Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Weird un erasable application


  • This topic is locked This topic is locked
21 replies to this topic

#1 MGFJR1

MGFJR1

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 26 December 2017 - 01:17 PM

I have this new application called "client" that is running out of nowhere. I try to find it's process and it's called "condaz.exe*32". Neither of these is deletable. Traced then, after two days or searching, to an erasable folder in my "AppData/Local" file called wiheuog. It comes and goes but seems to slow my computer down especially the video play back and fps. Help. I have run everything I can think of and nothing has worked. I cant take ownership of said folder at all.

 

 

Result of Security Analysis by Rocket Grannie (x86) Updated: 21st December, 2017

Running from:C:\Users\PC\Desktop (12:41:58 - 12/26/2017)
***---------------------------------------------------------***
Microsoft Windows 7 Ultimate X64 Service Pack 1
UAC is Enabled
Internet Explorer 11
Default Browser: Google Chrome
***------------Antivirus - Antispyware - Firewall-----------***
Avast Antivirus (Disabled - up to Date)
Windows Defender (Disabled - up to Date)
Avast Antivirus (Disabled - up to Date)
Windows Firewall (Disabled)
No other Firewall Installed
***-------Security Programs - Browsers - Miscellaneous------***
Adobe Flash Player NPAPI is not installed
CCleaner (5.38)
Google Chrome (61.0.3163.100) ==> is out of Date
HitmanPro (3.7.20.286)
Java (8.0.1510.12)
Malwarebytes (3.3.1.2183)
Mozilla Firefox (56.0) ==> is out of Date
Opera (49.0.2725.64)
SUPERAntiSpyware (6.0.1250)
 
***----------------Analysis Complete-------------------------***
 
 
 
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
 
© Malwarebytes Corporation 2011-2012
 
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
 
Account is Administrative
 
Internet Explorer version: 11.0.9600.18860
 
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, E:\ DRIVE_FIXED, F:\ DRIVE_FIXED, G:\ DRIVE_FIXED, J:\ DRIVE_FIXED
CPU speed: 3.100000 GHz
Memory total: 17116459008, free: 11834814464
 
Downloaded database version: v2017.12.26.03
Downloaded database version: v2017.11.28.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
     12/26/2017 12:45:13
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\cskdhknq.sys
\SystemRoot\system32\drivers\FLTMGR.SYS
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\vmbus.sys
\SystemRoot\system32\drivers\winhv.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\qtwadg.sys
\SystemRoot\system32\drivers\xadgkn.sys
\SystemRoot\system32\DRIVERS\dtsoftbus01.sys
\SystemRoot\system32\drivers\cdrom.sys
\SystemRoot\System32\Drivers\mbamswissarmy.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\drivers\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\drivers\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\SysWow64\drivers\AsUpIO.sys
\SystemRoot\SysWow64\drivers\AsIO.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\drivers\HDAudBus.sys
\SystemRoot\SysWow64\drivers\AiChargerPlus.sys
\SystemRoot\system32\drivers\usbohci.sys
\SystemRoot\system32\drivers\USBPORT.SYS
\SystemRoot\system32\drivers\usbehci.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\asmtxhci.sys
\SystemRoot\system32\DRIVERS\Rt64win7.sys
\SystemRoot\system32\DRIVERS\amdppm.sys
\SystemRoot\system32\drivers\wmiacpi.sys
\SystemRoot\system32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\drivers\swenum.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\drivers\umbus.sys
\SystemRoot\system32\drivers\nvvad64v.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\DRIVERS\nvvhci.sys
\SystemRoot\system32\drivers\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\nvhda64v.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\DRIVERS\asmthub3.sys
\SystemRoot\SysWow64\drivers\ASUSFILTER.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\xusb21.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\SysWow64\drivers\AndroidAFDx64.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\CMUSBDAC.sys
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\cdfs.sys
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\656351D7.sys
\Windows\System32\ntdll.dll
\Windows\System32\drivers\mbamswissarmy.sys
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\urlmon.dll
\Windows\System32\drivers\nvlddmkm.sys
\Windows\System32\usp10.dll
\Windows\System32\drivers\nvhda64v.sys
----------- End -----------
Done!
Module: \??\C:\Windows\system32\drivers\cskdhknq.sys could not be loadedModule: \??\C:\Windows\system32\drivers\cskdhknq.sys could not be loadedModule: \??\C:\Windows\system32\drivers\cskdhknq.sys could not be loadedModule: \??\C:\Windows\system32\drivers\cskdhknq.sys could not be loadedModule: \??\C:\Windows\system32\drivers\cskdhknq.sys could not be loaded
Scan started
Database versions:
  main:    v2017.12.26.03
  rootkit: v2017.10.14.01
 
<<<2>>>
Physical Sector Size: 512
Drive: 4, DevicePointer: 0xfffffa800f06f060, DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800f06eb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800f06f060, DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800ee68680, DeviceName: \Device\Ide\IdeDeviceP3T0L0-5\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
File user open failed: C:\WINDOWS\SYSTEM32\drivers\cskdhknq.sys (0x00000005)
File kernel read failed: C:\WINDOWS\SYSTEM32\drivers\cskdhknq.sys
Done!
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa800f1c2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800f1c2b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800f1c2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800ed1b390, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800ee4b060, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: C969F9DD
 
Partition information:
 
    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 1952598016
    Partition is bootable
    Partition file system is NTFS
 
    Partition 1 type is Other (0x27)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 1952600064  Numsec = 921600
    Partition is not bootable
    Partition file system is NTFS
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
    Partition is not bootable
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
    Partition is not bootable
 
Disk Size: 1000204886016 bytes
Sector size: 512 bytes
 
Done!
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa800f1c5060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800f1c5b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800f1c5060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800ee2e8f0, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800ee42060, DeviceName: \Device\Ide\IdeDeviceP0T1L0-1\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: 0
 
GPT Protective MBR Partition information:
 
    Partition 0 type is EFI-GPT (0xee)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 1  Numsec = 4294967295
 
    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
GPT Partition information:
 
    GPT Header Signature 4546492050415254
    GPT Header Revision 65536 Size 92 CRC 3314097541
    GPT Header CurrentLba = 1 BackupLba 5860533167
    GPT Header FirstUsableLba 34  LastUsableLba 5860533134
    GPT Header Guid b6084930-a1a7-45e7-b843-3cd5fe8e23d
    GPT Header Contains 128 partition entries starting at LBA 2
    GPT Header Partition entry size = 128
 
    Backup GPT header Signature 4546492050415254
    Backup GPT header Revision 65536 Size 92 CRC 3314097541
    Backup GPT header CurrentLba = 5860533167 BackupLba 1
    Backup GPT header FirstUsableLba 34  LastUsableLba 5860533134
    Backup GPT header Guid b6084930-a1a7-45e7-b843-3cd5fe8e23d
    Backup GPT header Contains 128 partition entries starting at LBA 5860533135
    Backup GPT header Partition entry size = 128
 
    Partition 0 Type e3c9e316-b5c-4db8-817d-f92df0215ae
    Partition ID 68f2f8a3-3b8a-40f1-b346-4abbe6803f71
    FirstLBA 34  Last LBA 262177
    Attributes 0
    Partition Name         Microsoft reserved partition
 
    Partition 1 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
    Partition ID 9566110f-21ec-4842-89f3-a2b1f77385e6
    FirstLBA 264192  Last LBA 5860532223
    Attributes 0
    Partition Name                 Basic data partition
 
Disk Size: 3000592982016 bytes
Sector size: 512 bytes
 
Done!
Physical Sector Size: 512
Drive: 2, DevicePointer: 0xfffffa800f1c6060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800f1c6ab0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800f1c6060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800ee4c520, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800ee61060, DeviceName: \Device\Ide\IdeDeviceP1T0L0-2\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 2
Scanning MBR on drive 2...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: 0
 
GPT Protective MBR Partition information:
 
    Partition 0 type is EFI-GPT (0xee)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 1  Numsec = 4294967295
 
    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
GPT Partition information:
 
    GPT Header Signature 4546492050415254
    GPT Header Revision 65536 Size 92 CRC 746000157
    GPT Header CurrentLba = 1 BackupLba 7814037167
    GPT Header FirstUsableLba 34  LastUsableLba 7814037134
    GPT Header Guid fdf9608d-132e-4407-a3a9-671e261f5f
    GPT Header Contains 128 partition entries starting at LBA 2
    GPT Header Partition entry size = 128
 
    Backup GPT header Signature 4546492050415254
    Backup GPT header Revision 65536 Size 92 CRC 746000157
    Backup GPT header CurrentLba = 7814037167 BackupLba 1
    Backup GPT header FirstUsableLba 34  LastUsableLba 7814037134
    Backup GPT header Guid fdf9608d-132e-4407-a3a9-671e261f5f
    Backup GPT header Contains 128 partition entries starting at LBA 7814037135
    Backup GPT header Partition entry size = 128
 
    Partition 0 Type e3c9e316-b5c-4db8-817d-f92df0215ae
    Partition ID 4864723b-9004-434f-9c18-f162dac5c5f3
    FirstLBA 34  Last LBA 262177
    Attributes 0
    Partition Name         Microsoft reserved partition
 
    Partition 1 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
    Partition ID f9011ca6-d0a8-4372-aa42-966c73050ea
    FirstLBA 264192  Last LBA 7814035455
    Attributes 0
    Partition Name                 Basic data partition
 
Disk Size: 4000787030016 bytes
Sector size: 512 bytes
 
Done!
Physical Sector Size: 512
Drive: 3, DevicePointer: 0xfffffa800f06e060, DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800ef5d8e0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800f06e060, DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800ee69520, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800ee2c060, DeviceName: \Device\Ide\IdeDeviceP1T1L0-4\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 3
Scanning MBR on drive 3...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: 0
 
GPT Protective MBR Partition information:
 
    Partition 0 type is EFI-GPT (0xee)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 1  Numsec = 4294967295
 
    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
GPT Partition information:
 
    GPT Header Signature 4546492050415254
    GPT Header Revision 65536 Size 92 CRC 865580737
    GPT Header CurrentLba = 1 BackupLba 7814037167
    GPT Header FirstUsableLba 34  LastUsableLba 7814037134
    GPT Header Guid 567b1a5e-ab20-4f8c-bac0-77934c6d47b4
    GPT Header Contains 128 partition entries starting at LBA 2
    GPT Header Partition entry size = 128
 
    Backup GPT header Signature 4546492050415254
    Backup GPT header Revision 65536 Size 92 CRC 865580737
    Backup GPT header CurrentLba = 7814037167 BackupLba 1
    Backup GPT header FirstUsableLba 34  LastUsableLba 7814037134
    Backup GPT header Guid 567b1a5e-ab20-4f8c-bac0-77934c6d47b4
    Backup GPT header Contains 128 partition entries starting at LBA 7814037135
    Backup GPT header Partition entry size = 128
 
    Partition 0 Type e3c9e316-b5c-4db8-817d-f92df0215ae
    Partition ID 7cee4a13-957a-426c-b53a-60229c101f67
    FirstLBA 34  Last LBA 262177
    Attributes 0
    Partition Name         Microsoft reserved partition
 
    Partition 1 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
    Partition ID 93369769-8e30-4286-bed1-b935d449d2e9
    FirstLBA 264192  Last LBA 7814035455
    Attributes 0
    Partition Name                 Basic data partition
 
Disk Size: 4000787030016 bytes
Sector size: 512 bytes
 
Done!
Drive 4
This is a System drive
Scanning MBR on drive 4...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 17CBC8AA
 
Partition information:
 
    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
    Partition is bootable
    Partition file system is NTFS
 
    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 206848  Numsec = 1953314816
    Partition is not bootable
    Partition file system is NTFS
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
    Partition is not bootable
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
    Partition is not bootable
 
Disk Size: 1000204886016 bytes
Sector size: 512 bytes
 
Done!
Infected: C:\Users\PC\AppData\Roaming\Test\Guard.exe --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\ExampleProject.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\Bootstrapper.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\config.txt --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cpu_tromp_AVX.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cpu_tromp_SSE2.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cudart32_80.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cudart64_80.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cuda_djezo.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cuda_tromp.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\cuda_tromp_75.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\Interop.IWshRuntimeLibrary.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\libeay32.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\mint.exe --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\msvcp140.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\msvcp140d.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\OpenCL.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\OpenCL32.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\OpenCL64.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\servicesd.exe --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\ssleay32.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\ucrtbased.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\vcruntime140.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\vcruntime140d.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\zlib.dll --> [Trojan.Agent]
Infected: C:\Users\PC\AppData\Roaming\Test\zlibd.dll --> [Trojan.Agent]
Infected: c:\users\pc\appdata\local\igfxmtc\igfxmtc.exe --> [Trojan.SmartService]
Infected: c:\users\pc\appdata\local\igfxmtc\igfxmtc.exe --> [Trojan.SmartService]
Infected: c:\users\pc\appdata\local\igfxmtc --> [Trojan.SmartService]
Scan finished
 

 

 

# AdwCleaner 7.0.6.0 - Logfile created on Tue Dec 26 18:14:44 2017
# Updated on 2017/21/12 by Malwarebytes 
# Database: 12-26-2017.1
# Running on Windows 7 Ultimate (X64)
# Mode: scan
 
***** [ Services ] *****
 
PUP.Optional.Legacy, scan
PUP.Adware.Heuristic, 4850f28f5551441f4082a239623336c5
PUP.Adware.Heuristic, 7eb563854c9800d2907b30f213986e4b
PUP.Adware.Heuristic, ca01958529935b05626f1dc6ccafe7ca
 
 
***** [ Folders ] *****
 
PUP.Optional.Legacy, C:\Windows\System32\SSL
PUP.Optional.Legacy, C:\Windows\SysWOW64\SSL
PUP.Optional.Legacy, C:\Users\PC\AppData\Local\torch
PUP.Optional.Legacy, C:\ProgramData\torchcrashhandler
PUP.Optional.Legacy, C:\ProgramData\Application Data\torchcrashhandler
PUP.Optional.Legacy, C:\Users\All Users\torchcrashhandler
PUP.Optional.RegCurePro, C:\ProgramData\PARETOLOGIC
PUP.Optional.RegCurePro, C:\ProgramData\Application Data\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Program Files (x86)\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Program Files (x86)\Common Files\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Users\All Users\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Users\PC\AppData\Roaming\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PARETOLOGIC
 
 
***** [ Files ] *****
 
PUP.Optional.Legacy, C:\END
PUP.Optional.Legacy, C:\Users\PC\Desktop\Facebook.lnk
PUP.Optional.Legacy, C:\Users\PC\Desktop\Youtube.lnk
PUP.Optional.Torch, C:\Users\PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Torch.lnk
PUP.Optional.Torch, C:\Users\PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Torch.lnk
PUP.Optional.Torch, C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
PUP.Optional.Torch, C:\Users\PC\Desktop\Torch.lnk
 
 
***** [ DLL ] *****
 
No malicious DLLs found.
 
***** [ WMI ] *****
 
No malicious WMI found.
 
***** [ Shortcuts ] *****
 
No malicious shortcuts found.
 
***** [ Tasks ] *****
 
No malicious tasks found.
 
***** [ Registry ] *****
 
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\glassinbox.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.glassinbox.com
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {0251E282-5CF8-41CF-B783-C4E5A6B01A3A}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\ParetoLogic
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Software\ParetoLogic
PUP.Optional.Legacy, [Key] - HKCU\Software\ParetoLogic
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\torch
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Software\torch
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch
PUP.Optional.Legacy, [Key] - HKCU\Software\torch
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\xs
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{65416821-217D-44BD-9C61-F53398FB1B46}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{65416821-217D-44BD-9C61-F53398FB1B46}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{6DFC0DC7-FDC5-44C2-8B80-5977BA8F8ACC}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{E5AFF088-92F8-41a9-8CAB-E9CDCCE967AC}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{34F4FEAF-4921-4B5D-8BE5-CA384BFFC2CE}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{39A37965-0A96-43A3-870E-821FE5C84B0B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{4ABDD67C-44E3-42E0-816D-D7F0E54761DF}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{4ABDD67C-44E3-42E0-816D-D7F0E54761DF}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{94915A56-4D71-4F85-B59C-CC040F5AC6F0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Applications\Torch.exe
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Clients\StartMenuInternet\Torch
PUP.Optional.WindowService, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
PUP.Optional.WindowService, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
PUP.Optional.ByteFence, [Key] - HKU\.DEFAULT\Software\ByteFence
PUP.Optional.ByteFence, [Key] - HKU\S-1-5-18\Software\ByteFence
PUP.Optional.ByteFence, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION | ByteFence.exe
PUP.Optional.ByteFence, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
PUP.Optional.Torch, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {00935F84-6FF9-4B54-9CBD-51514499A9E6}
 
 
***** [ Firefox (and derivatives) ] *****
 
No malicious Firefox entries.
 
***** [ Chromium (and derivatives) ] *****
 
No malicious Chromium entries.
 
*************************
 
C:/AdwCleaner/AdwCleaner[S0].txt - [3038 B] - [2017/10/8 18:17:20]
 
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########


BC AdBot (Login to Remove)

 


#2 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 26 December 2017 - 03:10 PM

Hi

Welcome :)

I'll be helping you with your computer.

Please read this post completely before beginning. If there's anything that you do not understand, please don't hesitate to ask before proceeding.

Please take note of the guidelines for this fix:
  • Please note that I am a volunteer. I do have a family, a career, and other endeavors that may prevent immediate responses that meet your schedule. Do note that the differences in time zones could present a problem as well. Your patience and understanding will be greatly appreciated.
  • First of all, the procedures we are about to perform are specific to your problem and should only be used on this specific computer.
  • Do not make any changes to your computer that include installing/uninstalling programs, deleting files, modifying the registry, nor running scanners or tools of any kind unless specifically requested by me.
  • Please read ALL instructions carefully and perform the steps fully and in the order they are written.
  • If things appear to be better, let me know. Just because the symptoms no longer exist as before, does not mean that you are clean.
  • Continue to read and follow my instructions until I tell you that your machine is clean.
  • If you have any questions at all, please do not hesitate to ask before performing the task that I ask of you, and please wait for my reply before you proceed.
  • Scanning with programs and reading the logs do take a fair amount of time. Again, your patience will be necessary. :)
Let's begin... :)

On a clean computer follow these steps:

Please download Farbar Recovery Scan Tool and save it to a flash drive.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Boot in the Recovery Environment
  • Plug your USB Flash Drive in the infected computer
  • To enter the Recovery Environment with Windows Vista and Windows 7, follow the instructions below:
    • Restart the computer
    • Once you've seen your BIOS splashscreen (the computer manufacturer logo), tap the F8 key repeatedly until the Advanced Boot Options menu appears
    • Use the arrow keys to select Repair your computer, and press on Enter
    • Select your keyboard layout (US, French, etc.) and click on Next
    • Click on Command Prompt to open the command prompt
      Note: If you can't access the Recovery Environment using the F8 method above, you'll need to create a Windows installation or repair media. It can be made on the computer itself or another one running the same version of Windows as the one you plan to use it on. For more information, check out this tutorial on SevenForums.
  • To enter the Recovery Environment with Windows 8 or Windows 8.1, follow the instructions in this tutorial on EightForums
    Note: If you can't access the Recovery Environment using the method above, you'll need to create a Windows installation or repair media. It can be made on the computer itself or another one running the same version of Windows as the one you plan to use it on. For more information, check out this tutorial.
  • To enter the Recovery Environment with Windows 10, follow the instructions in this tutorial on TenForums
    Note: If you can't access the Recovery Environment using the method above, you'll need to create a Windows installation or repair media. It can be made on the computer itself or another one running the same version of Windows as the one you plan to use it on. For more information, check out this tutorial on TenForums.
Once in the command prompt
  • In the command prompt, type notepad and press on Enter
  • Notepad will open. Click on the File menu and select Open
  • Click on Computer/This PC, find the letter for your USB Flash Drive, then close the window and Notepad
  • In the command prompt, type e:\frst.exe (for the x64 version, type e:\frst64.exe and press on Enter
  • Note: Replace the letter e with the drive letter of your USB Flash Drive
  • FRST will open
  • Click on Yes to accept the disclaimer
  • Click on the Scan button and wait for it to complete
  • A log called frst.txt will be saved on your USB Flash Drive. Post it in your next reply

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#3 MGFJR1

MGFJR1
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 28 December 2017 - 01:12 PM

i tried to do this, but when i tried to bring up the frst64, it stated "the subsystem needed to support the image type is not present." It also wont let me create a system repair disc. Win defender is off and cant be turned. This is bad


Edited by MGFJR1, 28 December 2017 - 01:44 PM.


#4 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 28 December 2017 - 02:03 PM

It is due to the rootkit.

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The tool will also produce another log (Addition.txt ). Please attach this to your reply.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#5 MGFJR1

MGFJR1
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 28 December 2017 - 07:44 PM

