Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PC hijacked and sending a lot of spam


  • This topic is locked This topic is locked
24 replies to this topic

#1 Acinonyx

Acinonyx

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 16 November 2016 - 02:31 AM

Good day everyone,

Here I come once again with a pretty new PC already infected without viruses being detected!
My PC is sending spam and my network sometimes shows I am active around the clock which is not the case. My social networks have literally gone insane by constantly adding and deleting people (not followers, contacts). Whenever I click to see connections on LinkedIn or try to change my password, I get: "Access to www.linkedin.com was denied You don't have authorization to view this page. HTTP ERROR 403" This is happening more than a week. I've contacted them privately and there seems to be no technical issue. 
Microsoft and Google have already notified me that my mail has been signaled for sending spam and this is when I simply decided to search for it online and to my great surprise it appeared bellow MY project but linked with the details of s.b. else in China. Since Fr authorities DID NOTHING, I HAVE already paid twice for the false data to be removed and for my personal email to be exchanged with the professional one but NOTHING ever since! So, on my hosting provider the domain name is well accredited to be mine and is still with the right data, but HOW it appears with wrong on Who Is I get totally lost!

The whole pack of coincidences indicates me that I am being sophistically hijacked, but how to FIND what's happening since Norton and Malware remain in silence?

Thank you in advance for your cooperation!

Best regards, 


Edited by Acinonyx, 16 November 2016 - 02:34 AM.


BC AdBot (Login to Remove)

 


#2 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,717 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:03 PM

Posted 20 November 2016 - 09:54 AM

Greetings,

Please run a FRST scan and post both reports.

Edited by Oh My!, 20 November 2016 - 09:55 AM.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#3 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 20 November 2016 - 06:22 PM

Hi Gary,

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01

Ran by PC (administrator) on PC-PC (20-11-2016 23:07:03)

Running from F:\VIRUS REMOVAL

Loaded Profiles: PC (Available Profiles: PC)

Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

() C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe

(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe

(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe

() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Microsoft Corporation) C:\Windows\System32\rundll32.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation) C:\Windows\System32\igfxHK.exe

(Intel Corporation) C:\Windows\System32\igfxTray.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe

(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\nis.exe

(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\nis.exe

 

 

==================== Registry (Whitelisted) ====================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-21] (Realtek Semiconductor)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)

HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [2009952 2013-05-31] (cFos Software GmbH)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)

HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)

HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25673776 2016-11-07] (Dropbox, Inc.)

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [ASRock A-Tuning] => [X]

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.)

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [GoogleChromeAutoLaunch_73B90D4D0D4A45E4E1249D0D8EDB5EB0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\PC\AppData\Local\Akamai\netsession_win.exe"

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Policies\Explorer: [NoInstrumentation] 1

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\MountPoints2: {09080676-9eb1-11e6-a1d8-d050999ad507} - G:\HTC_Sync_Manager_PC.exe

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\MountPoints2: {950c95b8-a04b-11e6-a0bc-d050999ad507} - H:\HTC_Sync_Manager_PC.exe

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\MountPoints2: {a50e75c2-9c39-11e6-90b5-806e6f6e6963} - D:\vs\autorun.exe

HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-10-28] (Microsoft Corporation)

ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)

ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)

ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)

ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)

Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 - Capture d’écran et lancement.lnk [2016-11-07]

ShortcutTarget: OneNote 2010 - Capture d’écran et lancement.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Tcpip\..\Interfaces\{C520C70D-D824-403C-B9A8-B70E66E3B5D6}: [DhcpNameServer] 192.168.1.254

 

Internet Explorer:

==================

SearchScopes: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000 -> DefaultScope {D7F6FA0E-4B0F-41D2-AAE2-48E56BC9A793} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=C010US0D20161111&p={searchTerms}

SearchScopes: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000 -> {D7F6FA0E-4B0F-41D2-AAE2-48E56BC9A793} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=C010US0D20161111&p={searchTerms}

BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2016-10-24] (McAfee, Inc.)

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)

BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)

BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-08] (Oracle Corporation)

BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-08] (Oracle Corporation)

Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)

Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)

Toolbar: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

Toolbar: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)

DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2016-10-24] (McAfee, Inc.)

Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2016-10-24] (McAfee, Inc.)

Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)

 

FireFox:

========

FF DefaultProfile: woljfb4a.default

FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\woljfb4a.default [2016-11-20]

FF Homepage: Mozilla\Firefox\Profiles\woljfb4a.default -> hxxps://search.norton.com/?prt=NS&chn=oem&geo=US&ver=22&locale=en_US&doi=2016-11-04&guid=EB5A6378-C9BB-409C-B433-442A847F0855

FF Extension: (Grammarly for Firefox) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\woljfb4a.default\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2016-11-11]

FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\woljfb4a.default\Extensions\idsafe@norton.com.xpi [2016-11-04]

FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-11-17]

FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.7.1.32\coFFAddon

FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.7.1.32\coFFAddon [2016-10-31]

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.7.1.32\coFFAddon

FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)

FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-08] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-08] (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-10-27] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-10-27] (Google Inc.)

FF Plugin-x32: @webex.com/npatgpc -> C:\ProgramData\NBR Player\npatgpc.dll [2016-08-31] (Cisco WebEx LLC)

 

Chrome:

=======

CHR DefaultProfile: Default

CHR Session Restore: Default -> is enabled.

CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\PepperFlash\pepflashplayer.dll => No File

CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => No File

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File

CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File

CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2016-11-20]

CHR Extension: (Flash Video Downloader) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-11-01]

CHR Extension: (GrepWords CPC & Search Volume Enhancer) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajjnlokmaomjjcbjhlkmfamfnibladde [2016-11-02]

CHR Extension: (Open Screenshot) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\akgpcdalpfphjmfifkmfbpdmgdmeeaeo [2016-10-30]

CHR Extension: (Cartoon Me) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\begjaojlaiglephnkkihnkgcnngiocfa [2016-11-19]

CHR Extension: (Web Developer) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2016-11-02]

CHR Extension: (Nimbus Screenshot and Screencast) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2016-10-29]

CHR Extension: (Hola Video Accelerator) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\chgpmaaockmdehmidghebcjafhihlgha [2016-11-08]

CHR Extension: (Norton Security Toolbar) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-11-17]

CHR Extension: (MakeGIF Video Capture) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnhdjbfjheoohmhpakglckehdcgfffbl [2016-11-04]

CHR Extension: (Image Downloader) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2016-11-01]

CHR Extension: (BuiltWith Technology Profiler) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dapjbgnjinbpoindlpdmhochffioedbn [2016-11-02]

CHR Extension: (Toolkit For Twitter) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbiignkcidbfecgjjmijcpmdlgblhdml [2016-11-09]

CHR Extension: (DevTools Author) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\egfhcfdfnajldliefpdoaojgahefjhhi [2016-11-07]

CHR Extension: (Block site) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2016-11-01]

CHR Extension: (Fake Followers) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eklhkfonoplfidhhblionobmfpphpgfa [2016-11-10]

CHR Extension: (Link Klipper - Extract all links) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahollcgofmpnehocdgofnhkkchiekoo [2016-11-01]

CHR Extension: (McAfee® WebAdvisor) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-11-17]

CHR Extension: (Notable Extension) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijanogndllchbbmoddcghadpmbphaeg [2016-11-07]

CHR Extension: (Accessibility Developer Tools) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkknkljclfencbdbgkenhalefipecmb [2016-11-02]

CHR Extension: (Bootstrap 3.3.5 Offline Guide) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaojaekjdcfbdfiiggmklaocglaknnkd [2016-11-07]

CHR Extension: (Google Docs Offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-31]

CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-11-17]

CHR Extension: (Avast Online Security) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-01]

CHR Extension: (Wappalyzer) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2016-11-02]

CHR Extension: (Open SEO Stats(Formerly: PageRank Status)) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn [2016-11-02]

CHR Extension: (Norton Safe) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2016-11-11]

CHR Extension: (InstagramDL Plugin - Instagram Downloader) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\heialfagdbdflgppjfmgmjdajchdgbjo [2016-11-20]

CHR Extension: (Stencil) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmhphfbdfbkokcfajipbmkcakmmepeb [2016-11-06]

CHR Extension: (PinDown Free) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojoabneemdhaakgfkmiaeafjjlcaebp [2016-11-01]

CHR Extension: (Web Developer Checklist) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\iahamcpedabephpcgkeikbclmaljebjp [2016-11-02]

CHR Extension: (Word Count Tool) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibjgdahgcdkpdlbkadidojhfddflblcm [2016-11-01]

CHR Extension: (META SEO inspector) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibkclpciafdglkjkcibmohobjkcfkaef [2016-11-02]

CHR Extension: (anonymoX) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpklikeghomkemdellmmkoifgfbakio [2016-11-04]

CHR Extension: (Norton Identity Safe) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-10-29]

CHR Extension: (WordPress Theme and Plugins Detector) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdflfokckhmchfpokjmpcoblghjngjja [2016-11-06]

CHR Extension: (WorkFlowy to Google Calendar) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgcnopjghjlddcncaiohpbchlojdhgde [2016-11-06]

CHR Extension: (Web Scraper) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnhgnonknehpejjnehehllkliplmbmhn [2016-11-02]

CHR Extension: (Grammarly for Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2016-11-18]

CHR Extension: (Picsaver image downloader) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\klpnlinfkbamngjobmipfdojflgmaamj [2016-11-01]

CHR Extension: (IP Whois & Flags Chrome & Websites Rating) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmdfbacgombndnllogoijhnggalgmkon [2016-11-01]

CHR Extension: (Pinterest Sort) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplolodplccfcgohfnpionjfikcjfhph [2016-11-10]

CHR Extension: (Hola ad blocker) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\lalfpjdbhpmnhfofkckdpkljeilmogfl [2016-11-10]

CHR Extension: (Openvid Screen Recorder capture & share video) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2016-11-19]

CHR Extension: (Privacy Cleaner) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\liiikhhbkpmpomjmdofandjmdgapiahi [2016-11-04]

CHR Extension: (Scraper) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbigbapnjcgaffohmbkdlecaccepngjd [2016-11-19]

CHR Extension: (Chrome Web Store Payments) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-27]

CHR Extension: (Print Friendly & PDF) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlencieiipommannpdfcmfdpjjmeolj [2016-10-29]

CHR Extension: (Google Publisher Toolbar) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\omioeahgfecgfpfldejlnideemfidnkc [2016-11-04]

CHR Extension: (TeamViewer) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\oooiobdokpcfdlahlmcddobejikcmkfo [2016-11-10]

CHR Extension: (Twitter detector - detect twitter accounts) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\papcdbgfejihdinhieggiamjnkclhkck [2016-11-09]

CHR Extension: (SpeakIt!) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2016-11-09]

CHR Extension: (OneClick Picsaver) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\phpfkeikhkofikgikkgkhlafelljmpii [2016-11-01]

CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-27]

CHR Extension: (Instant Wireframe) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmpmnmbgidlnoamkpmcikaejhmeldnha [2016-11-07]

CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\Exts\Chrome.crx [2016-10-30]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-11-11]

CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\Exts\Chrome.crx [2016-10-30]

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-11-11]

CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

 

==================== Services (Whitelisted) ====================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)

R2 ASRockIOMon; C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe [463112 2014-07-31] ()

R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [652640 2013-05-31] (cFos Software GmbH)

S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-10] (Dropbox, Inc.)

S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-10] (Dropbox, Inc.)

R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-11-07] (Dropbox, Inc.)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-05-21] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)

R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [187840 2016-10-24] (McAfee, Inc.)

R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)

R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\NIS.exe [289080 2016-09-24] (Symantec Corporation)

R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]

R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)

S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

 

===================== Drivers (Whitelisted) ======================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2016-10-27] (ASRock Incorporation)

R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [40200 2013-08-02] (ASRock Inc.)

R3 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\BASHDefs\20161117.001\BHDrvx64.sys [1874136 2016-11-07] (Symantec Corporation)

R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1608000.032\ccSetx64.sys [174328 2016-08-10] (Symantec Corporation)

R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-27] (Symantec Corporation)

R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-27] (Symantec Corporation)

R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-05-28] (Intel Corporation)

R3 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\IPSDefs\20161118.001\IDSvia64.sys [1012952 2016-10-28] (Symantec Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-20] (Malwarebytes)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)

R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)

R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1608000.032\SRTSP64.SYS [784624 2016-09-23] (Symantec Corporation)

R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1608000.032\SRTSPX64.SYS [49400 2016-09-23] (Symantec Corporation)

R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1608000.032\SYMEFASI64.SYS [1628888 2016-09-23] (Symantec Corporation)

R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-30] (Symantec Corporation)

R3 SymIRON; C:\Windows\system32\drivers\NISx64\1608000.032\Ironx64.SYS [289520 2016-09-23] (Symantec Corporation)

R3 SymNetS; C:\Windows\System32\Drivers\NISx64\1608000.032\SYMNETS.SYS [567512 2016-09-23] (Symantec Corporation)

S3 dbx; system32\DRIVERS\dbx.sys [X]

S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160809.007\ENG64.SYS [X]

S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160809.007\EX64.SYS [X]

S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]

S3 tsusbhub; system32\drivers\tsusbhub.sys [X]

S3 VGPU; System32\drivers\rdvgkmd.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2016-11-19 18:41 - 2016-11-20 23:07 - 00000000 ____D C:\FRST

2016-11-17 09:45 - 2016-11-17 09:45 - 00000000 ___HD C:\OneDriveTemp

2016-11-17 09:21 - 2016-11-20 20:40 - 00000000 ____D C:\Users\PC\AppData\LocalLow\Mozilla

2016-11-16 18:38 - 2016-11-16 18:38 - 00001927 _____ C:\Users\Public\Desktop\Google Web Designer.lnk

2016-11-16 14:23 - 2016-11-17 09:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2016-11-16 14:01 - 2016-11-16 14:01 - 00001388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk

2016-11-16 14:01 - 2016-11-16 14:01 - 00001315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk

2016-11-16 14:01 - 2016-11-16 14:01 - 00000000 ____D C:\Windows\en

2016-11-16 14:01 - 2016-11-16 14:01 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2016-11-16 14:00 - 2016-11-16 14:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live

2016-11-16 14:00 - 2016-11-16 14:01 - 00000000 ____D C:\Program Files (x86)\Windows Live

2016-11-16 14:00 - 2016-11-16 14:00 - 00002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk

2016-11-16 14:00 - 2016-11-16 14:00 - 00001462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk

2016-11-16 14:00 - 2016-11-16 14:00 - 00000000 ____D C:\Program Files\Windows Live

2016-11-16 14:00 - 2014-03-31 21:06 - 00058056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys

2016-11-16 13:59 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll

2016-11-16 13:59 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll

2016-11-16 13:59 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll

2016-11-16 13:59 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll

2016-11-16 13:59 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll

2016-11-16 13:59 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll

2016-11-16 13:59 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll

2016-11-16 13:59 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll

2016-11-16 13:58 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll

2016-11-16 13:58 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll

2016-11-16 13:57 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll

2016-11-16 13:57 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll

2016-11-16 13:56 - 2016-11-20 16:05 - 00000000 ____D C:\Users\PC\AppData\Local\Windows Live

2016-11-14 14:26 - 2016-11-20 21:52 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2016-11-14 14:26 - 2016-11-14 14:26 - 00001122 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2016-11-14 14:26 - 2016-11-14 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2016-11-14 14:26 - 2016-11-14 14:26 - 00000000 ____D C:\ProgramData\Malwarebytes

2016-11-14 14:26 - 2016-11-14 14:26 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2016-11-14 14:26 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2016-11-14 14:26 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys

2016-11-14 14:26 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys

2016-11-14 14:19 - 2016-11-14 14:19 - 00001095 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk

2016-11-14 14:19 - 2016-11-14 14:19 - 00000000 ____D C:\Users\PC\AppData\Local\VS Revo Group

2016-11-14 14:19 - 2016-11-14 14:19 - 00000000 ____D C:\ProgramData\VS Revo Group

2016-11-14 14:19 - 2016-11-14 14:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro

2016-11-14 14:19 - 2016-11-14 14:19 - 00000000 ____D C:\Program Files\VS Revo Group

2016-11-14 14:19 - 2009-12-30 11:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys

2016-11-14 03:30 - 2016-11-14 03:30 - 00000000 ____D C:\Program Files\McAfee

2016-11-13 11:23 - 2016-11-13 11:23 - 00000000 ____D C:\ProgramData\FLEXnet

2016-11-13 03:12 - 2016-11-13 03:12 - 00000000 ____D C:\Windows\SysWOW64\1036

2016-11-12 03:58 - 2016-11-12 03:58 - 00000000 ___SD C:\Windows\system32\CompatTel

2016-11-12 03:58 - 2016-11-12 03:58 - 00000000 ____D C:\Windows\system32\appraiser

2016-11-12 03:15 - 2016-11-12 03:15 - 00112368 _____ C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT

2016-11-12 03:15 - 2016-11-12 03:15 - 00112368 _____ C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT

2016-11-12 03:15 - 2016-11-12 03:15 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2005

2016-11-12 03:15 - 2016-11-12 03:15 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2005

2016-11-12 03:12 - 2016-11-12 03:12 - 00000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2

2016-11-12 03:05 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll

2016-11-12 03:05 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe

2016-11-12 03:05 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll

2016-11-12 03:05 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll

2016-11-12 03:05 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll

2016-11-12 03:05 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys

2016-11-12 03:05 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys

2016-11-12 03:05 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf

2016-11-11 21:02 - 2016-11-17 09:44 - 00000000 ____D C:\Program Files (x86)\McAfee

2016-11-11 21:02 - 2016-11-11 21:02 - 00000000 ____D C:\ProgramData\McAfee

2016-11-10 13:15 - 2016-11-17 09:45 - 00000000 ___RD C:\Users\PC\Dropbox

2016-11-10 13:15 - 2016-11-10 13:15 - 00001230 _____ C:\Users\PC\Desktop\Dropbox.lnk

2016-11-10 13:14 - 2016-11-10 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox

2016-11-10 13:13 - 2016-11-10 13:13 - 00000000 ____D C:\Users\PC\AppData\Roaming\Dropbox

2016-11-10 13:12 - 2016-11-20 22:23 - 00000900 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job

2016-11-10 13:12 - 2016-11-20 13:23 - 00000896 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job

2016-11-10 13:12 - 2016-11-10 13:18 - 00003896 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA

2016-11-10 13:12 - 2016-11-10 13:18 - 00003644 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore

2016-11-10 13:12 - 2016-11-10 13:15 - 00000000 ____D C:\Users\PC\AppData\Local\Dropbox

2016-11-10 13:12 - 2016-11-10 13:14 - 00000000 ____D C:\Program Files (x86)\Dropbox

2016-11-10 13:12 - 2016-11-10 13:12 - 00000000 ____D C:\ProgramData\Dropbox

2016-11-10 12:19 - 2016-11-10 12:19 - 00000000 ____D C:\Users\PC\AppData\Roaming\ComappingBETA.E348B5B731C0A13F3B6A807A25486DE106D3670B.1

2016-11-10 12:19 - 2016-11-10 12:19 - 00000000 ____D C:\Users\PC\AppData\Roaming\ComappingBETA

2016-11-10 12:18 - 2016-11-10 12:24 - 00000000 ____D C:\Program Files (x86)\Comapping Desktop

2016-11-10 12:18 - 2016-11-10 12:18 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2016-11-10 12:18 - 2016-11-10 12:18 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2016-11-10 09:33 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll

2016-11-10 09:33 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll

2016-11-10 09:33 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll

2016-11-10 09:33 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll

2016-11-10 09:18 - 2016-03-16 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll

2016-11-10 09:18 - 2016-03-16 19:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll

2016-11-10 09:18 - 2016-03-16 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll

2016-11-10 09:18 - 2016-02-02 19:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll

2016-11-10 09:18 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll

2016-11-10 09:18 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll

2016-11-10 09:18 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll

2016-11-10 09:18 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll

2016-11-10 09:17 - 2016-01-21 01:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys

2016-11-10 09:17 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll

2016-11-10 09:17 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll

2016-11-10 09:17 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll

2016-11-10 09:17 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll

2016-11-10 09:17 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll

2016-11-10 09:17 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll

2016-11-10 09:17 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll

2016-11-10 09:17 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe

2016-11-10 09:17 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe

2016-11-10 09:17 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe

2016-11-10 09:17 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe

2016-11-10 09:17 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe

2016-11-10 09:17 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll

2016-11-10 09:17 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe

2016-11-10 09:17 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe

2016-11-10 09:17 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe

2016-11-10 09:17 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe

2016-11-10 09:17 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe

2016-11-10 09:17 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll

2016-11-10 09:17 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll

2016-11-10 09:17 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll

2016-11-10 09:17 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll

2016-11-10 09:17 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll

2016-11-10 09:17 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll

2016-11-10 09:17 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll

2016-11-10 09:17 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll

2016-11-10 09:17 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll

2016-11-10 09:17 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll

2016-11-10 09:17 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll

2016-11-10 09:17 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll

2016-11-10 09:17 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll

2016-11-10 09:17 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll

2016-11-10 09:17 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll

2016-11-10 09:17 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll

2016-11-10 09:17 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe

2016-11-10 09:17 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe

2016-11-10 09:17 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe

2016-11-10 09:17 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll

2016-11-10 09:17 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll

2016-11-10 09:17 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll

2016-11-10 09:17 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll

2016-11-10 09:17 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll

2016-11-10 09:17 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll

2016-11-10 09:17 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe

2016-11-10 09:17 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe

2016-11-10 09:17 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe

2016-11-10 09:16 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2016-11-10 09:16 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

2016-11-10 09:16 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2016-11-10 09:16 - 2016-03-23 23:40 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe

2016-11-10 09:16 - 2016-02-05 19:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll

2016-11-10 09:16 - 2016-02-05 19:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll

2016-11-10 09:16 - 2016-02-05 18:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll

2016-11-10 09:16 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys

2016-11-10 09:16 - 2015-06-03 21:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll

2016-11-10 09:16 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll

2016-11-10 09:16 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll

2016-11-10 09:16 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL

2016-11-10 09:16 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL

2016-11-10 09:16 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL

2016-11-10 09:16 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL

2016-11-10 09:16 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL

2016-11-10 09:16 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL

2016-11-10 09:16 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL

2016-11-10 09:16 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL

2016-11-10 09:16 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL

2016-11-10 09:16 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL

2016-11-10 09:16 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2016-11-10 09:16 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2016-11-10 09:16 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2016-11-10 09:16 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll

2016-11-10 09:16 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys

2016-11-10 09:16 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl

2016-11-10 09:16 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl

2016-11-10 09:15 - 2016-07-07 16:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2016-11-10 09:15 - 2016-07-07 16:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2016-11-10 09:15 - 2016-07-07 16:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2016-11-10 09:15 - 2016-07-07 16:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys

2016-11-10 09:15 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll

2016-11-10 09:15 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll

2016-11-10 09:15 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe

2016-11-10 09:15 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll

2016-11-10 09:15 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll

2016-11-10 09:15 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll

2016-11-10 09:15 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe

2016-11-10 09:15 - 2015-07-23 01:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll

2016-11-10 09:15 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll

2016-11-10 09:15 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll

2016-11-10 09:15 - 2015-07-22 17:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll

2016-11-10 09:15 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll

2016-11-10 09:15 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll

2016-11-10 09:15 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll

2016-11-10 09:15 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll

2016-11-10 09:15 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll

2016-11-10 09:15 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe

2016-11-10 09:15 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe

2016-11-10 09:15 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe

2016-11-10 09:15 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe

2016-11-10 09:15 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll

2016-11-10 09:15 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll

2016-11-10 09:15 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll

2016-11-10 09:15 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll

2016-11-10 09:15 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll

2016-11-10 09:15 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe

2016-11-10 09:15 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe

2016-11-10 09:15 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe

2016-11-10 09:15 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe

2016-11-10 09:15 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll

2016-11-10 09:15 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll

2016-11-10 09:15 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll

2016-11-10 09:15 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll

2016-11-10 09:15 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll

2016-11-10 09:15 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe

2016-11-10 09:15 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys

2016-11-10 09:14 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2016-11-10 09:14 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2016-11-10 09:14 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2016-11-10 09:14 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2016-11-10 09:14 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2016-11-10 09:14 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll

2016-11-10 09:14 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe

2016-11-10 09:14 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe

2016-11-10 09:14 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2016-11-10 09:14 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys

2016-11-10 09:14 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys

2016-11-10 09:14 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys

2016-11-10 09:14 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys

2016-11-10 09:14 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll

2016-11-10 09:14 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll

2016-11-10 09:14 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2016-11-10 09:14 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2016-11-10 09:14 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll

2016-11-10 09:14 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll

2016-11-10 09:14 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll

2016-11-10 09:14 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll

2016-11-10 09:14 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs

2016-11-10 09:14 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs

2016-11-10 09:14 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs

2016-11-10 09:14 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs

2016-11-10 09:14 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs

2016-11-10 09:14 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs

2016-11-10 09:14 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs

2016-11-10 09:14 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs

2016-11-10 09:14 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs

2016-11-10 09:13 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2016-11-10 09:13 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2016-11-10 09:13 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll

2016-11-10 09:13 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe

2016-11-10 09:13 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe

2016-11-10 09:11 - 2016-03-09 20:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll

2016-11-10 09:11 - 2016-03-09 19:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll

2016-11-10 09:11 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll

2016-11-10 09:11 - 2016-03-09 19:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll

2016-11-10 09:11 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll

2016-11-10 09:11 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll

2016-11-10 09:11 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys

2016-11-10 09:11 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys

2016-11-10 09:11 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys

2016-11-10 09:11 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys

2016-11-10 09:11 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys

2016-11-10 09:11 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys

2016-11-10 09:11 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll

2016-11-10 09:11 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe

2016-11-10 09:11 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll

2016-11-10 09:11 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe

2016-11-10 09:11 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe

2016-11-10 09:11 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe

2016-11-10 08:38 - 2016-04-14 14:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2016-11-10 08:38 - 2016-04-14 14:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2016-11-10 08:38 - 2016-04-09 05:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2016-11-10 08:38 - 2016-04-09 04:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2016-11-10 08:38 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll

2016-11-10 08:38 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2016-11-10 08:38 - 2015-11-10 19:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2016-11-10 08:38 - 2015-11-10 19:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2016-11-10 08:38 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

2016-11-10 08:38 - 2015-07-30 19:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2016-11-10 08:38 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll

2016-11-10 08:38 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2016-11-10 08:38 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2016-11-10 04:29 - 2016-11-10 04:29 - 00001152 _____ C:\Users\Public\Desktop\Install Microsoft LifeCam.lnk

2016-11-10 04:11 - 2015-07-30 14:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2016-11-10 04:11 - 2015-07-30 14:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2016-11-10 04:04 - 2016-11-10 04:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2016-11-10 04:04 - 2016-11-10 04:04 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2016-11-10 04:04 - 2016-11-10 04:04 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2016-11-10 04:04 - 2016-11-10 04:04 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2016-11-10 04:04 - 2016-11-10 04:04 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2016-11-10 04:04 - 2016-11-10 04:04 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2016-11-10 04:04 - 2016-11-10 04:04 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2016-11-10 04:04 - 2016-11-10 04:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2016-11-10 04:04 - 2016-11-10 04:04 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2016-11-10 04:04 - 2016-11-10 04:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2016-11-10 04:04 - 2016-11-10 04:04 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2016-11-10 04:04 - 2016-11-10 04:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2016-11-10 03:55 - 2016-11-10 03:55 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2016-11-10 03:54 - 2016-11-10 03:54 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2016-11-10 03:29 - 2016-11-10 03:29 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help

2016-11-10 03:29 - 2016-11-10 03:29 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help

2016-11-09 22:50 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2016-11-09 22:50 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2016-11-09 22:49 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2016-11-09 22:49 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2016-11-09 22:49 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2016-11-09 22:49 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2016-11-09 22:49 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2016-11-09 22:49 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

2016-11-09 22:49 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2016-11-09 22:49 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2016-11-09 22:49 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2016-11-09 22:49 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2016-11-09 22:49 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2016-11-09 22:49 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2016-11-09 22:49 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2016-11-09 22:49 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2016-11-09 22:49 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2016-11-09 22:49 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2016-11-09 22:49 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2016-11-09 22:49 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2016-11-09 22:49 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2016-11-09 22:49 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2016-11-09 22:49 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2016-11-09 22:49 - 2016-05-12 18:14 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll

2016-11-09 22:49 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll

2016-11-09 22:49 - 2016-05-12 16:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll

2016-11-09 22:49 - 2016-05-04 18:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe

2016-11-09 22:49 - 2016-05-04 18:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2016-11-09 22:49 - 2016-05-04 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2016-11-09 22:49 - 2016-05-04 18:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll

2016-11-09 22:49 - 2016-05-04 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll

2016-11-09 22:49 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll

2016-11-09 22:49 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll

2016-11-09 22:49 - 2016-05-04 18:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll

2016-11-09 22:49 - 2016-05-04 16:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe

2016-11-09 22:49 - 2016-05-04 15:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe

2016-11-08 22:52 - 2016-11-08 22:52 - 00000000 ____D C:\Program Files\Sitefinity CMS

2016-11-08 17:47 - 2016-11-08 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005

2016-11-08 17:46 - 2016-11-15 03:04 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server

2016-11-08 17:46 - 2016-11-08 17:46 - 00000000 ____D C:\Program Files\Microsoft SQL Server

2016-11-08 17:45 - 2016-11-08 17:45 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2005 Mobile Edition

2016-11-08 17:45 - 2016-11-08 17:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Device Emulator

2016-11-08 17:44 - 2016-11-08 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft .NET Framework SDK v2.0

2016-11-08 17:40 - 2016-11-08 17:43 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop

2016-11-08 17:40 - 2016-11-08 17:40 - 00000000 ____D C:\Windows\Symbols

2016-11-08 17:40 - 2016-11-08 17:40 - 00000000 ____D C:\ProgramData\PreEmptive Solutions

2016-11-08 17:40 - 2016-11-08 17:40 - 00000000 ____D C:\Program Files (x86)\CE Remote Tools

2016-11-08 17:39 - 2016-11-08 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005

2016-11-08 17:39 - 2016-11-08 17:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8

2016-11-08 17:39 - 2016-11-08 17:39 - 00000000 ____D C:\Windows\system32\1036

2016-11-08 17:39 - 2016-11-08 17:39 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8

2016-11-08 17:30 - 2016-11-13 03:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression

2016-11-08 17:30 - 2016-11-08 17:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Expression

2016-11-08 17:28 - 2016-11-08 17:28 - 00003210 _____ C:\Windows\System32\Tasks\{79F1FD12-CA47-4569-9FEA-90CEE9F4945A}

2016-11-08 15:41 - 2016-11-08 15:41 - 00001151 _____ C:\Users\Public\Desktop\Visual Studio Code.lnk

2016-11-08 15:41 - 2016-11-08 15:41 - 00000000 ____D C:\Users\PC\AppData\Roaming\Code

2016-11-08 15:41 - 2016-11-08 15:41 - 00000000 ____D C:\Users\PC\.vscode

2016-11-08 15:41 - 2016-11-08 15:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Code

2016-11-08 15:41 - 2016-11-08 15:41 - 00000000 ____D C:\Program Files (x86)\Microsoft VS Code

2016-11-08 15:15 - 2016-11-08 15:15 - 00000000 ____D C:\Users\PC\AppData\Local\Telerik_AD

2016-11-08 15:15 - 2016-11-08 15:15 - 00000000 ____D C:\Users\PC\AppData\Local\IsolatedStorage

2016-11-08 15:14 - 2016-11-08 15:14 - 00000000 ____D C:\Users\PC\AppData\Roaming\Telerik

2016-11-08 15:14 - 2016-11-08 15:14 - 00000000 ____D C:\ProgramData\Telerik

2016-11-08 13:35 - 2016-11-10 19:03 - 00000000 ____D C:\Users\PC\AppData\Roaming\Norton Utilities 16

2016-11-08 13:35 - 2016-11-08 13:35 - 00000000 ____D C:\Program Files (x86)\Symantec

2016-11-08 13:35 - 2015-03-17 18:53 - 01101824 _____ (Woodbury Associates Limited) C:\Windows\SysWOW64\UniBox210.ocx

2016-11-08 13:35 - 2015-03-17 18:53 - 00880640 _____ (Woodbury Associates Limited) C:\Windows\SysWOW64\UniBox10.ocx

2016-11-08 13:35 - 2015-03-17 18:53 - 00659264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX

2016-11-08 13:35 - 2015-03-17 18:53 - 00212992 _____ (Woodbury Associates Limited) C:\Windows\SysWOW64\UniBoxVB12.ocx

2016-11-08 12:13 - 2016-11-10 19:04 - 00000000 ____D C:\ProgramData\TEMP

2016-11-08 12:13 - 2016-11-08 12:13 - 00000000 ____D C:\Users\PC\AppData\Roaming\Product_NU16

2016-11-08 09:12 - 2016-11-08 09:12 - 00000000 ____D C:\Windows\SysWOW64\Adobe

2016-11-08 09:10 - 2016-11-08 09:10 - 00002460 _____ C:\Users\PC\Desktop\Online Arena.lnk

2016-11-08 09:10 - 2016-11-08 09:10 - 00000000 ____D C:\Users\PC\PremiumChess

2016-11-08 09:10 - 2016-11-08 09:10 - 00000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Online Arena

2016-11-08 09:08 - 2016-11-08 09:08 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2016-11-08 09:08 - 2016-11-08 09:08 - 00000000 ____D C:\Users\PC\AppData\Roaming\Sun

2016-11-08 09:08 - 2016-11-08 09:08 - 00000000 ____D C:\Users\PC\AppData\LocalLow\Sun

2016-11-08 09:08 - 2016-11-08 09:08 - 00000000 ____D C:\ProgramData\Oracle

2016-11-08 09:08 - 2016-11-08 09:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2016-11-08 09:07 - 2016-11-08 09:07 - 00000000 ____D C:\Program Files (x86)\Java

2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys

2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys

2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

2016-11-07 23:49 - 2016-11-07 23:49 - 00042096 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe

2016-11-07 07:02 - 2016-11-07 07:03 - 00000000 ____D C:\Users\PC\AppData\Roaming\Apple Computer

2016-11-07 07:02 - 2016-11-07 07:02 - 00000000 ____D C:\Users\PC\AppData\Local\Apple Computer

2016-11-07 07:01 - 2016-11-07 07:01 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk

2016-11-07 07:01 - 2016-11-07 07:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2016-11-07 07:01 - 2016-11-07 07:01 - 00000000 ____D C:\ProgramData\Apple Computer

2016-11-07 07:01 - 2016-11-07 07:01 - 00000000 ____D C:\Program Files\iTunes

2016-11-07 07:01 - 2016-11-07 07:01 - 00000000 ____D C:\Program Files\iPod

2016-11-07 07:00 - 2016-11-07 07:01 - 00000000 ____D C:\Program Files\Common Files\Apple

2016-11-07 07:00 - 2016-11-07 07:00 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk

2016-11-07 07:00 - 2016-11-07 07:00 - 00000000 ____D C:\Windows\System32\Tasks\Apple

2016-11-07 07:00 - 2016-11-07 07:00 - 00000000 ____D C:\Users\PC\AppData\Local\Apple

2016-11-07 07:00 - 2016-11-07 07:00 - 00000000 ____D C:\ProgramData\Apple

2016-11-07 07:00 - 2016-11-07 07:00 - 00000000 ____D C:\Program Files\Bonjour

2016-11-07 07:00 - 2016-11-07 07:00 - 00000000 ____D C:\Program Files (x86)\Bonjour

2016-11-07 07:00 - 2016-11-07 07:00 - 00000000 ____D C:\Program Files (x86)\Apple Software Update

2016-11-06 00:53 - 2016-11-06 00:53 - 00003216 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task

2016-11-04 22:05 - 2016-11-06 00:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2016-11-04 22:04 - 2016-11-04 22:04 - 00000000 ____D C:\Windows\PCHEALTH

2016-11-04 22:03 - 2016-11-04 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services

2016-11-04 22:02 - 2016-11-08 17:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

2016-11-04 22:02 - 2016-11-04 22:02 - 00000000 __RHD C:\MSOCache

2016-11-04 22:02 - 2016-11-04 22:02 - 00000000 ____D C:\Users\PC\AppData\Local\Microsoft Help

2016-11-04 04:50 - 2016-11-04 04:50 - 00001889 _____ C:\Users\Public\Desktop\Network Recording Player.lnk

2016-11-04 04:50 - 2016-11-04 04:50 - 00000000 ____D C:\ProgramData\NBR Player

2016-11-04 04:50 - 2016-11-04 04:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Network Recording Player

2016-11-04 01:51 - 2016-11-17 09:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2016-11-04 01:51 - 2016-11-04 01:58 - 00000000 ____D C:\Users\PC\AppData\Local\Mozilla

2016-11-04 01:51 - 2016-11-04 01:52 - 00000000 ____D C:\Users\PC\AppData\Roaming\Mozilla

2016-11-04 01:51 - 2016-11-04 01:51 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2016-11-04 01:51 - 2016-11-04 01:51 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2016-11-01 20:44 - 2016-11-01 20:44 - 00001072 _____ C:\Users\Public\Desktop\Advego Plagiatus.lnk

2016-11-01 20:44 - 2016-11-01 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advego Plagiatus

2016-11-01 20:44 - 2016-11-01 20:44 - 00000000 ____D C:\Program Files (x86)\Advego Plagiatus

2016-11-01 13:13 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2016-11-01 13:10 - 2016-11-01 13:10 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2016-11-01 13:02 - 2016-11-01 13:02 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2016-11-01 13:01 - 2016-11-01 13:01 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2016-11-01 12:10 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll

2016-11-01 12:10 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll

2016-11-01 12:10 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe

2016-11-01 12:10 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe

2016-11-01 12:10 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe

2016-11-01 12:10 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll

2016-11-01 12:10 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe

2016-11-01 12:10 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll

2016-10-31 18:09 - 2016-10-31 18:09 - 00001158 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS4 (64 Bit).lnk

2016-10-31 18:09 - 2016-10-31 18:09 - 00000000 ____D C:\Program Files\Adobe

2016-10-31 18:05 - 2016-10-31 18:05 - 00001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS4.lnk

2016-10-31 18:03 - 2016-10-31 18:03 - 00001436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Drive CS4.lnk

2016-10-31 18:03 - 2016-10-31 18:03 - 00001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS4.lnk

2016-10-31 18:01 - 2016-10-31 18:01 - 00001192 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS4.lnk

2016-10-31 17:59 - 2016-10-31 18:10 - 00000000 ____D C:\Program Files\Common Files\Adobe

2016-10-31 17:59 - 2016-10-31 17:59 - 00001407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS4.lnk

2016-10-31 17:59 - 2016-10-31 17:59 - 00001283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS4.lnk

2016-10-31 17:59 - 2016-10-31 17:59 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared

2016-10-31 17:54 - 2016-10-31 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Web Designer

2016-10-31 03:21 - 2016-10-31 03:21 - 00000000 ____D C:\ProgramData\UniqueId

2016-10-31 03:18 - 2016-11-20 22:51 - 00003902 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F9887700-AFFF-4113-B11D-61EAAC9ACCD6}

2016-10-31 01:46 - 2016-10-31 01:46 - 00000000 ____D C:\Windows\System32\Tasks\Norton Internet Security

2016-10-31 01:41 - 2016-10-31 01:41 - 00003234 _____ C:\Windows\System32\Tasks\Norton WSC Integration

2016-10-30 23:08 - 2016-10-31 19:05 - 00000000 ____D C:\Temp

2016-10-30 23:08 - 2016-10-30 23:08 - 00000000 ____D C:\ProgramData\HTC

2016-10-30 23:08 - 2016-10-30 23:08 - 00000000 ____D C:\Program Files (x86)\HTC

2016-10-30 19:48 - 2016-08-12 17:26 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2016-10-30 19:48 - 2016-08-12 17:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2016-10-30 19:48 - 2016-08-12 17:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2016-10-30 19:48 - 2016-03-06 19:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2016-10-30 19:48 - 2016-03-06 19:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2016-10-30 19:48 - 2016-03-06 19:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2016-10-30 19:48 - 2016-03-06 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2016-10-30 19:48 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll

2016-10-30 19:48 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll

2016-10-30 19:48 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe

2016-10-30 19:48 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll

2016-10-30 19:48 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll

2016-10-30 19:48 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe

2016-10-30 19:48 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll

2016-10-30 19:48 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll

2016-10-30 19:48 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll

2016-10-30 19:48 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe

2016-10-30 19:48 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe

2016-10-30 19:48 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll

2016-10-30 19:48 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll

2016-10-30 19:48 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll

2016-10-30 19:48 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll

2016-10-30 19:48 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll

2016-10-30 19:48 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll

2016-10-30 19:48 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll

2016-10-30 19:48 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll

2016-10-30 19:48 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll

2016-10-30 19:47 - 2016-03-17 23:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll

2016-10-30 19:47 - 2016-03-17 23:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll

2016-10-30 19:47 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll

2016-10-30 19:47 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll

2016-10-30 19:47 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax

2016-10-30 19:47 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll

2016-10-30 19:47 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax

2016-10-30 19:46 - 2016-06-26 01:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

2016-10-30 19:46 - 2016-06-26 01:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll

2016-10-30 19:46 - 2016-06-26 01:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll

2016-10-30 19:46 - 2016-06-26 01:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll

2016-10-30 19:46 - 2016-06-26 01:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll

2016-10-30 19:46 - 2016-06-25 20:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2016-10-30 19:46 - 2016-06-25 20:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll

2016-10-30 19:46 - 2016-06-25 20:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe

2016-10-30 19:46 - 2016-06-25 20:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe

2016-10-30 19:46 - 2016-06-25 20:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe

2016-10-30 19:46 - 2015-11-03 20:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2016-10-30 19:46 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2016-10-30 19:46 - 2015-07-10 18:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2016-10-30 19:46 - 2015-07-10 18:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll

2016-10-30 19:46 - 2015-07-10 18:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll

2016-10-30 19:46 - 2015-07-10 18:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2016-10-30 19:46 - 2015-07-10 18:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll

2016-10-30 19:46 - 2015-07-10 18:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll

2016-10-30 19:45 - 2016-09-30 16:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2016-10-30 19:45 - 2016-09-30 16:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2016-10-30 19:45 - 2016-09-30 16:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2016-10-30 19:45 - 2016-09-15 16:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2016-10-30 19:45 - 2016-09-15 16:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll

2016-10-30 19:45 - 2016-09-15 16:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2016-10-30 19:45 - 2016-09-15 16:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll

2016-10-30 19:45 - 2016-09-12 22:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2016-10-30 19:45 - 2016-09-12 22:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2016-10-30 19:45 - 2016-09-12 22:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2016-10-30 19:45 - 2016-09-12 22:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2016-10-30 19:45 - 2016-09-12 21:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2016-10-30 19:45 - 2016-09-12 21:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2016-10-30 19:45 - 2016-09-12 21:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2016-10-30 19:45 - 2016-09-12 21:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2016-10-30 19:45 - 2016-09-12 21:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2016-10-30 19:45 - 2016-09-12 21:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2016-10-30 19:45 - 2016-09-12 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2016-10-30 19:45 - 2016-09-12 21:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2016-10-30 19:45 - 2016-09-12 21:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll

2016-10-30 19:45 - 2016-09-10 17:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll

2016-10-30 19:45 - 2016-09-10 16:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll

2016-10-30 19:45 - 2016-09-09 19:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2016-10-30 19:45 - 2016-09-09 19:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2016-10-30 19:45 - 2016-09-09 19:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 19:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2016-10-30 19:45 - 2016-09-09 19:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2016-10-30 19:45 - 2016-09-09 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2016-10-30 19:45 - 2016-09-09 19:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2016-10-30 19:45 - 2016-09-09 19:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2016-10-30 19:45 - 2016-09-09 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2016-10-30 19:45 - 2016-09-09 18:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2016-10-30 19:45 - 2016-09-09 18:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2016-10-30 19:45 - 2016-09-09 18:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2016-10-30 19:45 - 2016-09-09 18:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2016-10-30 19:45 - 2016-09-09 18:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2016-10-30 19:45 - 2016-09-09 18:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2016-10-30 19:45 - 2016-09-09 18:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2016-10-30 19:45 - 2016-09-09 18:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2016-10-30 19:45 - 2016-09-09 18:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2016-10-30 19:45 - 2016-09-09 18:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2016-10-30 19:45 - 2016-09-08 21:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll

2016-10-30 19:45 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll

2016-10-30 19:45 - 2016-09-08 21:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll

2016-10-30 19:45 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll

2016-10-30 19:45 - 2016-09-08 15:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys

2016-10-30 19:45 - 2016-09-08 15:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys

2016-10-30 19:45 - 2016-08-16 19:47 - 00419640 _____ C:\Windows\SysWOW64\locale.nls

2016-10-30 19:45 - 2016-08-16 19:47 - 00419640 _____ C:\Windows\system32\locale.nls

2016-10-30 19:45 - 2016-08-12 18:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll

2016-10-30 19:45 - 2016-08-12 18:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL

2016-10-30 19:45 - 2016-08-12 18:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll

2016-10-30 19:45 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx

2016-10-30 19:45 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll

2016-10-30 19:45 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL

2016-10-30 19:45 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll

2016-10-30 19:45 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll

2016-10-30 19:45 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx

2016-10-30 19:45 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll

2016-10-30 19:45 - 2016-08-12 17:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

2016-10-30 19:45 - 2016-08-06 16:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll

2016-10-30 19:45 - 2016-08-06 16:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll

2016-10-30 19:45 - 2016-08-06 16:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll

2016-10-30 19:45 - 2016-08-06 16:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll

2016-10-30 19:45 - 2016-08-06 16:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll

2016-10-30 19:45 - 2016-08-06 16:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll

2016-10-30 19:45 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll

2016-10-30 19:45 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll

2016-10-30 19:45 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll

2016-10-30 19:45 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll

2016-10-30 19:45 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll

2016-10-30 19:45 - 2016-08-06 16:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe

2016-10-30 19:45 - 2016-08-06 16:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe

2016-10-30 19:45 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe

2016-10-30 19:45 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe

2016-10-30 19:45 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll

2016-10-30 19:45 - 2016-06-14 18:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys

2016-10-30 19:45 - 2016-06-14 18:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll

2016-10-30 19:45 - 2016-06-14 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll



#4 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 20 November 2016 - 06:31 PM

2016-10-30 19:45 - 2016-06-14 18:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys

2016-10-30 19:45 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll

2016-10-30 19:45 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll

2016-10-30 19:45 - 2016-06-14 16:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe

2016-10-30 19:45 - 2016-06-14 16:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe

2016-10-30 19:45 - 2016-06-14 16:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe

2016-10-30 19:45 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe

2016-10-30 19:45 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe

2016-10-30 19:45 - 2016-06-14 16:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe

2016-10-30 19:45 - 2016-06-14 16:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe

2016-10-30 19:45 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll

2016-10-30 19:44 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL

2016-10-28 07:40 - 2010-11-20 14:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL

2016-10-28 07:40 - 2010-11-20 14:27 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL

2016-10-28 07:40 - 2010-11-20 14:27 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll

2016-10-28 07:40 - 2010-11-20 14:27 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 03391488 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 01457664 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 01244160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00934912 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00281600 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL

2016-10-28 07:40 - 2010-11-20 14:26 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00116224 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\system32\fms.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL

2016-10-28 07:40 - 2010-11-20 14:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll

2016-10-28 07:40 - 2010-11-20 14:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 03957760 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 03745792 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 03524608 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 01600512 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 01504256 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 01264640 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00897536 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00749568 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL

2016-10-28 07:40 - 2010-11-20 14:25 - 00692224 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00472064 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00128000 _____ (Microsoft) C:\Windows\system32\Robocopy.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\query.exe

2016-10-28 07:40 - 2010-11-20 14:25 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\BWUnpairElevated.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll

2016-10-28 07:40 - 2010-11-20 14:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL

2016-10-28 07:40 - 2010-11-20 14:25 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00957440 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00899584 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr

2016-10-28 07:40 - 2010-11-20 14:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00777728 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00763904 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr

2016-10-28 07:40 - 2010-11-20 14:24 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx

2016-10-28 07:40 - 2010-11-20 14:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv

2016-10-28 07:40 - 2010-11-20 14:24 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr

2016-10-28 07:40 - 2010-11-20 14:24 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp

2016-10-28 07:40 - 2010-11-20 14:24 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr

2016-10-28 07:40 - 2010-11-20 14:24 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr

2016-10-28 07:40 - 2010-11-20 14:24 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv

2016-10-28 07:40 - 2010-11-20 14:24 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl

2016-10-28 07:40 - 2010-11-20 14:24 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00071168 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax

2016-10-28 07:40 - 2010-11-20 14:24 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\choice.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe

2016-10-28 07:40 - 2010-11-20 14:24 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\change.exe

2016-10-28 07:40 - 2010-11-20 14:15 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll

2016-10-28 07:40 - 2010-11-20 14:14 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll

2016-10-28 07:40 - 2010-11-20 14:13 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll

2016-10-28 07:40 - 2010-11-20 14:13 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll

2016-10-28 07:40 - 2010-11-20 14:12 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll

2016-10-28 07:40 - 2010-11-20 14:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll

2016-10-28 07:40 - 2010-11-20 14:09 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll

2016-10-28 07:40 - 2010-11-20 14:09 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll

2016-10-28 07:40 - 2010-11-20 14:02 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME

2016-10-28 07:40 - 2010-11-20 14:02 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime

2016-10-28 07:40 - 2010-11-20 14:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll

2016-10-28 07:40 - 2010-11-20 14:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL

2016-10-28 07:40 - 2010-11-20 14:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL

2016-10-28 07:40 - 2010-11-20 13:58 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll

2016-10-28 07:40 - 2010-11-20 13:54 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll

2016-10-28 07:40 - 2010-11-20 13:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll

2016-10-28 07:40 - 2010-11-20 13:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPHLPR.DLL

