () C:\ProgramData\1421326781.bdinstall.bin
2015-01-15 15:05 - 2015-01-15 15:05 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Internet Security 2015.lnk
2015-01-15 15:05 - 2015-01-15 15:05 - 00000308 ____H () C:\bdr-cf01
2015-01-15 15:05 - 2015-01-15 15:05 - 00000206 _____ () C:\Windows\Cmicnfg3.ini.imi
2015-01-15 15:05 - 2015-01-15 15:05 - 00000145 _____ () C:\Windows\system\Cmicnfg3.ini
2015-01-15 15:05 - 2015-01-15 15:05 - 00000136 _____ () C:\Windows\system\Dlap.pfx
2015-01-15 15:05 - 2015-01-15 15:05 - 00000082 _____ () C:\Windows\Cmicnfg3.ini.cfl
2015-01-15 15:05 - 2015-01-15 15:05 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-01-15 15:05 - 2015-01-15 15:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2015-01-15 15:05 - 2009-12-08 11:53 - 00557056 ____N () C:\Windows\system32\Cmeaupci.exe
2015-01-15 15:05 - 2009-10-30 05:39 - 08151040 ____N (C-Media Corporation) C:\Windows\system\CMICNFG3.cpl
2015-01-15 15:05 - 2009-08-19 11:00 - 00303104 ____N () C:\Windows\system32\CmiInstallResAll.dll
2015-01-15 15:05 - 2009-04-02 11:59 - 00143360 ____N () C:\Windows\system\VmixP6.dll
2015-01-15 15:05 - 2008-10-15 10:41 - 00002123 ____N () C:\Windows\Cmicnfg3.ini.cfg
2015-01-15 15:05 - 2006-10-06 00:47 - 00319968 _____ (Microsoft Corporation) C:\Windows\difxapi.dll
2015-01-15 15:04 - 2015-01-15 15:04 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2015-01-15 15:04 - 2015-01-15 15:04 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-15 15:04 - 2015-01-15 15:04 - 00000000 ____D () C:\ProgramData\BDLogging
2015-01-15 15:04 - 2013-11-13 15:41 - 00077632 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys
2015-01-15 15:04 - 2013-11-04 15:47 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll
2015-01-15 15:04 - 2013-11-04 15:47 - 00066832 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2015-01-15 15:04 - 2013-11-04 15:46 - 00027168 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2015-01-15 15:04 - 2013-01-31 11:01 - 03970848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-15 15:04 - 2013-01-31 11:01 - 02859296 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2015-01-15 15:04 - 2013-01-31 11:00 - 02557728 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-15 15:04 - 2013-01-31 11:00 - 00634656 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-15 15:04 - 2013-01-31 11:00 - 00108832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-15 15:04 - 2013-01-31 11:00 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-15 15:04 - 2009-12-11 06:28 - 00002754 ____N () C:\Windows\cmudax3.ini
2015-01-15 15:04 - 2009-07-14 12:27 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-01-15 15:04 - 2009-07-14 06:42 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-15 15:04 - 2009-07-14 06:37 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-15 15:04 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2015-01-15 15:03 - 2015-01-15 15:10 - 00000000 ____D () C:\Users\192168.1.2\AppData\Roaming\Bitdefender
2015-01-15 15:03 - 2014-10-03 20:09 - 00244480 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2015-01-15 15:03 - 2014-09-25 15:54 - 01073160 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2015-01-15 15:03 - 2014-05-16 13:02 - 00528248 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2015-01-15 15:03 - 2013-02-19 21:33 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-01-15 15:02 - 2015-01-15 15:05 - 00253404 ____H () C:\bdr-ld01
2015-01-15 15:02 - 2015-01-15 15:05 - 00009216 ____H () C:\bdr-ld01.mbr
2015-01-15 15:02 - 2015-01-15 15:04 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-15 15:02 - 2015-01-15 15:02 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-15 15:02 - 2014-07-04 17:47 - 39361413 ____H () C:\bdr-im01.gz
2015-01-15 15:02 - 2012-08-15 15:28 - 02294848 ____H () C:\bdr-bz01
2015-01-15 15:01 - 2015-01-16 14:01 - 00726316 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-15 15:01 - 2015-01-15 15:01 - 00380271 __RSH () C:\DJRMN
2015-01-15 15:01 - 2015-01-15 15:01 - 00000020 __RSH () C:\win7.ld