FRST posted and addition attached
 
 
Attached File  Addition.txt   59.35KB   1 downloadsScan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017
Ran by PC (administrator) on PC-PC (28-12-2017 19:36:53)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(TOSHIBA CORPORATION) C:\Windows\System32\pcergnmsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Program Files (x86)\GreedyTorrent\GTor.exe
() C:\Program Files (x86)\registrants\klare.exe
() C:\Program Files (x86)\englishmen\capsicum.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.00\AsusFanControlService.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\Xtreme.exe
(Digital Care Solutions (ParetoLogic)) C:\Program Files\BDServices\BitDefenderCOM.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(TorchMedia Inc.) C:\Users\PC\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Users\PC\AppData\Local\wiheuog\wiheuog.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
() C:\Users\PC\AppData\Local\igfxmtc\igfxmtc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(ThankSoft) C:\Program Files (x86)\Mask Surf Pro\masksurf.exe
(ThankSoft) C:\Program Files (x86)\Mask Surf Pro\masksurf.exe
() C:\Program Files (x86)\Mask Surf Pro\Tor\tor.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmprph.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
(Farbar) C:\Users\PC\Desktop\FRST64 (1).exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-10-20] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-23] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-12-04] (Dropbox, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [GreedyTorrent] => C:\Program Files (x86)\GreedyTorrent\GTor.exe [2526661 2007-03-08] ()
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [klare] => C:\Program Files (x86)\registrants\klare.exe [69033 2017-10-03] ()
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [capsicum] => C:\Program Files (x86)\englishmen\capsicum.exe [69050 2017-10-04] ()
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7964576 2017-10-17] (SUPERAntiSpyware)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [laser] => "C:\Program Files (x86)\Braggs\rangy.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [ritalin] => "C:\Program Files (x86)\Pane\cognate.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {77ab497b-a5e7-11e7-8782-806e6f6e6963} - H:\setup64.exe
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {d8aa4ed6-a6c7-11e7-93ea-40167ea925b7} - K:\setup.exe
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [242688 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [zZHILNIspz] => C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE XTREME GAMING ENGINE.lnk [2017-09-30]
ShortcutTarget: GIGABYTE XTREME GAMING ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\autorun.exe ()
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\illegality.lnk [2017-10-05]
ShortcutTarget: illegality.lnk -> C:\Program Files (x86)\Pane\cognate.exe (No File)
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\sharron.lnk [2017-10-03]
ShortcutTarget: sharron.lnk -> C:\Program Files (x86)\Braggs\rangy.exe (No File)
GroupPolicy: Restriction <==== ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 75.114.81.1 209.18.47.62 75.114.81.2
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{0EBE30AC-299C-4C63-89DE-D1334FCFCE8F}: [DhcpNameServer] 75.114.81.1 209.18.47.62 75.114.81.2
Tcpip\..\Interfaces\{407AFB1F-B1A6-4056-8ED6-6B6878C775EC}: [DhcpNameServer] 75.114.81.1 209.18.47.62 75.114.81.2
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131583818439364526&GUID=0DBFA2AB-DF7B-4B6E-9C18-35CD7B64B9BB
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131583818439374527&GUID=0DBFA2AB-DF7B-4B6E-9C18-35CD7B64B9BB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3919306709-814264073-2542757446-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-12-23] (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-12-23] (AVAST Software)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.bing.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://securedsearch.xyz/{searchTerms}
CHR DefaultSearchKeyword: Default -> sse
CHR DefaultSuggestURL: Default -> hxxp://securedsearch.xyz/?s={searchTerms}
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2017-12-28]
CHR Extension: (Slides) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-30]
CHR Extension: (Adguard AdBlocker) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-09-30]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-30]
CHR Extension: (Adblock Plus) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-30]
CHR Extension: (Sheets) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Google Docs Offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30]
CHR Extension: (AdBlock) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
CHR Extension: (Kindle Cloud Reader) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2017-09-30]
CHR Extension: (Wikibuy) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2017-12-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-30]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-30]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-25]
CHR HKLM\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3919306709-814264073-2542757446-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-10-11] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-06-05] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-06-05] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.00\AsusFanControlService.exe [391168 2016-01-18] (ASUSTeK Computer Inc.) [File not signed]
R2 BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [1038328 2017-11-08] (Digital Care Solutions (ParetoLogic))
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-29] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-29] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51016 2017-12-04] (Dropbox, Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-27] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-10] (NVIDIA Corporation)
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-10-21] (Power Admin LLC)
S3 scan; C:\Program Files\BDServices\scan.dll [652568 2017-11-08] (Bitdefender)
R2 TorchCrashHandler; C:\Users\PC\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217216 2017-08-17] (TorchMedia Inc.) <==== ATTENTION
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 7eb563854c9800d2907b30f213986e4b; rundll32.exe C:\Windows\7eb563854c9800d2907b30f213986e4b.dll ytuTSCNCE [X]
S2 AVP18.0.0; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe" -r [X]
S2 ca01958529935b05626f1dc6ccafe7ca; "C:\Program Files\ca01958529935b05626f1dc6ccafe7ca\1b08a889d862eed064b3558ec633be44.exe" [X]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [22552 2015-10-19] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-06-05] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-19] (MCCI Corporation)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2017-11-28] (Bluestack System Inc. )
R3 CMUSBDAC; C:\Windows\System32\DRIVERS\CMUSBDAC.sys [594944 2014-09-19] (C-MEDIA)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2017-10-01] (DT Soft Ltd)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [55232 2017-12-20] ()
R1 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-27] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-10] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-10-06] (NVIDIA Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [442848 2017-11-08] (BitDefender S.R.L.)
S1 4850f28f5551441f4082a239623336c5; \??\C:\Windows\system32\drivers\4850f28f5551441f4082a239623336c5.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
R3 udiskMgr; system32\drivers\jmqtwz.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-12-28 19:36 - 2017-12-28 19:37 - 000022252 _____ C:\Users\PC\Desktop\FRST.txt
2017-12-28 19:36 - 2017-12-28 19:36 - 002391552 _____ (Farbar) C:\Users\PC\Desktop\FRST64 (1).exe
2017-12-28 16:05 - 2017-12-28 16:23 - 000000000 ____D C:\Users\PC\AppData\Local\RockGodTycoon
2017-12-28 15:40 - 2017-12-28 15:40 - 000000870 _____ C:\Users\PC\Desktop\Rock God Tycoon.lnk
2017-12-28 13:59 - 2017-12-28 13:59 - 000142136 ____N C:\Windows\system32\Drivers\cskadhkn.sys
2017-12-28 01:48 - 2017-12-28 01:58 - 000001562 __RSH C:\ProgramData\ntuser.pol
2017-12-27 16:20 - 2017-12-27 16:20 - 002391552 _____ (Farbar) C:\Users\PC\Downloads\FRST64.exe
2017-12-27 02:15 - 2017-12-27 02:15 - 012325214 _____ C:\Users\PC\Downloads\naughtyalliepreviewhigh.wmv
2017-12-26 13:10 - 2017-12-26 13:10 - 008198432 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_7.0.6.0.exe
2017-12-26 13:09 - 2017-12-26 13:10 - 008198432 _____ (Malwarebytes) C:\Users\PC\Downloads\adwcleaner_7.0.6.0.exe
2017-12-26 12:45 - 2017-12-26 12:45 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\656351D7.sys
2017-12-26 12:44 - 2017-12-26 13:08 - 000000000 ____D C:\Users\PC\Desktop\mbar
2017-12-26 12:44 - 2017-12-26 12:44 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-12-26 12:44 - 2017-12-26 12:43 - 014178840 _____ (Malwarebytes Corp.) C:\Users\PC\Desktop\mbar-1.10.3.1001.exe
2017-12-26 12:43 - 2017-12-26 12:43 - 014178840 _____ (Malwarebytes Corp.) C:\Users\PC\Downloads\mbar-1.10.3.1001.exe
2017-12-26 12:38 - 2017-12-26 12:38 - 000899584 _____ C:\Users\PC\Downloads\RGSA.exe
2017-12-23 22:18 - 2017-12-23 22:18 - 000001269 _____ C:\Users\PC\Desktop\wiheuog - Shortcut.lnk
2017-12-23 22:09 - 2017-12-23 22:09 - 000082592 _____ C:\Users\PC\Documents\cc_20171223_220905.reg
2017-12-23 22:06 - 2017-12-23 22:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\AVAST Software
2017-12-23 22:04 - 2017-12-23 22:04 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-12-23 22:04 - 2017-12-23 22:04 - 000001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-12-23 22:04 - 2017-12-23 22:04 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2017-12-23 22:04 - 2017-12-23 22:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-12-23 22:04 - 2017-12-23 22:04 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2017-12-23 22:03 - 2017-12-23 22:02 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000457400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-12-23 22:02 - 2017-12-23 22:02 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-12-23 22:01 - 2017-12-23 22:02 - 000000000 ____D C:\ProgramData\AVAST Software
2017-12-23 22:01 - 2017-12-23 22:01 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
2017-12-23 22:01 - 2017-12-23 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-12-23 22:01 - 2017-12-23 22:01 - 000000000 ____D C:\Program Files\AVAST Software
2017-12-23 22:00 - 2017-12-28 02:00 - 000000504 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task bc15bf8a-8020-427a-b9a3-8409ed02065a.job
2017-12-23 22:00 - 2017-12-27 14:00 - 000000504 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b3bc5587-424a-411c-8b58-562de790ea4d.job
2017-12-23 22:00 - 2017-12-23 22:00 - 000003566 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task bc15bf8a-8020-427a-b9a3-8409ed02065a
2017-12-23 22:00 - 2017-12-23 22:00 - 000003492 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task b3bc5587-424a-411c-8b58-562de790ea4d
2017-12-23 22:00 - 2017-12-23 22:00 - 000000000 ____D C:\Users\PC\AppData\Roaming\SUPERAntiSpyware.com
2017-12-23 22:00 - 2017-12-23 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2017-12-23 21:59 - 2017-12-23 22:00 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2017-12-23 21:59 - 2017-12-23 21:59 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2017-12-23 21:22 - 2017-12-23 21:22 - 458016088 _____ C:\Windows\MEMORY.DMP
2017-12-23 21:22 - 2017-12-23 21:22 - 000000000 ____D C:\Windows\Minidump
2017-12-23 21:13 - 2017-12-23 21:51 - 000000000 ____D C:\Program Files\Common Files\AV
2017-12-23 21:12 - 2017-12-23 21:51 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-12-23 21:10 - 2017-12-23 21:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-12-23 20:50 - 2017-12-23 20:50 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Crytivo Games Inc_
2017-12-20 22:14 - 2017-12-20 22:36 - 000055232 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2017-12-20 22:14 - 2017-12-20 22:14 - 000000000 ____D C:\Program Files\HitmanPro
2017-12-20 22:13 - 2017-12-20 22:53 - 000000000 ____D C:\ProgramData\HitmanPro
2017-12-20 22:09 - 2017-12-20 22:09 - 011584088 _____ (SurfRight B.V.) C:\Users\PC\Downloads\HitmanPro_x64.exe
2017-12-20 22:03 - 2017-12-20 22:03 - 042151072 _____ (Microsoft Corporation) C:\Users\PC\Downloads\Windows-KB890830-x64-V5.55.exe
2017-12-20 22:02 - 2017-12-20 22:08 - 000015930 _____ C:\TDSSKiller.2.8.10.0_20.12.2017_22.02.12_log.txt
2017-12-20 22:01 - 2017-12-20 22:02 - 000015964 _____ C:\TDSSKiller.2.8.10.0_20.12.2017_22.01.40_log.txt
2017-12-20 22:00 - 2017-12-20 22:01 - 000022126 _____ C:\TDSSKiller.2.8.10.0_20.12.2017_22.00.55_log.txt
2017-12-19 21:48 - 2017-12-22 18:28 - 000000947 _____ C:\Users\Public\Desktop\The Road 2 Success Game.lnk
2017-12-19 21:48 - 2017-12-22 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Road 2 Success Game
2017-12-19 21:41 - 2017-12-19 21:42 - 026374671 _____ (The Road to Success Games ) C:\Users\PC\Downloads\Setup.exe
2017-12-16 16:09 - 2017-12-16 20:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\ParetoLogic
2017-12-16 16:09 - 2017-12-16 20:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2017-12-16 16:08 - 2017-12-16 20:25 - 000000000 ____D C:\ProgramData\ParetoLogic
2017-12-16 16:08 - 2017-12-16 20:25 - 000000000 ____D C:\Program Files (x86)\ParetoLogic
2017-12-16 16:08 - 2017-12-16 16:09 - 000000000 ____D C:\Program Files\BDServices
2017-12-14 22:32 - 2017-12-14 22:32 - 000000016 _____ C:\Users\PC\Desktop\recovery key.txt
2017-12-14 21:22 - 2017-12-14 21:22 - 000000032 _____ C:\Users\PC\Downloads\gatehub_recovery_key.txt
2017-12-14 20:02 - 2017-12-14 20:02 - 000000000 ____D C:\Users\PC\AppData\Roaming\Skype
2017-12-14 20:01 - 2017-12-14 20:02 - 059165632 _____ (Skype Technologies S.A.) C:\Users\PC\Downloads\Skype-8.12.0.14.exe
2017-12-12 21:29 - 2017-11-16 23:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-12 21:29 - 2017-11-14 20:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-12 21:29 - 2017-11-14 19:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-12 21:29 - 2017-11-13 22:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-12 21:29 - 2017-11-13 22:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-12 21:29 - 2017-11-13 22:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-12 21:29 - 2017-11-13 22:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-12 21:29 - 2017-11-13 22:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-12 21:29 - 2017-11-13 22:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-12 21:29 - 2017-11-13 22:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-12 21:29 - 2017-11-13 22:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-12 21:29 - 2017-11-13 22:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-12 21:29 - 2017-11-13 22:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-12 21:29 - 2017-11-13 22:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-12 21:29 - 2017-11-13 22:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-12 21:29 - 2017-11-13 22:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-12 21:29 - 2017-11-13 22:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-12 21:29 - 2017-11-13 22:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-12 21:29 - 2017-11-13 22:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-12 21:29 - 2017-11-13 22:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-12 21:29 - 2017-11-13 22:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-12 21:29 - 2017-11-13 22:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-12 21:29 - 2017-11-13 22:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-12 21:29 - 2017-11-13 22:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-12 21:29 - 2017-11-13 22:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-12 21:29 - 2017-11-13 22:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-12 21:29 - 2017-11-13 22:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-12 21:29 - 2017-11-13 22:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-12 21:29 - 2017-11-13 21:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-12 21:29 - 2017-11-13 21:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-12 21:29 - 2017-11-13 21:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-12 21:29 - 2017-11-13 21:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-12 21:29 - 2017-11-13 21:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-12 21:29 - 2017-11-13 21:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-12 21:29 - 2017-11-13 21:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-12 21:29 - 2017-11-13 21:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-12 21:29 - 2017-11-13 21:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-12 21:29 - 2017-11-13 21:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-12 21:29 - 2017-11-13 20:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-12 21:29 - 2017-11-13 20:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-12 21:29 - 2017-11-13 20:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-12 21:29 - 2017-11-13 20:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-12 21:29 - 2017-11-13 20:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-12 21:29 - 2017-11-13 19:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-12 21:29 - 2017-11-13 19:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-12 21:29 - 2017-11-07 15:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-12 21:29 - 2017-11-07 15:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-12 21:29 - 2017-11-07 15:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-12 21:29 - 2017-11-07 15:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-12 21:29 - 2017-11-07 15:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-12 21:29 - 2017-11-07 15:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-12 21:29 - 2017-11-07 15:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-12 21:29 - 2017-11-07 15:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-12 21:29 - 2017-11-07 15:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-12 21:29 - 2017-11-07 15:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-12 21:29 - 2017-11-07 15:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-12 21:29 - 2017-11-07 15:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-12 21:29 - 2017-11-07 15:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-12 21:29 - 2017-11-07 15:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-12 21:29 - 2017-11-07 15:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-12 21:29 - 2017-11-07 15:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-12 21:29 - 2017-11-07 15:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-12 21:29 - 2017-11-07 15:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-12 21:29 - 2017-11-07 15:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-12 21:29 - 2017-11-07 15:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-12 21:29 - 2017-11-07 15:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-12 21:29 - 2017-11-07 15:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-12 21:29 - 2017-11-07 15:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-12 21:29 - 2017-11-07 14:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-12 21:29 - 2017-11-07 11:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-12 21:29 - 2017-11-07 11:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-12 21:29 - 2017-11-04 10:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-12 21:29 - 2017-11-04 10:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-12 21:29 - 2017-11-04 10:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-12 21:29 - 2017-11-04 10:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-12 21:29 - 2017-11-02 10:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-12 21:29 - 2017-11-02 10:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-12 21:29 - 2017-11-02 10:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-12 21:29 - 2017-11-02 09:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-12 21:29 - 2017-10-16 18:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-12 21:29 - 2017-10-16 17:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-12 21:29 - 2017-10-11 19:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-10 02:36 - 2017-12-11 22:10 - 000000000 ____D C:\Users\PC\AppData\Local\Game Dev Tycoon - Steam
2017-12-10 02:33 - 2017-12-10 02:33 - 000001645 _____ C:\Users\PC\Desktop\APK - Shortcut.lnk
2017-12-10 01:58 - 2017-12-10 01:58 - 000002181 _____ C:\Users\PC\Desktop\VLC.lnk
2017-12-09 01:33 - 2017-12-09 01:33 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-12-09 01:33 - 2017-10-27 11:06 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-12-09 01:33 - 2017-09-13 18:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-12-09 01:33 - 2017-09-13 18:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-12-09 01:33 - 2017-09-13 18:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2017-12-09 01:33 - 2017-09-13 18:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2017-12-08 17:22 - 2017-12-08 17:22 - 000001067 _____ C:\Users\Public\Desktop\Ticket To Ride.lnk
2017-12-08 17:22 - 2017-12-08 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ticket To Ride
2017-12-08 17:22 - 2017-12-08 17:22 - 000000000 ____D C:\Program Files (x86)\TicketToRide
2017-12-07 19:08 - 2017-12-07 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-12-07 17:41 - 2017-12-07 17:41 - 000000000 ____D C:\Users\PC\AppData\Roaming\Monopoly Plus
2017-12-07 17:41 - 2017-12-07 17:41 - 000000000 ____D C:\ProgramData\Monopoly Plus
2017-12-06 10:31 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-12-06 10:31 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-12-06 10:31 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-12-06 10:31 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-12-06 10:31 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-12-06 10:31 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-12-06 10:31 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-12-06 10:31 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-12-06 10:31 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-12-06 10:31 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-12-06 10:31 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-12-06 10:31 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-12-06 10:31 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-12-06 10:31 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-12-06 10:31 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-12-06 10:31 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-12-06 10:31 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-12-06 10:31 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-12-06 10:31 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-12-06 10:31 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-12-06 10:31 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-12-06 10:31 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-12-06 10:31 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-12-06 10:31 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-12-06 10:31 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-12-06 10:31 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-12-06 10:31 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-12-06 10:31 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-12-06 10:31 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-12-06 10:31 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-12-06 10:31 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-12-06 10:31 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-12-06 10:31 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-12-06 10:31 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-12-06 10:31 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-12-06 10:31 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-12-06 10:31 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-12-06 10:31 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-12-06 10:31 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-12-06 10:31 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-12-06 10:31 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-12-06 10:30 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-12-06 10:30 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-12-06 10:30 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-12-06 10:30 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-12-06 10:30 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-12-06 10:30 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-12-06 10:30 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-12-06 10:30 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-12-06 10:30 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-12-06 10:30 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-12-06 10:30 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-12-06 10:30 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-12-06 10:30 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-12-06 10:30 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-12-06 10:30 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-12-06 10:30 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-12-06 10:30 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-12-06 10:30 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-12-06 10:30 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-12-06 10:30 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-12-06 10:30 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-12-06 10:30 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-12-06 10:30 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-12-06 10:30 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-12-06 10:30 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-12-06 10:30 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-12-06 10:30 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-12-06 10:30 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-12-06 10:30 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-12-06 10:30 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-12-06 10:30 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-12-06 10:30 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-12-06 10:30 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-12-06 10:30 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-12-06 10:30 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-12-06 10:30 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-12-06 10:30 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-12-06 10:30 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-12-06 10:30 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-12-06 10:30 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-12-06 10:28 - 2017-12-06 10:28 - 000000000 ____D C:\Users\PC\AppData\LocalLow\AtomTeam
2017-12-05 23:34 - 2017-12-10 03:21 - 000000000 ____D C:\Users\PC\Documents\APK
2017-12-05 23:19 - 2017-12-05 23:19 - 000001545 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk
2017-12-05 23:17 - 2017-12-05 23:19 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2017-12-05 23:16 - 2017-12-05 23:19 - 000000000 ____D C:\ProgramData\BlueStacksSetup
2017-12-05 23:16 - 2017-12-05 23:18 - 000000000 ____D C:\ProgramData\BlueStacks
2017-12-05 23:15 - 2017-12-05 23:18 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2017-12-05 23:12 - 2017-12-05 23:13 - 267247896 _____ (BlueStack Systems Inc.) C:\Users\PC\Downloads\BlueStacks-Installer_BS3_native.exe
2017-12-05 20:55 - 2017-12-05 20:55 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Squeaky Wheel
2017-12-05 18:29 - 2017-12-07 14:15 - 000000000 ____D C:\Users\PC\AppData\Local\zahnrio
2017-12-05 18:26 - 2017-12-28 19:37 - 000000000 ____D C:\Users\PC\AppData\Local\wiheuog
2017-12-05 18:26 - 2017-12-16 14:55 - 000000000 ____D C:\Users\PC\AppData\Local\igfxmtc
2017-12-05 18:20 - 2017-12-28 14:04 - 002884096 _____ (TOSHIBA CORPORATION) C:\Windows\system32\pcergnmsvc.exe
2017-12-05 18:18 - 2017-12-23 22:09 - 000000000 ____D C:\Windows\SysWOW64\SSL
2017-12-05 18:18 - 2017-12-05 18:18 - 000000000 ____D C:\Windows\SysWOW64\wiovhan
2017-12-05 18:18 - 2017-12-05 18:18 - 000000000 ____D C:\Windows\system32\wiovhan
2017-12-05 18:18 - 2017-12-05 18:18 - 000000000 ____D C:\Users\PC\AppData\Roaming\et
2017-12-05 17:53 - 2017-12-05 17:53 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Playdek
2017-12-05 05:06 - 2017-12-05 05:06 - 000037157 _____ C:\Windows\uninstaller.dat
2017-12-04 20:06 - 2017-12-04 20:06 - 000051016 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-12-04 20:06 - 2017-12-04 20:06 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-12-03 15:18 - 2017-12-03 15:18 - 103660892 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 1[via torchbrowser.com].mp4
2017-12-03 15:18 - 2017-12-03 15:18 - 103426232 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 2[via torchbrowser.com].mp4
2017-12-03 15:18 - 2017-12-03 15:18 - 042522003 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 1[via torchbrowser.com].aac
2017-12-03 15:18 - 2017-12-03 15:18 - 042454877 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 2[via torchbrowser.com].aac
2017-12-02 23:34 - 2017-12-02 23:34 - 007273538 _____ C:\Users\PC\Downloads\50 Cent feat. Jeremih - Still Think I'm Nothing[via torchbrowser.com].mp4
2017-12-02 23:34 - 2017-12-02 23:34 - 003045598 _____ C:\Users\PC\Downloads\50 Cent feat. Jeremih - Still Think I'm Nothing[via torchbrowser.com].aac
2017-12-02 23:33 - 2017-12-02 23:33 - 018173905 _____ C:\Users\PC\Downloads\Raphael Saadiq - Ask of You[via torchbrowser.com].mp4
2017-12-02 23:33 - 2017-12-02 23:33 - 003129339 _____ C:\Users\PC\Downloads\Raphael Saadiq - Ask of You[via torchbrowser.com].aac
2017-12-02 20:38 - 2017-12-02 20:38 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Playsport Games
2017-12-02 20:37 - 2017-12-20 22:19 - 000000000 ____D C:\Users\PC\Desktop\GAMES
2017-12-02 20:18 - 2017-12-02 20:18 - 000000000 ____D C:\Users\PC\AppData\Local\DOSBox
2017-12-02 20:08 - 2017-12-02 20:08 - 000000000 ____D C:\Users\PC\Documents\Paradox Interactive
2017-11-30 16:12 - 2017-11-30 16:12 - 000001747 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-11-30 16:12 - 2017-11-30 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-11-30 16:12 - 2017-11-30 16:12 - 000000000 ____D C:\Program Files\iPod
2017-11-30 16:11 - 2017-11-30 16:12 - 000000000 ____D C:\Program Files\iTunes
2017-11-30 16:09 - 2017-11-30 16:09 - 000000000 ____D C:\Program Files\Bonjour
2017-11-30 16:09 - 2017-11-30 16:09 - 000000000 ____D C:\Program Files (x86)\Bonjour
2017-11-29 11:38 - 2017-11-29 11:38 - 001534018 _____ C:\Users\PC\Downloads\Michael Francis Florida New Hire  Packet.pdf
2017-11-29 11:30 - 2017-11-29 11:30 - 002792840 _____ C:\Users\PC\Downloads\New Hire Information Packet.pdf
2017-11-28 15:21 - 2017-11-28 15:21 - 001527136 _____ C:\Users\PC\Desktop\Michael Francis Florida New Hire Packet.pdf
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-12-28 19:37 - 2009-07-13 21:34 - 018874368 _____ C:\Windows\system32\config\HARDWARE
2017-12-28 19:36 - 2017-10-07 16:05 - 000000000 ____D C:\FRST
2017-12-28 19:16 - 2017-10-03 20:49 - 000000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-12-28 19:11 - 2017-09-30 12:43 - 000000000 ____D C:\Users\PC\AppData\Roaming\Tor
2017-12-28 19:06 - 2017-09-29 22:01 - 000000900 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-12-28 16:51 - 2017-09-30 20:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\uTorrent
2017-12-28 15:39 - 2017-10-01 11:54 - 000000000 ____D C:\Users\PC\AppData\Roaming\DAEMON Tools Pro
2017-12-28 15:27 - 2017-09-30 12:44 - 000000000 ____D C:\ProgramData\TEMP
2017-12-28 14:16 - 2009-07-13 23:45 - 000020000 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-28 14:16 - 2009-07-13 23:45 - 000020000 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-28 14:10 - 2017-10-21 13:36 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-28 14:10 - 2017-09-30 12:06 - 000000000 ____D C:\Users\PC\Documents\temp
2017-12-28 14:10 - 2017-09-30 11:57 - 000003304 _____ C:\Windows\System32\Tasks\Launcher GIGABYTE XTREME GAMING ENGINE
2017-12-28 14:09 - 2017-09-30 14:14 - 000000000 ____D C:\Program Files (x86)\Steam
2017-12-28 14:05 - 2017-09-30 18:30 - 000000000 ____D C:\ProgramData\TorchCrashHandler
2017-12-28 14:05 - 2017-09-29 22:01 - 000000896 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-12-28 14:04 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-28 02:10 - 2017-10-02 11:35 - 000745504 _____ C:\Windows\system32\perfh00A.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000683802 _____ C:\Windows\system32\perfh00E.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000392392 _____ C:\Windows\system32\perfh00D.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000171382 _____ C:\Windows\system32\perfc00E.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000158582 _____ C:\Windows\system32\perfc00A.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000084866 _____ C:\Windows\system32\perfc00D.dat
2017-12-28 02:10 - 2017-10-02 08:54 - 000740094 _____ C:\Windows\system32\perfh010.dat
2017-12-28 02:10 - 2017-10-02 08:54 - 000146954 _____ C:\Windows\system32\perfc010.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000690672 _____ C:\Windows\system32\perfh00C.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000479062 _____ C:\Windows\system32\perfh001.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000130340 _____ C:\Windows\system32\perfc00C.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000094880 _____ C:\Windows\system32\perfc001.dat
2017-12-28 02:10 - 2017-10-02 08:21 - 000697256 _____ C:\Windows\system32\perfh007.dat
2017-12-28 02:10 - 2017-10-02 08:21 - 000149224 _____ C:\Windows\system32\perfc007.dat
2017-12-28 02:10 - 2009-07-14 00:13 - 006083582 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-28 02:10 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\inf
2017-12-28 01:39 - 2009-07-13 22:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-12-28 01:27 - 2017-10-16 21:20 - 000678066 _____ C:\Windows\ntbtlog.txt
2017-12-27 16:38 - 2017-11-23 08:12 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-26 13:14 - 2017-10-08 13:16 - 000000000 ____D C:\AdwCleaner
2017-12-26 13:08 - 2017-10-08 13:02 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-12-23 22:11 - 2017-09-30 12:10 - 000000000 ____D C:\Users\PC\AppData\Roaming\MPC-HC
2017-12-23 22:01 - 2017-10-06 07:31 - 000000000 ____D C:\Program Files\CCleaner
2017-12-23 21:38 - 2017-10-03 20:49 - 000000000 ___HD C:\Program Files (x86)\Uncorks
2017-12-23 20:31 - 2017-11-01 22:02 - 000002104 _____ C:\Users\PC\Desktop\BILLS.txt
2017-12-22 07:59 - 2017-09-29 21:54 - 000000000 ____D C:\Program Files (x86)\Opera
2017-12-21 21:04 - 2017-09-30 00:31 - 000001114 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-12-20 22:53 - 2017-10-02 12:12 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2017-12-20 22:42 - 2017-10-11 22:35 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-20 22:38 - 2017-10-01 17:02 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-20 21:53 - 2017-09-29 21:54 - 000003840 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1506740064
2017-12-19 19:10 - 2009-07-14 00:08 - 000032612 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-17 12:52 - 2017-10-21 12:24 - 000000000 ____D C:\Windows\pss
2017-12-14 22:24 - 2017-11-15 17:17 - 000000000 ____D C:\Users\PC\Desktop\3
2017-12-13 18:36 - 2009-07-13 23:45 - 000267672 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-13 18:33 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-13 18:33 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-09 01:33 - 2017-10-21 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-09 01:33 - 2017-10-21 13:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-08 17:22 - 2017-09-30 00:31 - 000000000 ____D C:\Users\PC\AppData\Local\VirtualStore
2017-12-07 19:09 - 2017-09-29 22:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-12-07 17:36 - 2017-10-01 12:13 - 000000000 ____D C:\Users\PC\AppData\Local\Microsoft Windows
2017-12-07 11:47 - 2017-10-21 13:42 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA Corporation
2017-12-06 10:23 - 2017-11-06 07:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\CDisplayEx
2017-12-05 19:00 - 2017-10-06 21:20 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-05 18:31 - 2017-11-05 18:08 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2017-12-05 18:16 - 2017-11-20 09:35 - 000000092 _____ C:\Users\PC\Desktop\Games to get.txt
2017-12-02 20:22 - 2017-09-30 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-12-01 00:44 - 2017-11-08 12:12 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-11-28 14:07 - 2017-11-12 17:37 - 000000686 _____ C:\Users\PC\Desktop\order.txt
 
==================== Files in the root of some directories =======
 
2017-12-16 16:09 - 2017-12-16 16:16 - 000000115 _____ () C:\Users\PC\AppData\Roaming\LogFile.txt
2017-11-06 06:42 - 2017-11-06 06:42 - 000000045 _____ () C:\Users\PC\AppData\Roaming\WB.CFG
2017-11-04 07:57 - 2017-11-05 17:00 - 001065984 _____ () C:\Users\PC\AppData\Local\file__0.localstorage
2017-10-03 10:58 - 2017-11-03 19:52 - 000007602 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg
 
Some files in TEMP:
====================
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
C:\Windows\system32\drivers\cskadhkn.sys -> MD5 = D41D8CD98F00B204E9800998ECF8427E (0-byte MD5) <======= ATTENTION
 
LastRegBack: 2017-11-29 00:37
 
==================== End of FRST.txt ============================


#6 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 28 December 2017 - 09:09 PM

Since you are unable to run FRST in the Recovery console, lets try to manually remove these files and folders, part of the rootkit.

 

  • Copy the entire contents of the Quote Box below to Notepad.
  • Name the file as RunMe.bat
  • Change the Save as Type to All Files
  • and Save it in the C:\Temp folder. If the C:\Temp folder does not exist, make one.
  • Once saved, Boot to the recovery environment Command prompt.
Echo off
Del /q /f %CD:~0,2%\WINDOWS\system32\drivers\jmq*.sys
Del /q /f %CD:~0,2%\WINDOWS\system32\drivers\csk*.sys
Del /q /f %CD:~0,2%\WINDOWS\system32\pcergnmsvc.exe
RD /s /q %CD:~0,2%\Users\jbcon\AppData\Local\zahnrio
RD /s /q %CD:~0,2%\Users\PC\AppData\Roaming\Test
RD /s /q %CD:~0,2%\Users\jbcon\AppData\Local\wiheuog
RD /s /q %CD:~0,2%\Users\jbcon\AppData\Local\igfxmtc
Exit

 

 

At the prompt type the following and press Enter:

 

BCDEDIT | Find "osdevice"

 

Look at the partition letter, and type the following and press Enter:

 

cd /d C:\Temp

 

Change the C above for the Partition letter if different. This will change your prompt to the Temp folder. Type RunMe and press Enter. Restart the computer and run a Malwarebytes Antimalware scan.