2016-10-28 07:40 - 2010-11-20 13:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPCRYPT.DLL

2016-10-28 07:40 - 2010-11-20 13:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll

2016-10-28 07:40 - 2010-11-20 13:30 - 00079232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvgumd32.dll

2016-10-28 07:40 - 2010-11-20 13:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsCpl.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPEncEn.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanpref.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Vault.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shwebsvc.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadefui.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsvcs.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese30.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scansetting.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdwcn.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdscore.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpsrcwp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vdsbas.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syncui.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twext.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiavideo.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppinst.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QUTIL.DLL

2016-10-28 07:40 - 2010-11-20 13:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdmat.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vfwwdm32.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpd3d.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samcli.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcRtRemote.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wtsapi32.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimgvw.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vpnikeapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRAPI.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdprefdrvapi.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shgina.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sisbkup.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schedcli.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syssetup.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll

2016-10-28 07:40 - 2010-11-20 13:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched32.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL

2016-10-28 07:40 - 2010-11-20 13:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkmap.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pnidui.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkexplorer.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onexui.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PerfCenterCPL.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercpl.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnfldr.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshipsec.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdv.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netdiagfx.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OnLineIDCpl.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qcap.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QAGENT.DLL

2016-10-28 07:40 - 2010-11-20 13:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL

2016-10-28 07:40 - 2010-11-20 13:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mydocs.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prntvpt.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prncache.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL

2016-10-28 07:40 - 2010-11-20 13:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nci.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olethk32.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QCLIPROV.DLL

2016-10-28 07:40 - 2010-11-20 13:20 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napdsnap.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptui.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll

2016-10-28 07:40 - 2010-11-20 13:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 02151936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00856576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallControlPanel.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00732160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\localsec.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsmsnap.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MediaMetadataHandler.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAC3ENC.DLL

2016-10-28 07:40 - 2010-11-20 13:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iTVData.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstask.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fde.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvfw32.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL

2016-10-28 07:40 - 2010-11-20 13:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00093696 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\SysWOW64\fms.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00082944 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hbaapi.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimefilt.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\luainstall.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz32.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdmo.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll

2016-10-28 07:40 - 2010-11-20 13:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 03727872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 02522624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 01555456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 01400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DxpTaskSync.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 01040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00854016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00744448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00685056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsuiext.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuxiliaryDisplayCpl.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00537600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00484864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00438272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00252928 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\defaultlocationcpl.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingFolder.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efscore.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\activeds.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquoui.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldp.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoplay.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAPI.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscmmc.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3cfg.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amstream.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cca.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertPolEng.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsauth.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzSqlExt.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsperf.dll

2016-10-28 07:40 - 2010-11-20 13:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL

2016-10-28 07:40 - 2010-11-20 13:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll

2016-10-28 07:40 - 2010-11-20 13:17 - 00586752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimserv.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eudcedit.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskraid.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskmgr.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetup.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicli.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\net1.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mobsync.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00098816 _____ (Microsoft) C:\Windows\SysWOW64\Robocopy.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\isoburn.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstp.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MuiUnattend.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findstr.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\takeown.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\proquota.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userinit.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe

2016-10-28 07:40 - 2010-11-20 13:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe

2016-10-28 07:40 - 2010-11-20 13:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Bubbles.scr

2016-10-28 07:40 - 2010-11-20 13:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe

2016-10-28 07:40 - 2010-11-20 13:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe

2016-10-28 07:40 - 2010-11-20 13:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe

2016-10-28 07:40 - 2010-11-20 13:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe

2016-10-28 07:40 - 2010-11-20 13:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr

2016-10-28 07:40 - 2010-11-20 13:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx

2016-10-28 07:40 - 2010-11-20 13:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv

2016-10-28 07:40 - 2010-11-20 13:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssText3d.scr

2016-10-28 07:40 - 2010-11-20 13:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp

2016-10-28 07:40 - 2010-11-20 13:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mystify.scr

2016-10-28 07:40 - 2010-11-20 13:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ribbons.scr

2016-10-28 07:40 - 2010-11-20 13:16 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsadmin.exe

2016-10-28 07:40 - 2010-11-20 13:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv

2016-10-28 07:40 - 2010-11-20 13:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\desk.cpl

2016-10-28 07:40 - 2010-11-20 13:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Kswdmcap.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kstvtune.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSTPager.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksxbar.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\g711codc.ax

2016-10-28 07:40 - 2010-11-20 13:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbisurf.ax

2016-10-28 07:40 - 2010-11-20 13:08 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUQ.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUF.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDSG.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdlk41a.dll

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGR1.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGKL.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDCZ1.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDSF.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDPO.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDNEPR.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTAM.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINORI.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINMAR.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINKAN.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINHIN.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINBEN.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDUS.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDUGHR1.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTURME.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAJIK.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDMON.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDMAORI.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDLT1.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTEL.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGEO.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBULG.DLL

2016-10-28 07:40 - 2010-11-20 13:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBLR.DLL

2016-10-28 07:40 - 2010-11-20 13:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll

2016-10-28 07:40 - 2010-11-20 13:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizres.dll

2016-10-28 07:40 - 2010-11-20 13:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll

2016-10-28 07:40 - 2010-11-20 13:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pifmgr.dll

2016-10-28 07:40 - 2010-11-20 13:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME

2016-10-28 07:40 - 2010-11-20 13:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime

2016-10-28 07:40 - 2010-11-20 12:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll

2016-10-28 07:40 - 2010-11-20 12:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys

2016-10-28 07:40 - 2010-11-20 12:06 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys

2016-10-28 07:40 - 2010-11-20 12:05 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll

2016-10-28 07:40 - 2010-11-20 12:04 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe

2016-10-28 07:40 - 2010-11-20 11:52 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys

2016-10-28 07:40 - 2010-11-20 11:52 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys

2016-10-28 07:40 - 2010-11-20 11:52 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys

2016-10-28 07:40 - 2010-11-20 11:52 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys

2016-10-28 07:40 - 2010-11-20 11:52 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys

2016-10-28 07:40 - 2010-11-20 11:52 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys

2016-10-28 07:40 - 2010-11-20 11:52 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys

2016-10-28 07:40 - 2010-11-20 11:51 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys

2016-10-28 07:40 - 2010-11-20 11:50 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys

2016-10-28 07:40 - 2010-11-20 11:44 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys

2016-10-28 07:40 - 2010-11-20 11:44 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys

2016-10-28 07:40 - 2010-11-20 11:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys

2016-10-28 07:40 - 2010-11-20 11:44 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys

2016-10-28 07:40 - 2010-11-20 11:43 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys

2016-10-28 07:40 - 2010-11-20 11:43 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys

2016-10-28 07:40 - 2010-11-20 11:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys

2016-10-28 07:40 - 2010-11-20 11:34 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys

2016-10-28 07:40 - 2010-11-20 11:33 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys

2016-10-28 07:40 - 2010-11-20 11:33 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys

2016-10-28 07:40 - 2010-11-20 11:33 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys

2016-10-28 07:40 - 2010-11-20 11:09 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys

2016-10-28 07:40 - 2010-11-20 11:04 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys

2016-10-28 07:40 - 2010-11-20 10:58 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe

2016-10-28 07:40 - 2010-11-20 10:57 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll

2016-10-28 07:40 - 2010-11-20 10:57 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll

2016-10-28 07:40 - 2010-11-20 10:57 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll

2016-10-28 07:40 - 2010-11-20 10:57 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll

2016-10-28 07:40 - 2010-11-20 10:57 - 00021760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys

2016-10-28 07:40 - 2010-11-20 10:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll

2016-10-28 07:40 - 2010-11-20 10:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys

2016-10-28 07:40 - 2010-11-20 10:30 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys

2016-10-28 07:40 - 2010-11-20 10:27 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys

2016-10-28 07:40 - 2010-11-20 10:27 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys

2016-10-28 07:40 - 2010-11-20 10:26 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys

2016-10-28 07:40 - 2010-11-20 10:22 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys

2016-10-28 07:40 - 2010-11-20 10:19 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys

2016-10-28 07:40 - 2010-11-10 02:48 - 00010429 _____ C:\Windows\system32\ScavengeSpace.xml

2016-10-28 07:40 - 2010-11-05 03:20 - 00347904 _____ C:\Windows\system32\systemsf.ebd

2016-10-28 07:40 - 2010-11-05 03:20 - 00105559 _____ C:\Windows\SysWOW64\RacRules.xml

2016-10-28 07:40 - 2010-11-05 03:20 - 00105559 _____ C:\Windows\system32\RacRules.xml

2016-10-28 07:40 - 2010-11-05 03:11 - 00433512 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll

2016-10-28 07:40 - 2010-11-05 03:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCEWMDRMNDBootstrap.dll

2016-10-28 07:40 - 2010-11-05 02:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll

2016-10-28 07:40 - 2010-11-05 02:53 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe

2016-10-28 07:40 - 2010-11-05 02:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe

2016-10-28 07:40 - 2010-11-05 02:53 - 00109928 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll

2016-10-28 07:40 - 2010-11-05 02:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll

2016-10-28 07:40 - 2009-07-14 02:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpmonui.dll

2016-10-28 07:40 - 2009-06-10 22:40 - 00146389 _____ C:\Windows\SysWOW64\printmanagement.msc

2016-10-28 07:40 - 2009-06-10 22:39 - 00001041 _____ C:\Windows\SysWOW64\tcpbidi.xml

2016-10-28 03:51 - 2016-10-27 12:19 - 00000000 ____D C:\Windows\Panther

2016-10-28 03:25 - 2016-10-28 03:25 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

2016-10-28 03:25 - 2016-10-28 03:25 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

2016-10-27 21:27 - 2016-11-20 22:59 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2016-10-27 21:27 - 2016-11-20 01:55 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job

2016-10-27 21:27 - 2016-11-09 05:59 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2016-10-27 21:27 - 2016-11-09 05:59 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2016-10-27 21:27 - 2016-11-09 05:59 - 00003874 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier

2016-10-27 21:27 - 2016-11-09 05:59 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2016-10-27 21:27 - 2016-11-09 05:59 - 00000000 ____D C:\Windows\SysWOW64\Macromed

2016-10-27 21:27 - 2016-11-09 05:59 - 00000000 ____D C:\Windows\system32\Macromed

2016-10-27 21:25 - 2016-11-10 12:17 - 00000000 ____D C:\Users\PC\AppData\Local\Adobe

2016-10-27 20:25 - 2016-10-27 20:25 - 00002162 _____ C:\Users\PC\Desktop\Kindle.lnk

2016-10-27 20:25 - 2016-10-27 20:25 - 00000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon

2016-10-27 20:24 - 2016-10-27 20:25 - 00000000 ____D C:\Users\PC\AppData\Local\Amazon

2016-10-27 18:33 - 2016-11-06 00:37 - 00000000 ____D C:\Users\PC\AppData\Local\ElevatedDiagnostics

2016-10-27 14:45 - 2016-11-19 11:47 - 00000000 ____D C:\Users\PC\AppData\Roaming\Skype

2016-10-27 14:45 - 2016-11-16 14:02 - 00000000 ____D C:\Users\PC\Tracing

2016-10-27 14:45 - 2016-10-27 14:45 - 00002697 _____ C:\Users\Public\Desktop\Skype.lnk

2016-10-27 14:45 - 2016-10-27 14:45 - 00000000 ___RD C:\Program Files (x86)\Skype

2016-10-27 14:45 - 2016-10-27 14:45 - 00000000 ____D C:\ProgramData\Skype

2016-10-27 14:45 - 2016-10-27 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2016-10-27 13:28 - 2016-10-27 13:28 - 00000000 ____D C:\Windows\CheckSur

2016-10-27 13:09 - 2016-11-12 03:38 - 00000000 ____D C:\Windows\system32\MRT

2016-10-27 13:09 - 2016-11-12 03:35 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

2016-10-27 13:05 - 2016-06-25 17:03 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe

2016-10-27 12:42 - 2016-10-31 01:41 - 00002407 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk

2016-10-27 12:42 - 2016-10-30 19:41 - 00100592 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS

2016-10-27 12:42 - 2016-10-30 19:41 - 00008319 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT

2016-10-27 12:42 - 2016-10-29 21:48 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared

2016-10-27 12:41 - 2016-11-19 21:10 - 00000000 ____D C:\Windows\system32\Drivers\NISx64

2016-10-27 12:41 - 2016-11-13 11:23 - 00000000 ____D C:\Users\PC\AppData\Roaming\Adobe

2016-10-27 12:41 - 2016-11-10 12:18 - 00000000 ____D C:\Program Files (x86)\Adobe

2016-10-27 12:41 - 2016-11-06 00:50 - 00000000 ____D C:\ProgramData\Norton

2016-10-27 12:41 - 2016-10-31 18:05 - 00000000 ____D C:\ProgramData\Adobe

2016-10-27 12:41 - 2016-10-27 12:41 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk

2016-10-27 12:41 - 2016-10-27 12:41 - 00002014 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk

2016-10-27 12:41 - 2016-10-27 12:41 - 00001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk

2016-10-27 12:41 - 2016-10-27 12:41 - 00000997 _____ C:\Users\Public\Desktop\Acrobat.com.lnk

2016-10-27 12:41 - 2016-10-27 12:41 - 00000000 ____D C:\Users\PC\AppData\Roaming\Macromedia

2016-10-27 12:41 - 2016-10-27 12:41 - 00000000 ____D C:\ProgramData\NortonInstaller

2016-10-27 12:41 - 2016-10-27 12:41 - 00000000 ____D C:\Program Files (x86)\NortonInstaller

2016-10-27 12:41 - 2016-10-27 12:41 - 00000000 ____D C:\Program Files (x86)\Norton Internet Security

2016-10-27 12:40 - 2016-11-17 09:44 - 00002954 _____ C:\Windows\System32\Tasks\AsrSP.exe

2016-10-27 12:40 - 2016-11-16 09:01 - 00002029 _____ C:\Users\PC\Desktop\XFast LAN.lnk

2016-10-27 12:40 - 2016-10-31 17:53 - 00000000 ____D C:\Program Files\Google

2016-10-27 12:40 - 2016-10-27 12:40 - 00040601 _____ C:\Windows\cFosSpeed_Setup_Log.txt

2016-10-27 12:40 - 2016-10-27 12:40 - 00022280 _____ (ASRock Incorporation) C:\Windows\SysWOW64\Drivers\AsrDrv101.sys

2016-10-27 12:40 - 2016-10-27 12:40 - 00001267 _____ C:\Users\Public\Desktop\A-Tuning.lnk

2016-10-27 12:40 - 2016-10-27 12:40 - 00000000 ____D C:\Windows\ASRock

2016-10-27 12:40 - 2016-10-27 12:40 - 00000000 ____D C:\Users\PC\AppData\Local\cFos

2016-10-27 12:40 - 2016-10-27 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN

2016-10-27 12:40 - 2016-10-27 12:40 - 00000000 ____D C:\ProgramData\cFos

2016-10-27 12:40 - 2016-10-27 12:40 - 00000000 ____D C:\Program Files\ASRock

2016-10-27 12:40 - 2014-07-31 15:17 - 00609544 _____ C:\Windows\system32\USBKeyCredentialProvider.dll

2016-10-27 12:40 - 2013-08-02 15:39 - 00040200 _____ (ASRock Inc.) C:\Windows\system32\Drivers\AsrRamDisk.sys

2016-10-27 12:40 - 2013-05-31 15:23 - 01814880 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys

2016-10-27 12:39 - 2016-10-27 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility

2016-10-27 12:39 - 2016-10-27 12:40 - 00000000 ____D C:\Program Files\ASRock Utility

2016-10-27 12:39 - 2016-10-27 12:40 - 00000000 ____D C:\Program Files (x86)\ASRock Utility

2016-10-27 12:39 - 2016-10-27 12:39 - 00003246 _____ C:\Windows\System32\Tasks\{5B311818-B3EE-4DB2-8F19-72F5C673A717}

2016-10-27 12:39 - 2016-10-27 12:39 - 00001202 _____ C:\Users\Public\Desktop\APP Shop.lnk

2016-10-27 12:39 - 2011-11-07 09:13 - 00017192 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys

2016-10-27 12:38 - 2016-10-27 12:38 - 00000000 ____D C:\Program Files (x86)\ASM104xUSB3

2016-10-27 12:38 - 2014-05-08 12:25 - 00939224 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys

2016-10-27 12:38 - 2014-05-08 12:25 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll

2016-10-27 12:38 - 2014-05-08 12:25 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll

2016-10-27 12:37 - 2016-10-27 12:37 - 00018676 _____ C:\Windows\system32\results.xml

2016-10-27 12:37 - 2016-10-27 12:37 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2016-10-27 12:37 - 2016-10-27 12:37 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf

2016-10-27 12:37 - 2016-10-27 12:37 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2016-10-27 12:37 - 2013-09-03 15:52 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll

2016-10-27 12:37 - 2013-09-03 15:52 - 00099288 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys

2016-10-27 12:37 - 2012-07-26 05:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys

2016-10-27 12:37 - 2012-07-26 03:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll

2016-10-27 12:37 - 2012-06-02 15:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2016-10-27 12:36 - 2016-11-14 03:30 - 00112368 _____ C:\Users\PC\AppData\Local\GDIPFONTCACHEV1.DAT

2016-10-27 12:36 - 2016-11-06 00:29 - 00000000 __SHD C:\Users\PC\IntelGraphicsProfiles

2016-10-27 12:36 - 2016-10-27 12:36 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ____H C:\ProgramData\DP45977C.lfl

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ____D C:\Users\PC\Intel

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ____D C:\Users\PC\AppData\Roaming\Intel Corporation

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ____D C:\ProgramData\Intel

2016-10-27 12:36 - 2016-10-27 12:36 - 00000000 ____D C:\Program Files\Realtek

2016-10-27 12:35 - 2016-10-27 12:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2016-10-27 12:35 - 2016-10-27 12:38 - 00000000 ____D C:\Program Files (x86)\Realtek

2016-10-27 12:35 - 2016-10-27 12:36 - 00000000 ___HD C:\Program Files (x86)\Temp

2016-10-27 12:35 - 2014-03-25 11:46 - 03903320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys

2016-10-27 12:35 - 2014-03-25 11:13 - 00948440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll

2016-10-27 12:35 - 2014-03-25 10:46 - 56947712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat

2016-10-27 12:35 - 2014-03-25 08:08 - 00910648 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT

2016-10-27 12:35 - 2014-03-24 09:13 - 02797784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll

2016-10-27 12:35 - 2014-03-21 04:35 - 02101040 _____ C:\Windows\system32\SStudio.dll

2016-10-27 12:35 - 2014-03-17 09:50 - 02832088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll

2016-10-27 12:35 - 2014-03-06 09:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl

2016-10-27 12:35 - 2014-03-04 22:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll

2016-10-27 12:35 - 2014-03-04 22:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll

2016-10-27 12:35 - 2014-03-04 22:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll

2016-10-27 12:35 - 2014-03-04 22:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll

2016-10-27 12:35 - 2014-03-04 10:19 - 00627928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll

2016-10-27 12:35 - 2014-03-03 13:21 - 01019608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll

2016-10-27 12:35 - 2014-02-27 13:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll

2016-10-27 12:35 - 2014-02-26 08:16 - 02080472 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll

2016-10-27 12:35 - 2014-02-26 01:48 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll

2016-10-27 12:35 - 2014-02-26 01:47 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll

2016-10-27 12:35 - 2014-02-18 11:12 - 01042520 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll

2016-10-27 12:35 - 2014-02-18 11:12 - 00882776 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll

2016-10-27 12:35 - 2014-02-18 10:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll

2016-10-27 12:35 - 2014-02-18 07:48 - 02396760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll

2016-10-27 12:35 - 2014-02-18 07:48 - 01424984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll

2016-10-27 12:35 - 2014-02-18 07:48 - 01423960 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 28314200 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 14742104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 12816472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 03927640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 02040920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll

2016-10-27 12:35 - 2014-02-16 13:30 - 01933400 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll

2016-10-27 12:35 - 2014-02-06 04:28 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat

2016-10-27 12:35 - 2014-01-31 10:28 - 00938608 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll

2016-10-27 12:35 - 2014-01-31 10:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll

2016-10-27 12:35 - 2014-01-28 04:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll

2016-10-27 12:35 - 2013-10-15 20:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll

2016-10-27 12:35 - 2013-10-11 05:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2016-10-27 12:35 - 2013-10-11 04:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll

2016-10-27 12:35 - 2013-10-06 17:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll

2016-10-27 12:35 - 2013-10-06 17:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll

2016-10-27 12:35 - 2013-10-06 17:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll

2016-10-27 12:35 - 2013-09-09 21:02 - 06217904 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll

2016-10-27 12:35 - 2013-09-09 21:02 - 00313520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll

2016-10-27 12:35 - 2013-09-09 21:01 - 01938608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll

2016-10-27 12:35 - 2013-09-09 21:01 - 00260272 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll

2016-10-27 12:35 - 2013-08-20 10:37 - 00605496 _____ C:\Windows\system32\audioLibVc.dll

2016-10-27 12:35 - 2013-08-14 08:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll

2016-10-27 12:35 - 2013-08-14 08:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2016-10-27 12:35 - 2013-06-25 05:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll

2016-10-27 12:35 - 2013-06-25 05:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll

2016-10-27 12:35 - 2013-06-25 05:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll

2016-10-27 12:35 - 2013-06-21 04:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll

2016-10-27 12:35 - 2013-04-03 07:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll

2016-10-27 12:35 - 2012-08-31 12:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll

2016-10-27 12:35 - 2012-08-31 12:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll

2016-10-27 12:35 - 2012-08-31 12:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll

2016-10-27 12:35 - 2012-08-31 12:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll

2016-10-27 12:35 - 2012-08-31 12:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll

2016-10-27 12:35 - 2012-03-08 04:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll

2016-10-27 12:35 - 2012-01-30 04:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll

2016-10-27 12:35 - 2012-01-10 03:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll

2016-10-27 12:35 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll

2016-10-27 12:35 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll

2016-10-27 12:35 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll

2016-10-27 12:35 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll

2016-10-27 12:35 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll

2016-10-27 12:35 - 2011-08-23 10:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll

2016-10-27 12:35 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll

2016-10-27 12:35 - 2011-03-17 05:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll

2016-10-27 12:35 - 2011-03-07 10:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll

2016-10-27 12:35 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll

2016-10-27 12:35 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll

2016-10-27 12:35 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll

2016-10-27 12:35 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll

2016-10-27 12:35 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll

2016-10-27 12:35 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll

2016-10-27 12:35 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll

2016-10-27 12:35 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll

2016-10-27 12:35 - 2010-07-22 09:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll

2016-10-27 12:35 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll

2016-10-27 12:35 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll

2016-10-27 12:35 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll

2016-10-27 12:35 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll

2016-10-27 12:30 - 2016-10-27 12:40 - 00000000 ____D C:\Program Files (x86)\Intel

2016-10-27 12:30 - 2016-10-27 12:36 - 00000000 ____D C:\Program Files\Intel

2016-10-27 12:30 - 2016-10-27 12:30 - 00000704 _____ C:\Users\Public\Desktop\Intel® HD Graphics Control Panel.lnk

2016-10-27 12:30 - 2014-05-21 10:15 - 23048704 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 18032640 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 17791136 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 17409536 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 16586584 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 16114320 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 08192000 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 06448128 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 04590152 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 04342744 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 04339160 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 03791872 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys

2016-10-27 12:30 - 2014-05-21 10:15 - 03658520 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa

2016-10-27 12:30 - 2014-05-21 10:15 - 02023936 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 01755648 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 01673216 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 01551872 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 01137080 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 01132960 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00930264 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00734208 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00655360 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00544216 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00543704 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00501720 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00444376 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00433560 _____ C:\Windows\system32\igdmd64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00393176 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00392664 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00373248 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00358912 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00348088 _____ C:\Windows\SysWOW64\igdmd32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00330240 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00315352 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00294912 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00291328 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00279000 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00267264 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00254976 _____ C:\Windows\system32\igfxCPL.cpl

2016-10-27 12:30 - 2014-05-21 10:15 - 00249856 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00244184 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00223744 _____ C:\Windows\system32\igdde64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00218808 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00212992 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00191448 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00187408 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00187348 _____ C:\Windows\system32\resTHA.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00183808 _____ C:\Windows\SysWOW64\igdde32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00183800 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3621.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00180164 _____ C:\Windows\system32\resELL.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00176020 _____ C:\Windows\system32\resRUS.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00161876 _____ C:\Windows\system32\resARA.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00161332 _____ C:\Windows\system32\resHEB.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00161268 _____ C:\Windows\system32\resJPN.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00160256 _____ C:\Windows\system32\igdail64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00158032 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00156692 _____ C:\Windows\system32\resFRA.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00156676 _____ C:\Windows\system32\resHUN.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00154980 _____ C:\Windows\system32\resKOR.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00154884 _____ C:\Windows\system32\resITA.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00154884 _____ C:\Windows\system32\resDEU.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00154724 _____ C:\Windows\system32\resROM.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00154612 _____ C:\Windows\system32\resESN.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00154180 _____ C:\Windows\system32\resPLK.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00154036 _____ C:\Windows\system32\resSKY.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00153844 _____ C:\Windows\system32\resNLD.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00153284 _____ C:\Windows\system32\resPTB.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00153140 _____ C:\Windows\system32\resTRK.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00153108 _____ C:\Windows\system32\resCSY.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00153048 _____ (Intel Corporation) C:\Windows\system32\difx64.exe