2015-01-15 15:00 - 2015-01-15 15:06 - 00000000 ____D () C:\ProgramData\Bitdefender
2015-01-15 15:00 - 2013-08-23 12:48 - 00165744 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2015-01-15 14:59 - 2015-01-15 15:00 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2015-01-15 14:59 - 2015-01-15 14:59 - 00000000 ____D () C:\Users\192168.1.2\AppData\Roaming\QuickScan
2015-01-15 14:59 - 2015-01-15 14:59 - 00000000 ____D () C:\Program Files\Bitdefender
2015-01-15 14:59 - 2014-10-15 16:14 - 00408280 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2015-01-15 14:56 - 2015-01-15 14:56 - 00001413 _____ () C:\Users\192168.1.2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-15 14:56 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-15 14:56 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-15 14:56 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-15 14:56 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-01-15 14:56 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-01-15 14:56 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-15 14:56 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-15 14:56 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-15 14:56 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-15 14:55 - 2015-01-16 13:55 - 00000000 ____D () C:\Users\192168.1.2
2015-01-15 14:55 - 2015-01-15 19:06 - 00000000 ____D () C:\Users\192168.1.2\AppData\Local\VirtualStore
2015-01-15 14:55 - 2015-01-15 14:55 - 00000020 ___SH () C:\Users\192168.1.2\ntuser.ini
2015-01-15 14:55 - 2015-01-15 14:55 - 00000000 __SHD () C:\Recovery
2015-01-15 14:55 - 2009-07-14 06:42 - 00000000 ___RD () C:\Users\192168.1.2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-15 14:55 - 2009-07-14 06:37 - 00000000 ___RD () C:\Users\192168.1.2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-16 14:02 - 2009-07-14 06:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-16 14:02 - 2009-07-14 06:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-16 13:55 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-16 13:54 - 2009-07-14 06:39 - 00017421 _____ () C:\Windows\setupact.log
2015-01-16 00:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-01-16 00:50 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-16 00:50 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-16 00:48 - 2009-07-14 09:49 - 00000000 ____D () C:\Windows\CSC
2015-01-16 00:48 - 2009-07-14 06:34 - 00001774 _____ () C:\Windows\DtcInstall.log
2015-01-16 00:46 - 2009-07-14 06:57 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2015-01-16 00:46 - 2009-07-14 06:52 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2015-01-15 23:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-15 22:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-01-15 21:50 - 2009-07-14 06:33 - 00266808 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-15 21:46 - 2009-07-14 09:50 - 00000000 ____D () C:\Program Files\Windows Journal
2015-01-15 21:46 - 2009-07-14 09:49 - 00000000 __SHD () C:\Windows\BitLockerDiscoveryVolumeContents
2015-01-15 21:46 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2015-01-15 21:46 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2015-01-15 21:46 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-01-15 21:46 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Defender
2015-01-15 21:46 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\DVD Maker
2015-01-15 21:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-01-15 20:24 - 2009-07-14 04:05 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-01-15 16:24 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2015-01-15 16:21 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Public\Libraries
2015-01-15 15:05 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system
2015-01-15 15:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Help
2015-01-15 15:03 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-01-15 14:55 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\system32\restore
2015-01-15 14:55 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\Recovery