 

  • Update the program.
  • Once the program has fully updated, Proceed with the Scan options and select "Threat Scan".
  • The Scan Pane is the introduction to scan-related options in the program. When you click Scan in the Menu Pane, you will see the screen shown below.

02-malwarebytes-premium-scan-methods.jpg

  • After a scan has been executed, scan results are displayed.
  • Put a checkmark on all detected and click on "Quarantine Selected"
  • Selected reports may be viewed on screen, or exported to a text file for later viewing. Please note that only manual (on demand) scans are available for users of the free version of Malwarebytes.

You may export to your clipboard or to a text (TXT) file. Export to a .txt file and post its contents.

 

 

 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#7 MGFJR1

MGFJR1
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 28 December 2017 - 10:40 PM

Malwarebytes
www.malwarebytes.com
 
-Log Details-
Scan Date: 12/28/17
Scan Time: 10:30 PM
Log File: ae59df0e-ec48-11e7-aec9-40167ea925b7.json
Administrator: Yes
 
-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.262
Update Package Version: 1.0.3580
License: Expired
 
-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: PC-PC\PC
 
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 255345
Threats Detected: 25
Threats Quarantined: 25
Time Elapsed: 5 min, 13 sec
 
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
 
-Scan Details-
Process: 0
(No malicious items detected)
 
Module: 0
(No malicious items detected)
 
Registry Key: 1
Rootkit.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDISKMGR, Delete-on-Reboot, [1246], [466343],1.0.3580
 
Registry Value: 1
Rootkit.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDISKMGR|IMAGEPATH, Delete-on-Reboot, [1246], [466343],1.0.3580
 
Registry Data: 0
(No malicious items detected)
 
Data Stream: 0
(No malicious items detected)
 
Folder: 0
(No malicious items detected)
 
File: 23
Trojan.Yelloader, C:\USERS\PC\APPDATA\LOCAL\TEMP\9379.TMP, Delete-on-Reboot, [1318], [470698],1.0.3580
Trojan.Yelloader, C:\USERS\PC\APPDATA\LOCAL\TEMP\CA41.TMP, Delete-on-Reboot, [1318], [470698],1.0.3580
Trojan.Yelloader, C:\USERS\PC\APPDATA\LOCAL\TEMP\B06B.TMP, Delete-on-Reboot, [1318], [470698],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\1B3D.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\5E06.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\319C.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\C792.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\AFA3.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\FCC7.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\244D.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\FA36.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\A008.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\E080.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\21AC.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\7031.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Yelloader, C:\USERS\PC\APPDATA\LOCAL\TEMP\23B6.TMP, Delete-on-Reboot, [1318], [470698],1.0.3580
Trojan.Yelloader, C:\USERS\PC\APPDATA\LOCAL\TEMP\9AB9.TMP, Delete-on-Reboot, [1318], [470698],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\1E97.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\21E3.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\66EE.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\CA90.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\9CEA.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
Trojan.Downloader, C:\WINDOWS\TEMP\DCD6.TMP.EXE, Delete-on-Reboot, [47], [471634],1.0.3580
 
Physical Sector: 0
(No malicious items detected)
 
 
(end)


#8 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 28 December 2017 - 11:35 PM

Please rescan with Frst and post new logs.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#9 MGFJR1

MGFJR1
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 29 December 2017 - 11:01 AM

Will Do. I have run the malwarebytes a few times. It always pics up the rootkits and says they are quarenteneed. They are apparently not

 

Now when I start the computer, this pops up 

"Dipawaymode

 
Axxess violation at address 03510702 in module 'DIP4cTDPAction.dll'.

Read of address 00000000"

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017
Ran by PC (administrator) on PC-PC (29-12-2017 10:56:44)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(TOSHIBA CORPORATION) C:\Windows\System32\pcergnmsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Program Files (x86)\GreedyTorrent\GTor.exe
() C:\Program Files (x86)\registrants\klare.exe
() C:\Program Files (x86)\englishmen\capsicum.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\Xtreme.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.00\AsusFanControlService.exe
(Digital Care Solutions (ParetoLogic)) C:\Program Files\BDServices\BitDefenderCOM.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(TorchMedia Inc.) C:\Users\PC\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Users\PC\AppData\Local\wiheuog\wiheuog.exe
() C:\Users\PC\AppData\Local\igfxmtc\igfxmtc.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
() C:\Users\PC\AppData\Local\wiheuog\condamz.exe
(Farbar) C:\Users\PC\Desktop\FRST64 (1).exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-10-20] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-23] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-12-04] (Dropbox, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [GreedyTorrent] => C:\Program Files (x86)\GreedyTorrent\GTor.exe [2526661 2007-03-08] ()
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [klare] => C:\Program Files (x86)\registrants\klare.exe [69033 2017-10-03] ()
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [capsicum] => C:\Program Files (x86)\englishmen\capsicum.exe [69050 2017-10-04] ()
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7964576 2017-10-17] (SUPERAntiSpyware)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [laser] => "C:\Program Files (x86)\Braggs\rangy.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [ritalin] => "C:\Program Files (x86)\Pane\cognate.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {77ab497b-a5e7-11e7-8782-806e6f6e6963} - H:\setup64.exe
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {d8aa4ed6-a6c7-11e7-93ea-40167ea925b7} - K:\setup.exe
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [242688 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [zZHILNIspz] => C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE XTREME GAMING ENGINE.lnk [2017-09-30]
ShortcutTarget: GIGABYTE XTREME GAMING ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\autorun.exe ()
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\illegality.lnk [2017-10-05]
ShortcutTarget: illegality.lnk -> C:\Program Files (x86)\Pane\cognate.exe (No File)
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\sharron.lnk [2017-10-03]
ShortcutTarget: sharron.lnk -> C:\Program Files (x86)\Braggs\rangy.exe (No File)
GroupPolicy: Restriction <==== ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 75.114.81.1 209.18.47.62 75.114.81.2
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{0EBE30AC-299C-4C63-89DE-D1334FCFCE8F}: [DhcpNameServer] 75.114.81.1 209.18.47.62 75.114.81.2
Tcpip\..\Interfaces\{407AFB1F-B1A6-4056-8ED6-6B6878C775EC}: [DhcpNameServer] 75.114.81.1 209.18.47.62 75.114.81.2
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131583818439364526&GUID=0DBFA2AB-DF7B-4B6E-9C18-35CD7B64B9BB
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131583818439374527&GUID=0DBFA2AB-DF7B-4B6E-9C18-35CD7B64B9BB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3919306709-814264073-2542757446-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-12-23] (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-23] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-12-23] (AVAST Software)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-23] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.bing.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://securedsearch.xyz/{searchTerms}
CHR DefaultSearchKeyword: Default -> sse
CHR DefaultSuggestURL: Default -> hxxp://securedsearch.xyz/?s={searchTerms}
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2017-12-29]
CHR Extension: (Slides) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-30]
CHR Extension: (Adguard AdBlocker) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-09-30]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-30]
CHR Extension: (Adblock Plus) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-30]
CHR Extension: (Sheets) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Google Docs Offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30]
CHR Extension: (AdBlock) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
CHR Extension: (Kindle Cloud Reader) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2017-09-30]
CHR Extension: (Wikibuy) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2017-12-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-30]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-30]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-25]
CHR HKLM\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3919306709-814264073-2542757446-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ilnidodcffjfecahcfiihlhiohnaobic] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-10-11] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-06-05] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-06-05] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.00\AsusFanControlService.exe [391168 2016-01-18] (ASUSTeK Computer Inc.) [File not signed]
R2 BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [1038328 2017-11-08] (Digital Care Solutions (ParetoLogic))
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-29] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-29] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51016 2017-12-04] (Dropbox, Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-27] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-10] (NVIDIA Corporation)
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-10-21] (Power Admin LLC)
S3 scan; C:\Program Files\BDServices\scan.dll [652568 2017-11-08] (Bitdefender)
R2 TorchCrashHandler; C:\Users\PC\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217216 2017-08-17] (TorchMedia Inc.) <==== ATTENTION
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 7eb563854c9800d2907b30f213986e4b; rundll32.exe C:\Windows\7eb563854c9800d2907b30f213986e4b.dll ytuTSCNCE [X]
S2 AVP18.0.0; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe" -r [X]
S2 ca01958529935b05626f1dc6ccafe7ca; "C:\Program Files\ca01958529935b05626f1dc6ccafe7ca\1b08a889d862eed064b3558ec633be44.exe" [X]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [22552 2015-10-19] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-06-05] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-19] (MCCI Corporation)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2017-11-28] (Bluestack System Inc. )
R3 CMUSBDAC; C:\Windows\System32\DRIVERS\CMUSBDAC.sys [594944 2014-09-19] (C-MEDIA)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2017-10-01] (DT Soft Ltd)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [55232 2017-12-20] ()
R1 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-28] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-10] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-10-06] (NVIDIA Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [442848 2017-11-08] (BitDefender S.R.L.)
S1 4850f28f5551441f4082a239623336c5; \??\C:\Windows\system32\drivers\4850f28f5551441f4082a239623336c5.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-12-29 03:47 - 2017-12-29 03:47 - 000142136 ____N C:\Windows\system32\Drivers\cskhknru.sys
2017-12-29 00:14 - 2017-12-29 03:45 - 000000100 _____ C:\Users\PC\Desktop\TEXT Label.txt
2017-12-28 21:57 - 2017-12-28 21:58 - 000000000 ____D C:\TEMP
2017-12-28 19:36 - 2017-12-29 10:57 - 000021629 _____ C:\Users\PC\Desktop\FRST.txt
2017-12-28 19:36 - 2017-12-28 19:36 - 002391552 _____ (Farbar) C:\Users\PC\Desktop\FRST64 (1).exe
2017-12-28 16:05 - 2017-12-28 16:23 - 000000000 ____D C:\Users\PC\AppData\Local\RockGodTycoon
2017-12-28 01:48 - 2017-12-28 01:58 - 000001562 __RSH C:\ProgramData\ntuser.pol
2017-12-27 16:20 - 2017-12-27 16:20 - 002391552 _____ (Farbar) C:\Users\PC\Downloads\FRST64.exe
2017-12-27 02:15 - 2017-12-27 02:15 - 012325214 _____ C:\Users\PC\Downloads\naughtyalliepreviewhigh.wmv
2017-12-26 13:10 - 2017-12-26 13:10 - 008198432 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_7.0.6.0.exe
2017-12-26 13:09 - 2017-12-26 13:10 - 008198432 _____ (Malwarebytes) C:\Users\PC\Downloads\adwcleaner_7.0.6.0.exe
2017-12-26 12:45 - 2017-12-26 12:45 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\656351D7.sys
2017-12-26 12:44 - 2017-12-26 13:08 - 000000000 ____D C:\Users\PC\Desktop\mbar
2017-12-26 12:44 - 2017-12-26 12:44 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-12-26 12:44 - 2017-12-26 12:43 - 014178840 _____ (Malwarebytes Corp.) C:\Users\PC\Desktop\mbar-1.10.3.1001.exe
2017-12-26 12:43 - 2017-12-26 12:43 - 014178840 _____ (Malwarebytes Corp.) C:\Users\PC\Downloads\mbar-1.10.3.1001.exe
2017-12-26 12:38 - 2017-12-26 12:38 - 000899584 _____ C:\Users\PC\Downloads\RGSA.exe
2017-12-23 22:18 - 2017-12-23 22:18 - 000001269 _____ C:\Users\PC\Desktop\wiheuog - Shortcut.lnk
2017-12-23 22:09 - 2017-12-23 22:09 - 000082592 _____ C:\Users\PC\Documents\cc_20171223_220905.reg
2017-12-23 22:06 - 2017-12-23 22:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\AVAST Software
2017-12-23 22:04 - 2017-12-23 22:04 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-12-23 22:04 - 2017-12-23 22:04 - 000001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-12-23 22:04 - 2017-12-23 22:04 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2017-12-23 22:04 - 2017-12-23 22:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-12-23 22:04 - 2017-12-23 22:04 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2017-12-23 22:03 - 2017-12-23 22:02 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000457400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-12-23 22:02 - 2017-12-23 22:02 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-12-23 22:01 - 2017-12-23 22:02 - 000000000 ____D C:\ProgramData\AVAST Software
2017-12-23 22:01 - 2017-12-23 22:01 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
2017-12-23 22:01 - 2017-12-23 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-12-23 22:01 - 2017-12-23 22:01 - 000000000 ____D C:\Program Files\AVAST Software
2017-12-23 22:00 - 2017-12-29 02:00 - 000000504 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task bc15bf8a-8020-427a-b9a3-8409ed02065a.job
2017-12-23 22:00 - 2017-12-28 22:00 - 000000504 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b3bc5587-424a-411c-8b58-562de790ea4d.job
2017-12-23 22:00 - 2017-12-23 22:00 - 000003566 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task bc15bf8a-8020-427a-b9a3-8409ed02065a
2017-12-23 22:00 - 2017-12-23 22:00 - 000003492 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task b3bc5587-424a-411c-8b58-562de790ea4d
2017-12-23 22:00 - 2017-12-23 22:00 - 000000000 ____D C:\Users\PC\AppData\Roaming\SUPERAntiSpyware.com
2017-12-23 22:00 - 2017-12-23 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2017-12-23 21:59 - 2017-12-23 22:00 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2017-12-23 21:59 - 2017-12-23 21:59 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2017-12-23 21:22 - 2017-12-23 21:22 - 458016088 _____ C:\Windows\MEMORY.DMP
2017-12-23 21:22 - 2017-12-23 21:22 - 000000000 ____D C:\Windows\Minidump
2017-12-23 21:13 - 2017-12-28 22:14 - 000000000 ____D C:\Program Files\Common Files\AV
2017-12-23 21:12 - 2017-12-23 21:51 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-12-23 21:10 - 2017-12-23 21:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-12-23 20:50 - 2017-12-23 20:50 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Crytivo Games Inc_
2017-12-20 22:14 - 2017-12-20 22:36 - 000055232 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2017-12-20 22:14 - 2017-12-20 22:14 - 000000000 ____D C:\Program Files\HitmanPro
2017-12-20 22:13 - 2017-12-20 22:53 - 000000000 ____D C:\ProgramData\HitmanPro
2017-12-20 22:09 - 2017-12-20 22:09 - 011584088 _____ (SurfRight B.V.) C:\Users\PC\Downloads\HitmanPro_x64.exe
2017-12-20 22:03 - 2017-12-20 22:03 - 042151072 _____ (Microsoft Corporation) C:\Users\PC\Downloads\Windows-KB890830-x64-V5.55.exe
2017-12-20 22:02 - 2017-12-20 22:08 - 000015930 _____ C:\TDSSKiller.2.8.10.0_20.12.2017_22.02.12_log.txt
2017-12-20 22:01 - 2017-12-20 22:02 - 000015964 _____ C:\TDSSKiller.2.8.10.0_20.12.2017_22.01.40_log.txt
2017-12-20 22:00 - 2017-12-20 22:01 - 000022126 _____ C:\TDSSKiller.2.8.10.0_20.12.2017_22.00.55_log.txt
2017-12-19 21:48 - 2017-12-22 18:28 - 000000947 _____ C:\Users\Public\Desktop\The Road 2 Success Game.lnk
2017-12-19 21:48 - 2017-12-22 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Road 2 Success Game
2017-12-19 21:41 - 2017-12-19 21:42 - 026374671 _____ (The Road to Success Games ) C:\Users\PC\Downloads\Setup.exe
2017-12-16 16:09 - 2017-12-16 20:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\ParetoLogic
2017-12-16 16:09 - 2017-12-16 20:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2017-12-16 16:08 - 2017-12-16 20:25 - 000000000 ____D C:\ProgramData\ParetoLogic
2017-12-16 16:08 - 2017-12-16 20:25 - 000000000 ____D C:\Program Files (x86)\ParetoLogic
2017-12-16 16:08 - 2017-12-16 16:09 - 000000000 ____D C:\Program Files\BDServices
2017-12-14 22:32 - 2017-12-14 22:32 - 000000016 _____ C:\Users\PC\Desktop\recovery key.txt
2017-12-14 21:22 - 2017-12-14 21:22 - 000000032 _____ C:\Users\PC\Downloads\gatehub_recovery_key.txt
2017-12-14 20:02 - 2017-12-14 20:02 - 000000000 ____D C:\Users\PC\AppData\Roaming\Skype
2017-12-14 20:01 - 2017-12-14 20:02 - 059165632 _____ (Skype Technologies S.A.) C:\Users\PC\Downloads\Skype-8.12.0.14.exe
2017-12-12 21:29 - 2017-11-16 23:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-12 21:29 - 2017-11-14 20:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-12 21:29 - 2017-11-14 19:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-12 21:29 - 2017-11-13 22:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-12 21:29 - 2017-11-13 22:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-12 21:29 - 2017-11-13 22:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-12 21:29 - 2017-11-13 22:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-12 21:29 - 2017-11-13 22:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-12 21:29 - 2017-11-13 22:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-12 21:29 - 2017-11-13 22:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-12 21:29 - 2017-11-13 22:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-12 21:29 - 2017-11-13 22:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-12 21:29 - 2017-11-13 22:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-12 21:29 - 2017-11-13 22:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-12 21:29 - 2017-11-13 22:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-12 21:29 - 2017-11-13 22:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-12 21:29 - 2017-11-13 22:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-12 21:29 - 2017-11-13 22:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-12 21:29 - 2017-11-13 22:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-12 21:29 - 2017-11-13 22:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-12 21:29 - 2017-11-13 22:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-12 21:29 - 2017-11-13 22:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-12 21:29 - 2017-11-13 22:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-12 21:29 - 2017-11-13 22:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-12 21:29 - 2017-11-13 22:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-12 21:29 - 2017-11-13 22:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-12 21:29 - 2017-11-13 22:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-12 21:29 - 2017-11-13 22:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-12 21:29 - 2017-11-13 21:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-12 21:29 - 2017-11-13 21:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-12 21:29 - 2017-11-13 21:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-12 21:29 - 2017-11-13 21:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-12 21:29 - 2017-11-13 21:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-12 21:29 - 2017-11-13 21:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-12 21:29 - 2017-11-13 21:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-12 21:29 - 2017-11-13 21:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-12 21:29 - 2017-11-13 21:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-12 21:29 - 2017-11-13 21:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-12 21:29 - 2017-11-13 20:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-12 21:29 - 2017-11-13 20:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-12 21:29 - 2017-11-13 20:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-12 21:29 - 2017-11-13 20:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-12 21:29 - 2017-11-13 20:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-12 21:29 - 2017-11-13 19:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-12 21:29 - 2017-11-13 19:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-12 21:29 - 2017-11-07 15:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-12 21:29 - 2017-11-07 15:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-12 21:29 - 2017-11-07 15:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-12 21:29 - 2017-11-07 15:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-12 21:29 - 2017-11-07 15:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-12 21:29 - 2017-11-07 15:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-12 21:29 - 2017-11-07 15:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-12 21:29 - 2017-11-07 15:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-12 21:29 - 2017-11-07 15:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-12 21:29 - 2017-11-07 15:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-12 21:29 - 2017-11-07 15:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-12 21:29 - 2017-11-07 15:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-12 21:29 - 2017-11-07 15:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-12 21:29 - 2017-11-07 15:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-12 21:29 - 2017-11-07 15:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-12 21:29 - 2017-11-07 15:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-12 21:29 - 2017-11-07 15:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-12 21:29 - 2017-11-07 15:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-12 21:29 - 2017-11-07 15:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-12 21:29 - 2017-11-07 15:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-12 21:29 - 2017-11-07 15:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-12 21:29 - 2017-11-07 15:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-12 21:29 - 2017-11-07 15:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-12 21:29 - 2017-11-07 14:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-12 21:29 - 2017-11-07 11:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-12 21:29 - 2017-11-07 11:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-12 21:29 - 2017-11-04 10:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-12 21:29 - 2017-11-04 10:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-12 21:29 - 2017-11-04 10:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-12 21:29 - 2017-11-04 10:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-12 21:29 - 2017-11-02 11:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-12 21:29 - 2017-11-02 10:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-12 21:29 - 2017-11-02 10:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-12 21:29 - 2017-11-02 10:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-12 21:29 - 2017-11-02 09:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-12 21:29 - 2017-10-16 18:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-12 21:29 - 2017-10-16 17:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-12 21:29 - 2017-10-11 19:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-10 02:36 - 2017-12-11 22:10 - 000000000 ____D C:\Users\PC\AppData\Local\Game Dev Tycoon - Steam
2017-12-10 02:33 - 2017-12-10 02:33 - 000001645 _____ C:\Users\PC\Desktop\APK - Shortcut.lnk
2017-12-10 01:58 - 2017-12-10 01:58 - 000002181 _____ C:\Users\PC\Desktop\VLC.lnk
2017-12-09 01:33 - 2017-12-09 01:33 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-12-09 01:33 - 2017-10-27 11:06 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-12-09 01:33 - 2017-09-13 18:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-12-09 01:33 - 2017-09-13 18:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-12-09 01:33 - 2017-09-13 18:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2017-12-09 01:33 - 2017-09-13 18:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2017-12-08 17:22 - 2017-12-08 17:22 - 000001067 _____ C:\Users\Public\Desktop\Ticket To Ride.lnk
2017-12-08 17:22 - 2017-12-08 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ticket To Ride
2017-12-08 17:22 - 2017-12-08 17:22 - 000000000 ____D C:\Program Files (x86)\TicketToRide
2017-12-07 19:08 - 2017-12-07 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-12-07 17:41 - 2017-12-07 17:41 - 000000000 ____D C:\Users\PC\AppData\Roaming\Monopoly Plus
2017-12-07 17:41 - 2017-12-07 17:41 - 000000000 ____D C:\ProgramData\Monopoly Plus
2017-12-06 10:31 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-12-06 10:31 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-12-06 10:31 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-12-06 10:31 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-12-06 10:31 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-12-06 10:31 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-12-06 10:31 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-12-06 10:31 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-12-06 10:31 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-12-06 10:31 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-12-06 10:31 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-12-06 10:31 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-12-06 10:31 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-12-06 10:31 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-12-06 10:31 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-12-06 10:31 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-12-06 10:31 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-12-06 10:31 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-12-06 10:31 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-12-06 10:31 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-12-06 10:31 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-12-06 10:31 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-12-06 10:31 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-12-06 10:31 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-12-06 10:31 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-12-06 10:31 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-12-06 10:31 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-12-06 10:31 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-12-06 10:31 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-12-06 10:31 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-12-06 10:31 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-12-06 10:31 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-12-06 10:31 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-12-06 10:31 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-12-06 10:31 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-12-06 10:31 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-12-06 10:31 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-12-06 10:31 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-12-06 10:31 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-12-06 10:31 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-12-06 10:31 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-12-06 10:31 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-12-06 10:31 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-12-06 10:31 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-12-06 10:31 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-12-06 10:31 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-12-06 10:31 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-12-06 10:31 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-12-06 10:31 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-12-06 10:31 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-12-06 10:31 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-12-06 10:31 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-12-06 10:31 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-12-06 10:31 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-12-06 10:31 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-12-06 10:30 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-12-06 10:30 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-12-06 10:30 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-12-06 10:30 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-12-06 10:30 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-12-06 10:30 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-12-06 10:30 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-12-06 10:30 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-12-06 10:30 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-12-06 10:30 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-12-06 10:30 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-12-06 10:30 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-12-06 10:30 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-12-06 10:30 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-12-06 10:30 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-12-06 10:30 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-12-06 10:30 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-12-06 10:30 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-12-06 10:30 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-12-06 10:30 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-12-06 10:30 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-12-06 10:30 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-12-06 10:30 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-12-06 10:30 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-12-06 10:30 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-12-06 10:30 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-12-06 10:30 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-12-06 10:30 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-12-06 10:30 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-12-06 10:30 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-12-06 10:30 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-12-06 10:30 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-12-06 10:30 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-12-06 10:30 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-12-06 10:30 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-12-06 10:30 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-12-06 10:30 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-12-06 10:30 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-12-06 10:30 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-12-06 10:30 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-12-06 10:30 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-12-06 10:28 - 2017-12-06 10:28 - 000000000 ____D C:\Users\PC\AppData\LocalLow\AtomTeam
2017-12-05 23:34 - 2017-12-10 03:21 - 000000000 ____D C:\Users\PC\Documents\APK
2017-12-05 23:19 - 2017-12-05 23:19 - 000001545 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk
2017-12-05 23:17 - 2017-12-05 23:19 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2017-12-05 23:16 - 2017-12-05 23:19 - 000000000 ____D C:\ProgramData\BlueStacksSetup
2017-12-05 23:16 - 2017-12-05 23:18 - 000000000 ____D C:\ProgramData\BlueStacks
2017-12-05 23:15 - 2017-12-05 23:18 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2017-12-05 23:12 - 2017-12-05 23:13 - 267247896 _____ (BlueStack Systems Inc.) C:\Users\PC\Downloads\BlueStacks-Installer_BS3_native.exe
2017-12-05 20:55 - 2017-12-05 20:55 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Squeaky Wheel
2017-12-05 18:29 - 2017-12-07 14:15 - 000000000 ____D C:\Users\PC\AppData\Local\zahnrio
2017-12-05 18:26 - 2017-12-29 10:57 - 000000000 ____D C:\Users\PC\AppData\Local\wiheuog
2017-12-05 18:26 - 2017-12-16 14:55 - 000000000 ____D C:\Users\PC\AppData\Local\igfxmtc
2017-12-05 18:20 - 2017-12-29 10:38 - 002884096 _____ (TOSHIBA CORPORATION) C:\Windows\system32\pcergnmsvc.exe
2017-12-05 18:18 - 2017-12-23 22:09 - 000000000 ____D C:\Windows\SysWOW64\SSL
2017-12-05 18:18 - 2017-12-05 18:18 - 000000000 ____D C:\Windows\SysWOW64\wiovhan
2017-12-05 18:18 - 2017-12-05 18:18 - 000000000 ____D C:\Windows\system32\wiovhan
2017-12-05 18:18 - 2017-12-05 18:18 - 000000000 ____D C:\Users\PC\AppData\Roaming\et
2017-12-05 17:53 - 2017-12-05 17:53 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Playdek
2017-12-05 05:06 - 2017-12-05 05:06 - 000037157 _____ C:\Windows\uninstaller.dat
2017-12-04 20:06 - 2017-12-04 20:06 - 000051016 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-12-04 20:06 - 2017-12-04 20:06 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-12-03 15:18 - 2017-12-03 15:18 - 103660892 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 1[via torchbrowser.com].mp4
2017-12-03 15:18 - 2017-12-03 15:18 - 103426232 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 2[via torchbrowser.com].mp4
2017-12-03 15:18 - 2017-12-03 15:18 - 042522003 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 1[via torchbrowser.com].aac
2017-12-03 15:18 - 2017-12-03 15:18 - 042454877 _____ C:\Users\PC\Downloads\Confessions of a Video Vixen CD 2[via torchbrowser.com].aac
2017-12-02 23:34 - 2017-12-02 23:34 - 007273538 _____ C:\Users\PC\Downloads\50 Cent feat. Jeremih - Still Think I'm Nothing[via torchbrowser.com].mp4
2017-12-02 23:34 - 2017-12-02 23:34 - 003045598 _____ C:\Users\PC\Downloads\50 Cent feat. Jeremih - Still Think I'm Nothing[via torchbrowser.com].aac
2017-12-02 23:33 - 2017-12-02 23:33 - 018173905 _____ C:\Users\PC\Downloads\Raphael Saadiq - Ask of You[via torchbrowser.com].mp4
2017-12-02 23:33 - 2017-12-02 23:33 - 003129339 _____ C:\Users\PC\Downloads\Raphael Saadiq - Ask of You[via torchbrowser.com].aac
2017-12-02 20:38 - 2017-12-02 20:38 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Playsport Games
2017-12-02 20:37 - 2017-12-28 19:45 - 000000000 ____D C:\Users\PC\Desktop\GAMES
2017-12-02 20:18 - 2017-12-02 20:18 - 000000000 ____D C:\Users\PC\AppData\Local\DOSBox
2017-12-02 20:08 - 2017-12-02 20:08 - 000000000 ____D C:\Users\PC\Documents\Paradox Interactive
2017-11-30 16:12 - 2017-11-30 16:12 - 000001747 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-11-30 16:12 - 2017-11-30 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-11-30 16:12 - 2017-11-30 16:12 - 000000000 ____D C:\Program Files\iPod
2017-11-30 16:11 - 2017-11-30 16:12 - 000000000 ____D C:\Program Files\iTunes
2017-11-30 16:09 - 2017-11-30 16:09 - 000000000 ____D C:\Program Files\Bonjour
2017-11-30 16:09 - 2017-11-30 16:09 - 000000000 ____D C:\Program Files (x86)\Bonjour
2017-11-29 11:38 - 2017-11-29 11:38 - 001534018 _____ C:\Users\PC\Downloads\Michael Francis Florida New Hire  Packet.pdf
2017-11-29 11:30 - 2017-11-29 11:30 - 002792840 _____ C:\Users\PC\Downloads\New Hire Information Packet.pdf
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-12-29 10:57 - 2009-07-13 21:34 - 018874368 _____ C:\Windows\system32\config\HARDWARE
2017-12-29 10:56 - 2017-10-07 16:05 - 000000000 ____D C:\FRST
2017-12-29 10:46 - 2017-10-21 13:36 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-29 10:43 - 2017-09-30 11:57 - 000003304 _____ C:\Windows\System32\Tasks\Launcher GIGABYTE XTREME GAMING ENGINE
2017-12-29 10:42 - 2017-09-30 14:14 - 000000000 ____D C:\Program Files (x86)\Steam
2017-12-29 10:41 - 2017-09-30 12:06 - 000000000 ____D C:\Users\PC\Documents\temp
2017-12-29 10:40 - 2017-09-30 18:30 - 000000000 ____D C:\ProgramData\TorchCrashHandler
2017-12-29 10:40 - 2017-09-29 22:01 - 000000896 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-12-29 10:39 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-29 03:16 - 2017-10-03 20:49 - 000000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-12-29 03:06 - 2017-09-29 22:01 - 000000900 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-12-28 23:25 - 2009-07-13 23:45 - 000020000 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-28 23:25 - 2009-07-13 23:45 - 000020000 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-28 22:18 - 2017-10-16 21:20 - 000854396 _____ C:\Windows\ntbtlog.txt
2017-12-28 22:17 - 2017-11-23 08:12 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-28 21:50 - 2017-09-30 12:43 - 000000000 ____D C:\Users\PC\AppData\Roaming\Tor
2017-12-28 16:51 - 2017-09-30 20:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\uTorrent
2017-12-28 15:39 - 2017-10-01 11:54 - 000000000 ____D C:\Users\PC\AppData\Roaming\DAEMON Tools Pro
2017-12-28 15:27 - 2017-09-30 12:44 - 000000000 ____D C:\ProgramData\TEMP
2017-12-28 02:10 - 2017-10-02 11:35 - 000745504 _____ C:\Windows\system32\perfh00A.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000683802 _____ C:\Windows\system32\perfh00E.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000392392 _____ C:\Windows\system32\perfh00D.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000171382 _____ C:\Windows\system32\perfc00E.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000158582 _____ C:\Windows\system32\perfc00A.dat
2017-12-28 02:10 - 2017-10-02 11:35 - 000084866 _____ C:\Windows\system32\perfc00D.dat
2017-12-28 02:10 - 2017-10-02 08:54 - 000740094 _____ C:\Windows\system32\perfh010.dat
2017-12-28 02:10 - 2017-10-02 08:54 - 000146954 _____ C:\Windows\system32\perfc010.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000690672 _____ C:\Windows\system32\perfh00C.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000479062 _____ C:\Windows\system32\perfh001.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000130340 _____ C:\Windows\system32\perfc00C.dat
2017-12-28 02:10 - 2017-10-02 08:43 - 000094880 _____ C:\Windows\system32\perfc001.dat
2017-12-28 02:10 - 2017-10-02 08:21 - 000697256 _____ C:\Windows\system32\perfh007.dat
2017-12-28 02:10 - 2017-10-02 08:21 - 000149224 _____ C:\Windows\system32\perfc007.dat
2017-12-28 02:10 - 2009-07-14 00:13 - 006083582 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-28 02:10 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\inf
2017-12-28 01:39 - 2009-07-13 22:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-12-26 13:14 - 2017-10-08 13:16 - 000000000 ____D C:\AdwCleaner
2017-12-26 13:08 - 2017-10-08 13:02 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-12-23 22:11 - 2017-09-30 12:10 - 000000000 ____D C:\Users\PC\AppData\Roaming\MPC-HC
2017-12-23 22:01 - 2017-10-06 07:31 - 000000000 ____D C:\Program Files\CCleaner
2017-12-23 21:38 - 2017-10-03 20:49 - 000000000 ___HD C:\Program Files (x86)\Uncorks
2017-12-23 20:31 - 2017-11-01 22:02 - 000002104 _____ C:\Users\PC\Desktop\BILLS.txt
2017-12-22 07:59 - 2017-09-29 21:54 - 000000000 ____D C:\Program Files (x86)\Opera
2017-12-21 21:04 - 2017-09-30 00:31 - 000001114 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-12-20 22:53 - 2017-10-02 12:12 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2017-12-20 22:42 - 2017-10-11 22:35 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-20 22:38 - 2017-10-01 17:02 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-20 21:53 - 2017-09-29 21:54 - 000003840 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1506740064
2017-12-19 19:10 - 2009-07-14 00:08 - 000032612 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-17 12:52 - 2017-10-21 12:24 - 000000000 ____D C:\Windows\pss
2017-12-14 22:24 - 2017-11-15 17:17 - 000000000 ____D C:\Users\PC\Desktop\3
2017-12-13 18:36 - 2009-07-13 23:45 - 000267672 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-13 18:33 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-13 18:33 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-09 01:33 - 2017-10-21 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-09 01:33 - 2017-10-21 13:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-08 17:22 - 2017-09-30 00:31 - 000000000 ____D C:\Users\PC\AppData\Local\VirtualStore
2017-12-07 19:09 - 2017-09-29 22:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-12-07 17:36 - 2017-10-01 12:13 - 000000000 ____D C:\Users\PC\AppData\Local\Microsoft Windows
2017-12-07 11:47 - 2017-10-21 13:42 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA Corporation
2017-12-06 10:23 - 2017-11-06 07:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\CDisplayEx
2017-12-05 19:00 - 2017-10-06 21:20 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-05 18:31 - 2017-11-05 18:08 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2017-12-05 18:16 - 2017-11-20 09:35 - 000000092 _____ C:\Users\PC\Desktop\Games to get.txt
2017-12-02 20:22 - 2017-09-30 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-12-01 00:44 - 2017-11-08 12:12 - 000000000 ____D C:\ProgramData\CanonIJPLM
 