2016-10-27 12:30 - 2014-05-21 10:15 - 00152980 _____ C:\Windows\system32\resPTG.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00152564 _____ C:\Windows\system32\resFIN.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00152132 _____ C:\Windows\system32\resHRV.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00151684 _____ C:\Windows\system32\resSVE.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00151508 _____ C:\Windows\system32\resSLV.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00150580 _____ C:\Windows\system32\resNOR.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00150068 _____ C:\Windows\system32\resDAN.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00148756 _____ C:\Windows\system32\resENU.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00146980 _____ C:\Windows\system32\resCHT.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00146148 _____ C:\Windows\system32\resCHS.cui

2016-10-27 12:30 - 2014-05-21 10:15 - 00142848 _____ C:\Windows\SysWOW64\igdail32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00070144 _____ C:\Windows\system32\igfxCUIServicePS.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL

2016-10-27 12:30 - 2014-05-21 10:15 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL

2016-10-27 12:30 - 2014-05-21 10:15 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00057856 _____ ( ) C:\Windows\system32\igfxDHLib.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00044025 _____ C:\Windows\system32\iglhxo64.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00043494 _____ C:\Windows\system32\iglhxc64.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00043256 _____ C:\Windows\system32\iglhxg64.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00031408 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll

2016-10-27 12:30 - 2014-05-21 10:15 - 00002568 _____ C:\Windows\system32\iglhxs64.vp

2016-10-27 12:30 - 2014-05-21 10:15 - 00000895 _____ C:\Windows\system32\Gfxv2_0.exe.config

2016-10-27 12:30 - 2014-05-21 10:15 - 00000895 _____ C:\Windows\system32\DPTopologyAppv2_0.exe.config

2016-10-27 12:30 - 2014-05-21 10:15 - 00000895 _____ C:\Windows\system32\CustomModeAppv2_0.exe.config

2016-10-27 12:30 - 2014-05-21 10:15 - 00000889 _____ C:\Windows\system32\Gfxv4_0.exe.config

2016-10-27 12:30 - 2014-05-21 10:15 - 00000889 _____ C:\Windows\system32\DPTopologyApp.exe.config

2016-10-27 12:30 - 2014-05-21 10:15 - 00000889 _____ C:\Windows\system32\CustomModeApp.exe.config

2016-10-27 12:29 - 2016-11-15 03:02 - 00792444 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2016-10-27 12:29 - 2016-10-27 12:29 - 00000000 ____D C:\Intel

2016-10-27 12:29 - 2014-05-21 10:15 - 00450520 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys

2016-10-27 12:26 - 2016-11-20 22:36 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2016-10-27 12:26 - 2016-11-20 14:36 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2016-10-27 12:26 - 2016-11-15 03:03 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2016-10-27 12:26 - 2016-11-15 03:03 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2016-10-27 12:26 - 2016-10-31 17:54 - 00000000 ____D C:\Users\PC\AppData\Local\Google

2016-10-27 12:26 - 2016-10-29 06:46 - 00000000 ____D C:\Program Files (x86)\Google

2016-10-27 12:26 - 2016-10-27 13:31 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2016-10-27 12:26 - 2016-10-27 13:31 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2016-10-27 12:23 - 2016-10-27 12:23 - 00003146 _____ C:\Windows\System32\Tasks\{FC134421-00DE-4B95-B13B-2310E1EDC090}

2016-10-27 12:19 - 2016-11-10 13:15 - 00000000 ____D C:\Users\PC

2016-10-27 12:19 - 2016-11-10 13:14 - 00000000 ____D C:\Users\PC\AppData\Local\VirtualStore

2016-10-27 12:19 - 2016-11-10 08:32 - 00001417 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2016-10-27 12:19 - 2016-10-27 12:19 - 00000020 ___SH C:\Users\PC\ntuser.ini

2016-10-27 12:19 - 2016-10-27 12:19 - 00000000 _SHDL C:\Users\PC\My Documents

2016-10-27 12:19 - 2016-10-27 12:19 - 00000000 _SHDL C:\Users\PC\Documents\My Videos

2016-10-27 12:19 - 2016-10-27 12:19 - 00000000 _SHDL C:\Users\PC\Documents\My Pictures

2016-10-27 12:19 - 2016-10-27 12:19 - 00000000 _SHDL C:\Users\PC\Documents\My Music

2016-10-27 12:19 - 2009-07-14 08:45 - 00000000 ____D C:\Users\PC\AppData\Roaming\Media Center Programs

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2016-11-20 05:00 - 2009-07-14 05:45 - 00013936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2016-11-20 05:00 - 2009-07-14 05:45 - 00013936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2016-11-17 09:49 - 2009-07-14 06:13 - 00850682 _____ C:\Windows\system32\PerfStringBackup.INI

2016-11-17 09:49 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf

2016-11-17 09:44 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2016-11-16 14:00 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared

2016-11-16 03:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache

2016-11-15 03:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration

2016-11-14 03:30 - 2009-07-14 05:45 - 03038952 _____ C:\Windows\system32\FNTCACHE.DAT

2016-11-13 03:17 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat

2016-11-12 03:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing

2016-11-12 03:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism

2016-11-12 03:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism

2016-11-12 03:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers

2016-11-12 03:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2016-11-12 03:04 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini

2016-11-10 08:29 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender

2016-11-10 08:29 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender

2016-11-10 08:29 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System

2016-11-10 08:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF

2016-11-08 17:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help

2016-11-08 14:36 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\Downloaded Program Files

2016-11-04 22:05 - 2009-07-14 08:46 - 00000000 ____D C:\Windows\ShellNew

2016-10-28 11:16 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries

2016-10-28 11:14 - 2009-07-14 08:46 - 00000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Sidebar

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Portable Devices

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices

2016-10-28 11:14 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Setup

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\oobe

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\manifeststore

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Setup

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\oobe

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\migwiz

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\manifeststore

2016-10-28 11:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\servicing

2016-10-28 11:12 - 2009-07-14 03:36 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll

2016-10-28 11:12 - 2009-07-14 03:36 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll

2016-10-28 03:50 - 2009-07-14 06:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template

2016-10-28 03:25 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2016-10-28 03:25 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep

2016-10-28 03:24 - 2009-07-14 08:46 - 00000000 ____D C:\Windows\CSC

 

==================== Files in the root of some directories =======

 

2016-10-27 12:36 - 2016-10-27 12:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

 

==================== Bamital & volsnap ======================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\system32\winlogon.exe => File is digitally signed

C:\Windows\system32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\system32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\system32\services.exe => File is digitally signed

C:\Windows\system32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\system32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\system32\rpcss.dll => File is digitally signed

C:\Windows\system32\dnsapi.dll => File is digitally signed

C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed

C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2016-11-18 06:05

 

==================== End of FRST.txt ============================



#5 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 20 November 2016 - 06:34 PM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01

Ran by PC (20-11-2016 23:07:19)

Running from F:\VIRUS REMOVAL

Windows 7 Ultimate Service Pack 1 (X64) (2016-10-27 11:19:34)

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-3358667177-3651868688-2764321120-500 - Administrator - Disabled)

Guest (S-1-5-21-3358667177-3651868688-2764321120-501 - Limited - Disabled)

PC (S-1-5-21-3358667177-3651868688-2764321120-1000 - Administrator - Enabled) => C:\Users\PC

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Norton Internet Security (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Norton Internet Security (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}

FW: Norton Internet Security (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

 

==================== Installed Programs ======================

 

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)

Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)

Adobe Anchor Service x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden

Adobe CMaps x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden

Adobe CSI CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden

Adobe Drive CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)

Adobe Fonts All x64 (Version: 2.0 - Adobe Systems Incorporated) Hidden

Adobe Linguistics CS4 x64 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden

Adobe PDF Library Files x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden

Adobe Photoshop CS4 (64 Bit) (Version: 11.0 - Adobe Systems Incorporated) Hidden

Adobe Photoshop CS4 (HKLM-x32\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated)

Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)

Adobe Type Support x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden

Adobe WinSoft Linguistics Plugin x64 (Version: 1.1 - Adobe Systems Incorporated) Hidden

Advego Plagiatus 1.3.3.1 (HKLM-x32\...\{86819F43-51E6-4776-ABAF-A5EACBFE1805}}_is1) (Version:  - Advego, Ltd.)

Amazon Kindle (HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Amazon Kindle) (Version: 1.17.1.44183 - Amazon)

APP Shop v1.0.13 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.13 - ASRock Inc.)

Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)

Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)

Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)

ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)

ASRock XFast RAM v3.0.3 (HKLM\...\ASRock XFast RAM_is1) (Version:  - ASRock Inc.)

A-Tuning v2.0.224 (HKLM-x32\...\A-Tuning_is1) (Version: 2.0.224 - )

Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)

Connect (x32 Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Dropbox (HKLM-x32\...\Dropbox) (Version: 14.4.19 - Dropbox, Inc.)

Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden

Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français) (HKLM-x32\...\{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}) (Version: 9.00.5000.00 - Microsoft Corporation)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)

Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden

Google Web Designer (HKLM\...\{811767F4-C586-4673-A41F-E9D767497222}) (Version: 1.3.10.0 - Google Inc.)

Hotfix pour Microsoft Visual Studio 2005 Standard - FRA (KB2938803) (HKLM-x32\...\KB2938803.T369_96ToU880_96) (Version: 1 - Microsoft Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)

IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)

iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)

Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)

Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

kuler (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden

Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.164 - McAfee, Inc.)

Microsoft .NET Compact Framework 1.0 SP3 Developer (HKLM-x32\...\{6C531060-84FB-4F96-8F33-29DF020632EB}) (Version: 1.0.4292 - Microsoft Corporation)

Microsoft .NET Compact Framework 2.0 (HKLM-x32\...\{625386A4-B6B6-4911-A6E8-23189C3F2D15}) (Version: 2.0.5238 - Microsoft Corporation)

Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft Device Emulator version 1.0 - FRA (HKLM-x32\...\{F6E08BCD-8411-4943-85B6-C8F79AC613AC}) (Version: 1.0.50727.42 - Microsoft Corporation)

Microsoft Document Explorer 2005 (HKLM-x32\...\Microsoft Document Explorer 2005) (Version:  - Microsoft Corporation)

Microsoft Expression Blend (HKLM-x32\...\{9005EBBA-8EB4-4C87-A271-49DBEB009D23}) (Version: 1.0.1083.0 - Microsoft Corporation)

Microsoft Expression Design (HKLM-x32\...\{87EF4E25-1F7C-44E6-88B2-79E18767B01D}) (Version: 4.0.2712.0 - Microsoft Corporation)

Microsoft Expression Media 1.0 SP1 (HKLM-x32\...\{86722838-0747-4D1A-B596-989AF43DEFBC}) (Version: 1.0.9058.0 - Microsoft Corporation)

Microsoft Office Famille et Petite Entreprise 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation)

Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)

Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server 2005 Mobile [FRA] Developer Tools (HKLM-x32\...\{8BBF1F9B-846E-412E-A291-D471E5BED251}) (Version: 3.0.0.0 - Microsoft Corporation)

Microsoft SQL Server Native Client (HKLM\...\{F133D480-CC80-4564-BA5C-62E3EE2233C3}) (Version: 9.00.5000.00 - Microsoft Corporation)

Microsoft SQL Server VSS Writer (HKLM\...\{5D49934E-FD62-4BF6-9277-3A09DF32C1CD}) (Version: 9.00.5000.00 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version:  - Microsoft Corporation)

Microsoft Visual Studio 2005 64bit Prerequisites (x64) - FRA (HKLM\...\{DA93874E-D53B-4BB3-89F7-F884A1D94E3D}) (Version: 8.0.50727.42 - Microsoft Corporation)

Microsoft Visual Studio 2005 Remote Debugger Light (x64) - FRA (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - FRA) (Version:  - Microsoft Corporation)

Microsoft Visual Studio 2005 Standard - FRA (HKLM-x32\...\Microsoft Visual Studio 2005 Standard Edition - FRA) (Version:  - Microsoft Corporation)

Microsoft Visual Studio 2005 Standard - FRA Service Pack 1 (KB926607) (HKLM-x32\...\KB926607.T2_96ToU266_96) (Version: 1 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)

Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 0.9.2 - Microsoft Corporation)

Module de prise en charge linguistique de Microsoft Document Explorer 2005 - FRA (HKLM-x32\...\Microsoft Document Explorer 2005 Language Pack - FRA) (Version:  - Microsoft Corporation)

Module de prise en charge linguistique de Microsoft Visual J# 2.0 Redistributable - FRA (HKLM-x32\...\Module de prise en charge linguistique de Microsoft Visual J# 2.0 Redistributable - FRA) (Version:  - Microsoft Corporation)

Module de prise en charge linguistique de Microsoft Visual J# 2.0 Redistributable - FRA (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden

Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Mozilla Firefox 50.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 50.0 (x86 fr)) (Version: 50.0 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.0.6152 - Mozilla)

Network Recording Player (HKLM-x32\...\{035EBDE0-003C-4EC6-90B2-E24B1E709CBA}) (Version: 31.5.20.58 - Cisco WebEx LLC)

Norton Internet Security (HKLM-x32\...\NIS) (Version: 22.8.0.50 - Symantec Corporation)

PDF Settings CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden

Photoshop Camera Raw (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden

Photoshop Camera Raw_x64 (Version: 5.0 - Adobe Systems Incorporated) Hidden

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7209 - Realtek Semiconductor Corp.)

Revo Uninstaller Pro 3.1.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.7 - VS Revo Group, Ltd.)

Security Update pour Microsoft Visual Studio 2005 Standard - FRA (KB2251481) (HKLM-x32\...\KB2251481.T369_96ToU865_96) (Version: 3 - Microsoft Corporation)

Security Update pour Microsoft Visual Studio 2005 Standard - FRA (KB2538218) (HKLM-x32\...\KB2538218.T369_96ToU866_96) (Version: 2 - Microsoft Corporation)

Security Update pour Microsoft Visual Studio 2005 Standard - FRA (KB2548826) (HKLM-x32\...\KB2548826.T369_96ToU869_96) (Version: 4 - Microsoft Corporation)

Security Update pour Microsoft Visual Studio 2005 Standard - FRA (KB973673) (HKLM-x32\...\KB973673.T369_96ToU841_96) (Version: 1 - Microsoft Corporation)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)

Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)

Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)

Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)

Update pour Microsoft Visual Studio 2005 Standard - FRA (KB932233) (HKLM-x32\...\KB932233.T369_96ToU410_96) (Version: 1 - Microsoft Corporation)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

XFast LAN v9.05 (HKLM\...\XFast LAN) (Version: 9.05 - cFos Software GmbH, Bonn)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

CustomCLSID: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\FileCoAuthLib64.dll ()

CustomCLSID: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {071E6CAA-8431-40BB-B61D-9514F4B83978} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)

Task: {0D723BB0-DDA6-402E-9166-0C23538078B0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-27] (Google Inc.)

Task: {2C73C1E4-19B3-4FE7-9209-12D00A7A9DF1} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)

Task: {3BCCA721-3A11-4006-8420-9484D1FF714F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)

Task: {47321131-ED31-4C3B-A4C1-3807F11F4549} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-10] (Dropbox, Inc.)

Task: {55303480-9517-4811-BB91-6236CE4803F8} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe [2016-11-09] (Adobe Systems Incorporated)

Task: {6573705F-D0A4-4B9B-B3FF-08DDC6FB8459} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)

Task: {67F523FF-A61A-460F-8AB6-804C105FB59A} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\WSCStub.exe [2016-09-23] (Symantec Corporation)

Task: {6DA2DB1C-C2F9-4120-A7B7-56D12CC0CE9C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-10] (Dropbox, Inc.)

Task: {7821ED3C-686F-4963-90ED-0A1743F5FE8C} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)

Task: {7F3E9029-9352-4592-A259-EBF3843916FB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-27] (Google Inc.)

Task: {81D39D52-A9E7-4DA0-8E72-21EB2B4B6C58} - System32\Tasks\{79F1FD12-CA47-4569-9FEA-90CEE9F4945A} => pcalua.exe -a "C:\Users\PC\Downloads\Microsoft Visual Studio MV\setup.exe" -d "C:\Users\PC\Downloads\Microsoft Visual Studio MV"

Task: {8BFC086B-66DE-4A91-9AD7-D5FC9643598E} - System32\Tasks\{FC134421-00DE-4B95-B13B-2310E1EDC090} => pcalua.exe -a D:\Drivers\LAN\Atheros\(v2.1.0.19)\setup.exe -d D:\Drivers\LAN\Atheros\(v2.1.0.19)

Task: {8E2A5FDD-FA39-4C3B-9756-CF2F6436709D} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2016-09-23] (Symantec Corporation)

Task: {A6C1D8CA-AA2D-41D6-9A44-C2C6731ECD27} - System32\Tasks\{5B311818-B3EE-4DB2-8F19-72F5C673A717} => pcalua.exe -a D:\Utilities\GoogleChrome\Google\(v1.0.1)\ASRock_Chrome_Installer.exe -d D:\Utilities\GoogleChrome\Google\(v1.0.1)\ -c /r:ASRM /b /q

Task: {E097B55F-3045-45D5-A384-B807D4782002} - System32\Tasks\AsrSP.exe => C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\AsrSP.exe [2014-05-27] ()

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Shortcuts =============================

 

(The entries could be listed to be restored or removed.)

 

ShortcutWithArgument: C:\Users\PC\Desktop\Online Arena.lnk -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://downloads.premiumchess.net/a/game/arena-setup-foa.jnlp "C:\Users\PC\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\1eca7c0-4431f1fb"

ShortcutWithArgument: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Online Arena\Online Arena.lnk -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://downloads.premiumchess.net/a/game/arena-setup-foa.jnlp "C:\Users\PC\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\1eca7c0-4431f1fb"

ShortcutWithArgument: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Picsaver image downloader.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=klpnlinfkbamngjobmipfdojflgmaamj

ShortcutWithArgument: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\TeamViewer.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=oooiobdokpcfdlahlmcddobejikcmkfo

 

==================== Loaded Modules (Whitelisted) ==============

 

2016-10-29 15:49 - 2016-08-02 21:56 - 00020240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\TeamViewer_PrintProcessor.dll

2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

2016-10-27 12:40 - 2014-07-31 15:17 - 00463112 _____ () C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe

2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

2016-11-06 00:52 - 2016-11-06 00:52 - 01864384 _____ () C:\Users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll

2016-11-06 00:52 - 2016-11-06 00:52 - 01383616 _____ () C:\Users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll

2016-11-06 00:52 - 2016-11-06 00:52 - 00118976 _____ () C:\Users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll

2016-11-10 13:14 - 2016-10-10 17:29 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll

2016-11-10 13:14 - 2016-10-10 17:29 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd

2016-11-10 13:14 - 2016-11-07 23:58 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd

2016-11-10 13:14 - 2016-10-10 17:30 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd

2016-11-10 13:14 - 2016-11-07 23:58 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd

2016-11-10 13:14 - 2016-11-07 23:58 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll

2016-11-10 13:14 - 2016-10-10 17:31 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd

2016-11-10 13:14 - 2016-11-07 23:58 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd

2016-11-10 13:14 - 2016-10-10 17:30 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd

2016-11-10 13:14 - 2016-11-07 23:58 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd

2016-11-10 13:14 - 2016-10-10 17:27 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll

2016-11-10 13:14 - 2016-11-07 23:59 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL

2016-11-10 13:14 - 2016-11-07 23:59 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd

2016-11-10 13:14 - 2016-10-10 17:29 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd

2016-11-10 13:14 - 2016-10-10 17:33 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll

2016-11-10 13:14 - 2016-10-10 17:34 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll

2016-11-10 13:14 - 2016-11-07 23:59 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd



#6 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 20 November 2016 - 06:37 PM

2016-11-10 13:14 - 2016-11-07 23:59 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd

2016-11-10 13:14 - 2016-10-10 17:31 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd

2016-11-10 13:14 - 2016-11-07 23:59 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd

2016-11-10 13:14 - 2016-10-10 17:35 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

AlternateDataStreams: C:\ProgramData\TEMP:792D4CF1 [129]

 

==================== Safe Mode (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

 

==================== Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

 

==================== Hosts content: ===============================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\PC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.1.254

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [{FB514ACB-606C-4B7C-BA5C-3D335322332C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [{39E0A095-07F4-444D-9589-427B26786942}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [{75F9E46D-0BF5-4BA9-96FC-F59B92609C34}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [{42B1AD75-119D-47CD-B0A0-BB57D157F86E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{286F8DD1-5EF3-4F93-B4DD-CB601C955875}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{9373FB5A-B454-4458-83C2-7AEFAF010D4B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe

FirewallRules: [{8BC5AFC2-D654-4FB5-8090-E0C36009C265}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe

FirewallRules: [{16CE7F19-2AFC-4777-B007-E8D1C176AA44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe

FirewallRules: [{A0F8129B-D37B-403B-8742-82C49150E526}] => (Allow) LPort=5353

FirewallRules: [{7931D2E7-0C13-4085-B9D2-D5B5AA511169}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

FirewallRules: [{5A17D40E-3A0B-4E44-B370-648737857E37}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

FirewallRules: [{CCA585F9-7032-40EF-9BBA-67416E76E2EA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{33EFFEC9-67AA-4D58-9FEA-351B49D20277}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{73593B81-800F-4488-91D5-190BDAD95581}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{7EE234DF-FD2A-4669-853E-4FA378EFC4D0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{C227BB98-6246-4133-8308-07DC3899742A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{EA350F2A-929F-4034-9E79-435D89F91A4F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{AF648473-D0A7-4BC2-9DFE-A400D4CA0D2E}] => (Allow) C:\Program Files\iTunes\iTunes.exe

FirewallRules: [{71236D8A-9257-4D00-8BE1-31F1A4394E02}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

FirewallRules: [TCP Query User{7F88A245-6B30-4AC4-87B6-25BBD67F9070}C:\users\pc\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pc\appdata\local\akamai\netsession_win.exe

FirewallRules: [UDP Query User{DD965435-BAC2-4375-A5F2-30CAF9FB2471}C:\users\pc\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pc\appdata\local\akamai\netsession_win.exe

FirewallRules: [TCP Query User{619C95F9-4AC5-4DE7-BE55-BB8DE269CE64}C:\users\pc\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pc\appdata\local\akamai\netsession_win.exe

FirewallRules: [UDP Query User{9D32D558-044D-4849-8761-ACD8E2A5BA92}C:\users\pc\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pc\appdata\local\akamai\netsession_win.exe

FirewallRules: [{12494D63-413E-4068-A012-08305B1834C8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [{3AD0BE6A-5B0B-4825-9A1D-5FD724FCB1FC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{428ED23E-DD75-4D97-8868-DAE66C7B81A6}] => (Allow) LPort=2869

FirewallRules: [{7755B42F-C5B7-4CE4-B3D5-E4FBB201E9D9}] => (Allow) LPort=1900

FirewallRules: [{413B0872-0B13-400A-8376-8CC9D0DB3A67}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

 

==================== Restore Points =========================

 

20-11-2016 03:00:20 Windows Update

20-11-2016 12:42:31 Revo Uninstaller Pro's restore point - WinZip 21.0

20-11-2016 12:42:39 Removed WinZip 21.0

20-11-2016 12:47:39 Revo Uninstaller Pro's restore point - Sitefinity

20-11-2016 12:47:45 Removed Sitefinity

 

==================== Faulty Device Manager Devices =============

 

Name: SM Bus Controller

Description: SM Bus Controller

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Universal Serial Bus (USB) Controller

Description: Universal Serial Bus (USB) Controller

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (11/20/2016 11:55:29 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: WINZIP64.EXE, version: 31.0.12288.0, time stamp: 0x580a39d7

Faulting module name: WINZIP64.EXE, version: 31.0.12288.0, time stamp: 0x580a39d7

Exception code: 0xc000041d

Fault offset: 0x00000000006e43fc

Faulting process id: 0x2084

Faulting application start time: 0x01d2431c7f51423d

Faulting application path: C:\Program Files\WinZip\WINZIP64.EXE

Faulting module path: C:\Program Files\WinZip\WINZIP64.EXE

Report Id: d912d77a-af0f-11e6-a1ca-d050999ad507

 

Error: (11/20/2016 11:55:25 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: WINZIP64.EXE, version: 31.0.12288.0, time stamp: 0x580a39d7

Faulting module name: WINZIP64.EXE, version: 31.0.12288.0, time stamp: 0x580a39d7

Exception code: 0xc0000005

Fault offset: 0x00000000006e43fc

Faulting process id: 0x2084

Faulting application start time: 0x01d2431c7f51423d

Faulting application path: C:\Program Files\WinZip\WINZIP64.EXE

Faulting module path: C:\Program Files\WinZip\WINZIP64.EXE

Report Id: d6ed304e-af0f-11e6-a1ca-d050999ad507

 

Error: (11/20/2016 11:55:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: WINZIP64.EXE

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: exception code c0000005, exception address 000000013FDF43FC

Stack:

 

Error: (11/20/2016 02:58:34 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 15257

 

Error: (11/20/2016 02:58:34 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 15257

 

Error: (11/20/2016 02:58:34 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (11/20/2016 02:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 14134

 

Error: (11/20/2016 02:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 14134

 

Error: (11/20/2016 02:58:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (11/20/2016 02:58:32 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 13073

 

 

System errors:

=============

Error: (11/20/2016 03:02:24 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)

Description: Installation Failure: Windows failed to install the following update with error 0x8024200d: November, 2016 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB3197868).