Some content of TEMP:
====================
C:\Users\192168.1.2\AppData\Local\Temp\dllnt_dump.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-16 00:47

==================== End Of Log ============================

 

Addition log>>

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-01-2015 01
Ran by 192168.1.2 at 2015-01-16 15:14:04
Running from C:\Users\192168.1.2\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.257 - Adobe Systems Incorporated)
AntiLogger Free version 1.8.2.198 (HKLM\...\{A80DB23D-0618-405B-89D9-28F99814E287}_is1) (Version: 1.8.2.198 - Zemana Ltd.)
Bitdefender Internet Security 2015 (HKLM\...\Bitdefender) (Version: 18.19.0.1369 - Bitdefender)
C-Media PCI Audio Device (HKLM\...\C-Media PCI Audio Driver) (Version:  - )
Emsisoft Anti-Malware (HKLM\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft Ltd.)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
G DATA USB KEYBOARD GUARD (HKLM\...\{D8CBD59F-B29D-4E38-9D66-DEAEAB473FA9}) (Version: 1.1.0.4 - G DATA Software AG)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Malwarebytes Anti-Malware versiunea 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA Graphics Driver 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

15-01-2015 14:55:42 Windows Update
15-01-2015 15:00:57 Windows Update
15-01-2015 15:05:10 Device Driver Package Install: C-Media Electronics Inc. Sound, video and game controllers
15-01-2015 15:19:48 Windows Update
15-01-2015 15:36:32 Installed Sophos Virus Removal Tool.
15-01-2015 17:18:07 Revo Uninstaller's restore point - Sophos Virus Removal Tool
15-01-2015 17:59:32 Windows Update
15-01-2015 19:38:42 Windows Update
16-01-2015 00:10:12 Installed Sophos Virus Removal Tool.
16-01-2015 13:58:47 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-01-15 22:50 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {117771C3-3156-4D25-8730-F679F06D1B82} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-16] (Google Inc.)
Task: {1508973B-3699-497C-A622-62E17C02F8CA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-16] (Google Inc.)
Task: {F57B52CF-9F71-45CB-AFDE-6AD72B3888CF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-15] (Adobe Systems Incorporated)
Task: {FD45AB55-83A6-4543-B039-B85E7759F580} - System32\Tasks\{814709CC-B41A-48E7-AB39-EDC7143F1C57} => pcalua.exe -a C:\Users\192168.1.2\AppData\Local\Temp\Temp2_revouninstaller[1].zip\revouninstaller-portable\Revouninstaller.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2015-01-15 15:04 - 2014-08-27 16:30 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-01-15 15:03 - 2013-09-03 14:29 - 00095088 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-01-15 15:04 - 2014-12-02 12:28 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2015-01-15 15:04 - 2012-10-29 14:22 - 00130656 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2015-01-15 15:03 - 2014-07-24 09:43 - 00676568 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2015-01-15 15:03 - 2014-07-24 09:43 - 00490144 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2015-01-15 15:03 - 2014-07-24 09:43 - 02138096 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2015-01-15 15:03 - 2014-07-24 09:43 - 01128744 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2015-01-15 15:04 - 2013-01-31 11:00 - 00079648 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\192168.1.2\Desktop\ComboFix.exe:BDU
AlternateDataStreams: C:\Users\192168.1.2\Desktop\FRST.exe:BDU
AlternateDataStreams: C:\Users\192168.1.2\Desktop\JRT.exe:BDU
AlternateDataStreams: C:\Users\192168.1.2\Desktop\RogueKiller.exe:BDU
AlternateDataStreams: C:\Users\192168.1.2\Downloads\avast_free_antivirus_setup.exe:BDU

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

192168.1.2 (S-1-5-21-673009231-1445533930-3774973693-1001 - Administrator - Enabled) => C:\Users\192168.1.2
Administrator (S-1-5-21-673009231-1445533930-3774973693-500 - Administrator - Disabled)
Guest (S-1-5-21-673009231-1445533930-3774973693-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-673009231-1445533930-3774973693-1002 - Limited - Enabled)
UpdatusUser (S-1-5-21-673009231-1445533930-3774973693-1003 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (01/16/2015 02:06:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program a2start.exe version 9.0.0.4799 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 16bc

Start Time: 01d03183918123fb

Termination Time: 330

Application Path: C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2start.exe

Report Id: f7864719-9d76-11e4-9046-0019211e08a3

Error: (01/15/2015 11:04:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 8.0.7601.17514, time stamp: 0x4ce79912
Faulting module name: bdwtlcl.dll, version: 18.18.0.1285, time stamp: 0x544a5da6
Exception code: 0xc0000005
Fault offset: 0x0000c7a6
Faulting process id: 0xc70
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/15/2015 09:54:46 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Deployment, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.EnterpriseServices, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=x86" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "Microsoft.VisualBasic, Version=8.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:38 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Drawing, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:37 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Configuration, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:35 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "Microsoft.Build.Framework, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:34 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "Microsoft.Build.Tasks, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:34 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "mscorlib, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=x86" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

System errors:
=============
Error: (01/16/2015 02:14:21 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024d00e: Windows Update Core.

Error: (01/15/2015 09:57:30 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (01/15/2015 09:54:47 PM) (Source: WMPNetworkSvc) (EventID: 14349) (User: )
Description: 0x80070005

Error: (01/15/2015 09:54:47 PM) (Source: WMPNetworkSvc) (EventID: 14353) (User: )
Description: 00x80070005http://+:10243/WMPNSSv4/1978594021/

Error: (01/15/2015 09:54:47 PM) (Source: WMPNetworkSvc) (EventID: 14349) (User: )
Description: 0x80070005

Error: (01/15/2015 09:54:47 PM) (Source: WMPNetworkSvc) (EventID: 14353) (User: )
Description: 00x80070005http://+:10243/WMPNSSv4/1978594021/

Error: (01/15/2015 09:54:17 PM) (Source: DCOM) (EventID: 10016) (User: 19216812-PC)
Description: machine-defaultLocalActivation{D63AA156-D534-4BAC-9BF1-55359CF5EC30}{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}19216812-PCUpdatusUserS-1-5-21-673009231-1445533930-3774973693-1003LocalHost (Using LRPC)

Error: (01/15/2015 09:43:59 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Windows Update service did not shut down properly after receiving a preshutdown control.