==================== Files in the root of some directories =======
 
2017-12-16 16:09 - 2017-12-16 16:16 - 000000115 _____ () C:\Users\PC\AppData\Roaming\LogFile.txt
2017-11-06 06:42 - 2017-11-06 06:42 - 000000045 _____ () C:\Users\PC\AppData\Roaming\WB.CFG
2017-11-04 07:57 - 2017-11-05 17:00 - 001065984 _____ () C:\Users\PC\AppData\Local\file__0.localstorage
2017-10-03 10:58 - 2017-11-03 19:52 - 000007602 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg
 
Some files in TEMP:
====================
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
C:\Windows\system32\drivers\cskhknru.sys -> MD5 = D41D8CD98F00B204E9800998ECF8427E (0-byte MD5) <======= ATTENTION
 
LastRegBack: 2017-11-29 00:37
 
==================== End of FRST.txt ============================

 

 

Attached Files



#10 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 29 December 2017 - 01:27 PM

The error seems related to ASUS AI Suite 3 program. Reinstalling may resolve that issue, but not yet. Lets deal with the rootkit first.

  • Highlight the entire content of the quote box below.

Start::
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction <==== ATTENTION
R2 TorchCrashHandler; C:\Users\PC\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217216 2017-08-17] (TorchMedia Inc.) <==== ATTENTION
C:\Windows\system32\drivers\csk*.sys
ShortcutTarget: illegality.lnk -> C:\Program Files (x86)\Pane\cognate.exe (No File)
ShortcutTarget: sharron.lnk -> C:\Program Files (x86)\Braggs\rangy.exe (No File)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
C:\Users\PC\AppData\Local\zahnrio
2017-12-05 18:26 - 2017-12-28 19:37 - 000000000 ____D C:\Users\PC\AppData\Local\wiheuog
2017-12-05 18:26 - 2017-12-16 14:55 - 000000000 ____D C:\Users\PC\AppData\Local\igfxmtc
2017-12-05 18:20 - 2017-12-28 14:04 - 002884096 _____ (TOSHIBA CORPORATION) C:\Windows\system32\pcergnmsvc.exe
2017-12-16 16:09 - 2017-12-16 16:16 - 000000115 _____ () C:\Users\PC\AppData\Roaming\LogFile.txt
2017-11-06 06:42 - 2017-11-06 06:42 - 000000045 _____ () C:\Users\PC\AppData\Roaming\WB.CFG
2017-11-04 07:57 - 2017-11-05 17:00 - 001065984 _____ () C:\Users\PC\AppData\Local\file__0.localstorage
2017-10-03 10:58 - 2017-11-03 19:52 - 000007602 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
S2 7eb563854c9800d2907b30f213986e4b; rundll32.exe C:\Windows\7eb563854c9800d2907b30f213986e4b.dll ytuTSCNCE [X]
S2 AVP18.0.0; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe" -r [X]
S2 ca01958529935b05626f1dc6ccafe7ca; "C:\Program Files\ca01958529935b05626f1dc6ccafe7ca\1b08a889d862eed064b3558ec633be44.exe" [X]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
C:\Users\PC\AppData\Local\Torch
S1 4850f28f5551441f4082a239623336c5; \??\C:\Windows\system32\drivers\4850f28f5551441f4082a239623336c5.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
R3 udiskMgr; system32\drivers\jmqtwz.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [laser] => "C:\Program Files (x86)\Braggs\rangy.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [ritalin] => "C:\Program Files (x86)\Pane\cognate.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {77ab497b-a5e7-11e7-8782-806e6f6e6963} - H:\setup64.exe
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {d8aa4ed6-a6c7-11e7-93ea-40167ea925b7} - K:\setup.exe
HKU\S-1-5-18\...\RunOnce: [zZHILNIspz] => C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe
C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe
ShortcutTarget: illegality.lnk -> C:\Program Files (x86)\Pane\cognate.exe (No File)
ShortcutTarget: sharron.lnk -> C:\Program Files (x86)\Braggs\rangy.exe (No File)
CMD: fltmc instances
Folder: C:\Windows\System32\Drivers
Reg: Reg query "HKLM\SYSTEM\Select"
HOSTS:
CMD: Removeproxy
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset C:\resettcpip.txt
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
CMD: Bitsadmin /Reset /Allusers
EMPTYTEMP:
Reboot:
End::

  • Right click on the highlighted text and select Copy.
  • Start FRST (FRST64) with Administrator privileges
  • Press the Fix button. FRST will process the lines copied above from the clipboard.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.

 

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#11 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 29 December 2017 - 05:24 PM

In addition:

i tried to do this, but when i tried to bring up the frst64, it stated "the subsystem needed to support the image type is not present." It also wont let me create a system repair disc. Win defender is off and cant be turned. This is bad


Try to download the 32 bits FRST instead in the flash drive, then run FRST in the Recovery Environment.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#12 MGFJR1

MGFJR1
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 30 December 2017 - 01:52 PM

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-12-2017
Ran by PC (30-12-2017 13:43:05) Run:1
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction <==== ATTENTION
R2 TorchCrashHandler; C:\Users\PC\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217216 2017-08-17] (TorchMedia Inc.) <==== ATTENTION
C:\Windows\system32\drivers\csk*.sys
ShortcutTarget: illegality.lnk -> C:\Program Files (x86)\Pane\cognate.exe (No File)
ShortcutTarget: sharron.lnk -> C:\Program Files (x86)\Braggs\rangy.exe (No File)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
C:\Users\PC\AppData\Local\zahnrio
2017-12-05 18:26 - 2017-12-28 19:37 - 000000000 ____D C:\Users\PC\AppData\Local\wiheuog
2017-12-05 18:26 - 2017-12-16 14:55 - 000000000 ____D C:\Users\PC\AppData\Local\igfxmtc
2017-12-05 18:20 - 2017-12-28 14:04 - 002884096 _____ (TOSHIBA CORPORATION) C:\Windows\system32\pcergnmsvc.exe
2017-12-16 16:09 - 2017-12-16 16:16 - 000000115 _____ () C:\Users\PC\AppData\Roaming\LogFile.txt
2017-11-06 06:42 - 2017-11-06 06:42 - 000000045 _____ () C:\Users\PC\AppData\Roaming\WB.CFG
2017-11-04 07:57 - 2017-11-05 17:00 - 001065984 _____ () C:\Users\PC\AppData\Local\file__0.localstorage
2017-10-03 10:58 - 2017-11-03 19:52 - 000007602 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2017-12-28 02:10 - 2017-12-28 02:10 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\2377.tmp.exe
2017-12-27 16:41 - 2017-12-27 16:41 - 002391552 _____ (Farbar) C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe
2017-12-28 02:08 - 2017-12-28 02:08 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 000106760 _____ (Microsoft Corporation) C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe
2017-12-27 16:48 - 2017-12-27 16:48 - 003143755 _____ () C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe
S2 7eb563854c9800d2907b30f213986e4b; rundll32.exe C:\Windows\7eb563854c9800d2907b30f213986e4b.dll ytuTSCNCE [X]
S2 AVP18.0.0; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe" -r [X]
S2 ca01958529935b05626f1dc6ccafe7ca; "C:\Program Files\ca01958529935b05626f1dc6ccafe7ca\1b08a889d862eed064b3558ec633be44.exe" [X]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
C:\Users\PC\AppData\Local\Torch
S1 4850f28f5551441f4082a239623336c5; \??\C:\Windows\system32\drivers\4850f28f5551441f4082a239623336c5.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
R3 udiskMgr; system32\drivers\jmqtwz.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [laser] => "C:\Program Files (x86)\Braggs\rangy.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\Run: [ritalin] => "C:\Program Files (x86)\Pane\cognate.exe"
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {77ab497b-a5e7-11e7-8782-806e6f6e6963} - H:\setup64.exe
HKU\S-1-5-21-3919306709-814264073-2542757446-1000\...\MountPoints2: {d8aa4ed6-a6c7-11e7-93ea-40167ea925b7} - K:\setup.exe
HKU\S-1-5-18\...\RunOnce: [zZHILNIspz] => C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe
C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe
ShortcutTarget: illegality.lnk -> C:\Program Files (x86)\Pane\cognate.exe (No File)
ShortcutTarget: sharron.lnk -> C:\Program Files (x86)\Braggs\rangy.exe (No File)
CMD: fltmc instances
Folder: C:\Windows\System32\Drivers
Reg: Reg query "HKLM\SYSTEM\Select"
HOSTS:
CMD: Removeproxy
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset C:\resettcpip.txt
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
CMD: Bitsadmin /Reset /Allusers
EMPTYTEMP:
Reboot:
 
*****************
 
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\System\CurrentControlSet\Services\TorchCrashHandler" => removed successfully
TorchCrashHandler => service removed successfully
 
=========== "C:\Windows\system32\drivers\csk*.sys" ==========
 
Could not move "C:\Windows\system32\drivers\cskloruy.sys" => Scheduled to move on reboot.
 
========= End -> "C:\Windows\system32\drivers\csk*.sys" ========
 
C:\Program Files => FRST is scripted not to move this directory.
C:\Program Files => FRST is scripted not to move this directory.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => removed successfully
C:\Users\PC\AppData\Local\Temp\2377.tmp.exe => moved successfully
C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe => moved successfully
C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe => moved successfully
C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe => moved successfully
C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe => moved successfully
"C:\Users\PC\AppData\Local\Temp\2377.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe" => not found
 
"C:\Users\PC\AppData\Local\zahnrio" folder move:
 
Could not move "C:\Users\PC\AppData\Local\zahnrio" => Scheduled to move on reboot.
 
 
"C:\Users\PC\AppData\Local\wiheuog" folder move:
 
Could not move "C:\Users\PC\AppData\Local\wiheuog" => Scheduled to move on reboot.
 
 
"C:\Users\PC\AppData\Local\igfxmtc" folder move:
 
Could not move "C:\Users\PC\AppData\Local\igfxmtc" => Scheduled to move on reboot.
 
C:\Windows\system32\pcergnmsvc.exe => moved successfully
C:\Users\PC\AppData\Roaming\LogFile.txt => moved successfully
C:\Users\PC\AppData\Roaming\WB.CFG => moved successfully
C:\Users\PC\AppData\Local\file__0.localstorage => moved successfully
C:\Users\PC\AppData\Local\Resmon.ResmonCfg => moved successfully
"C:\Users\PC\AppData\Local\Temp\2377.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\92FB.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\9A7A.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\B06A.tmp.exe" => not found
"C:\Users\PC\AppData\Local\Temp\CA12.tmp.exe" => not found
"HKLM\System\CurrentControlSet\Services\7eb563854c9800d2907b30f213986e4b" => removed successfully
7eb563854c9800d2907b30f213986e4b => service removed successfully
"HKLM\System\CurrentControlSet\Services\AVP18.0.0" => removed successfully
AVP18.0.0 => service removed successfully
"HKLM\System\CurrentControlSet\Services\ca01958529935b05626f1dc6ccafe7ca" => removed successfully
ca01958529935b05626f1dc6ccafe7ca => service removed successfully
"HKLM\System\CurrentControlSet\Services\gupdate" => removed successfully
gupdate => service removed successfully
"HKLM\System\CurrentControlSet\Services\gupdatem" => removed successfully
gupdatem => service removed successfully
C:\Users\PC\AppData\Local\Torch => moved successfully
"HKLM\System\CurrentControlSet\Services\4850f28f5551441f4082a239623336c5" => removed successfully
4850f28f5551441f4082a239623336c5 => service removed successfully
"HKLM\System\CurrentControlSet\Services\Synth3dVsc" => removed successfully
Synth3dVsc => service removed successfully
"HKLM\System\CurrentControlSet\Services\tsusbhub" => removed successfully
tsusbhub => service removed successfully
udiskMgr => service not found.
"HKLM\System\CurrentControlSet\Services\VGPU" => removed successfully
VGPU => service removed successfully
"HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Software\Microsoft\Windows\CurrentVersion\Run\\laser" => removed successfully
"HKU\S-1-5-21-3919306709-814264073-2542757446-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ritalin" => removed successfully
"HKU\S-1-5-21-3919306709-814264073-2542757446-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{77ab497b-a5e7-11e7-8782-806e6f6e6963}" => removed successfully
HKLM\Software\Classes\CLSID\{77ab497b-a5e7-11e7-8782-806e6f6e6963} => key not found
"HKU\S-1-5-21-3919306709-814264073-2542757446-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d8aa4ed6-a6c7-11e7-93ea-40167ea925b7}" => removed successfully
HKLM\Software\Classes\CLSID\{d8aa4ed6-a6c7-11e7-93ea-40167ea925b7} => key not found
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\zZHILNIspz" => removed successfully
"C:\Windows\system32\config\SYSTEM~1\AppData\Local\BJIHIW~1\wssvc.exe" => not found
C:\Program Files => FRST is scripted not to move this directory.
C:\Program Files => FRST is scripted not to move this directory.
 
========= fltmc instances =========
 
Filter                Volume Name                              Altitude        Instance Name      Frame  VlStatus
--------------------  -------------------------------------  ------------  ---------------------  -----  --------
luafv                 C:                                      135000       luafv                    0    
usrdozg               \Device\Mup                              45666       usrdozg Instance         0    
usrdozg               C:                                       45666       usrdozg Instance         0    
FileInfo              \Device\Mup                              45000       FileInfo                 0    
FileInfo              C:                                       45000       FileInfo                 0    
FileInfo              D:                                       45000       FileInfo                 0    
FileInfo              E:                                       45000       FileInfo                 0    
FileInfo              J:                                       45000       FileInfo                 0    
FileInfo              G:                                       45000       FileInfo                 0    
FileInfo                                                       45000       FileInfo                 0    
FileInfo              F:                                       45000       FileInfo                 0    
FileInfo              I:                                       45000       FileInfo                 0    
FileInfo              K:                                       45000       FileInfo                 0    
 
========= End of CMD: =========
 
 
========================= Folder: C:\Windows\System32\Drivers ========================
 