 

Error: (11/20/2016 03:00:17 AM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.

 

Error: (11/19/2016 05:43:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.

 

Error: (11/19/2016 02:09:11 PM) (Source: Disk) (EventID: 11) (User: )

Description: The driver detected a controller error on \Device\Harddisk2\DR2.

 

Error: (11/19/2016 10:13:17 AM) (Source: Disk) (EventID: 11) (User: )

Description: The driver detected a controller error on \Device\Harddisk2\DR2.

 

Error: (11/19/2016 03:46:41 AM) (Source: Disk) (EventID: 11) (User: )

Description: The driver detected a controller error on \Device\Harddisk2\DR2.

 

Error: (11/19/2016 03:05:36 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)

Description: Installation Failure: Windows failed to install the following update with error 0x8024200d: November, 2016 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB3197868).

 

Error: (11/19/2016 12:21:19 AM) (Source: Disk) (EventID: 11) (User: )

Description: The driver detected a controller error on \Device\Harddisk2\DR2.

 

Error: (11/18/2016 02:44:35 PM) (Source: Disk) (EventID: 11) (User: )

Description: The driver detected a controller error on \Device\Harddisk2\DR2.

 

Error: (11/18/2016 09:35:56 AM) (Source: Disk) (EventID: 11) (User: )

Description: The driver detected a controller error on \Device\Harddisk2\DR2.

 

 

CodeIntegrity:

===================================

  Date: 2016-10-29 18:45:41.211

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Windows Defender\MpUXSrv.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 18:45:41.211

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Windows Defender\MpUXSrv.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 18:45:41.201

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Windows Defender\MpUXSrv.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 18:45:41.101

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Windows Defender\MpUXSrv.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 17:49:31.708

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Common Files\microsoft shared\ink\TabTip.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 17:49:31.693

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Common Files\microsoft shared\ink\TabTip.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 17:49:31.677

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Common Files\microsoft shared\ink\TabTip.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 17:49:31.608

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Common Files\microsoft shared\ink\TabTip.exe because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 15:47:33.164

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\AppData\Local\Temp\WAX1F52.tmp because the set of per-page image hashes could not be found on the system.

 

  Date: 2016-10-29 15:46:53.998

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\FROM C 26 04 2016\Program Files\Windows Defender\MpUXSrv.exe because the set of per-page image hashes could not be found on the system.

 

 

==================== Memory info ===========================

 

Processor: Intel® Core™ i5-4460 CPU @ 3.20GHz

Percentage of memory in use: 24%

Total physical RAM: 7864.38 MB

Available physical RAM: 5950.28 MB

Total Virtual: 17304.15 MB

Available Virtual: 12921.31 MB

 

==================== Drives ================================

 

Drive a: (Documents) (Fixed) (Total:244.89 GB) (Free:244.79 GB) NTFS

Drive b: (Web Dev) (Fixed) (Total:344.73 GB) (Free:344.63 GB) NTFS

Drive c: () (Fixed) (Total:111.79 GB) (Free:42.82 GB) NTFS

Drive d: (DVD1) (CDROM) (Total:2.38 GB) (Free:0 GB) UDF

Drive e: (SAMSUNG) (Fixed) (Total:2794.51 GB) (Free:1531.9 GB) NTFS

Drive f: (Divers) (Fixed) (Total:341.8 GB) (Free:341.63 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0A146778)

Partition 1: (Not Active) - (Size=993 KB) - (Type=42)

Partition 2: (Active) - (Size=100 MB) - (Type=42)

Partition 3: (Not Active) - (Size=931.4 GB) - (Type=42)

 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: F2EFD1BE)

Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

Attempted reading MBR returned 0 bytes.

 Could not read MBR for disk 2.

 

==================== End of Addition.txt ============================

 

 

(Please remove any personal info, if any! Thanks!)



#7 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,717 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:03 PM

Posted 20 November 2016 - 09:03 PM

Please do this.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it as fixlist.txt in the same location/folder as FRST.exe (<<<Important)
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\PC\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\MountPoints2: {a50e75c2-9c39-11e6-90b5-806e6f6e6963} - D:\vs\autorun.exe
Toolbar: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160809.007\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160809.007\EX64.SYS [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
Task: {A6C1D8CA-AA2D-41D6-9A44-C2C6731ECD27} - System32\Tasks\{5B311818-B3EE-4DB2-8F19-72F5C673A717} => pcalua.exe -a D:\Utilities\GoogleChrome\Google\(v1.0.1)\ASRock_Chrome_Installer.exe -d D:\Utilities\GoogleChrome\Google\(v1.0.1)\ -c /r:ASRM /b /q
AlternateDataStreams: C:\ProgramData\TEMP:792D4CF1 [129]
  • Right click on FRST.exe, select Run as administrator then press the Fix button
  • When completed he tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

RogueKiller

--------------------
  • Download RogueKiller and save it to your desktop
  • Close all running programs
  • Right click on the setup.exe icon and select Run as Administrator
  • For Windows XP simply double click on the icon
  • Click OK on English
  • Select Install 32 and 64 bits versions (Recommended for Technicians), then click Next 2 times
  • Click Install
  • Click Finish
  • Click Start Scan twice
  • When completed click Open Report
  • Click Export Text and save the file on your Desktop as RK.txt
  • Close all open RogueKiller windows
  • Copy and paste the contents of the report in your reply
===================================================

AdwCleaner by Xplode - Search for Adware

-------------------
  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on Search
  • Once completed allow your system to reboot
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlog
  • RogueKiller log
  • AdwCleaner log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#8 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 22 November 2016 - 12:53 AM

Hi, Gary!

 

FixLog

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
Ran by PC (22-11-2016 06:47:37) Run:1
Running from F:\VIRUS REMOVAL
Loaded Profiles: PC (Available Profiles: PC)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\PC\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\...\MountPoints2: {a50e75c2-9c39-11e6-90b5-806e6f6e6963} - D:\vs\autorun.exe
Toolbar: HKU\S-1-5-21-3358667177-3651868688-2764321120-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160809.007\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160809.007\EX64.SYS [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
Task: {A6C1D8CA-AA2D-41D6-9A44-C2C6731ECD27} - System32\Tasks\{5B311818-B3EE-4DB2-8F19-72F5C673A717} => pcalua.exe -a D:\Utilities\GoogleChrome\Google\(v1.0.1)\ASRock_Chrome_Installer.exe -d D:\Utilities\GoogleChrome\Google\(v1.0.1)\ -c /r:ASRM /b /q
AlternateDataStreams: C:\ProgramData\TEMP:792D4CF1 [129]
*****************
 
Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ASRock A-Tuning => value removed successfully
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface => value removed successfully
"HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a50e75c2-9c39-11e6-90b5-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{a50e75c2-9c39-11e6-90b5-806e6f6e6963} => key not found. 
HKU\S-1-5-21-3358667177-3651868688-2764321120-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{E06E2E99-0AA1-11D4-ABA6-0060082AA75C}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{E06E2E99-0AA1-11D4-ABA6-0060082AA75C}" => key removed successfully
C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\PepperFlash\pepflashplayer.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\pdf.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => not found.
dbx => service removed successfully
NAVENG => service could not remove
NAVEX15 => service could not remove
Synth3dVsc => service removed successfully
tsusbhub => service removed successfully
VGPU => service removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6C1D8CA-AA2D-41D6-9A44-C2C6731ECD27}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6C1D8CA-AA2D-41D6-9A44-C2C6731ECD27}" => key removed successfully
C:\Windows\System32\Tasks\{5B311818-B3EE-4DB2-8F19-72F5C673A717} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5B311818-B3EE-4DB2-8F19-72F5C673A717}" => key removed successfully
C:\ProgramData\TEMP => ":792D4CF1" ADS removed successfully.
 
 
The system needed a reboot.
 
==== End of Fixlog 06:47:47 ====


#9 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 22 November 2016 - 12:56 AM

# AdwCleaner v6.030 - Logfile created 22/11/2016 at 06:57:00
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-21.2 [Server]
# Operating System : Windows 7 Ultimate Service Pack 1 (X64)
# Username : PC - PC-PC
# Running from : F:\VIRUS REMOVAL\AdwCleaner.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
 
 
 
***** [ Services ] *****
 
 
 
***** [ Folders ] *****
 
 
 
***** [ Files ] *****
 
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
 
 
***** [ Web browsers ] *****
 
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [1045 Bytes] - [22/11/2016 06:57:00]
C:\AdwCleaner\AdwCleaner[S0].txt - [1367 Bytes] - [22/11/2016 06:55:40]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1191 Bytes] ##########

Edited by Acinonyx, 22 November 2016 - 01:00 AM.


#10 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 22 November 2016 - 01:35 AM

The rogue report 

 

RogueKiller V12.8.2.0 (x64) [Nov 21 2016] (Free) by Adlice Software
 
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : PC [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Delete -- Date : 11/22/2016 07:01:33 (Duration : 00:43:20)
 
¤¤¤ Processes : 0 ¤¤¤
 
¤¤¤ Registry : 0 ¤¤¤
 
¤¤¤ Tasks : 0 ¤¤¤
 
¤¤¤ Files : 0 ¤¤¤
 
¤¤¤ WMI : 0 ¤¤¤
 
¤¤¤ Hosts File : 0 ¤¤¤
 
¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤
 
¤¤¤ Web browsers : 2 ¤¤¤
[PUP][Chrome:Addon] Default : Grammarly for Chrome [kbfnbcaeplbcioakkpcpgfkobkghlhen] -> Deleted
[PUM.HomePage][Firefox:Config] woljfb4a.default : user_pref("browser.startup.homepage", "https://search.norton.com/?prt=NS&chn=oem&geo=US&ver=22&locale=en_US&doi=2016-11-04&guid=EB5A6378-C9BB-409C-B433-442A847F0855"); -> Replaced (about:home)
 
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA DT01ACA100 SCSI Disk Device +++++
--- User ---
[MBR] d21abf1cd1cddfae686b804519356fdf
[BSP] 25d30049b77b86af3da73a641f0fa07e : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 63 | Size: 0 MB
1 - [ACTIVE] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
2 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB
User = LL1 ... OK
User = LL2 ... OK
 
+++++ PhysicalDrive1: SanDisk SDSSDA120G SCSI Disk Device +++++
--- User ---
[MBR] b2a22a29b740135b6eb03cad88bdd96f
[BSP] 1931ede7cc76468d65413344f6e6f0a2 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 114471 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
 
+++++ PhysicalDrive2: Samsung D3 Station USB Device +++++
Error reading User MBR! ([57] The parameter is incorrect. )
Error reading LL1 MBR! ([79] The semaphore timeout period has expired. )
Error reading LL2 MBR! ([32] The request is not supported. )

Edited by Acinonyx, 22 November 2016 - 08:41 AM.


#11 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,717 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:03 PM

Posted 22 November 2016 - 09:54 AM

Thank you please do this.

===================================================

Running Combofix in Vista/7

--------------------
  • Please download ComboFix and save it to your Desktop <-- Important!!!
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Note: If after disabling Combofix warns you an Antivirus program is still running ignore the warning and run Combofix.
  • Double click on Combofix.exe and follow the prompts. It is important you do not mouse click while the program is running or it may stall.
  • Patiently allow the program to run. At times it may appear nothing is happening
  • Copy and paste the report in your reply
  • If Combofix fails to run completely stop and let me know
===================================================

Run TDSSKiller by Kaspersky

--------------------
  • Please download Kaspersky's TDSSKiller and save it to your Desktop
  • Right-click on TDSSKiller.exe and select Run As Administrator
  • Click Accept on the End User License Agreement
  • Click Accept on the KSN Statement
  • Click Change parameters
  • Place a check mark in the following boxes

Detect TDLFS file system
Verify file digital signatures

  • Click OK
  • Click Start Scan
  • If the scan completes with nothing found, click Close to exit.
  • Any objects found will show in the Scan results - Select action for found objects
  • If an infected file is detected, the default action will be Cure...do not change it
  • Click Continue > Reboot now to finish the cleaning process.<- Important!!
  • If 'Suspicious' objects are detected, you will be given the option to Skip or Quarantine. Skip will be the default selection. Leave it as such for now
  • Hit the Windows Key + E at the same time
  • Double click your Local Disk C: drive
  • Locate the file similar to TDSSKiller_version_date_time_log.txt
  • Copy and paste the contents of that file in your reply
===================================================

aswMBR

--------------------
  • Download aswMBR and save it to your desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. For additional help see here and here
  • Double click the aswMBR.exe file to run it. If requested, allow Avast to update the antivirus engine definitions
  • Leave the default settings then click Scan
  • When done, you will see Scan finished successfully. Click on Save log and save the file to your desktop
  • Copy and paste the contents of the log in your reply
NOTE: aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.
===================================================

Farbar's MiniToolBox

--------------------
  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure only the following options are checked:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries

  • Click Go and once the scan is completed a MTB.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Combofix log
  • TDSSKiller log
  • aswMBR log
  • mtb.txt

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#12 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 24 November 2016 - 12:13 AM

Hi, Gary! 

 

ComboFix

ComboFix 16-11-13.01 - PC 11.2016 г.   6:02.1.4 - x64

Microsoft Windows 7 Ultimate   6.1.7601.1.1251.359.1033.18.7864.1131 [GMT 1:00]

Running from: c:\users\PC\Downloads\ComboFix.exe

AV: Norton Internet Security *Disabled/Updated* {53C7D717-52E2-B95E-FA61-6F32ECC805DB}

FW: Norton Internet Security *Disabled* {6BFC5632-188D-B806-D13E-C607121B42A0}

SP: Norton Internet Security *Disabled/Updated* {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\PC\AppData\Local\assembly\tmp

c:\users\PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\{14956A89-77AD-401A-AAD7-4AE1D435E12F}.xps

c:\users\PC\Desktop\Setup.exe

.

.

(((((((((((((((((((((((((   Files Created from 2016-10-24 to 2016-11-24  )))))))))))))))))))))))))))))))

.

.

2016-11-24 05:07 . 2016-11-24 05:07       --------   d-----w- c:\users\Default\AppData\Local\temp

2016-11-24 01:41 . 2016-11-24 01:41       --------   d-----w- C:\OneDriveTemp

2016-11-22 06:01 . 2016-11-22 06:01       28272    ----a-w- c:\windows\system32\drivers\TrueSight.sys

2016-11-22 05:55 . 2016-11-22 05:55       --------   d-----w- c:\program files\RogueKiller

2016-11-22 05:55 . 2016-11-22 14:52       --------   d-----w- c:\programdata\RogueKiller

2016-11-22 05:54 . 2016-11-22 05:57       --------   d-----w- C:\AdwCleaner

2016-11-21 21:13 . 2016-11-21 21:13       --------   d-----w- c:\program files (x86)\Cstream

2016-11-19 17:41 . 2016-11-22 05:47       --------   d-----w- C:\FRST

2016-11-16 13:01 . 2016-11-16 13:01       --------   d-----w- c:\windows\en

2016-11-16 13:01 . 2016-11-16 13:01       --------   d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition

2016-11-16 13:00 . 2016-11-16 13:00       --------   dc----w-               c:\windows\system32\DRVSTORE

2016-11-16 13:00 . 2014-03-31 20:06       58056    ----a-w- c:\windows\system32\drivers\fssfltr.sys

2016-11-16 13:00 . 2016-11-16 13:00       --------   d-----w- c:\program files\Windows Live

2016-11-16 13:00 . 2016-11-16 13:01       --------   d-----w- c:\program files (x86)\Windows Live

2016-11-16 12:59 . 2010-06-02 03:55       77656    ----a-w- c:\windows\system32\XAPOFX1_5.dll

2016-11-16 12:59 . 2010-06-02 03:55       74072    ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll

2016-11-16 12:59 . 2010-06-02 03:55       527192  ----a-w- c:\windows\SysWow64\XAudio2_7.dll

2016-11-16 12:59 . 2010-06-02 03:55       518488  ----a-w- c:\windows\system32\XAudio2_7.dll

2016-11-16 12:59 . 2010-05-26 10:41       2526056              ----a-w-               c:\windows\system32\D3DCompiler_43.dll

2016-11-16 12:59 . 2010-05-26 10:41       2106216              ----a-w-               c:\windows\SysWow64\D3DCompiler_43.dll

2016-11-16 12:59 . 2010-05-26 10:41       276832  ----a-w- c:\windows\system32\d3dx11_43.dll

2016-11-16 12:59 . 2010-05-26 10:41       248672  ----a-w- c:\windows\SysWow64\d3dx11_43.dll

2016-11-16 12:58 . 2009-09-04 16:29       453456  ----a-w- c:\windows\SysWow64\d3dx10_42.dll

2016-11-16 12:58 . 2009-09-04 16:29       523088  ----a-w- c:\windows\system32\d3dx10_42.dll

2016-11-16 12:57 . 2006-11-29 12:06       4398360              ----a-w- c:\windows\system32\d3dx9_32.dll

2016-11-16 12:57 . 2006-11-29 12:06       3426072              ----a-w-               c:\windows\SysWow64\d3dx9_32.dll

2016-11-16 12:56 . 2016-11-16 12:56       --------   d-----w- c:\program files (x86)\Common Files\Windows Live

2016-11-14 13:26 . 2016-11-24 01:41       192216  ----a-w-               c:\windows\system32\drivers\MBAMSwissArmy.sys

2016-11-14 13:26 . 2016-11-14 13:26       --------   d-----w- c:\program files (x86)\Malwarebytes Anti-Malware

2016-11-14 13:26 . 2016-11-14 13:26       --------   d-----w- c:\programdata\Malwarebytes

2016-11-14 13:26 . 2016-03-10 13:09       64896    ----a-w- c:\windows\system32\drivers\mwac.sys

2016-11-14 13:26 . 2016-03-10 13:08       140672  ----a-w-               c:\windows\system32\drivers\mbamchameleon.sys

2016-11-14 13:26 . 2016-03-10 13:08       27008    ----a-w- c:\windows\system32\drivers\mbam.sys

2016-11-14 13:19 . 2016-11-14 13:19       --------   d-----w- c:\programdata\VS Revo Group

2016-11-14 13:19 . 2009-12-30 10:21       31800    ----a-w- c:\windows\system32\drivers\revoflt.sys

2016-11-14 13:19 . 2016-11-14 13:19       --------   d-----w- c:\program files\VS Revo Group

2016-11-14 02:30 . 2016-11-14 02:30       --------   d-----w- c:\program files\McAfee

2016-11-13 10:23 . 2016-11-13 10:23       --------   d-----w- c:\programdata\FLEXnet

2016-11-13 02:12 . 2016-11-13 02:12       --------   d-----w- c:\windows\SysWow64\1036

2016-11-12 02:58 . 2016-11-12 02:58       --------   d-s---w-               c:\windows\system32\CompatTel

2016-11-12 02:58 . 2016-11-12 02:58       --------   d-----w- c:\windows\system32\appraiser

2016-11-12 02:12 . 2016-11-12 02:12       --------   d-----w- c:\program files (x86)\Microsoft CAPICOM 2.1.0.2

2016-11-12 02:05 . 2012-07-26 03:08       229888  ----a-w- c:\windows\system32\WUDFHost.exe

2016-11-12 02:05 . 2012-07-26 03:08       84992    ----a-w- c:\windows\system32\WUDFSvc.dll

2016-11-12 02:05 . 2012-07-26 03:08       744448  ----a-w- c:\windows\system32\WUDFx.dll

2016-11-12 02:05 . 2012-07-26 03:08       45056    ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2016-11-12 02:05 . 2012-07-26 03:08       194048  ----a-w- c:\windows\system32\WUDFPlatform.dll

2016-11-12 02:05 . 2012-07-26 02:26       87040    ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2016-11-12 02:05 . 2012-07-26 02:26       198656  ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2016-11-11 20:02 . 2016-11-11 20:02       --------   d-----w- c:\program files (x86)\Common Files\McAfee

2016-11-11 20:02 . 2016-11-11 20:02       --------   d-----w- c:\programdata\McAfee

2016-11-11 20:02 . 2016-11-17 08:44       --------   d-----w- c:\program files (x86)\McAfee

2016-11-10 12:12 . 2016-11-10 12:14       --------   d-----w- c:\program files (x86)\Dropbox

2016-11-10 12:12 . 2016-11-10 12:12       --------   d-----w- c:\programdata\Dropbox

2016-11-10 11:18 . 2016-11-10 11:24       --------   d-----w- c:\program files (x86)\Comapping Desktop

2016-11-10 08:33 . 2015-01-09 03:14       91136    ----a-w- c:\windows\system32\wdi.dll

2016-11-10 08:33 . 2015-01-09 03:14       950272  ----a-w- c:\windows\system32\perftrack.dll

2016-11-10 08:33 . 2015-01-09 03:14       29696    ----a-w- c:\windows\system32\powertracker.dll

2016-11-10 08:33 . 2015-01-09 02:48       76800    ----a-w- c:\windows\SysWow64\wdi.dll

2016-11-10 08:18 . 2016-03-16 18:50       156672  ----a-w- c:\windows\system32\mtxoci.dll

2016-11-10 08:18 . 2016-03-16 18:28       111616  ----a-w- c:\windows\SysWow64\mtxoci.dll

2016-11-10 08:18 . 2016-03-16 18:28       176128  ----a-w- c:\windows\SysWow64\msorcl32.dll

2016-11-10 08:18 . 2016-03-16 18:27       286720  ----a-w- c:\program files (x86)\Common Files\System\Ole DB\msdaora.dll

2016-11-10 08:18 . 2011-06-16 05:49       199680  ----a-w- c:\windows\system32\xmllite.dll

2016-11-10 08:18 . 2016-02-02 18:57       511488  ----a-w- c:\windows\system32\rpcss.dll

2016-11-10 08:18 . 2013-10-30 02:32       335360  ----a-w- c:\windows\system32\msieftp.dll

2016-11-10 08:18 . 2013-10-30 02:19       301568  ----a-w- c:\windows\SysWow64\msieftp.dll

2016-11-10 08:16 . 2011-12-30 06:26       515584  ----a-w- c:\windows\system32\timedate.cpl

2016-11-10 08:15 . 2013-12-04 02:16       658432  ----a-w- c:\windows\system32\RMActivate_isv.exe

2016-11-10 08:14 . 2013-11-26 08:16       3419136              ----a-w- c:\windows\SysWow64\d2d1.dll

2016-11-10 08:13 . 2015-08-27 18:13       2048      ----a-w- c:\windows\system32\msxml6r.dll

2016-11-10 08:13 . 2015-08-27 17:58       1391104              ----a-w- c:\windows\SysWow64\msxml6.dll

2016-11-10 08:13 . 2015-08-27 17:51       2048      ----a-w- c:\windows\SysWow64\msxml6r.dll

2016-11-10 08:13 . 2014-10-30 02:03       165888  ----a-w- c:\windows\system32\charmap.exe

2016-11-10 08:13 . 2014-10-30 01:45       155136  ----a-w- c:\windows\SysWow64\charmap.exe

2016-11-10 07:38 . 2015-11-10 18:55       1648128              ----a-w- c:\windows\system32\DWrite.dll

2016-11-10 07:38 . 2015-11-10 18:55       1180160              ----a-w- c:\windows\system32\FntCache.dll

2016-11-10 07:38 . 2015-11-10 18:39       1251328              ----a-w- c:\windows\SysWow64\DWrite.dll

2016-11-10 07:38 . 2015-07-30 18:06       2565120              ----a-w-               c:\windows\system32\d3d10warp.dll

2016-11-10 07:38 . 2015-07-30 17:57       1987584              ----a-w-               c:\windows\SysWow64\d3d10warp.dll

2016-11-10 07:38 . 2016-04-14 13:49       603648  ----a-w- c:\windows\SysWow64\d3d10level9.dll

2016-11-10 07:38 . 2016-04-14 13:21       647680  ----a-w- c:\windows\system32\d3d10level9.dll

2016-11-10 07:38 . 2015-12-08 21:54       2285056              ----a-w-               c:\windows\SysWow64\msmpeg2vdec.dll

2016-11-10 07:38 . 2015-12-08 19:07       2777088              ----a-w-               c:\windows\system32\msmpeg2vdec.dll

2016-11-10 07:38 . 2016-04-09 04:20       1230848              ----a-w-               c:\windows\SysWow64\WindowsCodecs.dll

2016-11-10 07:38 . 2016-04-09 03:52       1424896              ----a-w-               c:\windows\system32\WindowsCodecs.dll

2016-11-10 07:38 . 2015-02-04 03:16       465920  ----a-w- c:\windows\system32\WMPhoto.dll

2016-11-10 07:38 . 2015-02-04 02:54       417792  ----a-w- c:\windows\SysWow64\WMPhoto.dll

2016-11-10 07:29 . 2016-11-10 07:29       --------   d-----w- c:\windows\SysWow64\Wat

2016-11-10 07:29 . 2016-11-10 07:29       --------   d-----w- c:\windows\system32\Wat

2016-11-10 03:11 . 2015-07-30 13:13       103120  ----a-w-               c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll

2016-11-10 03:11 . 2015-07-30 13:13       124624  ----a-w-               c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll

2016-11-10 02:55 . 2016-11-10 02:55       9728      ---ha-w-               c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2016-11-10 02:54 . 2016-11-10 02:54       1505280              ----a-w- c:\windows\SysWow64\d3d11.dll

2016-11-10 02:29 . 2016-11-10 02:29       --------   d-----w- c:\users\Default\AppData\Local\Microsoft Help

2016-11-09 21:50 . 2016-05-13 21:53       37888    ----a-w- c:\windows\system32\wuapp.exe

2016-11-09 21:50 . 2016-05-13 21:52       140288  ----a-w- c:\windows\system32\wuauclt.exe

2016-11-08 21:52 . 2016-11-08 21:52       --------   d-----w- c:\program files\Sitefinity CMS

2016-11-08 16:46 . 2016-11-08 16:46       --------   d-----w- c:\program files\Microsoft SQL Server

2016-11-08 16:46 . 2016-11-15 02:04       --------   d-----w- c:\program files (x86)\Microsoft SQL Server

2016-11-08 16:45 . 2016-11-08 16:45       --------   d-----w- c:\program files (x86)\Microsoft Device Emulator

2016-11-08 16:45 . 2016-11-08 16:45       --------   d-----w- c:\program files (x86)\Microsoft SQL Server 2005 Mobile Edition

2016-11-08 16:40 . 2016-11-14 02:10       --------   d-----w- c:\program files (x86)\Common Files\Merge Modules

2016-11-08 16:40 . 2016-11-08 16:43       --------   d-----w- c:\program files (x86)\HTML Help Workshop

2016-11-08 16:40 . 2016-11-08 16:40       --------   d-----w- c:\programdata\PreEmptive Solutions

2016-11-08 16:40 . 2016-11-08 16:40       --------   d-----w- c:\windows\Symbols

2016-11-08 16:40 . 2016-11-08 16:40       --------   d-----w- c:\program files (x86)\CE Remote Tools

2016-11-08 16:39 . 2016-11-08 16:43       --------   d-----w- c:\program files (x86)\Microsoft Visual Studio 8

2016-11-08 16:39 . 2016-11-08 16:39       --------   d-----w- c:\program files\Microsoft Visual Studio 8

2016-11-08 16:39 . 2016-11-08 16:39       --------   d-----w- c:\windows\system32\1036

2016-11-08 16:32 . 2016-11-08 16:32       --------   d-----w- c:\program files (x86)\Common Files\Nikon

2016-11-08 16:30 . 2016-11-08 16:33       --------   d-----w- c:\program files (x86)\Microsoft Expression

2016-11-08 14:41 . 2016-11-08 14:41       --------   d-----w- c:\program files (x86)\Microsoft VS Code

2016-11-08 14:14 . 2016-11-08 14:14       --------   d-----w- c:\programdata\Telerik

2016-11-08 12:35 . 2015-03-17 17:53       880640  ----a-w- c:\windows\SysWow64\UniBox10.ocx

2016-11-08 12:35 . 2015-03-17 17:53       659264  ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX

2016-11-08 12:35 . 2015-03-17 17:53       212992  ----a-w- c:\windows\SysWow64\UniBoxVB12.ocx

2016-11-08 12:35 . 2015-03-17 17:53       1101824              ----a-w-               c:\windows\SysWow64\UniBox210.ocx

2016-11-08 12:35 . 2016-11-08 12:35       --------   d-----w- c:\program files (x86)\Symantec

2016-11-08 08:12 . 2016-11-08 08:12       --------   d-----w- c:\windows\SysWow64\Adobe

2016-11-08 08:08 . 2016-11-08 08:08       --------   d-----w- c:\program files (x86)\Common Files\Java

2016-11-08 08:08 . 2016-11-08 08:08       97856    ----a-w-               c:\windows\SysWow64\WindowsAccessBridge-32.dll

2016-11-08 08:08 . 2016-11-08 08:08       --------   d-----w- c:\programdata\Oracle

2016-11-08 08:07 . 2016-11-08 08:07       --------   d-----w- c:\program files (x86)\Java

2016-11-07 22:49 . 2016-11-07 22:49       75888    ----a-w- c:\windows\system32\drivers\dbx-stable.sys

.

.

((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2016-11-16 13:00 . 2012-07-17 13:37       24800    ----a-w-               c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2016-10-28 10:12 . 2009-07-14 02:36       175616  ----a-w- c:\windows\system32\msclmd.dll

2016-10-28 10:12 . 2009-07-14 02:36       152576  ----a-w- c:\windows\SysWow64\msclmd.dll

2016-09-09 17:59 . 2016-10-30 18:45       44032    ----a-w- c:\windows\apppatch\acwow64.dll

.

.

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]

@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]

@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]

@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]

@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]

@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt9]

@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             223552  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]

@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"

[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]

2016-11-05 23:52             1748168              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncShell.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]

@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"

[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]

2016-11-05 23:52             1748168              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncShell.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]

@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"

[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]

2016-11-05 23:52             1748168              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncShell.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]

@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"

[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]

2016-11-05 23:52             1748168              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncShell.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]

@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"

[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]

2016-11-05 23:52             1748168              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncShell.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2016-10-17 27017856]

"GoogleChromeAutoLaunch_73B90D4D0D4A45E4E1249D0D8EDB5EB0"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2016-11-08 921192]

"OneDrive"="c:\users\PC\AppData\Local\Microsoft\OneDrive\OneDrive.exe" [2016-11-05 633024]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]

"AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-09-22 587288]

"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2016-11-07 25673776]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux7"=wdmaud.drv

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 dbupdate;Dropbox Update Service (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 dbupdatem;Dropbox Update Service (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]

R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]

R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]

R3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]

R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]

R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys;c:\windows\SYSNATIVE\DRIVERS\AsrRamDisk.sys [x]

S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]

S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]

S0 SymEFASI;Symantec Extended File Attributes (SI);c:\windows\system32\drivers\NISx64\1608010.00E\SYMEFASI64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1608010.00E\SYMEFASI64.SYS [x]

S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AsrAppCharger.sys [x]

S1 ccSet_NIS;NIS Settings Manager;c:\windows\system32\drivers\NISx64\1608010.00E\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1608010.00E\ccSetx64.sys [x]

S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1608010.00E\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1608010.00E\Ironx64.SYS [x]

S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]

S2 ASRockIOMon;ASRock IO Monitor Service;c:\program files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe;c:\program files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe [x]

S2 DbxSvc;DbxSvc;c:\windows\system32\DbxSvc.exe;c:\windows\SYSNATIVE\DbxSvc.exe [x]

S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]

S2 igfxCUIService1.0.0.0;Intel® HD Graphics Control Panel Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.exe [x]

S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [x]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]

S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe [x]

S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe;c:\program files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe [x]

S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]

S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]

S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]

S3 AsrDrv101;AsrDrv101;c:\windows\SysWOW64\Drivers\AsrDrv101.sys;c:\windows\SysWOW64\Drivers\AsrDrv101.sys [x]

S3 BHDrvx64;BHDrvx64;c:\program files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\BASHDefs\20161121.001\BHDrvx64.sys;c:\program files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\BASHDefs\20161121.001\BHDrvx64.sys [x]

S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]

S3 IDSVia64;IDSVia64;c:\program files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\IPSDefs\20161123.001\IDSvia64.sys;c:\program files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\IPSDefs\20161123.001\IDSvia64.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]

S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]

S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]

S3 mfesapsn;McAfee Process Start Notification Service;c:\program files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys;c:\program files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]

S3 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1608000.032\SYMNETS.SYS;c:\windows\SYSNATIVE\Drivers\NISx64\1608000.032\SYMNETS.SYS [x]

S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]

.

.

--- Other Services/Drivers In Memory ---

.

*NewlyCreated* - MBAMSWISSARMY

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]

LocalServiceAndNoImpersonation             REG_MULTI_SZ                 SSDPSRV upnphost SCardSvr QWAVE wcncsvc

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2016-11-15 02:01             1364072              ----a-w- c:\program files (x86)\Google\Chrome\Application\54.0.2840.99\Installer\chrmstp.exe

.

Contents of the 'Scheduled Tasks' folder

.

2016-11-20 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job

- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe [2016-11-09 04:59]

.

2016-11-24 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-27 04:59]

.

2016-11-24 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job

- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-10 12:12]

.

2016-11-24 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job

- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-10 12:12]

.

2016-11-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-10-27 12:31]

.

2016-11-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-10-27 12:31]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]

@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]

@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]

@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]

@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]

@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt9]

@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]

2016-11-07 22:53             270144  ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.3.0.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]

@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"

[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]

2016-11-05 23:52             1802432              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\FileSyncShell64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]

@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"

[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]

2016-11-05 23:52             1802432              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\FileSyncShell64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]

@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"

[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]

2016-11-05 23:52             1802432              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\FileSyncShell64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]

@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"

[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]

2016-11-05 23:52             1802432              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\FileSyncShell64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]

@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"

[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]

2016-11-05 23:52             1802432              ----a-w-               c:\users\PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\FileSyncShell64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2014-03-21 13672304]

"IAStorIcon"="c:\program files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" [2014-05-28 36352]

"XFast LAN"="c:\program files\ASRock\XFast LAN\cFosSpeed.exe" [2013-05-31 2009952]

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2016-11-01 176440]

.

------- Supplementary Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com/

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local;<local>

IE: &Envoyer a OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105

IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office\Root\Office16\EXCEL.EXE/3000

IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - c:\program files\Microsoft Office\Root\Office16\ONBttnIE.dll/105

IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0411

IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0412

IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0804

IE: {{48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\progra~2\mcafee\siteadvisor\mcieplg.dll

TCP: DhcpNameServer = 192.168.1.254

FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\woljfb4a.default\

.

- - - - ORPHANS REMOVED - - - -

.

Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe

c:\users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 - Capture d’ecran et lancement.lnk - (no file)

.

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]

"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\22.8.1.14\diMaster.dll\" /prefetch:1"

"ImagePath"="\SystemRoot\System32\Drivers\NISx64\1608000.032\SYMNETS.SYS"

"TrustedImagePaths"="c:\program files (x86)\Norton Internet Security\Engine\22.8.0.50;c:\program files (x86)\Norton Internet Security\Engine64\22.8.0.50"

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

.

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.VCard.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Completion time: 2016-11-24  06:08:41

ComboFix-quarantined-files.txt  2016-11-24 05:08

.

Pre-Run: 41 402 347 520 bytes free

Post-Run: 40 876 044 288 bytes free

.

- - End Of File - - B15A993C9B19C70B640CBE91BCBFCBD2

A36C5E4F47E84449FF07ED3517B43A31



#13 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 24 November 2016 - 12:20 AM

TDSS Killer

06:15:29.0578 0x149c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01

06:15:33.0449 0x149c  ============================================================

06:15:33.0449 0x149c  Current date / time: 2016/11/24 06:15:33.0449

06:15:33.0449 0x149c  SystemInfo:

06:15:33.0449 0x149c 

06:15:33.0449 0x149c  OS Version: 6.1.7601 ServicePack: 1.0

06:15:33.0449 0x149c  Product type: Workstation

06:15:33.0449 0x149c  ComputerName: PC-PC

06:15:33.0450 0x149c  UserName: PC

06:15:33.0450 0x149c  Windows directory: C:\Windows

06:15:33.0450 0x149c  System windows directory: C:\Windows

06:15:33.0450 0x149c  Running under WOW64

06:15:33.0450 0x149c  Processor architecture: Intel x64

06:15:33.0450 0x149c  Number of processors: 4

06:15:33.0450 0x149c  Page size: 0x1000

06:15:33.0450 0x149c  Boot type: Normal boot

06:15:33.0450 0x149c  CodeIntegrityOptions = 0x00000001

06:15:33.0450 0x149c  ============================================================

06:15:33.0610 0x149c  KLMD registered as C:\Windows\system32\drivers\28936249.sys

06:15:33.0610 0x149c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23564, osProperties = 0x1

06:15:33.0729 0x149c  System UUID: {56297491-E44E-F71C-3CFD-DB60D188528B}

06:15:34.0026 0x149c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

06:15:34.0027 0x149c  Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

06:15:34.0031 0x149c  ============================================================

06:15:34.0031 0x149c  \Device\Harddisk0\DR0:

06:15:34.0031 0x149c  MBR partitions:

06:15:34.0031 0x149c  \Device\Harddisk1\DR1:

06:15:34.0031 0x149c  MBR partitions:

06:15:34.0031 0x149c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDF93800

06:15:34.0031 0x149c  ============================================================

06:15:34.0033 0x149c  C: <-> \Device\Harddisk1\DR1\Partition1

06:15:34.0033 0x149c  ============================================================

06:15:34.0033 0x149c  Initialize success

06:15:34.0033 0x149c  ============================================================

06:15:57.0478 0x18e8  ============================================================

06:15:57.0478 0x18e8  Scan started

06:15:57.0478 0x18e8  Mode: Manual; SigCheck; TDLFS;

06:15:57.0478 0x18e8  ============================================================

06:15:57.0478 0x18e8  KSN ping started

06:15:57.0646 0x18e8  KSN ping finished: true

06:15:57.0855 0x18e8  ================ Scan system memory ========================

06:15:57.0855 0x18e8  System memory - ok

06:15:57.0855 0x18e8  ================ Scan services =============================

06:15:57.0876 0x18e8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys

06:15:57.0921 0x18e8  1394ohci - ok

06:15:57.0932 0x18e8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys

06:15:57.0943 0x18e8  ACPI - ok

06:15:57.0946 0x18e8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys

06:15:57.0964 0x18e8  AcpiPmi - ok

06:15:57.0967 0x18e8  [ 2F0683FD2DF1D92E891CACA14B45A8C1, B4A8D6A183FA0B7D642FAD6B51C19FEC998481E1C49480D2B391E5D8B55F5BBD ] adfs            C:\Windows\system32\drivers\adfs.sys

06:15:57.0979 0x18e8  adfs - ok

06:15:57.0994 0x18e8  [ 7760EB1D134ECD2DCD83C067816F4B18, 03DB710DEF644387C536C90C893654EA05AD4C80362CEBD039F2368A13D491FE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

06:15:58.0005 0x18e8  AdobeFlashPlayerUpdateSvc - ok

06:15:58.0015 0x18e8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys

06:15:58.0031 0x18e8  adp94xx - ok

06:15:58.0038 0x18e8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys

06:15:58.0051 0x18e8  adpahci - ok

06:15:58.0056 0x18e8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys

06:15:58.0066 0x18e8  adpu320 - ok

06:15:58.0070 0x18e8  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

06:15:58.0079 0x18e8  AeLookupSvc - ok

06:15:58.0089 0x18e8  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys

06:15:58.0106 0x18e8  AFD - ok

06:15:58.0109 0x18e8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys

06:15:58.0117 0x18e8  agp440 - ok

06:15:58.0120 0x18e8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe

06:15:58.0130 0x18e8  ALG - ok

06:15:58.0133 0x18e8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys

06:15:58.0140 0x18e8  aliide - ok

06:15:58.0142 0x18e8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys

06:15:58.0149 0x18e8  amdide - ok

06:15:58.0152 0x18e8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys

06:15:58.0163 0x18e8  AmdK8 - ok

06:15:58.0166 0x18e8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys

06:15:58.0175 0x18e8  AmdPPM - ok

06:15:58.0179 0x18e8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

06:15:58.0188 0x18e8  amdsata - ok

06:15:58.0194 0x18e8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys

06:15:58.0204 0x18e8  amdsbs - ok

06:15:58.0207 0x18e8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys

06:15:58.0214 0x18e8  amdxata - ok

06:15:58.0217 0x18e8  [ 8B73FEE96B60EE597CBCAA735A842A36, AB3FC01FEC62AC115EC766770D8694DEDA2FF2286E0199DC238ABF2493EC1A22 ] AppID           C:\Windows\system32\drivers\appid.sys

06:15:58.0227 0x18e8  AppID - ok

06:15:58.0230 0x18e8  [ F5800413C0DF45C2CA15FD3ACBB1365F, 741E09EED0FF0152B59704729BD700E7D7A671C88F0708884AAB7A56ECCBD8AB ] AppIDSvc        C:\Windows\System32\appidsvc.dll

06:15:58.0238 0x18e8  AppIDSvc - ok

06:15:58.0242 0x18e8  [ B46099A534B7989D80330EA82D9092D6, 0CAC09732FAFAE805E55428B6BE001DCC39EBC599539FADE7AA68571A8A554E5 ] Appinfo         C:\Windows\System32\appinfo.dll

06:15:58.0251 0x18e8  Appinfo - ok

06:15:58.0257 0x18e8  [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

06:15:58.0265 0x18e8  Apple Mobile Device Service - ok

06:15:58.0272 0x18e8  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll

06:15:58.0283 0x18e8  AppMgmt - ok

06:15:58.0287 0x18e8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys

06:15:58.0295 0x18e8  arc - ok

06:15:58.0298 0x18e8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys

06:15:58.0307 0x18e8  arcsas - ok

06:15:58.0312 0x18e8  [ 10920CCB66203D7EF48F024B1B35AE6F, 3C97FE6C91076C059E54234F54021F5D74FB42638BE14E2C1E4CF2EFC342C274 ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys

06:15:58.0321 0x18e8  asmthub3 - ok

06:15:58.0330 0x18e8  [ C479BFAF73CF726E01AA0A487B268A5E, D49F7779CD25E098EC9DAF1886C3B3DB8EB22CEC0FEA6FDF4522A2B2D282AE37 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys

06:15:58.0344 0x18e8  asmtxhci - ok

06:15:58.0354 0x18e8  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

06:15:58.0363 0x18e8  aspnet_state - ok

06:15:58.0366 0x18e8  [ E1AFEE1584C74050DE0DD16DE2A54BF3, 77C8D98159D8BCDC7917B04977949823D50C49D0D13587310E060A4B8893AE42 ] AsrAppCharger   C:\Windows\system32\DRIVERS\AsrAppCharger.sys

06:15:58.0373 0x18e8  AsrAppCharger - ok

06:15:58.0376 0x18e8  [ 1A234F4643F5658BAB07BFA611282267, F40435488389B4FB3B945CA21A8325A51E1B5F80F045AB019748D0EC66056A8B ] AsrDrv101       C:\Windows\SysWOW64\Drivers\AsrDrv101.sys

06:15:58.0382 0x18e8  AsrDrv101 - ok

06:15:58.0393 0x18e8  [ A16DACE95B82683C852CD18578162735, 6E3663B43FB18BFD3B47A63297FA251C467D7B3C7B70020FC87DEAD8F0882B37 ] ASRockIOMon     C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe

06:15:58.0407 0x18e8  ASRockIOMon - ok

06:15:58.0410 0x18e8  [ A149C93231945A5118C63AEACA6D1E72, 60B28184585B389751FCF71651A139D74018DE04AEBF4A497835AF727B64BD53 ] AsrRamDisk      C:\Windows\system32\DRIVERS\AsrRamDisk.sys

06:15:58.0417 0x18e8  AsrRamDisk - ok

06:15:58.0419 0x18e8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

06:15:58.0440 0x18e8  AsyncMac - ok

06:15:58.0443 0x18e8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys

06:15:58.0450 0x18e8  atapi - ok

06:15:58.0464 0x18e8  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

06:15:58.0484 0x18e8  AudioEndpointBuilder - ok

06:15:58.0497 0x18e8  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll

06:15:58.0515 0x18e8  AudioSrv - ok

06:15:58.0520 0x18e8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll

06:15:58.0534 0x18e8  AxInstSV - ok

06:15:58.0543 0x18e8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys

06:15:58.0559 0x18e8  b06bdrv - ok

06:15:58.0567 0x18e8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys

06:15:58.0579 0x18e8  b57nd60a - ok

06:15:58.0583 0x18e8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll

06:15:58.0593 0x18e8  BDESVC - ok

06:15:58.0596 0x18e8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys

06:15:58.0618 0x18e8  Beep - ok

06:15:58.0632 0x18e8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll

06:15:58.0654 0x18e8  BFE - ok

06:15:58.0689 0x18e8  [ CE27F2268497E57A94A48F8D1B47A1B6, 459A2A5C7E1CA27E720AFA95B342CDFD52224467DC4FC54AF870BA5781643F88 ] BHDrvx64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\BASHDefs\20161121.001\BHDrvx64.sys

06:15:58.0725 0x18e8  BHDrvx64 - ok

06:15:58.0742 0x18e8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll

06:15:58.0778 0x18e8  BITS - ok

06:15:58.0782 0x18e8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys

06:15:58.0791 0x18e8  blbdrive - ok

06:15:58.0801 0x18e8  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

06:15:58.0814 0x18e8  Bonjour Service - ok

06:15:58.0818 0x18e8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

06:15:58.0828 0x18e8  bowser - ok

06:15:58.0830 0x18e8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys

06:15:58.0848 0x18e8  BrFiltLo - ok

06:15:58.0850 0x18e8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys

06:15:58.0860 0x18e8  BrFiltUp - ok

06:15:58.0864 0x18e8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys

06:15:58.0887 0x18e8  BridgeMP - ok

06:15:58.0892 0x18e8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll

06:15:58.0901 0x18e8  Browser - ok

06:15:58.0908 0x18e8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys

06:15:58.0921 0x18e8  Brserid - ok

06:15:58.0923 0x18e8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys

06:15:58.0934 0x18e8  BrSerWdm - ok

06:15:58.0936 0x18e8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys

06:15:58.0946 0x18e8  BrUsbMdm - ok

06:15:58.0948 0x18e8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys

06:15:58.0956 0x18e8  BrUsbSer - ok

06:15:58.0959 0x18e8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys

06:15:58.0970 0x18e8  BTHMODEM - ok

06:15:58.0974 0x18e8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll

06:15:58.0998 0x18e8  bthserv - ok

06:15:58.0999 0x18e8  catchme - ok

06:15:59.0005 0x18e8  [ 03427B8FF618BE50EB5027B4E549C0D8, 3C3815FE3C847B992E794B1BB0FDB87B8D18AEC95BA9E916591CF43EB8169D15 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1608010.00E\ccSetx64.sys

06:15:59.0016 0x18e8  ccSet_NIS - ok

06:15:59.0019 0x18e8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

06:15:59.0043 0x18e8  cdfs - ok

06:15:59.0047 0x18e8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys

06:15:59.0059 0x18e8  cdrom - ok

06:15:59.0063 0x18e8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll

06:15:59.0085 0x18e8  CertPropSvc - ok

06:15:59.0118 0x18e8  [ 1BF0745142C07A6967C6DB7DEBFF6B16, 50C60F59CC1FE6EFF4E79A0A2545B14FF4851881C9262D6CFA6EE0ECF027D1D6 ] cFosSpeed       C:\Windows\system32\DRIVERS\cfosspeed6.sys

06:15:59.0151 0x18e8  cFosSpeed - ok

06:15:59.0166 0x18e8  [ 49C58338E9572E2570E2C636A3CDAA42, 9E2271B008EABD1263507A4185FE0CFDE84C65A659DF350EF000325FA0340B66 ] cFosSpeedS      C:\Program Files\ASRock\XFast LAN\spd.exe

06:15:59.0185 0x18e8  cFosSpeedS - ok

06:15:59.0188 0x18e8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys

06:15:59.0199 0x18e8  circlass - ok

06:15:59.0207 0x18e8  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys

06:15:59.0221 0x18e8  CLFS - ok

06:15:59.0227 0x18e8  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

06:15:59.0235 0x18e8  clr_optimization_v2.0.50727_32 - ok

06:15:59.0240 0x18e8  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

06:15:59.0248 0x18e8  clr_optimization_v2.0.50727_64 - ok

06:15:59.0255 0x18e8  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

06:15:59.0265 0x18e8  clr_optimization_v4.0.30319_32 - ok

06:15:59.0269 0x18e8  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

06:15:59.0278 0x18e8  clr_optimization_v4.0.30319_64 - ok

06:15:59.0281 0x18e8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys

06:15:59.0290 0x18e8  CmBatt - ok

06:15:59.0292 0x18e8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys

06:15:59.0299 0x18e8  cmdide - ok

06:15:59.0310 0x18e8  [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG             C:\Windows\system32\Drivers\cng.sys

06:15:59.0328 0x18e8  CNG - ok

06:15:59.0331 0x18e8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys

06:15:59.0338 0x18e8  Compbatt - ok

06:15:59.0341 0x18e8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys

06:15:59.0351 0x18e8  CompositeBus - ok

06:15:59.0353 0x18e8  COMSysApp - ok

06:15:59.0360 0x18e8  [ 70FF066BD0F3A984FA2E96C338721441, 0259F20E114859B5538FE780A5137E0A83E4A60545F35E5F061C3504A2D6FF06 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe

06:15:59.0372 0x18e8  cphs - ok

06:15:59.0375 0x18e8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys

06:15:59.0382 0x18e8  crcdisk - ok

06:15:59.0388 0x18e8  [ BB724567892383010B8436DCC0A84628, 2768F5FD7A096CB1CEA33F8818EF16F9F5E3E07BB8442949A49A9CF24B62C6E6 ] CryptSvc        C:\Windows\system32\cryptsvc.dll