Error: (01/15/2015 03:57:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%16405

Error: (01/15/2015 03:05:46 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Microsoft Office Sessions:
=========================
Error: (01/16/2015 02:06:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: a2start.exe9.0.0.479916bc01d03183918123fb330C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2start.exef7864719-9d76-11e4-9046-0019211e08a3

Error: (01/15/2015 11:04:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe8.0.7601.175144ce79912bdwtlcl.dll18.18.0.1285544a5da6c00000050000c7a6c7001d03105caddcb38C:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Bitdefender\Bitdefender 2015\bdwtlcl.dll0e27297d-9cfa-11e4-a9f1-0019211e08a3

Error: (01/15/2015 09:54:46 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Deployment, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.EnterpriseServices, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=x86" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "Microsoft.VisualBasic, Version=8.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:38 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Drawing, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:37 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Configuration, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:35 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "Microsoft.Build.Framework, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:34 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "Microsoft.Build.Tasks, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (01/15/2015 09:54:34 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "mscorlib, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=x86" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

==================== Memory info ===========================

Processor: Intel® Pentium® 4 CPU 3.00GHz
Percentage of memory in use: 56%
Total physical RAM: 2559.24 MB
Available physical RAM: 1124.23 MB
Total Pagefile: 5116.77 MB
Available Pagefile: 2904.47 MB
Total Virtual: 2047.88 MB
Available Virtual: 1869.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:134.4 GB) (Free:113.65 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:14.55 GB) (Free:3.38 GB) NTFS
Drive f: () (Removable) (Total:7.58 GB) (Free:0.29 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 0007D90A)
Partition 1: (Not Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=134.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 7.6 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================



#10 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 16 January 2015 - 09:58 AM

JRT log you requested...

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 7 Ultimate x86
Ran by 192168.1.2 on Fri 01/16/2015 at 15:28:39.05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

Successfully deleted: [File] C:\Windows\prefetch\DRIVERCTRL.EXE-1E4D2FFD.pf

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 01/16/2015 at 16:40:04.95
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Thanks for your support !!! :flamethrower:



#11 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 16 January 2015 - 10:05 AM

Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 7 Ultimate x86
Ran by 192168.1.2 on Fri 01/16/2015 at 15:28:39.05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

Successfully deleted: [File] C:\Windows\prefetch\DRIVERCTRL.EXE-1E4D2FFD.pf

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 01/16/2015 at 16:40:04.95
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

Thanks for your help ...



#12 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,044 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:12:35 AM

Posted 16 January 2015 - 10:23 AM

Hey,

IMPORTANT: You MUST use Internet Explorer for this step!
  • Visit the ESET Online Scanner Web Page
  • Select the blue Run ESET Online Scanner button:
    ESET1_zps23a5e840.png
  • Tick the box next to YES, I accept the Terms of Use and click Start
    ESET_EULA2_zps9451f1c3.png
  • When asked, allow the ActiveX control to install.
  • Select Enable detection of potentially unwanted applications and select Advanced Settings:
    ESET2_zpsc701c045.png
  • Make sure to check the options Remove found threats and Enable Anti-Stealth technology are checked:
    ESET4_zps0afafd0d.png
  • Click Start. (This scan can take several hours, so please be patient):
    ESET3_zpsccd1657d.png
  • Once the scan is completed, select List of found threats:
    ESET5_zpsd27be299.png
  • Select Export to text file... and save the file as ESETlog.txt on your Desktop:
    ESET6_zpsc17d154e.png
  • Click the Back button.
  • Click the Finish button:
    ESET9_zps51587217.png
  • Use Notepad to open the saved log file (on your Desktop- ESET.txt)[/b]
  • Copy and paste that log as a reply to this topic.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#13 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 17 January 2015 - 04:44 PM

Hey I run a scan with Eset Online scanner and after 5 hours and 16 minutes ... found nothing , no infection .... so I have no log to post , thanks..



#14 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,044 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:12:35 AM

Posted 18 January 2015 - 09:14 AM

How is your system running? :)

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#15 Gmer99

Gmer99
  • Topic Starter

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Europe
  • Local time:07:35 AM

Posted 18 January 2015 - 12:40 PM

My system is running OK , and still installing updates ... if I see something suspicious I will run a scan with DrWeb Cureit tool , thanks for reply :clapping:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users