2009-07-13 19:06 - 2009-07-13 19:06 - 000068096 ____A [64EDD3F59DB321947969FDF1DD747323] (Microsoft Corporation) C:\Windows\System32\Drivers\1394bus.sys
2017-10-01 12:07 - 2010-11-20 05:44 - 000229888 ____A [A87D604AEA360176311474C87A63BB88] (Microsoft Corporation) C:\Windows\System32\Drivers\1394ohci.sys
2017-12-26 12:45 - 2017-12-26 12:45 - 000255928 ____A [BDFA7A13CC73B180BBDF1ABA280E1CF7] (Malwarebytes) C:\Windows\System32\Drivers\656351D7.sys
2017-10-01 12:07 - 2010-11-20 08:32 - 000334208 ____A [D81D9E70B8A6DD14D42D7B4EFA65D5F2] (Microsoft Corporation) C:\Windows\System32\Drivers\acpi.sys
2017-10-01 12:07 - 2010-11-20 04:30 - 000012800 ____A [99F8E788246D495CE3794D7E7821D2CA] (Microsoft Corporation) C:\Windows\System32\Drivers\acpipmi.sys
2009-06-10 15:36 - 2009-07-13 20:52 - 000491088 ____A [2F6B34B83843F0C5118B63AC634F5BF4] (Adaptec, Inc.) C:\Windows\System32\Drivers\adp94xx.sys
2009-07-13 16:59 - 2009-07-13 20:52 - 000339536 ____A [597F78224EE9224EA1A13D6350CED962] (Adaptec, Inc.) C:\Windows\System32\Drivers\adpahci.sys
2009-07-13 16:59 - 2009-07-13 20:52 - 000182864 ____A [E109549C90F62FB570B9540C4B148E54] (Adaptec, Inc.) C:\Windows\System32\Drivers\adpu320.sys
2017-10-02 12:50 - 2017-04-04 09:53 - 000496128 ____A [0DC2A9882540DEA4A55B08785E09D8FC] (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000060416 ____A [7ECFF9B22276B73F43A99A15A6094E90] (Microsoft Corporation) C:\Windows\System32\Drivers\agilevpn.sys
2009-07-13 18:38 - 2009-07-13 20:52 - 000061008 ____A [608C14DBA7299D8CB6ED035A68A15799] (Microsoft Corporation) C:\Windows\System32\Drivers\AGP440.sys
2009-07-13 18:19 - 2009-07-13 20:52 - 000015440 ____A [5812713A477A3AD7363C7438CA2EE038] (Acer Laboratories Inc.) C:\Windows\System32\Drivers\aliide.sys
2009-07-13 18:19 - 2009-07-13 20:52 - 000015440 ____A [1FF8B4431C353CE385C875F194924C0C] (Microsoft Corporation) C:\Windows\System32\Drivers\amdide.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000064512 ____A [7024F087CFF1833A806193EF9D22CDA9] (Microsoft Corporation) C:\Windows\System32\Drivers\amdk8.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000060928 ____A [1E56388B3FE0D031C44144EB8C4D6217] (Microsoft Corporation) C:\Windows\System32\Drivers\amdppm.sys
2017-10-03 14:59 - 2011-03-11 01:41 - 000107904 ____A [D4121AE6D0C0E7E13AA221AA57EF2D49] (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys
2009-06-10 15:37 - 2009-07-13 20:52 - 000194128 ____A [F67F933E79241ED32FF46A4F29B5120B] (AMD Technologies Inc.) C:\Windows\System32\Drivers\amdsbs.sys
2017-10-03 14:59 - 2011-03-11 01:41 - 000027008 ____A [540DAF1CEA6094886D72126FD7C33048] (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys
2017-10-11 17:41 - 2017-09-13 10:00 - 000062464 ____A [C16B5B379A2A79702CC5FF923EAAE3FD] (Microsoft Corporation) C:\Windows\System32\Drivers\appid.sys
2009-07-13 16:59 - 2009-07-13 20:52 - 000087632 ____A [C484F8CEB1717C540242531DB7845C4E] (Adaptec, Inc.) C:\Windows\System32\Drivers\arc.sys
2009-07-13 16:59 - 2009-07-13 20:52 - 000097856 ____A [019AF6924AEFE7839F61C830227FE79C] (Adaptec, Inc.) C:\Windows\System32\Drivers\arcsas.sys
2016-02-06 14:25 - 2016-02-06 14:25 - 000150272 ____A [085D39BB3C763F713331B5BD76B4A993] (ASMedia Technology Inc) C:\Windows\System32\Drivers\asmthub3.sys
2016-02-06 14:25 - 2016-02-06 14:25 - 000449792 ____A [388D47F3B160DB126A35E0FE21A2CBB2] (ASMedia Technology Inc) C:\Windows\System32\Drivers\asmtxhci.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000185096 ____A [6212832F13B296DDBC85B24E22EDB5EC] (AVAST Software) C:\Windows\System32\Drivers\aswArPot.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000321512 ____A [9E3CAA4E0E81BDC0E529BF3B32F9A08F] (AVAST Software) C:\Windows\System32\Drivers\aswbidsdrivera.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000199448 ____A [FD31AC49D034541FF25BD6B158153035] (AVAST Software) C:\Windows\System32\Drivers\aswbidsha.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000343768 ____A [47DF29AA4FBE5A290B309D7F9109233E] (AVAST Software) C:\Windows\System32\Drivers\aswbloga.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000057696 ____A [0C9979B3B4B8472EB4286DFBBE37DEDA] (AVAST Software) C:\Windows\System32\Drivers\aswbuniva.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000149344 ____A [98A539F491E18AD6B9A9B62D6588F86E] (AVAST Software) C:\Windows\System32\Drivers\aswHdsKe.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000046976 ____A [0A857F3B9D698BDABAE369906E7E785E] (AVAST Software) C:\Windows\System32\Drivers\aswHwid.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000146664 ____A [EB132BE4994AFCE8BF37D4A6C4B4627B] (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000110336 ____A [C59C55F8A6ADCDB0A0550C2A4DA54AAC] (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000084384 ____A [EEE0BE78C10DD68D6ABB076E88D60B96] (AVAST Software) C:\Windows\System32\Drivers\aswRvrt.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 001025176 ____A [A2287AC5418073C2A584814C8B2997F8] (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000457400 ____A [32E1CDA6291ACE8803CC21D426600B31] (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000204456 ____A [CFED6D223DFB776AD9FCF1661F0B8D1C] (AVAST Software) C:\Windows\System32\Drivers\aswStm.sys
2017-12-23 22:03 - 2017-12-23 22:02 - 000358672 ____A [BC5A2D81EACCC1791AA19C45E1A083CC] (AVAST Software) C:\Windows\System32\Drivers\aswVmm.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000023040 ____A [769765CE2CC62867468CEA93969B2242] (Microsoft Corporation) C:\Windows\System32\Drivers\asyncmac.sys
2009-07-13 18:19 - 2009-07-13 20:52 - 000024128 ____A [02062C0B390B7729EDC9E69C680A6F3C] (Microsoft Corporation) C:\Windows\System32\Drivers\atapi.sys
2017-10-02 07:41 - 2013-08-04 21:25 - 000155584 ____A [059F00DEF82BF41E433B7ED465847726] (Microsoft Corporation) C:\Windows\System32\Drivers\ataport.sys
2009-10-05 15:34 - 2009-10-05 15:34 - 001542656 ____A [0ACC06FCF46F64ED4F11E57EE461C1F4] (Atheros Communications, Inc.) C:\Windows\System32\Drivers\athrx.sys
2009-06-10 15:34 - 2009-06-10 15:34 - 000270848 ____A [B5ACE6968304A3900EEB1EBFD9622DF2] (Broadcom Corporation) C:\Windows\System32\Drivers\b57nd60a.sys
2009-07-13 18:31 - 2009-07-13 20:52 - 000028240 ____A [F4DE2AE7A9E1BADAC70BC71EA2C17612] (Microsoft Corporation) C:\Windows\System32\Drivers\battc.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000006656 ____A [16A47CE2DECC9B099349A5F840654746] (Microsoft Corporation) C:\Windows\System32\Drivers\beep.sys
2009-07-13 18:35 - 2009-07-13 18:35 - 000045056 ____A [61583EE3C3A17003C4ACD0475646B4D3] (Microsoft Corporation) C:\Windows\System32\Drivers\blbdrive.sys
2017-10-02 12:49 - 2016-10-05 09:54 - 000090112 ____A [ABA3984C822E4D3F889699912D85D6C5] (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2009-07-13 20:19 - 2009-06-10 15:41 - 000018432 ____A [F09EEE9EDC320B5E1501F749FDE686C8] (Brother Industries, Ltd.) C:\Windows\System32\Drivers\BrFiltLo.sys
2009-07-13 20:20 - 2009-06-10 15:41 - 000008704 ____A [B114D3098E9BDB8BEA8B053685831BE6] (Brother Industries, Ltd.) C:\Windows\System32\Drivers\BrFiltUp.sys
2009-07-13 20:05 - 2009-07-13 20:01 - 000095232 ____A [5C2F352A4E961D72518261257AAE204B] (Microsoft Corporation) C:\Windows\System32\Drivers\bridge.sys
2009-07-13 20:19 - 2009-07-13 20:19 - 000286720 ____A [43BEA8D483BF1870F018E2D02E06A5BD] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrSerId.sys
2009-07-13 20:20 - 2009-06-10 15:41 - 000047104 ____A [A6ECA2151B08A09CACECA35C07F05B42] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrSerWdm.sys
2009-07-13 20:20 - 2009-06-10 15:41 - 000014976 ____A [B79968002C277E869CF38BD22CD61524] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrUsbMdm.sys
2009-07-13 20:20 - 2009-06-10 15:41 - 000014720 ____A [A87528880231C54E75EA7A44943B38BF] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrUsbSer.sys
2009-07-13 19:06 - 2009-07-13 19:06 - 000072192 ____A [9DA669F11D1F894AB4EB69BF546A42E8] (Microsoft Corporation) C:\Windows\System32\Drivers\bthmodem.sys
2009-06-10 15:34 - 2009-06-10 15:34 - 000468480 ____A [3E5B191307609F7514148C6832BB0842] (Broadcom Corporation) C:\Windows\System32\Drivers\bxvbda.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000092160 ____A [B8BD2BB284668C84865658C77574381A] (Microsoft Corporation) C:\Windows\System32\Drivers\cdfs.sys
2017-10-01 12:07 - 2010-11-20 04:19 - 000147456 ____A [F036CE71586E93D94DAB220D7BDF4416] (Microsoft Corporation) C:\Windows\System32\Drivers\cdrom.sys
2009-07-13 19:06 - 2009-07-13 19:06 - 000045568 ____A [D7CD5C4E1B71FA62050515314CFB52CF] (Microsoft Corporation) C:\Windows\System32\Drivers\circlass.sys
2017-10-01 12:07 - 2010-11-20 08:32 - 000179072 ____A [ACFAD0B512226C7A83C7CB09FD55A9AD] (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2009-07-13 18:31 - 2009-07-13 18:31 - 000017664 ____A [0840155D0BDDF1190F84A663C284BD33] (Microsoft Corporation) C:\Windows\System32\Drivers\CmBatt.sys
2009-07-13 18:19 - 2009-07-13 20:52 - 000017488 ____A [E19D3F095812725D88F9001985B94EDD] (CMD Technology, Inc.) C:\Windows\System32\Drivers\cmdide.sys
2014-09-19 06:15 - 2014-09-19 06:15 - 000594944 ____A [A3AF4D446F28A7BCEA0AFE5CCF27B095] (C-MEDIA) C:\Windows\System32\Drivers\CMUSBDAC.sys
2017-10-02 12:50 - 2016-11-20 09:07 - 000467392 ____A [A98CED39AD91B445E2E442A9BD67E8B4] (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2009-07-13 18:31 - 2009-07-13 20:52 - 000021584 ____A [102DE219C3F61415F964C88E9085AD14] (Microsoft Corporation) C:\Windows\System32\Drivers\compbatt.sys
2017-10-01 12:07 - 2010-11-20 05:33 - 000038912 ____A [03EDB043586CCEBA243D689BDDA370A8] (Microsoft Corporation) C:\Windows\System32\Drivers\CompositeBus.sys
2009-07-13 19:01 - 2009-07-13 20:47 - 000039504 ____A [3E588B60EC061686BA05D33574A344C6] (Microsoft Corporation) C:\Windows\System32\Drivers\crashdmp.sys
2009-07-13 19:01 - 2009-07-13 20:47 - 000024144 ____A [1C827878A998C18847245FE1F34EE597] (Microsoft Corporation) C:\Windows\System32\Drivers\crcdisk.sys
2017-10-01 12:07 - 2010-11-20 04:27 - 000514560 ____A [54DA3DFD29ED9F1619B6F53F3CE55E49] (Microsoft Corporation) C:\Windows\System32\Drivers\csc.sys
2017-12-29 11:57 - 2017-12-29 11:57 - 000142136 ____N [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\cskloruy.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 ____A [FCC89FED34A5FD03B27A2B577A40ACF8] (Dropbox, Inc.) C:\Windows\System32\Drivers\dbx-canary.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045672 ____A [728BE4B36BA453779AEC6459DDDB320B] (Dropbox, Inc.) C:\Windows\System32\Drivers\dbx-dev.sys
2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 ____A [FCC89FED34A5FD03B27A2B577A40ACF8] (Dropbox, Inc.) C:\Windows\System32\Drivers\dbx-stable.sys
2017-10-02 12:49 - 2016-09-08 09:55 - 000106496 ____A [9B38580063D281A99E68EF5813022A5F] (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys
2009-07-13 18:37 - 2009-07-13 18:37 - 000040448 ____A [13096B05847EC78F0977F2C0F79E9AB3] (Microsoft Corporation) C:\Windows\System32\Drivers\discache.sys
2017-10-02 07:43 - 2016-01-20 19:51 - 000073664 ____A [616387BBD83372220B09DE95F4E67BBC] (Microsoft Corporation) C:\Windows\System32\Drivers\disk.sys
2017-10-02 12:47 - 2014-02-03 21:35 - 000027584 ____A [B3222734D80013D2C73841B0C549FA63] (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys
2017-10-02 07:35 - 2015-12-08 13:54 - 000116736 ____A [C51B07394A087DA666A410DBFD26663A] (Microsoft Corporation) C:\Windows\System32\Drivers\drmk.sys
2017-10-02 07:35 - 2015-12-08 13:11 - 000005632 ____A [26FE888505E5A945B0536AF9A2A27A6F] (Microsoft Corporation) C:\Windows\System32\Drivers\drmkaud.sys
2017-10-01 11:54 - 2017-10-01 11:54 - 000283200 ____A [46571ED73AE84469DCA53081D33CF3C8] (DT Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2017-09-30 11:44 - 2014-04-14 04:52 - 000003008 ____A [4C9CBCE837DF5CCB5443C89E025DB073] () C:\Windows\System32\Drivers\DTSU2P.DAT
2009-07-13 18:19 - 2009-07-13 20:47 - 000028736 ____A [839B5FE3D48E9F35B22C21A3D5103F6C] (Microsoft Corporation) C:\Windows\System32\Drivers\Dumpata.sys
2009-07-13 18:21 - 2009-07-13 20:43 - 000055128 ____A [814DB88F2641691575A455CF25354098] (Microsoft Corporation) C:\Windows\System32\Drivers\dumpfve.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000016896 ____A [BF24D6F2ED97FE830BFD52B246F98E67] (Microsoft Corporation) C:\Windows\System32\Drivers\dxapi.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000098816 ____A [FEDE0629ECB23650D48989517D4914DA] (Microsoft Corporation) C:\Windows\System32\Drivers\dxg.sys
2017-10-02 12:50 - 2017-05-16 10:35 - 000986856 ____A [5CEF80AE869336376F550ECAE91E424A] (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2017-10-02 12:50 - 2017-05-16 10:35 - 000265448 ____A [1792FCF97D2420514F9102C18B015B29] (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2009-06-10 15:36 - 2009-07-13 20:47 - 000530496 ____A [0E5DA5369A0FCAEA12456DD852545184] (Emulex) C:\Windows\System32\Drivers\elxstor.sys
2009-07-13 18:31 - 2009-07-13 18:31 - 000009728 ____A [34A3C54752046E79A126E15C51DB409B] (Microsoft Corporation) C:\Windows\System32\Drivers\errdev.sys
2009-06-10 15:34 - 2009-06-10 15:34 - 003286016 ____A [DC5D737F51BE844D8C82C695EB17372F] (Broadcom Corporation) C:\Windows\System32\Drivers\evbda.sys
2017-10-02 12:49 - 2017-03-10 10:55 - 000195584 ____A [7E45F8B117419ABA3BB26579F6E70324] (Microsoft Corporation) C:\Windows\System32\Drivers\exfat.sys
2017-10-02 12:49 - 2017-03-10 10:55 - 000205312 ____A [6EDFA237D25433C03F42FBFDB16BDD24] (Microsoft Corporation) C:\Windows\System32\Drivers\fastfat.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000029696 ____A [D765D19CD8EF61F650C384F62FAC00AB] (Microsoft Corporation) C:\Windows\System32\Drivers\fdc.sys
2009-07-13 18:34 - 2009-07-13 20:47 - 000070224 ____A [655661BE46B5F5F3FD454E2C3095B930] (Microsoft Corporation) C:\Windows\System32\Drivers\fileinfo.sys
2009-07-13 18:25 - 2009-07-13 18:25 - 000034304 ____A [5F671AB5BC87EEA04EC38A6CD5962A47] (Microsoft Corporation) C:\Windows\System32\Drivers\filetrace.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000024576 ____A [C172A0F53008EAEB8EA33FE10E177AF5] (Microsoft Corporation) C:\Windows\System32\Drivers\flpydisk.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000289664 ____A [DA6B67270FD9DB3697B20FCE94950741] (Microsoft Corporation) C:\Windows\System32\Drivers\fltMgr.sys
2017-10-02 10:19 - 2012-03-01 01:46 - 000023408 ____A [6BD9295CC032DD3077C671FCCF579A7B] (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2009-07-13 18:26 - 2009-07-13 20:47 - 000055376 ____A [D43703496149971890703B4B1B723EAC] (Microsoft Corporation) C:\Windows\System32\Drivers\fsdepends.sys
2017-10-02 07:33 - 2013-01-24 01:01 - 000223752 ____A [8F6322049018354F45F05A2FD2D4E5E0] (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2017-10-02 12:50 - 2017-05-29 23:56 - 000287976 ____A [0F2573E43C95ECC25F0F03A056052948] (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2009-07-13 18:38 - 2009-07-13 20:47 - 000065088 ____A [8C778D335C9D272CFD3298AB02ABE3B6] (Microsoft Corporation) C:\Windows\System32\Drivers\GAGP30KX.SYS
2009-06-10 15:30 - 2009-06-10 15:30 - 003440660 ____A [7F29903CB8F5590D52DB0C9F97049A25] () C:\Windows\System32\Drivers\gm.dls
2009-07-13 17:13 - 2009-06-10 15:30 - 000000646 ____A [7111BFA692A22E4B3C07F1E6C6FF6F72] () C:\Windows\System32\Drivers\gmreadme.txt
2009-07-13 17:53 - 2009-06-10 15:31 - 000031232 ____A [F2523EF6460FC42405B12248338AB2F0] (Hauppauge Computer Works, Inc.) C:\Windows\System32\Drivers\hcw85cir.sys
2017-10-01 12:07 - 2010-11-20 05:43 - 000122368 ____A [97BFED39B6B79EB12CDDBFEED51F56BB] (Microsoft Corporation) C:\Windows\System32\Drivers\hdaudbus.sys
2017-10-01 12:07 - 2010-11-20 05:44 - 000350208 ____A [975761C778E33CD22498059B91E7373A] (Microsoft Corporation) C:\Windows\System32\Drivers\HdAudio.sys
2009-07-13 18:31 - 2009-07-13 18:31 - 000026624 ____A [78E86380454A7B10A5EB255DC44A355F] (Microsoft Corporation) C:\Windows\System32\Drivers\hidbatt.sys
2009-07-13 19:06 - 2009-07-13 19:06 - 000100864 ____A [7FD2A313F7AFE5C4DAB14798C48DD104] (Microsoft Corporation) C:\Windows\System32\Drivers\hidbth.sys
2017-10-02 07:40 - 2013-07-02 23:05 - 000076800 ____A [597C3699384E53CC59587ED50CCE5CA2] (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2009-07-13 19:06 - 2009-07-13 19:06 - 000046592 ____A [0A77D29F311B88CFAE3B13F9C1A73825] (Microsoft Corporation) C:\Windows\System32\Drivers\hidir.sys
2017-10-02 07:40 - 2013-07-02 23:05 - 000032896 ____A [856E76B3641746ABBC2946BED1372098] (Microsoft Corporation) C:\Windows\System32\Drivers\hidparse.sys
2017-10-01 12:07 - 2010-11-20 05:43 - 000030208 ____A [9592090A7E2B61CD582B612B6DF70536] (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys
2017-12-20 22:14 - 2017-12-20 22:36 - 000055232 ____A [D8B279B390DCF00AA20FB599EB37AD5F] () C:\Windows\System32\Drivers\hitmanpro37.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000078720 ____A [39D2ABCD392F3D8A6DCE7B60AE7B8EFC] (Hewlett-Packard Company) C:\Windows\System32\Drivers\HpSAMD.sys
2017-10-02 12:49 - 2017-06-15 15:23 - 000753664 ____A [CF5C9BD985120781200D35FD445D0BD5] (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000014720 ____A [A5462BD6884960C9DC85ED49D34FF392] (Microsoft Corporation) C:\Windows\System32\Drivers\hwpolicy.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000105472 ____A [FA55C73D4AFFA7EE23AC4BE53B4592D3] (Microsoft Corporation) C:\Windows\System32\Drivers\i8042prt.sys
2017-10-03 14:59 - 2011-03-11 01:41 - 000410496 ____A [AAAF44DB3BD0B9D1FB6969B23ECC8366] (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000044112 ____A [5C18831C61933628F5BB0EA2675B9D21] (Intel Corp./ICP vortex GmbH) C:\Windows\System32\Drivers\iirsp.sys
2009-07-13 18:19 - 2009-07-13 20:48 - 000016960 ____A [F00F20E70C6EC3AA366910083A0518AA] (Microsoft Corporation) C:\Windows\System32\Drivers\intelide.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000062464 ____A [ADA036632C664CAA754079041CF1F8C1] (Microsoft Corporation) C:\Windows\System32\Drivers\intelppm.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000082944 ____A [C9F0E1BD74365A8771590E9008D22AB6] (Microsoft Corporation) C:\Windows\System32\Drivers\ipfltdrv.sys
2017-10-01 12:07 - 2010-11-20 05:04 - 000078848 ____A [0FC1AEA580957AA8817B8F305D18CA3A] (Microsoft Corporation) C:\Windows\System32\Drivers\IPMIDrv.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000116224 ____A [AF9B39A7E7B6CAA203B3862582E9F2D0] (Microsoft Corporation) C:\Windows\System32\Drivers\ipnat.sys
2009-07-13 19:09 - 2009-07-13 19:09 - 000120320 ____A [05360B1EA5A2ABF620D1D96EBD8BD8F1] (Microsoft Corporation) C:\Windows\System32\Drivers\irda.sys
2009-07-13 19:08 - 2009-07-13 19:08 - 000017920 ____A [3ABF5E7213EB28966D55D58B515D5CE9] (Microsoft Corporation) C:\Windows\System32\Drivers\irenum.sys
2009-07-13 18:31 - 2009-07-13 20:48 - 000020544 ____A [2F7B28DC3E1183E5EB418DF55C204F38] (Microsoft Corporation) C:\Windows\System32\Drivers\isapnp.sys
2009-07-13 18:19 - 2009-07-13 20:48 - 000050768 ____A [BC02336F1CBA7DCC7D1213BB588A68A5] (Microsoft Corporation) C:\Windows\System32\Drivers\kbdclass.sys
2017-10-01 12:07 - 2010-11-20 05:33 - 000033280 ____A [0705EFF5B42A9DB58548EEC3B26BB484] (Microsoft Corporation) C:\Windows\System32\Drivers\kbdhid.sys
2016-10-11 14:14 - 2016-10-11 14:14 - 000057936 ____A [F8AE6D4060F8822D246D493359D06201] (AO Kaspersky Lab) C:\Windows\System32\Drivers\klim6.sys
2017-10-01 12:07 - 2010-11-20 05:33 - 000243712 ____A [24FBF5CC5C04150073C315A7C83521EE] (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys
2017-10-11 17:41 - 2017-09-13 10:32 - 000095464 ____A [DFE85B031220F8E0271716BBB3C4C8FF] (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2017-10-11 17:41 - 2017-09-13 10:32 - 000154856 ____A [70D7302DD70B979637179BFD8295C924] (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000020992 ____A [6869281E78CB31A43E969F06B57347C4] (Microsoft Corporation) C:\Windows\System32\Drivers\ksthunk.sys
2009-07-13 19:08 - 2009-07-13 19:08 - 000060928 ____A [1538831CF8AD2979A04C423779465827] (Microsoft Corporation) C:\Windows\System32\Drivers\lltdio.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000114752 ____A [1A93E54EB0ECE102495A51266DCDB6A6] (LSI Corporation) C:\Windows\System32\Drivers\lsi_fc.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000106560 ____A [1047184A9FDC8BDBFF857175875EE810] (LSI Corporation) C:\Windows\System32\Drivers\lsi_sas.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000065600 ____A [30F5C0DE1EE8B5BC9306C1F0E4A75F93] (LSI Corporation) C:\Windows\System32\Drivers\lsi_sas2.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000115776 ____A [0504EACAFF0D3C8AED161C4B0D369D4A] (LSI Corporation) C:\Windows\System32\Drivers\lsi_scsi.sys
2017-11-15 12:48 - 2017-10-11 19:20 - 000113152 ____A [5416CEB2916BBE635288C4D1075B045E] (Microsoft Corporation) C:\Windows\System32\Drivers\luafv.sys
2017-10-06 21:20 - 2017-12-05 19:00 - 000077432 ____A [680AF1647150CF9B061FF40E71C7396A] () C:\Windows\System32\Drivers\mbae64.sys
2017-12-26 12:44 - 2017-12-26 12:44 - 000192952 ____A [24C3F7C13C2490BFE9CD6AC40B9EAA5E] (Malwarebytes) C:\Windows\System32\Drivers\mbamchameleon.sys
2017-11-23 08:12 - 2017-12-28 22:17 - 000253880 ____A [B047B9CE5A0D800E6D713B43D0405221] (Malwarebytes) C:\Windows\System32\Drivers\mbamswissarmy.sys
2009-07-13 19:01 - 2009-07-13 19:01 - 000022016 ____A [3C9F072F9DCA856B9FB7A20CBD4281AC] (Microsoft Corporation) C:\Windows\System32\Drivers\mcd.sys
2009-06-10 15:37 - 2009-07-13 20:48 - 000035392 ____A [A55805F747C6EDB6A9080D7C633BD0F4] (LSI Corporation) C:\Windows\System32\Drivers\megasas.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000284736 ____A [BAF74CE0072480C3B6B7C13B2A94D6B3] (LSI Corporation, Inc.) C:\Windows\System32\Drivers\MegaSR.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000040448 ____A [800BA92F7010378B09F9ED9270F07137] (Microsoft Corporation) C:\Windows\System32\Drivers\modem.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000030208 ____A [B03D591DC7DA45ECE20B3B467E6AADAA] (Microsoft Corporation) C:\Windows\System32\Drivers\monitor.sys
2009-07-13 18:19 - 2009-07-13 20:48 - 000049216 ____A [7D27EA49F3C1F687D357E77A470AEA99] (Microsoft Corporation) C:\Windows\System32\Drivers\mouclass.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000031232 ____A [D3BF052C40B0C4166D9FD86A4288C1E6] (Microsoft Corporation) C:\Windows\System32\Drivers\mouhid.sys
2017-10-02 12:50 - 2017-05-07 10:33 - 000094440 ____A [072D8646E23ECF8A3F5F0157017B4DB6] (Microsoft Corporation) C:\Windows\System32\Drivers\mountmgr.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000155008 ____A [A44B420D30BD56E145D6A2BC8768EC58] (Microsoft Corporation) C:\Windows\System32\Drivers\mpio.sys
2009-07-13 19:08 - 2009-07-13 19:08 - 000077312 ____A [6C38C9E45AE0EA2FA5E551F2ED5E978F] (Microsoft Corporation) C:\Windows\System32\Drivers\mpsdrv.sys
2017-10-02 12:50 - 2016-09-08 09:55 - 000142336 ____A [98DB1790F0A584E0A2528B92B052417F] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxdav.sys
2017-10-11 17:41 - 2017-09-13 09:53 - 000159744 ____A [767C6DF04C5758B9F0790D400541B44F] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2017-10-11 17:41 - 2017-09-13 09:53 - 000291328 ____A [BD55F604FFABC911F8E5500186AE70E5] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2017-10-11 17:41 - 2017-09-13 09:53 - 000129536 ____A [92EECFB046D4706A4B8D699A4069B6EC] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000031104 ____A [C25F0BAFA182CBCA2DD3C851C2E75796] (Microsoft Corporation) C:\Windows\System32\Drivers\msahci.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000140672 ____A [DB801A638D011B9633829EB6F663C900] (Microsoft Corporation) C:\Windows\System32\Drivers\msdsm.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000026112 ____A [AA3FB40E17CE1388FA1BEDAB50EA8F96] (Microsoft Corporation) C:\Windows\System32\Drivers\msfs.sys
2017-09-30 15:11 - 2017-09-30 15:11 - 000000000 ___AH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2017-09-30 00:25 - 2017-09-30 00:25 - 000000000 ___AH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-10-11 19:38 - 2017-10-11 19:38 - 000000000 ___AH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-10-02 07:40 - 2012-11-28 17:56 - 000000003 ____A [933222B19FF3E7EA5F65517EA1F7D57E] () C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-10-03 09:35 - 2012-06-02 09:57 - 000000003 ____A [933222B19FF3E7EA5F65517EA1F7D57E] () C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2009-07-13 19:06 - 2009-07-13 19:06 - 000008192 ____A [F9D215A46A8B9753F61767FA72A20326] (Microsoft Corporation) C:\Windows\System32\Drivers\mshidkmdf.sys
2009-07-13 18:19 - 2009-07-13 20:48 - 000015424 ____A [D916874BBD4F8B07BFB7FA9B3CCAE29D] (Microsoft Corporation) C:\Windows\System32\Drivers\msisadrv.sys
2017-10-02 12:47 - 2014-02-03 21:35 - 000274880 ____A [96BB922A0981BC7432C8CF52B5410FE6] (Microsoft Corporation) C:\Windows\System32\Drivers\msiscsi.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000011136 ____A [49CCF2C4FEA34FFAD8B1B59D49439366] (Microsoft Corporation) C:\Windows\System32\Drivers\mskssrv.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000007168 ____A [BDD71ACE35A232104DDD349EE70E1AB3] (Microsoft Corporation) C:\Windows\System32\Drivers\mspclock.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000006784 ____A [4ED981241DB27C3383D72092B618A1D0] (Microsoft Corporation) C:\Windows\System32\Drivers\mspqm.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000366976 ____A [759A9EEB0FA9ED79DA1FB7D4EF78866D] (Microsoft Corporation) C:\Windows\System32\Drivers\msrpc.sys