06:15:59.0399 0x18e8  CryptSvc - ok

06:15:59.0410 0x18e8  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys

06:15:59.0427 0x18e8  CSC - ok

06:15:59.0440 0x18e8  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll

06:15:59.0460 0x18e8  CscService - ok

06:15:59.0466 0x18e8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

06:15:59.0475 0x18e8  dbupdate - ok

06:15:59.0479 0x18e8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

06:15:59.0488 0x18e8  dbupdatem - ok

06:15:59.0490 0x18e8  [ 62C2617E1927776851B108717166BBA4, 5ED905AD21D2BA4308561BDFD2868A15A1F2062DFE1D28689D4082700C85500A ] DbxSvc          C:\Windows\system32\DbxSvc.exe

06:15:59.0502 0x18e8  DbxSvc - ok

06:15:59.0513 0x18e8  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll

06:15:59.0529 0x18e8  DcomLaunch - ok

06:15:59.0536 0x18e8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll

06:15:59.0563 0x18e8  defragsvc - ok

06:15:59.0567 0x18e8  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

06:15:59.0576 0x18e8  DfsC - ok

06:15:59.0583 0x18e8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll

06:15:59.0597 0x18e8  Dhcp - ok

06:15:59.0627 0x18e8  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll

06:15:59.0659 0x18e8  DiagTrack - ok

06:15:59.0664 0x18e8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys

06:15:59.0685 0x18e8  discache - ok

06:15:59.0689 0x18e8  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys

06:15:59.0697 0x18e8  Disk - ok

06:15:59.0702 0x18e8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

06:15:59.0713 0x18e8  Dnscache - ok

06:15:59.0719 0x18e8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll

06:15:59.0745 0x18e8  dot3svc - ok

06:15:59.0750 0x18e8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll

06:15:59.0773 0x18e8  DPS - ok

06:15:59.0775 0x18e8  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

06:15:59.0784 0x18e8  drmkaud - ok

06:15:59.0802 0x18e8  [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

06:15:59.0826 0x18e8  DXGKrnl - ok

06:15:59.0831 0x18e8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll

06:15:59.0854 0x18e8  EapHost - ok

06:15:59.0911 0x18e8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys

06:15:59.0976 0x18e8  ebdrv - ok

06:15:59.0990 0x18e8  [ 39A0F688628FAFBE8A2D742F1372FF06, F1529C24AC1DD87339562F2C08E5752A174FA0A357617084A83D8CF67C5DC795 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

06:16:00.0004 0x18e8  eeCtrl - ok

06:16:00.0007 0x18e8  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] EFS             C:\Windows\System32\lsass.exe

06:16:00.0015 0x18e8  EFS - ok

06:16:00.0029 0x18e8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

06:16:00.0050 0x18e8  ehRecvr - ok

06:16:00.0054 0x18e8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe

06:16:00.0064 0x18e8  ehSched - ok

06:16:00.0075 0x18e8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys

06:16:00.0091 0x18e8  elxstor - ok

06:16:00.0097 0x18e8  [ 9F8348FB4F51EC373F5AE1812756D0EE, AE9371A3749D33C7FDF753D8D46BF60E1EADC819517CE0C477ADE8EC3BAAEDEE ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

06:16:00.0106 0x18e8  EraserUtilRebootDrv - ok

06:16:00.0108 0x18e8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys

06:16:00.0116 0x18e8  ErrDev - ok

06:16:00.0127 0x18e8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll

06:16:00.0154 0x18e8  EventSystem - ok

06:16:00.0159 0x18e8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys

06:16:00.0184 0x18e8  exfat - ok

06:16:00.0190 0x18e8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys

06:16:00.0215 0x18e8  fastfat - ok

06:16:00.0229 0x18e8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe

06:16:00.0249 0x18e8  Fax - ok

06:16:00.0252 0x18e8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys

06:16:00.0260 0x18e8  fdc - ok

06:16:00.0263 0x18e8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll

06:16:00.0285 0x18e8  fdPHost - ok

06:16:00.0288 0x18e8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll

06:16:00.0310 0x18e8  FDResPub - ok

06:16:00.0313 0x18e8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

06:16:00.0322 0x18e8  FileInfo - ok

06:16:00.0325 0x18e8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

06:16:00.0348 0x18e8  Filetrace - ok

06:16:00.0361 0x18e8  [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

06:16:00.0377 0x18e8  FLEXnet Licensing Service - ok

06:16:00.0398 0x18e8  [ 1C3FB052A0BB72EDAED90785C34D6EED, 5300A82D1A79EBA1768F545E73974E3B8CE189AB39CDF905BF42AFA2E497186B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

06:16:00.0422 0x18e8  FLEXnet Licensing Service 64 - ok

06:16:00.0425 0x18e8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys

06:16:00.0434 0x18e8  flpydisk - ok

06:16:00.0440 0x18e8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

06:16:00.0452 0x18e8  FltMgr - ok

06:16:00.0475 0x18e8  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll

06:16:00.0503 0x18e8  FontCache - ok

06:16:00.0508 0x18e8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

06:16:00.0515 0x18e8  FontCache3.0.0.0 - ok

06:16:00.0518 0x18e8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

06:16:00.0526 0x18e8  FsDepends - ok

06:16:00.0529 0x18e8  [ 8DE1B4F579F8F8897409856F3BB7A7D2, F6F6B2450951E875C3C236F7798F960FD4433EE6B0C57132CB3D32126BEE34E0 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys

06:16:00.0538 0x18e8  fssfltr - ok

06:16:00.0566 0x18e8  [ 7B4C82899A967A7EB22DAB502770AE8E, 209FB59669070FCAAACB24B0CE81C375362BF1C519B15FDB5AA3EC2C87E2069B ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe

06:16:00.0598 0x18e8  fsssvc - ok

06:16:00.0606 0x18e8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

06:16:00.0614 0x18e8  Fs_Rec - ok

06:16:00.0619 0x18e8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

06:16:00.0632 0x18e8  fvevol - ok

06:16:00.0635 0x18e8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys

06:16:00.0643 0x18e8  gagp30kx - ok

06:16:00.0658 0x18e8  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll

06:16:00.0681 0x18e8  gpsvc - ok

06:16:00.0687 0x18e8  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

06:16:00.0696 0x18e8  gupdate - ok

06:16:00.0700 0x18e8  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

06:16:00.0708 0x18e8  gupdatem - ok

06:16:00.0710 0x18e8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys

06:16:00.0718 0x18e8  hcw85cir - ok

06:16:00.0727 0x18e8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

06:16:00.0742 0x18e8  HdAudAddService - ok

06:16:00.0747 0x18e8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys

06:16:00.0758 0x18e8  HDAudBus - ok

06:16:00.0761 0x18e8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys

06:16:00.0769 0x18e8  HidBatt - ok

06:16:00.0773 0x18e8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys

06:16:00.0784 0x18e8  HidBth - ok

06:16:00.0787 0x18e8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys

06:16:00.0797 0x18e8  HidIr - ok

06:16:00.0801 0x18e8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll

06:16:00.0823 0x18e8  hidserv - ok

06:16:00.0826 0x18e8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys

06:16:00.0834 0x18e8  HidUsb - ok

06:16:00.0838 0x18e8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll

06:16:00.0860 0x18e8  hkmsvc - ok

06:16:00.0867 0x18e8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

06:16:00.0879 0x18e8  HomeGroupListener - ok

06:16:00.0884 0x18e8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

06:16:00.0895 0x18e8  HomeGroupProvider - ok

06:16:00.0898 0x18e8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

06:16:00.0907 0x18e8  HpSAMD - ok

06:16:00.0910 0x18e8  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\Windows\system32\DRIVERS\htcnprot.sys

06:16:00.0916 0x18e8  htcnprot - ok

06:16:00.0931 0x18e8  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

06:16:00.0953 0x18e8  HTTP - ok

06:16:00.0956 0x18e8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

06:16:00.0963 0x18e8  hwpolicy - ok

06:16:00.0966 0x18e8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys

06:16:00.0976 0x18e8  i8042prt - ok

06:16:00.0991 0x18e8  [ 9EBE1AE8B3DA91D06BE1971EB37F7DA0, 55B0E66139C966AF0D4955B44363123198C559968C864DA85F6610CF1C844E8D ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys

06:16:01.0007 0x18e8  iaStorA - ok

06:16:01.0012 0x18e8  [ D524B034148F14C60F1CA66D267EE56A, 18045270C5CA718501285EE05EDED8B0EF998A881ACF19D9602F91A2A30E40AB ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

06:16:01.0017 0x18e8  IAStorDataMgrSvc - ok

06:16:01.0020 0x18e8  [ C018747131B4E90E9267BA5B31EB43A7, 0FA045B63500D6AA98CADD72BA8052BD2631387FD1270A9FD5A77EB7A7A14536 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys

06:16:01.0027 0x18e8  iaStorF - ok

06:16:01.0036 0x18e8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

06:16:01.0051 0x18e8  iaStorV - ok

06:16:01.0056 0x18e8  [ E199288F016C354255C39A84378A48F6, 881B41D64D73F7A3A1680EDD68201E14AC5C60B848374EEAE44CCDDE46010E81 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

06:16:01.0066 0x18e8  ICCS - ok

06:16:01.0083 0x18e8  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

06:16:01.0105 0x18e8  idsvc - ok

06:16:01.0127 0x18e8  [ 9BB8305D437FB039CF72492556CF4414, D574B3F1A171E2DCEEFA40C739FE5A4620C6EC2DC2A61300D1DAB5A7CA5C21E1 ] IDSVia64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.7.1.32\Definitions\IPSDefs\20161123.001\IDSvia64.sys

06:16:01.0149 0x18e8  IDSVia64 - ok

06:16:01.0152 0x18e8  IEEtwCollectorService - ok

06:16:01.0217 0x18e8  [ C38AFE18A40ADF005647090DD3AC24F3, 302810C31B005DD4C9143233AB5B4F332C62AD866A7C7AB0E8F8F81AE1766B11 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys

06:16:01.0298 0x18e8  igfx - ok

06:16:01.0309 0x18e8  [ 45FC5740B5E15150D0FD48596DC25B3A, 87CDDC0168F6B38CF7C87C9E09602D3A8250E3110E5D963C78A54F5D5DCCBD31 ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe

06:16:01.0321 0x18e8  igfxCUIService1.0.0.0 - ok

06:16:01.0324 0x18e8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys

06:16:01.0332 0x18e8  iirsp - ok

06:16:01.0349 0x18e8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll

06:16:01.0372 0x18e8  IKEEXT - ok

06:16:01.0441 0x18e8  [ 2DF4ACBD8897D56091C9873DE210C2BD, B00E3C91E716C2E927E37938DCFD1D044F573EDA3E35C4367F158EB16B77B675 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

06:16:01.0514 0x18e8  IntcAzAudAddService - ok

06:16:01.0528 0x18e8  [ 890144FA6AB42F2B54EE633BF96A019A, 8741904C66170BA11C78D31681E3759537C0BF2338538678BC64234DB8FDE93F ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys

06:16:01.0542 0x18e8  IntcDAud - ok

06:16:01.0546 0x18e8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys

06:16:01.0553 0x18e8  intelide - ok

06:16:01.0556 0x18e8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys

06:16:01.0565 0x18e8  intelppm - ok

06:16:01.0569 0x18e8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

06:16:01.0592 0x18e8  IPBusEnum - ok

06:16:01.0596 0x18e8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

06:16:01.0621 0x18e8  IpFilterDriver - ok

06:16:01.0632 0x18e8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

06:16:01.0653 0x18e8  iphlpsvc - ok

06:16:01.0657 0x18e8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys

06:16:01.0666 0x18e8  IPMIDRV - ok

06:16:01.0670 0x18e8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

06:16:01.0694 0x18e8  IPNAT - ok

06:16:01.0707 0x18e8  [ C37FAF1F0CE458D124A326FC8A7FF08D, 0147897CDF6DC2AB7113672D2B62CB258303FB0482B084C23C2E7EFCDE0065B4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

06:16:01.0724 0x18e8  iPod Service - ok

06:16:01.0727 0x18e8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys

06:16:01.0741 0x18e8  IRENUM - ok

06:16:01.0744 0x18e8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

06:16:01.0751 0x18e8  isapnp - ok

06:16:01.0758 0x18e8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys

06:16:01.0770 0x18e8  iScsiPrt - ok

06:16:01.0773 0x18e8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys

06:16:01.0780 0x18e8  kbdclass - ok

06:16:01.0783 0x18e8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys

06:16:01.0793 0x18e8  kbdhid - ok

06:16:01.0795 0x18e8  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] KeyIso          C:\Windows\system32\lsass.exe

06:16:01.0804 0x18e8  KeyIso - ok

06:16:01.0808 0x18e8  [ CF11CC2B73D5155533C67354F9188E09, D59C30B9651F8E0952DFF34A010BC60A1D27AE10F5705C54424BF6BB7ADF9F62 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

06:16:01.0816 0x18e8  KSecDD - ok

06:16:01.0821 0x18e8  [ 2E56D51B184EFB8E353B7AF446299DC8, CE7AAFF89F3A0BFE191DE90430A04C7FB899F5CF3B704AA5A96F47D5F37192B2 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

06:16:01.0830 0x18e8  KSecPkg - ok

06:16:01.0832 0x18e8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

06:16:01.0854 0x18e8  ksthunk - ok

06:16:01.0862 0x18e8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll

06:16:01.0890 0x18e8  KtmRm - ok

06:16:01.0897 0x18e8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll

06:16:01.0923 0x18e8  LanmanServer - ok

06:16:01.0927 0x18e8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

06:16:01.0950 0x18e8  LanmanWorkstation - ok

06:16:01.0954 0x18e8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

06:16:01.0976 0x18e8  lltdio - ok

06:16:01.0983 0x18e8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll

06:16:02.0010 0x18e8  lltdsvc - ok

06:16:02.0012 0x18e8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll

06:16:02.0035 0x18e8  lmhosts - ok

06:16:02.0045 0x18e8  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

06:16:02.0058 0x18e8  LMS - ok

06:16:02.0063 0x18e8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys

06:16:02.0071 0x18e8  LSI_FC - ok

06:16:02.0075 0x18e8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys

06:16:02.0084 0x18e8  LSI_SAS - ok

06:16:02.0087 0x18e8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys

06:16:02.0095 0x18e8  LSI_SAS2 - ok

06:16:02.0099 0x18e8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys

06:16:02.0108 0x18e8  LSI_SCSI - ok

06:16:02.0112 0x18e8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys

06:16:02.0134 0x18e8  luafv - ok

06:16:02.0138 0x18e8  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys

06:16:02.0145 0x18e8  MBAMProtector - ok

06:16:02.0173 0x18e8  [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

06:16:02.0202 0x18e8  MBAMScheduler - ok

06:16:02.0223 0x18e8  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

06:16:02.0249 0x18e8  MBAMService - ok

06:16:02.0255 0x18e8  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys

06:16:02.0265 0x18e8  MBAMSwissArmy - ok

06:16:02.0268 0x18e8  [ 452ACB7A9914398D9E18CCCFFCF92208, 754AF45C19731C356E7E84497B04E0333759AC86DC553BA275EFC09845E43E4D ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys

06:16:02.0275 0x18e8  MBAMWebAccessControl - ok

06:16:02.0281 0x18e8  [ BA2BFC92D36E9A52D34D90322855C21B, 597FA65369FA60A0D808D7101EFCA0E9E825BA2F5648695A428D20B9933CA6C0 ] McAfee SiteAdvisor Service C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe

06:16:02.0292 0x18e8  McAfee SiteAdvisor Service - ok

06:16:02.0295 0x18e8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

06:16:02.0305 0x18e8  Mcx2Svc - ok

06:16:02.0308 0x18e8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys

06:16:02.0315 0x18e8  megasas - ok

06:16:02.0322 0x18e8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys

06:16:02.0334 0x18e8  MegaSR - ok

06:16:02.0338 0x18e8  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys

06:16:02.0346 0x18e8  MEIx64 - ok

06:16:02.0350 0x18e8  [ DA49A90A69B3284FD11B6F02D0209A99, 759380964E6450FF21FB9A2BD23BA0394B005EC332E714D40D47262FCDC6CFE9 ] mfesapsn        C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys

06:16:02.0357 0x18e8  mfesapsn - ok

06:16:02.0361 0x18e8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll

06:16:02.0383 0x18e8  MMCSS - ok

06:16:02.0386 0x18e8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys

06:16:02.0408 0x18e8  Modem - ok

06:16:02.0411 0x18e8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

06:16:02.0420 0x18e8  monitor - ok

06:16:02.0423 0x18e8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys

06:16:02.0431 0x18e8  mouclass - ok

06:16:02.0433 0x18e8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys

06:16:02.0442 0x18e8  mouhid - ok

06:16:02.0446 0x18e8  [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

06:16:02.0454 0x18e8  mountmgr - ok

06:16:02.0460 0x18e8  [ 86320BA9D6A972C79D467931518B165A, 4D7ABD7E5637B9AF98D7F3D4C4DAE595C27C8FEEBAAFF9E6443271C41598FCE1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

06:16:02.0470 0x18e8  MozillaMaintenance - ok

06:16:02.0475 0x18e8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys

06:16:02.0484 0x18e8  mpio - ok

06:16:02.0488 0x18e8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

06:16:02.0510 0x18e8  mpsdrv - ok

06:16:02.0527 0x18e8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll

06:16:02.0562 0x18e8  MpsSvc - ok

06:16:02.0567 0x18e8  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          



#14 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 24 November 2016 - 12:21 AM

C:\Windows\system32\drivers\mrxdav.sys

06:16:02.0576 0x18e8  MRxDAV - ok

06:16:02.0581 0x18e8  [ FCA01B0C70DAE9BE557577E719469D17, F9868B7B50EF6323BF6690F087A83928A1E82B96A19B27F344E10BF11E520C32 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

06:16:02.0592 0x18e8  mrxsmb - ok

06:16:02.0599 0x18e8  [ 386BE96797C5B480AD31E8B50CEE337C, 88E826F42BEB38CAA7C84AE6ED4D8EBC4D382A8A37CF9F7B8517B297F168F1B3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

06:16:02.0611 0x18e8  mrxsmb10 - ok

06:16:02.0615 0x18e8  [ 841474CF2EB14F826038FBCC7D85B857, 4B1BC8AFDA54D1F16AC2AAB7EDDAE07FBF1E3B65D1658F8901A3E3175AF72800 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

06:16:02.0625 0x18e8  mrxsmb20 - ok

06:16:02.0627 0x18e8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys

06:16:02.0635 0x18e8  msahci - ok

06:16:02.0639 0x18e8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

06:16:02.0648 0x18e8  msdsm - ok

06:16:02.0653 0x18e8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe

06:16:02.0665 0x18e8  MSDTC - ok

06:16:02.0669 0x18e8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

06:16:02.0691 0x18e8  Msfs - ok

06:16:02.0693 0x18e8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

06:16:02.0715 0x18e8  mshidkmdf - ok

06:16:02.0717 0x18e8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

06:16:02.0725 0x18e8  msisadrv - ok

06:16:02.0730 0x18e8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

06:16:02.0754 0x18e8  MSiSCSI - ok

06:16:02.0756 0x18e8  msiserver - ok

06:16:02.0759 0x18e8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

06:16:02.0780 0x18e8  MSKSSRV - ok

06:16:02.0782 0x18e8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

06:16:02.0805 0x18e8  MSPCLOCK - ok

06:16:02.0808 0x18e8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

06:16:02.0830 0x18e8  MSPQM - ok

06:16:02.0838 0x18e8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

06:16:02.0851 0x18e8  MsRPC - ok

06:16:02.0855 0x18e8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

06:16:02.0862 0x18e8  mssmbios - ok

06:16:02.0865 0x18e8  MSSQL$SQLEXPRESS - ok

06:16:02.0868 0x18e8  [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe

06:16:02.0875 0x18e8  MSSQLServerADHelper - ok

06:16:02.0877 0x18e8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

06:16:02.0899 0x18e8  MSTEE - ok

06:16:02.0901 0x18e8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys

06:16:02.0909 0x18e8  MTConfig - ok

06:16:02.0912 0x18e8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys

06:16:02.0920 0x18e8  Mup - ok

06:16:02.0930 0x18e8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll

06:16:02.0959 0x18e8  napagent - ok

06:16:02.0967 0x18e8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

06:16:02.0982 0x18e8  NativeWifiP - ok

06:16:02.0985 0x18e8  NAVENG - ok

06:16:02.0987 0x18e8  NAVEX15 - ok

06:16:03.0007 0x18e8  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys

06:16:03.0028 0x18e8  NDIS - ok

06:16:03.0031 0x18e8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

06:16:03.0053 0x18e8  NdisCap - ok

06:16:03.0056 0x18e8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

06:16:03.0078 0x18e8  NdisTapi - ok

06:16:03.0081 0x18e8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

06:16:03.0102 0x18e8  Ndisuio - ok

06:16:03.0107 0x18e8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

06:16:03.0131 0x18e8  NdisWan - ok

06:16:03.0134 0x18e8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

06:16:03.0155 0x18e8  NDProxy - ok

06:16:03.0158 0x18e8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

06:16:03.0180 0x18e8  NetBIOS - ok

06:16:03.0187 0x18e8  [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

06:16:03.0199 0x18e8  NetBT - ok

06:16:03.0202 0x18e8  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] Netlogon        C:\Windows\system32\lsass.exe

06:16:03.0210 0x18e8  Netlogon - ok

06:16:03.0218 0x18e8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll

06:16:03.0245 0x18e8  Netman - ok

06:16:03.0252 0x18e8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

06:16:03.0262 0x18e8  NetMsmqActivator - ok

06:16:03.0266 0x18e8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

06:16:03.0275 0x18e8  NetPipeActivator - ok

06:16:03.0285 0x18e8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll

06:16:03.0314 0x18e8  netprofm - ok

06:16:03.0318 0x18e8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

06:16:03.0328 0x18e8  NetTcpActivator - ok

06:16:03.0332 0x18e8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

06:16:03.0341 0x18e8  NetTcpPortSharing - ok

06:16:03.0345 0x18e8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys

06:16:03.0353 0x18e8  nfrd960 - ok

06:16:03.0362 0x18e8  [ DE89E741E8004952A97A63109CBB164C, 09DB82A3E1E4478BE3C4F7BBE71DFD12C3E2B5BDB9C3182B2DC79B49898C70C9 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe

06:16:03.0374 0x18e8  NIS - ok

06:16:03.0381 0x18e8  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll

06:16:03.0395 0x18e8  NlaSvc - ok

06:16:03.0398 0x18e8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys

06:16:03.0420 0x18e8  Npfs - ok

06:16:03.0422 0x18e8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll

06:16:03.0445 0x18e8  nsi - ok

06:16:03.0448 0x18e8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

06:16:03.0469 0x18e8  nsiproxy - ok

06:16:03.0500 0x18e8  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

06:16:03.0532 0x18e8  Ntfs - ok

06:16:03.0536 0x18e8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys

06:16:03.0557 0x18e8  Null - ok

06:16:03.0562 0x18e8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys

06:16:03.0571 0x18e8  nvraid - ok

06:16:03.0576 0x18e8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

06:16:03.0586 0x18e8  nvstor - ok

06:16:03.0590 0x18e8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

06:16:03.0599 0x18e8  nv_agp - ok

06:16:03.0604 0x18e8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

06:16:03.0614 0x18e8  ohci1394 - ok

06:16:03.0619 0x18e8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

06:16:03.0627 0x18e8  ose - ok

06:16:03.0715 0x18e8  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

06:16:03.0798 0x18e8  osppsvc - ok

06:16:03.0811 0x18e8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

06:16:03.0825 0x18e8  p2pimsvc - ok

06:16:03.0835 0x18e8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll

06:16:03.0850 0x18e8  p2psvc - ok

06:16:03.0854 0x18e8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys

06:16:03.0863 0x18e8  Parport - ok

06:16:03.0867 0x18e8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys

06:16:03.0875 0x18e8  partmgr - ok

06:16:03.0881 0x18e8  [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

06:16:03.0886 0x18e8  PassThru Service - detected UnsignedFile.Multi.Generic ( 1 )

06:16:04.0164 0x18e8  Detect skipped due to KSN trusted

06:16:04.0164 0x18e8  PassThru Service - ok

06:16:04.0182 0x18e8  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll

06:16:04.0211 0x18e8  PcaSvc - ok

06:16:04.0218 0x18e8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys

06:16:04.0231 0x18e8  pci - ok

06:16:04.0235 0x18e8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys

06:16:04.0242 0x18e8  pciide - ok

06:16:04.0249 0x18e8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys

06:16:04.0260 0x18e8  pcmcia - ok

06:16:04.0262 0x18e8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys

06:16:04.0270 0x18e8  pcw - ok

06:16:04.0283 0x18e8  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

06:16:04.0303 0x18e8  PEAUTH - ok

06:16:04.0328 0x18e8  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll

06:16:04.0359 0x18e8  PeerDistSvc - ok

06:16:04.0370 0x18e8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe

06:16:04.0379 0x18e8  PerfHost - ok

06:16:04.0407 0x18e8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll

06:16:04.0451 0x18e8  pla - ok

06:16:04.0461 0x18e8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

06:16:04.0476 0x18e8  PlugPlay - ok

06:16:04.0479 0x18e8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

06:16:04.0488 0x18e8  PNRPAutoReg - ok

06:16:04.0495 0x18e8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

06:16:04.0508 0x18e8  PNRPsvc - ok

06:16:04.0518 0x18e8  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

06:16:04.0535 0x18e8  PolicyAgent - ok

06:16:04.0540 0x18e8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll

06:16:04.0565 0x18e8  Power - ok

06:16:04.0569 0x18e8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

06:16:04.0591 0x18e8  PptpMiniport - ok

06:16:04.0594 0x18e8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys

06:16:04.0603 0x18e8  Processor - ok

06:16:04.0609 0x18e8  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll

06:16:04.0620 0x18e8  ProfSvc - ok

06:16:04.0623 0x18e8  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] ProtectedStorage C:\Windows\system32\lsass.exe