2009-07-13 18:31 - 2009-07-13 20:48 - 000032320 ____A [0EED230E37515A0EAEE3C2E1BC97B288] (Microsoft Corporation) C:\Windows\System32\Drivers\mssmbios.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000008064 ____A [2E66F9ECB30B4221A318C92AC2250779] (Microsoft Corporation) C:\Windows\System32\Drivers\mstee.sys
2009-07-13 19:02 - 2009-07-13 19:02 - 000015360 ____A [7EA404308934E675BFFDE8EDF0757BCD] (Microsoft Corporation) C:\Windows\System32\Drivers\MTConfig.sys
2009-07-13 18:23 - 2009-07-13 20:48 - 000060496 ____A [F9A18612FD3526FE473C1BDA678D61C8] (Microsoft Corporation) C:\Windows\System32\Drivers\mup.sys
2017-10-02 07:34 - 2015-10-12 23:57 - 000950720 ____A [F7309F42555F8AAB7144A51A1F2585B0] (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2009-07-13 19:08 - 2009-07-13 19:08 - 000035328 ____A [9F9A1F53AAD7DA4D6FEF5BB73AB811AC] (Microsoft Corporation) C:\Windows\System32\Drivers\ndiscap.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000024064 ____A [30639C932D9FEF22B31268FE25A1B6E5] (Microsoft Corporation) C:\Windows\System32\Drivers\ndistapi.sys
2017-10-01 12:07 - 2010-11-20 05:50 - 000056832 ____A [136185F9FB2CC61E573E676AA5402356] (Microsoft Corporation) C:\Windows\System32\Drivers\ndisuio.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000164352 ____A [53F7305169863F0A2BDDC49E116C2E11] (Microsoft Corporation) C:\Windows\System32\Drivers\ndiswan.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000057856 ____A [015C0D8E0E0421B4CFD48CFFE2825879] (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2009-07-13 19:09 - 2009-07-13 19:09 - 000044544 ____A [86743D9F5D2B1048062B14B1D84501C4] (Microsoft Corporation) C:\Windows\System32\Drivers\netbios.sys
2017-10-02 12:50 - 2017-08-11 01:00 - 000262656 ____A [734837208CAFD6E0959A7A0333C95C9D] (Microsoft Corporation) C:\Windows\System32\Drivers\netbt.sys
2017-10-02 12:50 - 2017-05-29 23:56 - 000377576 ____A [0A3848951C6C8922DD04CCC3808F2B83] (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2009-07-13 16:59 - 2009-07-13 20:48 - 000051264 ____A [77889813BE4D166CDAB78DDBA990DA92] (IBM Corporation) C:\Windows\System32\Drivers\nfrd960.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000044032 ____A [1E4C4AB5C9B8DD13179BBDC75A2A01F7] (Microsoft Corporation) C:\Windows\System32\Drivers\npfs.sys
2017-10-02 12:50 - 2017-08-11 00:58 - 000026112 ____A [BE313E566EEA2A4B7F9AAC9782A567D4] (Microsoft Corporation) C:\Windows\System32\Drivers\nsiproxy.sys
2017-11-15 12:48 - 2017-10-16 18:07 - 001680616 ____A [1065D9AFE491706EB00AD3CBB76C9E54] (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000006144 ____A [9899284589F75FA8724FF3D16AED75C1] (Microsoft Corporation) C:\Windows\System32\Drivers\null.sys
2009-07-13 18:38 - 2009-07-13 20:48 - 000122960 ____A [270D7CD42D6E3979F6DD0146650F0E05] (Microsoft Corporation) C:\Windows\System32\Drivers\NV_AGP.SYS
2017-11-09 05:01 - 2017-11-09 05:01 - 000233904 ____A [87A603055ED07B3CF135ECBD6F280ADC] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys
2017-11-09 05:02 - 2017-11-09 05:02 - 016771696 ____A [D99D9D2337DF665708D62C473F477A96] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2017-10-03 14:59 - 2011-03-11 01:41 - 000148352 ____A [0A92CB65770442ED0DC44834632F66AD] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys
2017-10-03 14:59 - 2011-03-11 01:41 - 000166272 ____A [DAB0E87525C10052BF65F06152F37E4A] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys
2017-10-21 17:30 - 2017-10-10 20:05 - 000050624 ____A [E502016A185B5BB9DC341873F82CD49C] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvad64v.sys
2017-10-21 13:35 - 2017-10-06 08:32 - 000057792 ____A [61E19B1BA1F05BB32B1D4F4396E53933] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvhci.sys
2017-10-11 17:41 - 2017-09-13 10:05 - 000324608 ____A [9FB2A095B1166CB3C9A06651863B3452] (Microsoft Corporation) C:\Windows\System32\Drivers\nwifi.sys
2009-07-13 19:06 - 2009-07-13 19:06 - 000072832 ____A [3589478E4B22CE21B41FA1BFC0B8B8A0] (Microsoft Corporation) C:\Windows\System32\Drivers\ohci1394.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000131584 ____A [0557CF5A2556BD58E26384169D72438D] (Microsoft Corporation) C:\Windows\System32\Drivers\pacer.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000097280 ____A [0086431C29C35BE1DBC43F52CC273887] (Microsoft Corporation) C:\Windows\System32\Drivers\parport.sys
2017-10-02 07:36 - 2012-03-17 02:58 - 000075120 ____A [E9766131EEADE40A27DC27D2D68FBA9C] (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000184704 ____A [94575C0571D1462A0F70BDE6BD6EE6B3] (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2009-07-13 18:19 - 2009-07-13 20:45 - 000012352 ____A [B5B8B5EF2E5CB34DF8DCF8831E3534FA] (Microsoft Corporation) C:\Windows\System32\Drivers\pciide.sys
2009-07-13 18:19 - 2009-07-13 20:45 - 000048720 ____A [144497DAA145BA0F7BE896064146C058] (Microsoft Corporation) C:\Windows\System32\Drivers\pciidex.sys
2009-07-13 18:31 - 2009-07-13 20:45 - 000220752 ____A [B2E81D4E87CE48589F98CB8C05B01F2F] (Microsoft Corporation) C:\Windows\System32\Drivers\pcmcia.sys
2009-07-13 18:19 - 2009-07-13 20:45 - 000050768 ____A [D6B9C2E1A11A3A4B26A182FFEF18F603] (Microsoft Corporation) C:\Windows\System32\Drivers\pcw.sys
2017-10-02 12:50 - 2016-06-14 12:11 - 000663552 ____A [EA4D67448BE493D543F1730D6CD04694] (Microsoft Corporation) C:\Windows\System32\Drivers\PEAuth.sys
2017-10-02 07:35 - 2015-12-08 13:12 - 000230400 ____A [647599CAE8CA0EF2FB09C4B150BC97FF] (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2009-07-13 18:19 - 2009-07-13 18:19 - 000060416 ____A [0D922E23C041EFB1C3FAC2A6F943C9BF] (Microsoft Corporation) C:\Windows\System32\Drivers\processr.sys
2009-06-10 15:37 - 2009-07-13 20:45 - 001524816 ____A [A53A15A11EBFD21077463EE2C7AFEEF0] (QLogic Corporation) C:\Windows\System32\Drivers\ql2300.sys
2009-07-13 16:59 - 2009-07-13 20:45 - 000128592 ____A [4F6D12B51DE1AAEFF7DC58C4D75423C8] (QLogic Corporation) C:\Windows\System32\Drivers\ql40xx.sys
2009-07-13 19:09 - 2009-07-13 19:09 - 000046592 ____A [76707BB36430888D9CE9D705398ADB6C] (Microsoft Corporation) C:\Windows\System32\Drivers\qwavedrv.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000014848 ____A [5A0DA8AD5762FA2D91678A8A01311704] (Microsoft Corporation) C:\Windows\System32\Drivers\rasacd.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000129536 ____A [471815800AE33E6F1C32FB1B97C490CA] (Microsoft Corporation) C:\Windows\System32\Drivers\rasl2tp.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000092672 ____A [855C9B1CD4756C5E9A2AA58A15F58C25] (Microsoft Corporation) C:\Windows\System32\Drivers\raspppoe.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000111104 ____A [F92A2C41117A11A00BE01CA01A7FCDE9] (Microsoft Corporation) C:\Windows\System32\Drivers\raspptp.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000083968 ____A [E8B1E447B008D07FF47D016C2B0EEECB] (Microsoft Corporation) C:\Windows\System32\Drivers\rassstp.sys
2017-12-12 21:29 - 2017-10-11 19:20 - 000317440 ____A [FB45727105E27756B3252572A138FA19] (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys
2009-07-13 19:17 - 2009-07-13 19:17 - 000024064 ____A [302DA2A0539F2CF54D7C6CC30C1F2D8D] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpbus.sys
2009-07-13 19:16 - 2009-07-13 19:16 - 000007680 ____A [CEA6CC257FC9B7715F1C2B4849286D24] (Microsoft Corporation) C:\Windows\System32\Drivers\RDPCDD.sys
2017-10-01 12:07 - 2010-11-20 06:06 - 000165888 ____A [1B6163C503398B23FF8B939C67747683] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpdr.sys
2009-07-13 19:16 - 2009-07-13 19:16 - 000007680 ____A [BB5971A4F00659529A5C44831AF22365] (Microsoft Corporation) C:\Windows\System32\Drivers\RDPENCDD.sys
2009-07-13 19:16 - 2009-07-13 19:16 - 000008192 ____A [216F3FA57533D98E1F74DED70113177A] (Microsoft Corporation) C:\Windows\System32\Drivers\RDPREFMP.sys
2017-10-11 17:41 - 2017-08-13 16:45 - 000020992 ____A [4D3B50366F453BF1D17CB3DD72A024FF] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys
2017-10-02 12:45 - 2014-07-16 20:21 - 000212480 ____A [FE571E088C2D83619D2D48D4E961BF41] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000213888 ____A [34ED295FA0121C241BFEF24764FC4520] (Microsoft Corporation) C:\Windows\System32\Drivers\rdyboost.sys
2017-10-02 07:40 - 2015-11-05 04:53 - 000146944 ____A [5BD6B1EC997FF3DD779D62E05D2079A8] (Microsoft Corporation) C:\Windows\System32\Drivers\rmcast.sys
2017-10-02 07:40 - 2012-07-04 15:26 - 000041472 ____A [0E01641D96889BDEB22DE12D30575B08] (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000011264 ____A [388D3DD1A6457280F3BADBA9F3ACD6B1] (Microsoft Corporation) C:\Windows\System32\Drivers\rootmdm.sys
2009-07-13 19:08 - 2009-07-13 19:08 - 000076800 ____A [DDC86E4F8E7456261E637E3552E804FF] (Microsoft Corporation) C:\Windows\System32\Drivers\rspndr.sys
2017-09-30 11:32 - 2015-01-15 01:42 - 000977624 ____A [DCF7221D6588EDA8CD77CB27AE9B1844] (Realtek ) C:\Windows\System32\Drivers\Rt64win7.sys
2017-09-30 11:44 - 2016-09-22 20:32 - 007158855 ____A [EA6844915BE9A543AA8B4AF110902F4D] () C:\Windows\System32\Drivers\RTAIODAT.DAT
2017-09-30 11:44 - 2016-09-22 20:32 - 001920820 ____A [E2541C1DFEB6712F0DC007E78374CF69] () C:\Windows\System32\Drivers\rtkSSTsetting.dat
2017-09-30 11:44 - 2016-09-22 20:32 - 005324808 ____A [8BEAF8D3B55CAD0C2A4F0AFACC2550D1] (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RTKVHD64.sys
2017-09-30 11:44 - 2016-09-22 20:32 - 005804772 ____A [7D7FBC9504575D97885A858EA93684F5] () C:\Windows\System32\Drivers\rtvienna.dat
2017-10-01 12:07 - 2010-11-20 08:33 - 000103808 ____A [AC03AF3329579FFFB455AA2DAABBE22B] (Microsoft Corporation) C:\Windows\System32\Drivers\sbp2port.sys
2017-10-01 12:07 - 2010-11-20 05:09 - 000029696 ____A [253F38D0D7074C02FF8DEB9836C97D2B] (Microsoft Corporation) C:\Windows\System32\Drivers\scfilter.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000171392 ____A [1B1E264203D4EF9D3DA1987AD70355AB] (Microsoft Corporation) C:\Windows\System32\Drivers\scsiport.sys
2009-07-13 21:36 - 2009-06-10 15:37 - 000023040 ____A [3EA8A16169C26AFBEB544E0E48421186] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\System32\Drivers\secdrv.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000023552 ____A [CB624C0035412AF0DEBEC78C41F5CA1B] (Microsoft Corporation) C:\Windows\System32\Drivers\serenum.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000094208 ____A [C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] (Microsoft Corporation) C:\Windows\System32\Drivers\serial.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000026624 ____A [1C545A7D0691CC4A027396535691C3E3] (Microsoft Corporation) C:\Windows\System32\Drivers\sermouse.sys
2009-07-13 19:01 - 2009-07-13 19:01 - 000014336 ____A [A554811BCD09279536440C964AE35BBF] (Microsoft Corporation) C:\Windows\System32\Drivers\sffdisk.sys
2009-07-13 19:01 - 2009-07-13 19:01 - 000013824 ____A [FF414F0BAEFEBA59BC6C04B3DB0B87BF] (Microsoft Corporation) C:\Windows\System32\Drivers\sffp_mmc.sys
2017-10-01 12:07 - 2010-11-20 05:34 - 000014336 ____A [DD85B78243A19B59F0637DCF284DA63C] (Microsoft Corporation) C:\Windows\System32\Drivers\sffp_sd.sys
2009-07-13 19:01 - 2009-07-13 19:01 - 000016896 ____A [A9D601643A1647211A1EE2EC4E433FF4] (Microsoft Corporation) C:\Windows\System32\Drivers\sfloppy.sys
2009-06-10 15:37 - 2009-07-13 20:45 - 000043584 ____A [843CAF1E5FDE1FFD5FF768F23A51E2E1] (Silicon Integrated Systems Corp.) C:\Windows\System32\Drivers\sisraid2.sys
2009-07-13 16:59 - 2009-07-13 20:45 - 000080464 ____A [6A6C106D42E9FFFF8B9FCB4F754F6DA4] (Silicon Integrated Systems) C:\Windows\System32\Drivers\sisraid4.sys
2009-07-13 19:09 - 2009-07-13 19:09 - 000093184 ____A [548260A7B8654E024DC30BF8A7C5BAA4] (Microsoft Corporation) C:\Windows\System32\Drivers\smb.sys
2009-07-13 19:00 - 2009-07-13 19:00 - 000020992 ____A [A80348BA03E96C70852959655CA3E084] (Microsoft Corporation) C:\Windows\System32\Drivers\smclib.sys
2009-07-13 15:27 - 2009-07-13 20:45 - 000019008 ____A [B9E31E5CACDFE584F34F730A677803F9] (Microsoft Corporation) C:\Windows\System32\Drivers\spldr.sys
2009-06-10 15:48 - 2009-06-10 15:48 - 000426496 ____A [FFF95479C7AB1550F0750A5D01744211] (Microsoft Corporation) C:\Windows\System32\Drivers\spsys.sys
2017-10-11 17:41 - 2017-09-07 09:55 - 000461312 ____A [72E6A150A8C8530B201832D1C801CDE6] (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2017-10-11 17:41 - 2017-09-07 09:55 - 000405504 ____A [C4F67ABCC5033D334613F28F9E782809] (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2017-10-11 17:41 - 2017-09-07 09:55 - 000168448 ____A [C53CB62B0E57488AAE41FDA0FF8A0AB9] (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2009-07-13 16:59 - 2009-07-13 20:45 - 000024656 ____A [F3817967ED533D08327DC73BC4D5542A] (Promise Technology) C:\Windows\System32\Drivers\stexstor.sys
2017-10-02 12:47 - 2014-02-03 21:35 - 000190912 ____A [A3F0BC5897F9D3786A3CB695B163633A] (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2017-10-01 12:07 - 2010-11-20 08:34 - 000034688 ____A [D34E4943D5AC096C8EDEEBFD80D76E23] (Microsoft Corporation) C:\Windows\System32\Drivers\storvsc.sys
2017-10-02 07:35 - 2015-04-10 22:19 - 000069888 ____A [36E0DDD19038C92B7C7709BFA03F813F] (Microsoft Corporation) C:\Windows\System32\Drivers\stream.sys
2009-07-13 19:00 - 2009-07-13 20:45 - 000012496 ____A [D01EC09B6711A5F8E7E6564A4D0FBC90] (Microsoft Corporation) C:\Windows\System32\Drivers\swenum.sys
2016-04-21 04:10 - 2016-04-21 04:10 - 000027136 ____A [D765F43CBEA72D14C04AF3D2B9C8E54B] (The OpenVPN Project) C:\Windows\System32\Drivers\tap0901.sys
2009-07-13 19:01 - 2009-07-13 19:01 - 000029184 ____A [6E316C01CBA8B785FE495F5CC4F48C6F] (Microsoft Corporation) C:\Windows\System32\Drivers\tape.sys
2017-10-02 12:50 - 2017-05-29 23:56 - 001895656 ____A [7FB36A0A036ADDACE0A868E4A43C1C27] (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2017-10-02 07:40 - 2016-07-07 10:08 - 000046080 ____A [7FE5586314EE7D6AA8483264A089E5AF] (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys
2017-10-01 12:07 - 2010-11-20 04:22 - 000026624 ____A [6F020A220388ECA0AB6062DC27BD16B6] (Microsoft Corporation) C:\Windows\System32\Drivers\tdi.sys
2009-07-13 19:16 - 2009-07-13 19:16 - 000015872 ____A [3371D21011695B16333A3934340C4E7C] (Microsoft Corporation) C:\Windows\System32\Drivers\tdpipe.sys
2017-10-02 06:49 - 2012-02-16 23:57 - 000023552 ____A [51C5ECEB1CDEE2468A1748BE550CFBC8] (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2017-10-02 12:50 - 2017-07-29 09:56 - 000117248 ____A [4DD986720F7CB7A8A5D1226793097B9A] (Microsoft Corporation) C:\Windows\System32\Drivers\tdx.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000063360 ____A [561E7E1F06895D78DE991E01DD0FB6E5] (Microsoft Corporation) C:\Windows\System32\Drivers\termdd.sys
2017-11-08 16:27 - 2017-11-08 16:27 - 000442848 ____A [B9E5E3CFD096A5D60F2F7061A6FBB67B] (BitDefender S.R.L.) C:\Windows\System32\Drivers\Trufos.sys
2017-10-11 17:41 - 2017-08-13 16:45 - 000040448 ____A [2CF58216424757ED29605B4F18EC443C] (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2017-10-01 12:08 - 2010-11-20 06:07 - 000059392 ____A [D11C783E3EF9A3C52C0EBE83CC5000E9] (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys
2017-10-01 12:07 - 2010-11-20 05:51 - 000125440 ____A [3566A8DAAFA27AF944F5D705EAA64894] (Microsoft Corporation) C:\Windows\System32\Drivers\tunnel.sys
2009-07-13 18:38 - 2009-07-13 20:45 - 000064080 ____A [B4DD609BD7E282BFC683CEC7EAAAAD67] (Microsoft Corporation) C:\Windows\System32\Drivers\UAGP35.SYS
2017-10-01 12:07 - 2010-11-20 04:26 - 000328192 ____A [FF4232A1A64012BAA1FD97C7B67DF593] (Microsoft Corporation) C:\Windows\System32\Drivers\udfs.sys
2009-07-13 18:38 - 2009-07-13 20:45 - 000064592 ____A [4BFE1BC28391222894CBF1E7D0E42320] (Microsoft Corporation) C:\Windows\System32\Drivers\ULIAGPKX.SYS
2017-10-01 12:07 - 2010-11-20 05:44 - 000048640 ____A [DC54A574663A895C8763AF0FA1FF7561] (Microsoft Corporation) C:\Windows\System32\Drivers\umbus.sys
2009-07-13 19:06 - 2009-07-13 19:06 - 000009728 ____A [B2E8E8CB557B156DA5493BBDDCC1474D] (Microsoft Corporation) C:\Windows\System32\Drivers\umpass.sys
2017-10-02 07:40 - 2013-02-11 23:12 - 000019968 ____A [92B3172E8C14C1444682F510843A9988] (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys
2017-09-07 15:04 - 2017-09-07 15:04 - 000054784 ____A [F957092C63CD71D85903CA0D8370F473] (Apple, Inc.) C:\Windows\System32\Drivers\usbaapl64.sys
2017-10-02 07:40 - 2013-07-12 05:40 - 000109824 ____A [B0435098C81D04CAFFF80DDB746CD3A2] (Microsoft Corporation) C:\Windows\System32\Drivers\USBAUDIO.sys
2017-10-01 12:07 - 2010-11-20 05:44 - 000032896 ____A [292A8E03B3FCE04E39B5BE9B14132030] (Microsoft Corporation) C:\Windows\System32\Drivers\USBCAMD2.sys
2017-11-15 12:48 - 2017-10-17 21:06 - 000099840 ____A [9E68E917FB4B5C983438969643F53BEF] (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2017-10-02 07:40 - 2013-07-12 05:41 - 000100864 ____A [80B0F7D5CCF86CEB5D402EAAF61FEC31] (Microsoft Corporation) C:\Windows\System32\Drivers\usbcir.sys
2017-11-15 12:48 - 2017-10-17 21:06 - 000007808 ____A [D017EED379FFE7CCFF0F825D53AB8096] (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2017-11-15 12:48 - 2017-10-17 21:06 - 000056320 ____A [3F9D3902CE931E2A28DD8452AE915B67] (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2017-11-15 12:48 - 2017-10-17 21:06 - 000344064 ____A [86B65EEBC03B936DE8B26E5A18D98FA2] (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2017-11-15 12:48 - 2017-10-17 21:06 - 000025600 ____A [099C2931C6F73EB1B9E13C560F61B50D] (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2017-11-15 12:48 - 2017-10-17 21:06 - 000327168 ____A [03BE4B07FADA1FEA51480453EA229642] (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2009-07-13 19:38 - 2009-07-13 19:38 - 000025088 ____A [73188F58FB384E75C4063D29413CEE3D] (Microsoft Corporation) C:\Windows\System32\Drivers\usbprint.sys
2017-10-01 12:07 - 2010-11-20 06:37 - 000031744 ____A [C3EC945DEC43C00E2AD4C98DDDD064C7] (Microsoft Corporation) C:\Windows\System32\Drivers\usbrpm.sys
2017-10-02 07:40 - 2013-07-02 23:40 - 000042496 ____A [9661DA76B4531B2DA272ECCE25A8AF24] (Microsoft Corporation) C:\Windows\System32\Drivers\usbscan.sys
2017-10-02 07:40 - 2016-02-03 13:07 - 000091648 ____A [D029DD09E22EB24318A8FC3D8138BA43] (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS
2017-11-15 12:48 - 2017-10-17 21:06 - 000030720 ____A [5D7651347C7D702F4A5DE53603DC024F] (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2009-07-13 19:01 - 2009-07-13 20:45 - 000036432 ____A [C5C876CCFC083FF3B128F933823E87BD] (Microsoft Corporation) C:\Windows\System32\Drivers\vdrvroot.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000029184 ____A [53E92A310193CB3C03BEA963DE7D9CFC] (Microsoft Corporation) C:\Windows\System32\Drivers\vga.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000029184 ____A [DA4DA3F5E02943C2DC8C6ED875DE68DD] (Microsoft Corporation) C:\Windows\System32\Drivers\vgapnp.sys
2017-10-01 12:07 - 2010-11-20 08:34 - 000215936 ____A [2CE2DF28C83AEAF30084E1B1EB253CBB] (Microsoft Corporation) C:\Windows\System32\Drivers\vhdmp.sys
2009-07-13 18:19 - 2009-07-13 20:45 - 000017488 ____A [E5689D93FFE4E5D66C0178761240DD54] (VIA Technologies, Inc.) C:\Windows\System32\Drivers\viaide.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000129024 ____A [E7353D59C9842BC7299FAEB7E7E09340] (Microsoft Corporation) C:\Windows\System32\Drivers\videoprt.sys
2017-10-01 12:07 - 2010-11-20 08:34 - 000199552 ____A [86EA3E79AE350FEA5331A1303054005F] (Microsoft Corporation) C:\Windows\System32\Drivers\vmbus.sys
2017-10-01 12:07 - 2010-11-20 04:57 - 000021760 ____A [7DE90B48F210D29649380545DB45A187] (Microsoft Corporation) C:\Windows\System32\Drivers\VMBusHID.sys
2017-10-01 12:07 - 2010-11-20 04:57 - 000006656 ____A [E60C0A09F997826C7627B244195AB581] (Microsoft Corporation) C:\Windows\System32\Drivers\vms3cap.sys
2017-10-01 12:07 - 2010-11-20 08:34 - 000046464 ____A [7785DC213270D2FC066538DAF94087E7] (Microsoft Corporation) C:\Windows\System32\Drivers\vmstorfl.sys
2017-10-01 12:07 - 2010-11-20 08:34 - 000071552 ____A [D2AAFD421940F640B407AEFAAEBD91B0] (Microsoft Corporation) C:\Windows\System32\Drivers\volmgr.sys
2017-10-02 12:49 - 2017-07-07 10:33 - 000363752 ____A [85C5468BC395819AE2A0C747334BA14C] (Microsoft Corporation) C:\Windows\System32\Drivers\volmgrx.sys
2017-10-01 12:07 - 2010-11-20 08:34 - 000295808 ____A [0D08D2F3B3FF84E433346669B5E0F639] (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys
2009-06-10 15:37 - 2009-07-13 20:45 - 000161872 ____A [5E2016EA6EBACA03C04FEAC5F330D997] (VIA Technologies Inc.,Ltd) C:\Windows\System32\Drivers\vsmraid.sys
2009-07-13 19:07 - 2009-07-13 19:07 - 000024576 ____A [36D4720B72B5C5D9CB2B9C29E9DF67A1] (Microsoft Corporation) C:\Windows\System32\Drivers\vwifibus.sys
2009-07-13 19:07 - 2009-07-13 19:07 - 000059904 ____A [6A3D66263414FF0D6FA754C646612F3F] (Microsoft Corporation) C:\Windows\System32\Drivers\vwififlt.sys
2009-07-13 19:07 - 2009-07-13 19:07 - 000017920 ____A [6A638FC4BFDDC4D9B186C28C91BD1A01] (Microsoft Corporation) C:\Windows\System32\Drivers\vwifimp.sys
2009-07-13 19:02 - 2009-07-13 19:02 - 000027776 ____A [4E9440F4F152A7B944CB1663D3935A3E] (Microsoft Corporation) C:\Windows\System32\Drivers\wacompen.sys
2017-10-01 12:07 - 2010-11-20 05:52 - 000088576 ____A [356AFD78A6ED4457169241AC3965230C] (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2009-07-13 18:37 - 2009-07-13 18:37 - 000042496 ____A [FC438D1430B28618E2D0C7C332A710AD] (Microsoft Corporation) C:\Windows\System32\Drivers\watchdog.sys
2009-07-13 18:19 - 2009-07-13 20:45 - 000021056 ____A [72889E16FF12BA0F235467D6091B17DC] (Microsoft Corporation) C:\Windows\System32\Drivers\wd.sys
2017-10-02 07:40 - 2013-06-25 17:55 - 000785624 ____A [E2C933EDBC389386EBE6D2BA953F43D8] (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys
2017-10-02 07:40 - 2012-11-28 17:56 - 000054376 ____A [AEA0A67275CFBA0E463E00C6E9A1DDAE] (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys
2009-07-13 19:09 - 2009-07-13 19:09 - 000012800 ____A [611B23304BF067451A9FDEE01FBDD725] (Microsoft Corporation) C:\Windows\System32\Drivers\wfplwf.sys
2009-07-13 18:29 - 2009-07-13 20:45 - 000022096 ____A [05ECAEC3E4529A7153B3136CEB49F0EC] (Microsoft Corporation) C:\Windows\System32\Drivers\wimmount.sys
2017-10-01 12:07 - 2010-11-20 08:33 - 000052096 ____A [B4A1002206F6810EABC027DBBCE3B737] (Microsoft Corporation) C:\Windows\System32\Drivers\winhv.sys
2017-10-01 12:07 - 2010-11-20 05:43 - 000041984 ____A [FE88B288356E7B47B74B13372ADD906D] (Microsoft Corporation) C:\Windows\System32\Drivers\winusb.sys
2009-07-13 18:31 - 2009-07-13 18:31 - 000014336 ____A [F6FF8944478594D0E414D3F048F0D778] (Microsoft Corporation) C:\Windows\System32\Drivers\wmiacpi.sys
2009-07-13 18:19 - 2009-07-13 20:45 - 000016464 ____A [FC146F46872D4C5B529B89A5131FD1E6] (Microsoft Corporation) C:\Windows\System32\Drivers\wmilib.sys
2009-07-13 19:10 - 2009-07-13 19:10 - 000021504 ____A [6BCC1D7D2FD2453957C5479A32364E52] (Microsoft Corporation) C:\Windows\System32\Drivers\ws2ifsl.sys
2017-10-03 09:35 - 2012-07-25 21:26 - 000087040 ____A [AB886378EEB55C6C75B4F2D14B6C869F] (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFPf.sys
2017-10-03 09:35 - 2012-07-25 21:26 - 000198656 ____A [DDA4CAF29D8C0A297F886BFE561E6659] (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys
2009-07-13 19:01 - 2009-07-13 19:01 - 000679936 ____A [4A5CE13408945E525503B5F73D29B9C5] (Microsoft Corporation) C:\Windows\System32\Drivers\xnacc.sys
2009-08-21 03:52 - 2009-08-21 03:52 - 000079976 ____A [2C6BC21B2D5B58D8B1D638C1704CB494] (Microsoft Corporation) C:\Windows\System32\Drivers\xusb21.sys
2017-10-02 08:41 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\ar-SA
2017-10-02 08:32 - 2009-07-13 17:53 - 000011776 ____A [2FF95F259CA3C317027830B7D552B782] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\1394ohci.sys.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000009216 ____A [9C89C006D1F174B1767F21EA38E18B2A] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\acpi.sys.mui
2017-10-02 08:32 - 2009-07-13 18:02 - 000002560 ____A [D3FDF32A66CA6366F2410FB7688DCDBB] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\AGP440.sys.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000002048 ____A [00C1E2C73307D95C7D3887885670675D] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\amdide.sys.mui
2017-10-02 08:32 - 2009-07-13 17:49 - 000020992 ____A [20806AD425441E3D47DD9E89C0108741] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\amdk8.sys.mui
2017-10-02 08:32 - 2009-07-13 18:01 - 000020992 ____A [B90A7CC72890780E0A295CB8D9760202] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\amdppm.sys.mui
2017-10-02 08:32 - 2009-07-13 18:03 - 000003072 ____A [307097D68C7CF7E193E19D86FBEEAB05] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ataport.sys.mui
2017-10-02 08:32 - 2009-07-13 17:57 - 000003072 ____A [B769E38AEDBE5BB1F95953F01EECCE84] (ATI Technologies Inc.) C:\Windows\System32\Drivers\ar-SA\atikmdag.sys.mui
2017-10-02 08:33 - 2009-07-13 17:06 - 000009728 ____A [0E790A7094CF3DFE2A29A4223571B8C2] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\battc.sys.mui
2017-10-02 08:32 - 2009-07-13 17:52 - 000025088 ____A [5E8284767CAA57CB430C22CEA54660BA] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\bfe.dll.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000002560 ____A [084634FD6F253FA53DB331052424FF65] (Brother Industries Ltd.) C:\Windows\System32\Drivers\ar-SA\BrParwdm.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000009728 ____A [D0D38C4EDBE6029E03DC8606D07A090E] (Brother Industries Ltd.) C:\Windows\System32\Drivers\ar-SA\BrSerIb.sys.mui
2017-10-02 08:32 - 2009-07-13 17:56 - 000009728 ____A [2763019C4F8B047A303EAC0A26F44D47] (Brother Industries Ltd.) C:\Windows\System32\Drivers\ar-SA\BrSerId.sys.mui
2017-10-02 08:32 - 2009-07-13 18:00 - 000002048 ____A [10F00A3B8C8FA1C653642C9DBFE90585] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\bthenum.sys.mui
2017-10-02 08:32 - 2009-07-13 17:50 - 000004608 ____A [9876C4734691B94AC27B6E24580E1E4C] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\bthpan.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000006656 ____A [131E015F64FDB03682F7691AF953FE7F] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\bthport.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000002560 ____A [837F625AA55518B2B39025937F537686] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\BTHUSB.SYS.mui
2017-10-02 08:32 - 2009-07-13 17:57 - 000002048 ____A [474055D0E9B3CD7A18D8E22975CFF180] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\cdrom.sys.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000002560 ____A [56D058D08367AD444E01D6B903417168] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\disk.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000002560 ____A [488E99CCE02538F22FC1F9C2F9FD796C] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\Dot4usb.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000005120 ____A [0DDAEC673627CCA7AB50E2575A45A14E] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\fltmgr.sys.mui
2017-10-02 08:32 - 2009-07-13 17:52 - 000015360 ____A [B566E1212C997EFBD444FD2E86A5A238] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\fvevol.sys.mui
2017-10-02 08:32 - 2009-07-13 18:00 - 000002560 ____A [99139E0B719C83C7A5B52DE256E92931] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\GAGP30KX.SYS.mui
2017-10-02 08:32 - 2009-07-13 18:00 - 000004096 ____A [B65D87780CA0CC7CF689EFD5A5565150] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\hdaudbus.sys.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000003584 ____A [ABA4FAC8E8AD9D911AB75E184B5A616C] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\HdAudio.sys.mui
2017-10-02 08:32 - 2009-07-13 18:01 - 000003072 ____A [4A2498D0EFCD24D7EE32635F2164FF05] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\hidbth.sys.mui
2017-10-02 08:32 - 2009-07-13 17:53 - 000033792 ____A [668D63303EF5011D29CA4E05C5F71B07] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\http.sys.mui
2017-10-02 08:32 - 2009-07-13 18:01 - 000009728 ____A [C66EC5BEF42B1F6A1A46D69504602AC3] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\i8042prt.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000020992 ____A [0C370B36E0E86A95965F9785BBD3D91A] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\intelppm.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000005120 ____A [3D50C3329E081C69A070B73B20D4C96B] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\IPMIDrv.sys.mui
2017-10-02 08:32 - 2009-07-13 17:52 - 000004096 ____A [5A1EE410943BE32B48227DDE537A0EB8] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\isapnp.sys.mui
2017-10-02 08:32 - 2009-07-13 17:57 - 000004096 ____A [45285FF9E4BB05CE95889732BF572586] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\kbdclass.sys.mui
2017-10-02 08:32 - 2009-07-13 18:03 - 000002560 ____A [31A3568159989BE86FCA82FA1C85BA07] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\kbdhid.sys.mui
2017-10-02 08:32 - 2009-07-13 17:50 - 000006144 ____A [6EB81BFC177251AEF5867F2CEF7EA363] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\luafv.sys.mui
2017-10-02 08:32 - 2009-07-13 18:01 - 000003584 ____A [9319B73E299F9F8D00350D0036241078] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\modem.sys.mui
2017-10-02 08:32 - 2009-07-13 17:50 - 000004096 ____A [332A95111400599547D88742BE4F1D06] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\mouclass.sys.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000003072 ____A [36CC7E7C7D9B0674DE93FAE440F0BEAF] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 15:23 - 000002560 ____A [F07E0D5491D9B8A8A518DF5431622CBB] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\mountmgr.sys.mui
2017-10-02 08:32 - 2009-07-13 18:05 - 000037376 ____A [2D573656A8E6CABCDE05901D0832DCEC] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\mpio.sys.mui
2017-10-02 08:32 - 2009-07-13 18:03 - 000007168 ____A [AB622148E3520B6238EF6F8E8EF7AD59] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\msdsm.sys.mui
2017-10-02 08:32 - 2009-07-13 17:49 - 000003072 ____A [195150DCAA3C45FA09B9CB046F1966BF] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\mssmbios.sys.mui
2017-10-02 08:32 - 2009-07-13 17:57 - 000002560 ____A [E4BC10498B34EF7E572EBABCFF118CE0] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\MTConfig.sys.mui
2017-10-02 08:32 - 2009-07-13 17:50 - 000036352 ____A [A50CC8DC78B834272073D6178B3B9934] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ndis.sys.mui
2017-10-02 08:32 - 2009-07-13 17:57 - 000005632 ____A [C4C42E4C97D06C00F0759F9FBB13A54E] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ndiscap.sys.mui
2017-10-02 08:32 - 2009-07-13 17:58 - 000003072 ____A [2D28DF023022D70A0456984B4E8F80D3] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ndisuio.sys.mui
2017-10-02 08:32 - 2009-07-13 17:58 - 000002560 ____A [CCF5C43A8F40DA8CEAF76540D8986B89] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\NV_AGP.SYS.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000014848 ____A [9BE539BEE9900E3E1D2C938E255E83B5] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\nwifi.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000011776 ____A [2E25B86A5DAB83B95BF835C80FA5C58B] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ohci1394.sys.mui
2017-10-02 08:32 - 2009-07-13 18:03 - 000014336 ____A [AF8F57B03C7E59E175AF16AD998E20F4] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\pacer.sys.mui
2017-10-02 08:32 - 2009-07-13 17:51 - 000003584 ____A [93F61308384769D6B400A17D98487848] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\parport.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000002560 ____A [9DF90F38CFFCA5BCE5521272FEFB4EE5] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\partmgr.sys.mui
2017-10-02 08:32 - 2009-07-13 17:52 - 000008704 ____A [09E39FC6CF02E655DF9FC6B87029B690] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\pci.sys.mui
2017-10-02 08:32 - 2009-07-13 18:00 - 000003584 ____A [A45EBFF44AC55F33FE8DD53A997C61D0] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\pcmcia.sys.mui
2017-10-02 08:32 - 2009-07-13 17:52 - 000002560 ____A [EE3415FB9D08568299D147CF744E644D] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\pnpmem.sys.mui
2017-10-02 08:33 - 2009-07-13 16:53 - 000003584 ____A [1970890AE9A26F9C4C70C2051609B910] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\portcls.sys.mui
2017-10-02 08:32 - 2009-07-13 17:53 - 000020992 ____A [F9E3B43BF592833342B923A6433CF366] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\processr.sys.mui
2017-10-02 08:32 - 2009-07-13 17:56 - 000003584 ____A [E8EF155663E0FC0F047B5898A0CBD0F1] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\ar-SA\pscr.sys.mui
2017-10-02 08:32 - 2009-07-13 17:53 - 000002560 ____A [FBEA2EDF59B2E2D0F0F4CADCA9B1DFFF] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\qwavedrv.sys.mui
2017-10-02 08:32 - 2009-07-13 18:03 - 000004608 ____A [A858171678294F1A7269DA09FF4B4E10] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\rdbss.sys.mui
2017-10-02 08:33 - 2010-11-20 04:39 - 000002560 ____A [19C3BA3D75F954EB7469C8AA8A1CF289] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\rdpwd.sys.mui
2017-10-02 08:33 - 2010-11-20 04:39 - 000006144 ____A [FBA89EA107DEA3FE2B20C8CBA2B18A60] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\rdvgkmd.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000003072 ____A [D25F4FE8D44E3C1045D9D7ACECC31E30] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\rndismp6.sys.mui
2017-10-02 08:32 - 2009-07-13 17:59 - 000003072 ____A [119B0D292EA2FEEDB03B2E8017647ED8] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\rndismpx.sys.mui
2017-10-02 08:33 - 2009-07-13 17:05 - 000002560 ____A [EE7E9FCEE959D5DDB5AE2D7C8B257C4A] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\scfilter.sys.mui
2017-10-02 08:32 - 2009-07-13 18:05 - 000009216 ____A [F4237E4ADD1BFD5D7C9114940FBC0AA5] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\serial.sys.mui
2017-10-02 08:32 - 2009-07-13 18:05 - 000005120 ____A [15349B2D31EDCBBAAE11992D476D60AA] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\sermouse.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000002560 ____A [FCE769DE606F5BAB491ABBDA8532EB6F] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\serscan.sys.mui
2017-10-02 08:32 - 2009-07-13 17:54 - 000044544 ____A [417BAE8097B4746D457B43B709065FCE] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 15:07 - 000008192 ____A [35572D4CA7E026FE4134E9B3A0708341] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\tpm.sys.mui
2017-10-02 08:33 - 2010-11-20 04:32 - 000003584 ____A [B8B78943C3E99A12EC9D03F0B3D1A139] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\tsusbflt.sys.mui
2017-10-02 08:33 - 2010-11-20 04:25 - 000004096 ____A [943F5073624023F84789940CD0829747] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\tsusbhub.sys.mui
2017-10-02 08:33 - 2009-07-13 17:03 - 000007168 ____A [5A9BB509A94C8F16E729997C1E72902D] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\tunnel.sys.mui
2017-10-02 08:32 - 2009-07-13 17:56 - 000002560 ____A [C007A48E03DF13B57894161BAAA774D4] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\UAGP35.SYS.mui
2017-10-02 08:32 - 2009-07-13 17:49 - 000002560 ____A [32245417838691FFB79295613742399C] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ULIAGPKX.SYS.mui
2017-10-02 08:32 - 2009-07-13 18:01 - 000003072 ____A [C4B2D28E9EFDDDEE4E0A3EE828A208E1] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 22:25 - 000003072 ____A [0045888079E5A814C0515D2E53F62A0A] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 22:26 - 000011776 ____A [568CD0C2889A38DBEA5A6ADD54F7855C] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 22:22 - 000024576 ____A [34063A9C65464B201BA95016C1BE449C] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\usbport.sys.mui
2017-10-02 08:32 - 2009-07-13 18:03 - 000002048 ____A [CBBEDAC177321ACFAAF4F2B091869F7B] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\usbrpm.sys.mui
2017-10-02 08:32 - 2009-07-13 17:56 - 000003584 ____A [418A98A59677ADEF3AA26D3DC11C2A21] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\vdrvroot.sys.mui
2017-10-02 08:32 - 2009-07-13 17:58 - 000003584 ____A [3A2AE09725A07FCA60E980FCBA19F8F5] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\vhdmp.sys.mui
2017-10-02 08:32 - 2009-07-13 18:01 - 000002560 ____A [57319823E2681E37EC1BEABDB71C79FF] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\volmgrx.sys.mui
2017-10-02 08:32 - 2009-07-13 18:02 - 000025600 ____A [9542F2AD7F826BD0A7EE4481580BD130] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\volsnap.sys.mui
2017-10-02 08:32 - 2009-07-13 17:55 - 000002048 ____A [97C136F17AE2D18C557CAC8DADDADDC4] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\vwifibus.sys.mui
2017-10-02 08:32 - 2009-07-13 18:05 - 000004096 ____A [85C4C4B4C798A4B24C2AF50035FC22F3] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\wacompen.sys.mui
2017-10-02 08:32 - 2009-07-13 17:52 - 000002048 ____A [2107F007860EA41240B6F5D9332D4A5E] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\wd.sys.mui
2017-10-03 10:56 - 2012-07-26 02:48 - 000002560 ____A [6A8872550D470DC75FF432DBF9286C5D] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\wdf01000.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000002048 ____A [F00432500B358CF46ECDC8DAEBF7F1F9] (Microsoft Corporation) C:\Windows\System32\Drivers\ar-SA\ws2ifsl.sys.mui
2017-10-02 08:20 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\de-DE
2017-10-02 08:10 - 2009-07-13 18:05 - 000011776 ____A [81EFFB4559F1C8EF7D0650B6859DF6C6] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\1394ohci.sys.mui
2017-10-02 08:10 - 2009-07-13 18:06 - 000010752 ____A [32EBFD8713760BF3CBDDE0D0CD00560D] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\acpi.sys.mui
2017-10-02 08:10 - 2009-07-13 18:09 - 000016896 ____A [99FDC900232F195FEE2B3553469E9040] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\afd.sys.mui
2017-10-02 08:11 - 2009-07-13 17:06 - 000002560 ____A [A770400EA44FF228D5D078F6A108D000] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\AGP440.sys.mui
2017-10-02 08:10 - 2009-07-13 18:06 - 000002048 ____A [0AF7A0BE2DCE9A94B45B05CF3463875E] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\amdide.sys.mui
2017-10-02 08:10 - 2009-07-13 18:02 - 000020992 ____A [8AE5AB7519712CE49AD8359FE9833C16] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\amdk8.sys.mui
2017-10-02 08:10 - 2009-07-13 17:57 - 000020992 ____A [ED9D0DB29DAEDCF91CE3E52A865CBB4B] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\amdppm.sys.mui
2017-10-02 08:10 - 2009-07-13 17:58 - 000003584 ____A [0D30DF4078CD088D402323CD19D8F78F] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ataport.sys.mui
2017-10-02 08:10 - 2009-07-13 18:08 - 000003584 ____A [CAA710B6721F485071DDA6FF3165F0EB] (ATI Technologies Inc.) C:\Windows\System32\Drivers\de-DE\atikmdag.sys.mui
2017-10-02 08:11 - 2009-07-13 17:09 - 000009728 ____A [40532C88D09A548DD98FB6BA78614B2F] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\battc.sys.mui
2017-10-02 08:10 - 2009-07-13 17:56 - 000029696 ____A [A0FEFE13BEAFA135B584628E0A55EE85] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\bfe.dll.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000002560 ____A [A5EC836D29005FBB587B0C1E814B95C8] (Brother Industries Ltd.) C:\Windows\System32\Drivers\de-DE\BrParwdm.sys.mui
2017-10-02 08:10 - 2009-07-13 17:59 - 000011776 ____A [26FEC564C218049AB982F91C94C2E276] (Brother Industries Ltd.) C:\Windows\System32\Drivers\de-DE\BrSerIb.sys.mui
2017-10-02 08:10 - 2009-07-13 18:08 - 000011776 ____A [2B428C2327D3A6E1EDBABBD3FECBF701] (Brother Industries Ltd.) C:\Windows\System32\Drivers\de-DE\BrSerId.sys.mui
2017-10-02 08:10 - 2009-07-13 17:57 - 000002048 ____A [E3A066954E4C2C7667F264D729DBFDF7] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\bthenum.sys.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000004608 ____A [6BEED38C4E4F3E5A509A6F8EB8F31609] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\bthpan.sys.mui
2017-10-02 08:10 - 2009-07-13 18:03 - 000008192 ____A [562BCBB7F375A3A2F65F1DE5F24B4A2D] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\bthport.sys.mui
2017-10-02 08:10 - 2009-07-13 18:00 - 000002560 ____A [9E350FE0C8F44783CFCDBF6EEF4DA04E] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\BTHUSB.SYS.mui
2017-10-02 08:10 - 2009-07-13 18:08 - 000002048 ____A [D2EAFC19BAF01820B1C28305C7D9C55E] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\cdrom.sys.mui
2017-10-02 08:11 - 2010-11-20 04:07 - 000002560 ____A [6DA78302671B2E14BECC619A880E89C1] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\disk.sys.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000002560 ____A [902178B5D41C26034EF913CB67DA3D3B] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\Dot4usb.sys.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000005632 ____A [E0E59D0A4668B8049048A438601E1C9E] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\fltmgr.sys.mui
2017-10-02 08:10 - 2009-07-13 18:04 - 000017920 ____A [62ABBCC6E5CB9FE818F55422E270376F] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\fvevol.sys.mui
2017-10-02 08:10 - 2009-07-13 18:04 - 000002560 ____A [38CDDE258FF27E160205D430C5F5B39B] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\GAGP30KX.SYS.mui
2017-10-02 08:10 - 2009-07-13 18:03 - 000004096 ____A [7CB79F143734FE76185A6FF7D536A810] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\hdaudbus.sys.mui
2017-10-02 08:10 - 2009-07-13 18:05 - 000003584 ____A [120CC7E1DCD7039F970698AD8DC6B3CD] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\HdAudio.sys.mui
2017-10-02 08:10 - 2009-07-13 18:05 - 000003072 ____A [13126BF50E83E26A017FEE8071D1DB11] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\hidbth.sys.mui
2017-10-02 08:10 - 2009-07-13 17:57 - 000044032 ____A [A5D5872306CCF8B7F5F35E8F37F2BF30] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\http.sys.mui
2017-10-02 08:10 - 2009-07-13 18:05 - 000010752 ____A [636515695771E5AE62A1894814B0610E] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\i8042prt.sys.mui
2017-10-02 08:10 - 2009-07-13 18:02 - 000020992 ____A [CAACCFEAD01AD9DDBBEF93F667B24B45] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\intelppm.sys.mui
2017-10-02 08:10 - 2009-07-13 18:08 - 000006656 ____A [A5E41A691EC5C6DF545A20E8412567A7] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\IPMIDrv.sys.mui
2017-10-02 08:10 - 2009-07-13 18:04 - 000003584 ____A [F51FB59799C113241790E105C9477D0C] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ipnat.sys.mui
2017-10-02 08:11 - 2009-07-13 17:04 - 000004096 ____A [E770A0C7EF5B251A939C28936159AFB0] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\isapnp.sys.mui
2017-10-02 08:10 - 2009-07-13 18:09 - 000005120 ____A [7CB42B7C1EAB1EFFAEC66A74D83B37AC] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\kbdclass.sys.mui
2017-10-02 08:10 - 2009-07-13 18:06 - 000002560 ____A [54853F142D1F31A9519E3AA612000F0D] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\kbdhid.sys.mui
2017-10-02 08:10 - 2009-07-13 18:02 - 000007168 ____A [3029049FAF0FC7EEB7C52E7F26AB4878] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\luafv.sys.mui
2017-10-02 08:10 - 2009-07-13 18:05 - 000003584 ____A [9CD7BC146A38335208D23296904C1543] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\modem.sys.mui
2017-10-02 08:10 - 2009-07-13 18:02 - 000004608 ____A [472573BDF1811CED96EB35AE3105002C] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\mouclass.sys.mui
2017-10-02 08:10 - 2009-07-13 17:58 - 000003072 ____A [D6C8C6A3B80DDFAA39CB77591AB85EF7] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 15:23 - 000002560 ____A [1150E2849D29FDF3E333B200F811131C] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\mountmgr.sys.mui
2017-10-02 08:10 - 2009-07-13 18:00 - 000038912 ____A [76B064FCDFCA3E60466FFA0A15032683] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\mpio.sys.mui
2017-10-02 08:11 - 2010-11-20 04:12 - 000007168 ____A [2D883C70048A7ECBA02C34C7C22B50A0] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\msdsm.sys.mui
2017-10-02 08:11 - 2009-07-13 16:54 - 000003072 ____A [0C2BCC742C04F3E300E529DC6883B7E6] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\mssmbios.sys.mui
2017-10-02 08:10 - 2009-07-13 18:00 - 000002560 ____A [B3CEFFC19C882B8105D96934364E0CDC] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\MTConfig.sys.mui
2017-10-02 08:10 - 2009-07-13 18:02 - 000041984 ____A [6F2A10B10B265C9FC65536F147A921CE] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ndis.sys.mui
2017-10-02 08:10 - 2009-07-13 18:00 - 000005632 ____A [6F9652AB106BADE273FEE3E10BC41F5D] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ndiscap.sys.mui
2017-10-02 08:10 - 2009-07-13 17:54 - 000003072 ____A [F9B2FF778FA8C7C8762CE606387949C6] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ndisuio.sys.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000072192 ____A [73BAA5F5E41EF87697CCE503C5832923] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ntfs.sys.mui
2017-10-02 08:11 - 2009-07-13 17:02 - 000002560 ____A [537C02705632A8412C9172867EAC8AB8] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\NV_AGP.SYS.mui
2017-10-02 08:10 - 2009-07-13 17:58 - 000017408 ____A [8EEAB4DF2935C50B20DCE1674A458581] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\nwifi.sys.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000011776 ____A [C91C9B2C2922D84C54DBC6452B8135B7] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ohci1394.sys.mui
2017-10-02 08:10 - 2009-07-13 17:59 - 000016896 ____A [2D171E47ED7BB345631DC42D724FC6C4] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\pacer.sys.mui
2017-10-02 08:10 - 2009-07-13 17:56 - 000003584 ____A [99FB906557AA28798D6C7ED4422EDC62] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\parport.sys.mui
2017-10-02 08:10 - 2009-07-13 18:02 - 000002560 ____A [6F764924F551D8E1DCD25820C459B58B] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\partmgr.sys.mui
2017-10-02 08:11 - 2009-07-13 16:56 - 000008192 ____A [17AE0AE1F505AF1A9C74B1E2297F9FB7] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\pci.sys.mui
2017-10-02 08:10 - 2009-07-13 18:04 - 000004608 ____A [5DE91E7F72B2C4E717960186B762B9D5] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\pcmcia.sys.mui
2017-10-02 08:10 - 2009-07-13 18:04 - 000002560 ____A [19BC2644254652F3ACAF47D73FE200B8] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\pnpmem.sys.mui
2017-10-02 08:11 - 2009-07-13 18:05 - 000003584 ____A [8D684738E7E0CECE81B5396508E381E6] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\portcls.sys.mui
2017-10-02 08:10 - 2009-07-13 17:57 - 000020992 ____A [E49495937EB11F42B281ED264E655263] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\processr.sys.mui
2017-10-02 08:11 - 2009-07-13 18:00 - 000004096 ____A [D67CEDB0F031EFF05F2FB498AE69A695] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\de-DE\pscr.sys.mui
2017-10-02 08:10 - 2009-07-13 17:57 - 000002560 ____A [B3ECD1922BBCB1B24B5963BCBF7FD8E2] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\qwavedrv.sys.mui
2017-10-02 08:10 - 2009-07-13 18:06 - 000005120 ____A [B6AE78DC4567869E13BB9553E3B805A5] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\rdbss.sys.mui
2017-10-02 08:11 - 2010-11-20 04:00 - 000002560 ____A [D03A32D8978704B06EA105883F95FEDE] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\rdpwd.sys.mui
2017-10-02 08:11 - 2010-11-20 03:59 - 000006656 ____A [60F64B05F025A7B94EF1364643DB78AF] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\rdvgkmd.sys.mui
2017-10-02 08:10 - 2009-07-13 17:56 - 000003072 ____A [2C17CA4C6733F419C823036CF6513779] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\RNDISMP.sys.mui
2017-10-02 08:10 - 2009-07-13 18:08 - 000003072 ____A [16E358E8D20DAC95921A355D6B87DAC6] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\rndismp6.sys.mui
2017-10-02 08:10 - 2009-07-13 17:55 - 000003072 ____A [2C17CA4C6733F419C823036CF6513779] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\rndismpx.sys.mui
2017-10-02 08:10 - 2009-07-13 18:01 - 000002560 ____A [B200BF523A2B7935EA2FCFD4848CFD76] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\scfilter.sys.mui
2017-10-02 08:10 - 2009-07-13 18:05 - 000003072 ____A [9DDD06B843470F7911AD170B20B9A9E6] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\scsiport.sys.mui
2017-10-02 08:10 - 2009-07-13 18:09 - 000011776 ____A [144DAB3BDDD2888DB76A193D102C8579] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\serial.sys.mui
2017-10-02 08:10 - 2009-07-13 18:09 - 000005632 ____A [87F000313D04493D00B75805620E2852] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\sermouse.sys.mui
2017-10-02 08:11 - 2009-07-13 17:59 - 000003072 ____A [9C05C59862D5F21625DE101947480642] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\serscan.sys.mui
2017-10-02 08:10 - 2009-07-13 18:09 - 000002560 ____A [539FEDBA4D20F4367790E55450CAFD79] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\srv.sys.mui
2017-10-02 08:10 - 2009-07-13 17:58 - 000051712 ____A [889616C5B0241E04271A32BCBADA5F3C] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 15:10 - 000008192 ____A [5EC928ACD634F44746CE045B7443BAA5] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\tpm.sys.mui
2017-10-02 08:11 - 2010-11-20 04:07 - 000003584 ____A [7B306DEEBF40003F28CD1B2572F7E162] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\tsusbflt.sys.mui
2017-10-02 08:11 - 2010-11-20 04:01 - 000004608 ____A [6C372C1033A13BF3BEB57134978F34DC] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\tsusbhub.sys.mui
2017-10-02 08:11 - 2009-07-13 17:06 - 000009216 ____A [E3D9AFAE3D19C96D1F97C06A82D79E69] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\tunnel.sys.mui
2017-10-02 08:10 - 2009-07-13 17:59 - 000002560 ____A [1703742A99784DA020D615BE2B994855] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\UAGP35.SYS.mui
2017-10-02 08:11 - 2009-07-13 16:54 - 000002560 ____A [839D5C2D982B9FBD9910FE360C3FB019] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ULIAGPKX.SYS.mui
2017-10-02 08:11 - 2009-07-13 18:05 - 000003072 ____A [C22DA491CEFB10F45B9BEF6A50A03BEE] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 22:22 - 000003072 ____A [3AB428749CE65FE68C7586B154C908A8] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 22:23 - 000011776 ____A [C5C0AC4308F2FB8EDB67125DC05C74B8] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 22:25 - 000025088 ____A [B696F2960095039F0D0DB1B955491B1A] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\usbport.sys.mui
2017-10-02 08:10 - 2009-07-13 17:59 - 000002048 ____A [08BD6F4FB7B0FFB90AD93ABBC571F23A] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\usbrpm.sys.mui
2017-10-02 08:11 - 2010-11-20 04:00 - 000004608 ____A [BFC181F32D3814E22E0FBB8D4E7BFCDA] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\vdrvroot.sys.mui