06:16:04.0631 0x18e8  ProtectedStorage - ok

06:16:04.0635 0x18e8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

06:16:04.0659 0x18e8  Psched - ok

06:16:04.0687 0x18e8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys

06:16:04.0719 0x18e8  ql2300 - ok

06:16:04.0724 0x18e8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys

06:16:04.0734 0x18e8  ql40xx - ok

06:16:04.0740 0x18e8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll

06:16:04.0754 0x18e8  QWAVE - ok

06:16:04.0757 0x18e8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

06:16:04.0769 0x18e8  QWAVEdrv - ok

06:16:04.0772 0x18e8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

06:16:04.0793 0x18e8  RasAcd - ok

06:16:04.0796 0x18e8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

06:16:04.0819 0x18e8  RasAgileVpn - ok

06:16:04.0822 0x18e8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll

06:16:04.0846 0x18e8  RasAuto - ok

06:16:04.0850 0x18e8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

06:16:04.0874 0x18e8  Rasl2tp - ok

06:16:04.0881 0x18e8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll

06:16:04.0909 0x18e8  RasMan - ok

06:16:04.0913 0x18e8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

06:16:04.0937 0x18e8  RasPppoe - ok

06:16:04.0940 0x18e8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

06:16:04.0963 0x18e8  RasSstp - ok

06:16:04.0970 0x18e8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

06:16:04.0996 0x18e8  rdbss - ok

06:16:04.0999 0x18e8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys

06:16:05.0009 0x18e8  rdpbus - ok

06:16:05.0011 0x18e8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

06:16:05.0033 0x18e8  RDPCDD - ok

06:16:05.0038 0x18e8  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys

06:16:05.0049 0x18e8  RDPDR - ok

06:16:05.0052 0x18e8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

06:16:05.0073 0x18e8  RDPENCDD - ok

06:16:05.0076 0x18e8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

06:16:05.0097 0x18e8  RDPREFMP - ok

06:16:05.0101 0x18e8  [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

06:16:05.0109 0x18e8  RdpVideoMiniport - ok

06:16:05.0114 0x18e8  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

06:16:05.0126 0x18e8  RDPWD - ok

06:16:05.0132 0x18e8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

06:16:05.0142 0x18e8  rdyboost - ok

06:16:05.0146 0x18e8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll

06:16:05.0169 0x18e8  RemoteAccess - ok

06:16:05.0174 0x18e8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

06:16:05.0198 0x18e8  RemoteRegistry - ok

06:16:05.0202 0x18e8  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys

06:16:05.0209 0x18e8  Revoflt - ok

06:16:05.0212 0x18e8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

06:16:05.0234 0x18e8  RpcEptMapper - ok

06:16:05.0237 0x18e8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe

06:16:05.0245 0x18e8  RpcLocator - ok

06:16:05.0256 0x18e8  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll

06:16:05.0271 0x18e8  RpcSs - ok

06:16:05.0275 0x18e8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

06:16:05.0297 0x18e8  rspndr - ok

06:16:05.0316 0x18e8  [ D2D055E7ED70A5EE885D17D35DF97E80, 51781E55EEE111140A261822D3F78D76AD288E9DDF8578E236358E0AEB872C2F ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys

06:16:05.0338 0x18e8  RTL8167 - ok

06:16:05.0341 0x18e8  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys

06:16:05.0349 0x18e8  s3cap - ok

06:16:05.0352 0x18e8  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] SamSs           C:\Windows\system32\lsass.exe

06:16:05.0360 0x18e8  SamSs - ok

06:16:05.0363 0x18e8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

06:16:05.0372 0x18e8  sbp2port - ok

06:16:05.0378 0x18e8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

06:16:05.0402 0x18e8  SCardSvr - ok

06:16:05.0405 0x18e8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

06:16:05.0427 0x18e8  scfilter - ok

06:16:05.0447 0x18e8  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll

06:16:05.0471 0x18e8  Schedule - ok

06:16:05.0476 0x18e8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll

06:16:05.0497 0x18e8  SCPolicySvc - ok

06:16:05.0502 0x18e8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

06:16:05.0513 0x18e8  SDRSVC - ok

06:16:05.0515 0x18e8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys

06:16:05.0523 0x18e8  secdrv - ok

06:16:05.0526 0x18e8  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll

06:16:05.0534 0x18e8  seclogon - ok

06:16:05.0537 0x18e8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll

06:16:05.0560 0x18e8  SENS - ok

06:16:05.0563 0x18e8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll

06:16:05.0571 0x18e8  SensrSvc - ok

06:16:05.0574 0x18e8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys

06:16:05.0582 0x18e8  Serenum - ok

06:16:05.0585 0x18e8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys

06:16:05.0595 0x18e8  Serial - ok

06:16:05.0598 0x18e8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys

06:16:05.0717 0x18e8  sermouse - ok

06:16:05.0735 0x18e8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll

06:16:05.0771 0x18e8  SessionEnv - ok

06:16:05.0773 0x18e8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

06:16:05.0783 0x18e8  sffdisk - ok

06:16:05.0785 0x18e8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

06:16:05.0795 0x18e8  sffp_mmc - ok

06:16:05.0797 0x18e8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

06:16:05.0808 0x18e8  sffp_sd - ok

06:16:05.0811 0x18e8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys

06:16:05.0819 0x18e8  sfloppy - ok

06:16:05.0827 0x18e8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll

06:16:05.0855 0x18e8  SharedAccess - ok

06:16:05.0863 0x18e8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

06:16:05.0890 0x18e8  ShellHWDetection - ok

06:16:05.0892 0x18e8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys

06:16:05.0900 0x18e8  SiSRaid2 - ok

06:16:05.0903 0x18e8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys

06:16:05.0912 0x18e8  SiSRaid4 - ok

06:16:05.0920 0x18e8  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

06:16:05.0934 0x18e8  SkypeUpdate - ok

06:16:05.0937 0x18e8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

06:16:05.0960 0x18e8  Smb - ok

06:16:05.0965 0x18e8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

06:16:05.0974 0x18e8  SNMPTRAP - ok

06:16:05.0977 0x18e8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys

06:16:05.0984 0x18e8  spldr - ok

06:16:05.0996 0x18e8  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe

06:16:06.0025 0x18e8  Spooler - ok

06:16:06.0085 0x18e8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe

06:16:06.0165 0x18e8  sppsvc - ok

06:16:06.0172 0x18e8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll

06:16:06.0195 0x18e8  sppuinotify - ok

06:16:06.0201 0x18e8  [ 86EBD8B1F23E743AAD21F4D5B4D40985, 8FA4DFDAE15712266B878C364FEFDB63CB30A3DCC25F83CDFE8C8AB3AE864BE6 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

06:16:06.0210 0x18e8  SQLBrowser - ok

06:16:06.0216 0x18e8  [ 3C432A96363097870995E2A3C8B66ABD, AA0AE0935FC5317FE93D7D3C3B9A6B2E026915D07704AF3E36F14FEA8595F4A6 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

06:16:06.0225 0x18e8  SQLWriter - ok

06:16:06.0241 0x18e8  [ 77B9B8AAEEA1E6DECC53F7473A0B5C1E, 8B61E30B67C8CAEC4C61EBF9B34FB85105B36DF25F7A61294517EB394EFCAEC7 ] SRTSP           C:\Windows\System32\Drivers\NISx64\1608000.032\SRTSP64.SYS

06:16:06.0261 0x18e8  SRTSP - ok

06:16:06.0265 0x18e8  [ 95A3FB783462DB5D197E270EEA7DF531, DDF045A36D88AD10351D8AAEAC4A56FEB341DAA2CE2EAD1FF00CEB154816E4D3 ] SRTSPX          C:\Windows\system32\drivers\NISx64\1608010.00E\SRTSPX64.SYS

06:16:06.0273 0x18e8  SRTSPX - ok

06:16:06.0283 0x18e8  [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv             C:\Windows\system32\DRIVERS\srv.sys

06:16:06.0299 0x18e8  srv - ok

06:16:06.0309 0x18e8  [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

06:16:06.0323 0x18e8  srv2 - ok

06:16:06.0329 0x18e8  [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

06:16:06.0339 0x18e8  srvnet - ok

06:16:06.0345 0x18e8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

06:16:06.0369 0x18e8  SSDPSRV - ok

06:16:06.0373 0x18e8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll

06:16:06.0399 0x18e8  SstpSvc - ok

06:16:06.0404 0x18e8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys

06:16:06.0412 0x18e8  stexstor - ok

06:16:06.0424 0x18e8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll

06:16:06.0446 0x18e8  stisvc - ok

06:16:06.0449 0x18e8  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys

06:16:06.0457 0x18e8  storflt - ok

06:16:06.0459 0x18e8  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys

06:16:06.0467 0x18e8  storvsc - ok

06:16:06.0469 0x18e8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys

06:16:06.0476 0x18e8  swenum - ok

06:16:06.0487 0x18e8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll

06:16:06.0517 0x18e8  swprv - ok

06:16:06.0546 0x18e8  [ 81EAACC92D94E05AC1AC6019C0C6530D, 88A667FCE37751062A251383A44E1010B4C127D0E116C0C12EC1402A69F61434 ] SymEFASI        C:\Windows\system32\drivers\NISx64\1608010.00E\SYMEFASI64.SYS

06:16:06.0580 0x18e8  SymEFASI - ok

06:16:06.0585 0x18e8  [ E542C084F75E441550FB5D27B3557E96, 61691BD0587CD11DBA674F1C48F4C50049D964DC1C8B949925EA51097B89AA14 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS

06:16:06.0594 0x18e8  SymEvent - ok

06:16:06.0601 0x18e8  [ 33F2551E1A387BC0FA69FB1D34C7F981, 00B6CADDA89C443479008DCF4D95E4B04D3F1CB5CE7BE7F53D9740FA57D397DE ] SymIRON         C:\Windows\system32\drivers\NISx64\1608010.00E\Ironx64.SYS

06:16:07.0284 0x18e8  SymIRON - ok

06:16:07.0325 0x18e8  [ 7BBF917EBDBD1099410B90DA3B3E5D66, E5725B6FDDF57E32A8465E278A56FAD366E443C77B8DDDE594D8AB6602B05320 ] SymNetS         C:\Windows\System32\Drivers\NISx64\1608000.032\SYMNETS.SYS

06:16:07.0349 0x18e8  SymNetS - ok

06:16:07.0382 0x18e8  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll

06:16:07.0418 0x18e8  SysMain - ok

06:16:07.0423 0x18e8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

06:16:07.0435 0x18e8  TabletInputService - ok

06:16:07.0443 0x18e8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll

06:16:07.0468 0x18e8  TapiSrv - ok

06:16:07.0501 0x18e8  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

06:16:07.0536 0x18e8  Tcpip - ok

06:16:07.0570 0x18e8  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

06:16:07.0605 0x18e8  TCPIP6 - ok

06:16:08.0038 0x18e8  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

06:16:08.0069 0x18e8  tcpipreg - ok

06:16:08.0079 0x18e8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

06:16:08.0094 0x18e8  TDPIPE - ok

06:16:08.0097 0x18e8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

06:16:08.0112 0x18e8  TDTCP - ok

06:16:08.0119 0x18e8  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

06:16:08.0135 0x18e8  tdx - ok

06:16:08.0291 0x18e8  [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

06:16:08.0408 0x18e8  TeamViewer - ok

06:16:08.0417 0x18e8  [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn   C:\Windows\system32\DRIVERS\teamviewervpn.sys

06:16:08.0423 0x18e8  teamviewervpn - ok

06:16:08.0427 0x18e8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys

06:16:08.0436 0x18e8  TermDD - ok

06:16:08.0450 0x18e8  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll

06:16:08.0468 0x18e8  TermService - ok

06:16:08.0471 0x18e8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll

06:16:08.0483 0x18e8  Themes - ok

06:16:08.0487 0x18e8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll

06:16:08.0508 0x18e8  THREADORDER - ok

06:16:08.0513 0x18e8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll

06:16:08.0537 0x18e8  TrkWks - ok

06:16:08.0543 0x18e8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

06:16:08.0566 0x18e8  TrustedInstaller - ok

06:16:08.0570 0x18e8  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

06:16:08.0579 0x18e8  tssecsrv - ok

06:16:08.0582 0x18e8  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

06:16:08.0591 0x18e8  TsUsbFlt - ok

06:16:08.0595 0x18e8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

06:16:08.0622 0x18e8  tunnel - ok

06:16:08.0625 0x18e8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys

06:16:08.0633 0x18e8  uagp35 - ok

06:16:08.0640 0x18e8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

06:16:08.0668 0x18e8  udfs - ok

06:16:08.0673 0x18e8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe

06:16:08.0684 0x18e8  UI0Detect - ok

06:16:08.0687 0x18e8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

06:16:08.0695 0x18e8  uliagpkx - ok

06:16:08.0698 0x18e8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

06:16:08.0708 0x18e8  umbus - ok

06:16:08.0710 0x18e8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys

06:16:08.0718 0x18e8  UmPass - ok

06:16:08.0724 0x18e8  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll

06:16:08.0737 0x18e8  UmRdpService - ok

06:16:08.0746 0x18e8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll

06:16:08.0774 0x18e8  upnphost - ok

06:16:08.0778 0x18e8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys

06:16:08.0787 0x18e8  usbaudio - ok

06:16:08.0790 0x18e8  [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys

06:16:08.0800 0x18e8  usbccgp - ok

06:16:08.0804 0x18e8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys

06:16:08.0813 0x18e8  usbcir - ok

06:16:08.0816 0x18e8  [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci         C:\Windows\system32\drivers\usbehci.sys

06:16:08.0824 0x18e8  usbehci - ok

06:16:08.0832 0x18e8  [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub          C:\Windows\system32\drivers\usbhub.sys

06:16:08.0845 0x18e8  usbhub - ok

06:16:08.0848 0x18e8  [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci         C:\Windows\system32\drivers\usbohci.sys

06:16:08.0856 0x18e8  usbohci - ok

06:16:08.0859 0x18e8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

06:16:08.0869 0x18e8  usbprint - ok

06:16:08.0873 0x18e8  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

06:16:08.0881 0x18e8  USBSTOR - ok

06:16:08.0884 0x18e8  [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys

06:16:08.0892 0x18e8  usbuhci - ok

06:16:08.0897 0x18e8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

06:16:08.0908 0x18e8  usbvideo - ok

06:16:08.0911 0x18e8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll

06:16:08.0933 0x18e8  UxSms - ok

06:16:08.0935 0x18e8  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] VaultSvc        C:\Windows\system32\lsass.exe

06:16:08.0943 0x18e8  VaultSvc - ok

06:16:08.0946 0x18e8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

06:16:08.0954 0x18e8  vdrvroot - ok

06:16:08.0965 0x18e8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe

06:16:08.0995 0x18e8  vds - ok

06:16:08.0998 0x18e8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

06:16:09.0008 0x18e8  vga - ok

06:16:09.0010 0x18e8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys

06:16:09.0031 0x18e8  VgaSave - ok

06:16:09.0037 0x18e8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

06:16:09.0048 0x18e8  vhdmp - ok

06:16:09.0051 0x18e8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys

06:16:09.0058 0x18e8  viaide - ok

06:16:09.0063 0x18e8  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys

06:16:09.0073 0x18e8  vmbus - ok

06:16:09.0076 0x18e8  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys

06:16:09.0084 0x18e8  VMBusHID - ok

06:16:09.0087 0x18e8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

06:16:09.0096 0x18e8  volmgr - ok

06:16:09.0104 0x18e8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

06:16:09.0117 0x18e8  volmgrx - ok

06:16:09.0124 0x18e8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys

06:16:09.0136 0x18e8  volsnap - ok

06:16:09.0141 0x18e8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys

06:16:09.0150 0x18e8  vsmraid - ok

06:16:09.0179 0x18e8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe

06:16:09.0227 0x18e8  VSS - ok

06:16:09.0231 0x18e8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys

06:16:09.0240 0x18e8  vwifibus - ok

06:16:09.0249 0x18e8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll

06:16:09.0277 0x18e8  W32Time - ok

06:16:09.0280 0x18e8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys

06:16:09.0289 0x18e8  WacomPen - ok

06:16:09.0293 0x18e8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys

06:16:09.0314 0x18e8  WANARP - ok

06:16:09.0317 0x18e8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

06:16:09.0338 0x18e8  Wanarpv6 - ok

06:16:09.0361 0x18e8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe

06:16:09.0389 0x18e8  WatAdminSvc - ok

06:16:09.0417 0x18e8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe

06:16:09.0450 0x18e8  wbengine - ok

06:16:09.0457 0x18e8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll

06:16:09.0472 0x18e8  WbioSrvc - ok

06:16:09.0480 0x18e8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll

06:16:09.0497 0x18e8  wcncsvc - ok

06:16:09.0500 0x18e8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

06:16:09.0510 0x18e8  WcsPlugInService - ok

06:16:09.0512 0x18e8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys

06:16:09.0519 0x18e8  Wd - ok

06:16:09.0535 0x18e8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

06:16:09.0554 0x18e8  Wdf01000 - ok

06:16:09.0558 0x18e8  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll

06:16:09.0568 0x18e8  WdiServiceHost - ok

06:16:09.0570 0x18e8  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll

06:16:09.0579 0x18e8  WdiSystemHost - ok

06:16:09.0586 0x18e8  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient       C:\Windows\System32\webclnt.dll

06:16:09.0599 0x18e8  WebClient - ok

06:16:09.0607 0x18e8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll

06:16:09.0633 0x18e8  Wecsvc - ok

06:16:09.0636 0x18e8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

06:16:09.0660 0x18e8  wercplsupport - ok

06:16:09.0664 0x18e8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll

06:16:09.0687 0x18e8  WerSvc - ok

06:16:09.0690 0x18e8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys

06:16:09.0711 0x18e8  WfpLwf - ok

06:16:09.0713 0x18e8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys

06:16:09.0720 0x18e8  WIMMount - ok

06:16:09.0721 0x18e8  WinDefend - ok

06:16:09.0725 0x18e8  WinHttpAutoProxySvc - ok

06:16:09.0732 0x18e8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

06:16:09.0758 0x18e8  Winmgmt - ok

06:16:09.0792 0x18e8  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM           C:\Windows\system32\WsmSvc.dll

06:16:09.0835 0x18e8  WinRM - ok

06:16:09.0841 0x18e8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys

06:16:09.0851 0x18e8  WinUsb - ok

06:16:09.0868 0x18e8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll

06:16:09.0895 0x18e8  Wlansvc - ok

06:16:09.0936 0x18e8  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

06:16:09.0981 0x18e8  wlidsvc - ok

06:16:09.0986 0x18e8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

06:16:09.0994 0x18e8  WmiAcpi - ok

06:16:10.0000 0x18e8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

06:16:10.0013 0x18e8  wmiApSrv - ok

06:16:10.0015 0x18e8  WMPNetworkSvc - ok

06:16:10.0017 0x18e8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll

06:16:10.0027 0x18e8  WPCSvc - ok

06:16:10.0031 0x18e8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

06:16:10.0043 0x18e8  WPDBusEnum - ok

06:16:10.0045 0x18e8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

06:16:10.0068 0x18e8  ws2ifsl - ok

06:16:10.0071 0x18e8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll

06:16:10.0085 0x18e8  wscsvc - ok

06:16:10.0086 0x18e8  WSearch - ok

06:16:10.0133 0x18e8  [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv        C:\Windows\system32\wuaueng.dll

06:16:10.0185 0x18e8  wuauserv - ok

06:16:10.0191 0x18e8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

06:16:10.0200 0x18e8  WudfPf - ok

06:16:10.0206 0x18e8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\drivers\WUDFRd.sys

06:16:10.0217 0x18e8  WUDFRd - ok

06:16:10.0220 0x18e8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

06:16:10.0231 0x18e8  wudfsvc - ok

06:16:10.0237 0x18e8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll

06:16:10.0249 0x18e8  WwanSvc - ok

06:16:10.0252 0x18e8  ================ Scan global ===============================

06:16:10.0255 0x18e8  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll

06:16:10.0261 0x18e8  [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll

06:16:10.0270 0x18e8  [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll

06:16:10.0275 0x18e8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

06:16:10.0283 0x18e8  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe

06:16:10.0289 0x18e8  [ Global ] - ok

06:16:10.0289 0x18e8  ================ Scan MBR ==================================

06:16:10.0290 0x18e8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

06:16:10.0377 0x18e8  \Device\Harddisk0\DR0 - ok

06:16:10.0378 0x18e8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1

06:16:10.0391 0x18e8  \Device\Harddisk1\DR1 - ok

06:16:10.0391 0x18e8  ================ Scan VBR ==================================

06:16:10.0392 0x18e8  [ 3192210DDCE0F4EF49493D2EF921CAAE ] \Device\Harddisk1\DR1\Partition1

06:16:10.0394 0x18e8  \Device\Harddisk1\DR1\Partition1 - ok

06:16:10.0394 0x18e8  ================ Scan generic autorun ======================

06:16:10.0642 0x18e8  [ 89AA8AC9B4E101E4173455D4620C5117, 746A6EA06A980EE29E6A401AA19313F13ECBF0F0EDFB6E7E6BD8C46ACCF9DA0B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

06:16:10.0880 0x18e8  RTHDVCPL - ok

06:16:10.0891 0x18e8  [ F14327BA386AAA2246585BFADD8FE8E8, 2804D7985B116C808942B4501362D4F4BAE4B540E9A6AC9B176B30DD448BA5AC ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe

06:16:10.0895 0x18e8  IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )

06:16:11.0103 0x18e8  Detect skipped due to KSN trusted

06:16:11.0103 0x18e8  IAStorIcon - ok

06:16:11.0173 0x18e8  [ 9DFE8B0B6C982C31144CED1795304A60, DFE0253CD9DEE63D94F7538833048F48BFBDAC39B18A17F1CAE7413B94A8DE4D ] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe

06:16:11.0209 0x18e8  XFast LAN - ok

06:16:11.0215 0x18e8  [ D91AB5CCE502F95726AC1E035C867BC6, A27B2AAB26C844454A0CEA97F861623C518A837B9DF41778AC7F4E9184E6BC8C ] C:\Program Files\iTunes\iTunesHelper.exe

06:16:11.0225 0x18e8  iTunesHelper - ok

06:16:11.0228 0x18e8  [ 69B16C7B7746BA5C642FC05B3561FC73, 0DECEB6B1B7A2DD1F13133AC7328FF420DAD4610CEE1FA7466E8E0F6BAA39116 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

06:16:11.0234 0x18e8  Adobe Reader Speed Launcher - ok

06:16:11.0246 0x18e8  [ E43A851F7B12DE589424D6C656155CFC, FD42172921C18D1BBDFC0C5CFFFD6D0534764D770E210CA3E1DF61A66A99BE62 ] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

06:16:11.0261 0x18e8  AdobeCS4ServiceManager - ok

06:16:11.0273 0x18e8  [ 5153C06FC9D4D094D1A785545928B134, 0037C935722663F9EF028F841DE222FC6418E9D60939AB60C965807E67A458DC ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

06:16:11.0287 0x18e8  SunJavaUpdateSched - ok

06:16:11.0290 0x18e8  Dropbox - ok

06:16:11.0292 0x18e8  Skype - ok

06:16:11.0309 0x18e8  [ FC2343B581874C0ABB3AC090292DF403, 59954BEA312175B0DE773F1751BC5D406D63C1D62BF72C68C459C61965DC4043 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

06:16:11.0329 0x18e8  GoogleChromeAutoLaunch_73B90D4D0D4A45E4E1249D0D8EDB5EB0 - ok

06:16:11.0345 0x18e8  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDrive.exe

06:16:11.0363 0x18e8  OneDrive - ok

06:16:11.0364 0x18e8  Waiting for KSN requests completion. In queue: 116

06:16:12.0407 0x18e8  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\WSCStub.exe ( 22.8.0.0 ), 0x50000 ( disabled : updated )

06:16:12.0409 0x18e8  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.8.0.50\WSCStub.exe ( 22.8.0.0 ), 0x50010 ( disabled )

06:16:12.0417 0x18e8  Win FW state via NFP2: enabled ( trusted )

06:16:12.0573 0x18e8  ============================================================

06:16:12.0573 0x18e8  Scan finished

06:16:12.0573 0x18e8  ============================================================

06:16:12.0586 0x1474  Detected object count: 0

06:16:12.0586 0x1474  Actual detected object count: 0



#15 Acinonyx

Acinonyx
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:08:03 PM

Posted 24 November 2016 - 12:40 AM

Gary, there is something wrong with Avast! I've run it 7 times with debugging and restarting and I get over and over the capture below! What should I do ?

 

Attached Files






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users