2017-10-02 08:11 - 2009-07-13 18:10 - 000004096 ____A [EC014D57930C2F3E93603C99A4E0B716] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\vhdmp.sys.mui
2017-10-02 08:10 - 2009-07-13 17:57 - 000002560 ____A [DE96146329AF39B3CCCF55105B457F7E] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\volmgrx.sys.mui
2017-10-02 08:11 - 2009-07-13 18:05 - 000028672 ____A [218322D6552BA0CD55D45F31463A1A0B] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\volsnap.sys.mui
2017-10-02 08:10 - 2009-07-13 18:06 - 000002560 ____A [72D095E89E9D04B106065D2C61C18DCA] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\vwifibus.sys.mui
2017-10-02 08:10 - 2009-07-13 18:09 - 000004096 ____A [8E3DDBB25AAF1A157E3D461BD6CAA2C5] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\wacompen.sys.mui
2017-10-02 08:11 - 2009-07-13 18:04 - 000002048 ____A [478B3050E8C885651A8E8EAAB84CD8E8] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\wd.sys.mui
2017-10-03 10:56 - 2012-07-26 02:46 - 000002560 ____A [E2A565F1380EBAE4D0DDBAC5AF78CAC3] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\wdf01000.sys.mui
2017-10-02 08:10 - 2009-07-13 18:08 - 000002048 ____A [F873AA31B7837A555D24F857731A85FF] (Microsoft Corporation) C:\Windows\System32\Drivers\de-DE\ws2ifsl.sys.mui
2009-07-14 00:37 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\en-US
2009-07-14 00:35 - 2009-07-13 21:29 - 000011776 ____A [54DB21D20958E3D690BCC9F85E760354] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\1394ohci.sys.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000009216 ____A [32022C811A44B86FF45D20ACAB6D9BF6] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\acpi.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000014848 ____A [E6A5E6AD9C6F4F30061068F321C0EC5A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\afd.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000002560 ____A [112E5E0E93886F5F4662F8AB16A41953] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\AGP440.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000002048 ____A [431EEF89634DC46CCADD489A5E242D96] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdide.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000014336 ____A [5A407CCC623EF4748FCFD65D8BF36E53] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdk8.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000014336 ____A [02EF6091D3B2E3DD52148D69B084CC6A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdppm.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000003072 ____A [0AB55BC2F5C3B1F6DD41C4A8F2C598AE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ataport.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000003072 ____A [2990593CBE18904D5EC0D8D012F56BE0] (ATI Technologies Inc.) C:\Windows\System32\Drivers\en-US\atikmdag.sys.mui
2009-07-14 00:35 - 2009-07-13 21:27 - 000007168 ____A [39C77D306B5BC4EE5B84F257BD8C11D4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\battc.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000025600 ____A [D33E31F95C553085F8F008269716AE3C] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bfe.dll.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000002560 ____A [19772EAF65F4DC67D258A0204BDF53BB] (Brother Industries Ltd.) C:\Windows\System32\Drivers\en-US\BrParwdm.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000010240 ____A [E2D40298D837850BE3D3ED553D557916] (Brother Industries Ltd.) C:\Windows\System32\Drivers\en-US\BrSerIb.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000010240 ____A [FFFAE2F485EE4846D3926D8143DC52D0] (Brother Industries Ltd.) C:\Windows\System32\Drivers\en-US\BrSerId.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000002048 ____A [996AD950DC5511CAC3E23887F36D00CE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthenum.sys.mui
2009-07-14 00:35 - 2009-07-13 21:27 - 000004608 ____A [9F6C0ED8C73E45B8B39E93C4F19EC51D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthpan.sys.mui
2009-07-14 00:35 - 2009-07-13 21:27 - 000007680 ____A [E811F270074C90EFFB62E26419C5A478] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthport.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000002560 ____A [427AFD042BF91F651AAAF2F8333946D3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\BTHUSB.SYS.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000002048 ____A [E4AD0963F2B4C256C9B752809FF5A17D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\cdrom.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000002048 ____A [E113E3358247C4399ACAA9394A13CAC1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\disk.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000002560 ____A [4DF602FA4237A02CFBA5443807ACE756] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\Dot4usb.sys.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000005120 ____A [9F29D656CAA5CB37DC988FC1B0899728] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fltmgr.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000014336 ____A [F376F1DB8D6B5C7D4AACA77016547269] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fvevol.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000002560 ____A [F800E677010DCCC1D1F3DD80C1208ADD] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\GAGP30KX.SYS.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000004096 ____A [CF9ED88D2707FB6175D56A8EEF56AE2A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hdaudbus.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000003072 ____A [C9AFAE18805C92774E55D85C34687D98] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\HdAudio.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000003072 ____A [6289F615503FABB5721E885F76C21094] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hidbth.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000032256 ____A [E7385B794486432C74CA8CBEAE1E957C] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\http.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000010240 ____A [7932917F9F40083310D3C597CA89138A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\i8042prt.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000014336 ____A [A9DAE67F67C8736EAB89BE629A100134] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\intelppm.sys.mui
2017-10-01 12:07 - 2010-11-20 08:11 - 000006144 ____A [32E82AD8C30775AF16F8FCB6B233768E] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\IPMIDrv.sys.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000003584 ____A [13121C32919056A572109E59591E3DD1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ipnat.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000003584 ____A [095EE8818E7CFEEFCA144737D5EE7EC5] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\isapnp.sys.mui
2017-10-01 12:07 - 2010-11-20 08:10 - 000004608 ____A [07E46CC39BDC4296D798560E248C4C8F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\kbdclass.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000002560 ____A [7776875C8810B7995B7F8935A73C5675] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\kbdhid.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000006144 ____A [09654F384E8F48403AFEED23EC29D98A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\luafv.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000003584 ____A [B9D5D5C08D86E45933607821949F64A3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\modem.sys.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000004096 ____A [586AF4C75447643EA998E7AFE717F6B3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mouclass.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000002560 ____A [A15D1C07F7CF3AF5F8595187D7B2D7BA] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 13:02 - 000002560 ____A [DCB0BF8BEDF446B36EE1A77C0D86F31F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mountmgr.sys.mui
2009-07-14 00:35 - 2009-07-13 21:27 - 000026624 ____A [5824985855E951FD7081EDA73014159F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mpio.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000005632 ____A [21DDE99325EE591D56E838F65372FCDC] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\msdsm.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000003072 ____A [21AD775A1C84C086E630D3C8BEE807FF] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mssmbios.sys.mui
2009-07-14 00:35 - 2009-07-13 21:27 - 000002560 ____A [CD483881C9EEAA0A092BADB0E9E31D44] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\MTConfig.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000035328 ____A [C3DB52AAA8F7FBE7BB48BBE1552FD9D4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndis.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000005632 ____A [0E5C3B2A88938BFA39A3660525EED627] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndiscap.sys.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000003072 ____A [82364E6C73DE7B0D9A14ED696663691D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndisuio.sys.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000059904 ____A [826CC149F7AE403090D8EE13421907D3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ntfs.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000002560 ____A [402C5F373E3348172A21E2C4E47FE9A5] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\NV_AGP.SYS.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000013824 ____A [4A911620A8D4A92B4829088313262C65] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\nwifi.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000011776 ____A [FCF1928FC42F3FF495AABBF531925912] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ohci1394.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000015360 ____A [FE8EE46359CCA5797116E999AC9027E8] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pacer.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000003584 ____A [1897DD879E564636B62C7438BEDD7ED8] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\parport.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000002560 ____A [5B7B4A639557BCCBF6CFB19D01CED6F6] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\partmgr.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000008192 ____A [852A0E7E335D7403456C5493C3602DFA] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pci.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000004096 ____A [C4179FB59F7C58207724DD200A50A623] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pcmcia.sys.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000002560 ____A [A32BF5D2ABCE0A52AC08759883100FA1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pnpmem.sys.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000003584 ____A [FD3DC59E253F1588CFDC984A08D5AB06] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\portcls.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000014336 ____A [12EE9100FC4EE882DC9D807518EA456F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\processr.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000003584 ____A [9AE150B07FBB235F7DD98B016B728245] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\en-US\pscr.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000002560 ____A [EBF10A20E41E54D35E24BB1477B3790A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\qwavedrv.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000004608 ____A [836EC1DA853C3CC5AFA72FF1C56FECC1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdbss.sys.mui
2017-10-01 12:07 - 2010-11-20 08:01 - 000002560 ____A [6289416B950764322B45E9C55A5645B4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdpwd.sys.mui
2017-10-01 12:07 - 2010-11-20 08:13 - 000006144 ____A [D5ACC340A830BE7A51DE61F5A84B3AA3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdvgkmd.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000003072 ____A [0A86155D9CF13C36C1C11097895B7D23] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\RNDISMP.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000003072 ____A [69A5BEFB6D15DB21FEA9ACC7E514B29E] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rndismp6.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000003072 ____A [0A86155D9CF13C36C1C11097895B7D23] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rndismpx.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000002560 ____A [68A170329824FD91839D15DA6CB616C8] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\scfilter.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000003072 ____A [67BDCDBBB8FB81865DCDB07142471C81] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\scsiport.sys.mui
2009-07-14 00:35 - 2009-07-13 21:30 - 000010240 ____A [28FDCD5276E588B1C82E8390C331A672] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\serial.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000005120 ____A [EC3DB882F53F67457701F2674E16A255] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sermouse.sys.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000002560 ____A [531E4F70FCD5D5A278EAB6E2D1849847] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\serscan.sys.mui
2009-07-14 00:35 - 2009-07-13 21:25 - 000002560 ____A [8B900D6E6253E72975747D40F0B4CE4D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\srv.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000044032 ____A [147A70680DFE10726938C932C529C500] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 13:53 - 000008192 ____A [132547D30ECBC0DEE0E52A4B1F19D085] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tpm.sys.mui
2017-10-01 12:07 - 2010-11-20 07:57 - 000003072 ____A [21F72D8267B7CADE3A734212E5B6B8B4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tsusbflt.sys.mui
2017-10-01 12:07 - 2010-11-20 08:11 - 000004096 ____A [E3E1BC6EF907645E1AFD3E4E287C37BB] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tsusbhub.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000007680 ____A [00D0ADEB9470F4E73C675F4271579AEE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tunnel.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000002560 ____A [258EE691A306B61FD78F6EA2AE68EC4D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\UAGP35.SYS.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000002560 ____A [0603331E5CCDC80476C869C22AB49CEC] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ULIAGPKX.SYS.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000003072 ____A [B1EF6396D59394A839242635B193C19D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 21:29 - 000003072 ____A [5E8FE83DC4ECB24D27A864AA0AC28A61] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 21:29 - 000011776 ____A [7727F33D6C8F04492AB36F34808B43FE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 21:29 - 000024576 ____A [536FFFDE85B0E5FAA180FDD206156CA6] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbport.sys.mui
2009-07-14 00:35 - 2009-07-13 21:24 - 000002048 ____A [A477495EDAB1FC652C3E7F48D9879E61] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbrpm.sys.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000003584 ____A [B6CBD22F79E099E7B9C7AD30B0EB3E33] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vdrvroot.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000003584 ____A [9EA0366724437C0448BC242C90D073BF] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vhdmp.sys.mui
2009-07-14 00:35 - 2009-07-13 21:23 - 000002560 ____A [8B43588430EBA0E1C4C6B2909B3FA616] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\volmgrx.sys.mui
2009-07-14 00:35 - 2009-07-13 21:28 - 000023552 ____A [308E04CFA8407B0C7099C9D40BC19023] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\volsnap.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000002048 ____A [AC0CDAA74A6DF9FA99D39BA5E3E32852] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vwifibus.sys.mui
2009-07-14 00:35 - 2009-07-13 21:27 - 000004096 ____A [4820660F8636CA590F6DDE44037C240A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wacompen.sys.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000002048 ____A [29F6CD4D49286520658A9F8257DB95ED] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wd.sys.mui
2017-10-03 10:56 - 2012-07-25 23:47 - 000002560 ____A [986A09DC5E1645ED4733065547DCC5DD] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wdf01000.sys.mui
2009-07-14 00:35 - 2009-07-13 21:29 - 000002048 ____A [FA13EB401D8A26D185C6D0B2AA1427E5] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ws2ifsl.sys.mui
2017-10-02 11:25 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\es-ES
2017-10-02 09:25 - 2009-07-13 17:57 - 000011776 ____A [F4A1C1F14528DCFE696D4519AFAAA4D8] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\1394ohci.sys.mui
2017-10-02 09:25 - 2009-07-13 18:05 - 000010752 ____A [98A80BF2D6BEB5B5A48B8107F15A76C6] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\acpi.sys.mui
2017-10-02 09:26 - 2009-07-13 18:08 - 000016384 ____A [AF94F4775F9962524F39A15112FAC979] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\afd.sys.mui
2017-10-02 09:25 - 2009-07-13 18:04 - 000002560 ____A [02C9ABF44D45EBF4B4C99F9971F846AB] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\AGP440.sys.mui
2017-10-02 09:26 - 2009-07-13 18:04 - 000002048 ____A [D258A995094BB82D77FF6ACB5C63592B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\amdide.sys.mui
2017-10-02 09:25 - 2009-07-13 18:01 - 000020992 ____A [A594ACF948CF80BF4A28F10B1ABB64F2] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\amdk8.sys.mui
2017-10-02 09:25 - 2009-07-13 18:03 - 000020992 ____A [4ECCC41075FF8E73257DD879F2AAC762] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\amdppm.sys.mui
2017-10-02 09:26 - 2009-07-13 17:57 - 000003584 ____A [DFB9CC505FB5C0417CF0E601BF91C931] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ataport.sys.mui
2017-10-02 09:25 - 2009-07-13 17:59 - 000003584 ____A [B92358515CB15C2E3FACA855445E4C9B] (ATI Technologies Inc.) C:\Windows\System32\Drivers\es-ES\atikmdag.sys.mui
2017-10-02 09:26 - 2009-07-13 17:00 - 000009728 ____A [F6CAA0CD49853DD841A20E2AC7CFA0BB] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\battc.sys.mui
2017-10-02 09:26 - 2009-07-13 17:56 - 000031232 ____A [97A96282CAAAD14227002696B7A0427D] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\bfe.dll.mui
2017-10-02 09:25 - 2009-07-13 18:02 - 000002560 ____A [C1B17279F3181F9DF8ACAA4A217F0202] (Brother Industries Ltd.) C:\Windows\System32\Drivers\es-ES\BrParwdm.sys.mui
2017-10-02 09:25 - 2009-07-13 17:58 - 000011264 ____A [5F5210C028E6C428F6C222B81DF17775] (Brother Industries Ltd.) C:\Windows\System32\Drivers\es-ES\BrSerIb.sys.mui
2017-10-02 09:25 - 2009-07-13 17:59 - 000011264 ____A [CA85C8DE5EFF2D545A0DD600F07E5CB3] (Brother Industries Ltd.) C:\Windows\System32\Drivers\es-ES\BrSerId.sys.mui
2017-10-02 09:25 - 2009-07-13 17:56 - 000002048 ____A [4FB3B63DEF9B7083D42D252D3166ACC3] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\bthenum.sys.mui
2017-10-02 09:25 - 2009-07-13 17:54 - 000004608 ____A [E07776FB28C89CED5369FB3354F2A820] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\bthpan.sys.mui
2017-10-02 09:25 - 2009-07-13 17:55 - 000008192 ____A [77B7A722B4CBAD0D46E9C40E5D0CD83D] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\bthport.sys.mui
2017-10-02 09:25 - 2009-07-13 18:07 - 000002560 ____A [33C61F8DED19279D38141D124790F6E8] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\BTHUSB.SYS.mui
2017-10-02 09:25 - 2009-07-13 18:07 - 000002048 ____A [AC0AEE1E7F912677F209FE749D87B021] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\cdrom.sys.mui
2017-10-02 09:25 - 2009-07-13 18:04 - 000002048 ____A [EE65558D975A4A696358F1AAAA1377F9] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\disk.sys.mui
2017-10-02 09:26 - 2010-11-20 04:01 - 000003072 ____A [3A42C8B31E25D7E5D552CA582C791D1E] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\Dot4usb.sys.mui
2017-10-02 09:25 - 2009-07-13 18:01 - 000005632 ____A [E878128E3B498D7BAB8A3A1F4583E078] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\fltmgr.sys.mui
2017-10-02 09:26 - 2009-07-13 17:56 - 000016896 ____A [AEB862294D3948AD31BF492AD53CDB05] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\fvevol.sys.mui
2017-10-02 09:25 - 2009-07-13 17:56 - 000002560 ____A [FDDBA5D203A1931E9EC141CE7E7D98D8] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\GAGP30KX.SYS.mui
2017-10-02 09:25 - 2009-07-13 18:02 - 000004096 ____A [329668E3FF0C2D91A6CB78A720509FA0] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\hdaudbus.sys.mui
2017-10-02 09:25 - 2009-07-13 18:04 - 000003584 ____A [6023AD7D480B7BAB02DD8113B810A238] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\HdAudio.sys.mui
2017-10-02 09:25 - 2009-07-13 18:04 - 000003072 ____A [8C256C84DFC6CE91C2C868D48D7F7998] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\hidbth.sys.mui
2017-10-02 09:25 - 2009-07-13 18:03 - 000041984 ____A [7E56BA4E40F3B4DE6D2C5C494E3B9C72] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\http.sys.mui
2017-10-02 09:26 - 2009-07-13 18:04 - 000011264 ____A [08F88B2D93F36404AA4A2966F71EE522] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\i8042prt.sys.mui
2017-10-02 09:25 - 2009-07-13 18:01 - 000020992 ____A [E927EB73016541341B10614F697E6AFF] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\intelppm.sys.mui
2017-10-02 09:25 - 2009-07-13 17:59 - 000006656 ____A [0764D735A7910680D1C56E548951AC15] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\IPMIDrv.sys.mui
2017-10-02 09:25 - 2009-07-13 18:03 - 000003584 ____A [4B8EEA1E396C11A032624BD21B44A5F5] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ipnat.sys.mui
2017-10-02 09:25 - 2009-07-13 17:56 - 000004096 ____A [528AE6615E174A1F488B79520FF7E17B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\isapnp.sys.mui
2017-10-02 09:25 - 2009-07-13 18:07 - 000005120 ____A [AB9228FB516717DC19A7B626B9A0F02E] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\kbdclass.sys.mui
2017-10-02 09:25 - 2009-07-13 17:58 - 000002560 ____A [72DA78673FAB19A7F526D5EE74387610] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\kbdhid.sys.mui
2017-10-02 09:25 - 2009-07-13 17:54 - 000007168 ____A [36409DBDDEAEA1CFEBE0ACFE8E3B7627] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\luafv.sys.mui
2017-10-02 09:26 - 2009-07-13 18:04 - 000003584 ____A [128648EF93D7F1AD4EEF896EF8CA6494] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\modem.sys.mui
2017-10-02 09:26 - 2009-07-13 18:01 - 000004608 ____A [B18C654BD36F26B2C6DE206984A1C25F] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\mouclass.sys.mui
2017-10-02 09:26 - 2009-07-13 18:05 - 000003072 ____A [E32B0D0E93FACB015CAEE20D02A6C963] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 15:30 - 000002560 ____A [6FC68CF44E7F43F61538579B70E00328] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\mountmgr.sys.mui
2017-10-02 09:26 - 2009-07-13 18:00 - 000037888 ____A [C04DA4C1FCBFA154592828F40DE5C706] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\mpio.sys.mui
2017-10-02 09:26 - 2009-07-13 18:05 - 000007168 ____A [7CA699575DC5A5D9EFA6D005889A3A3B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\msdsm.sys.mui
2017-10-02 09:25 - 2009-07-13 18:01 - 000003072 ____A [AA4F257C3CC343665F82A3EE767CFDE9] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\mssmbios.sys.mui
2017-10-02 09:26 - 2009-07-13 17:59 - 000002560 ____A [72BFD9C94513496072C2E0EE0AF12012] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\MTConfig.sys.mui
2017-10-02 09:25 - 2009-07-13 17:54 - 000041472 ____A [21EAA0EC29F158413E02820C0D97BB3B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ndis.sys.mui
2017-10-02 09:25 - 2009-07-13 18:07 - 000006144 ____A [7D5FB2412CEA25DF220EB0BD7F83C583] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ndiscap.sys.mui
2017-10-02 09:25 - 2009-07-13 18:01 - 000003072 ____A [D279AF8AE043CE13546A7DAC74D125F5] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ndisuio.sys.mui
2017-10-02 09:25 - 2009-07-13 18:01 - 000072192 ____A [3D0009FE540177FFCC719AA37151344E] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ntfs.sys.mui
2017-10-02 09:25 - 2009-07-13 17:54 - 000002560 ____A [1F21B04F1E7E05776D910221885324ED] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\NV_AGP.SYS.mui
2017-10-02 09:25 - 2009-07-13 17:57 - 000016384 ____A [4BFF14A62A86FC94D27D02314E3C25CE] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\nwifi.sys.mui
2017-10-02 09:25 - 2009-07-13 18:02 - 000011776 ____A [DB11C12739395FCBAE8B99F020CBAC37] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ohci1394.sys.mui
2017-10-02 09:25 - 2009-07-13 18:05 - 000016384 ____A [81F18AF850FA4421793A59BBEFFD8936] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\pacer.sys.mui
2017-10-02 09:26 - 2009-07-13 17:55 - 000003584 ____A [3F0B8FEC836563D827FF0D0812C9064F] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\parport.sys.mui
2017-10-02 09:25 - 2009-07-13 17:54 - 000002560 ____A [0E7D391051639474747C7D0251E0A1B6] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\partmgr.sys.mui
2017-10-02 09:25 - 2009-07-13 17:56 - 000009216 ____A [7BBC461B08FC30F26F888115216F6E9B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\pci.sys.mui
2017-10-02 09:26 - 2009-07-13 18:03 - 000004096 ____A [675F1F07DB5642528080FC30931E20C5] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\pcmcia.sys.mui
2017-10-02 09:25 - 2009-07-13 18:03 - 000002560 ____A [657F1530E7553CCEAA8C0774F6C5C9B1] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\pnpmem.sys.mui
2017-10-02 09:26 - 2009-07-13 16:57 - 000003584 ____A [09D3C293E81CF12BCCC2AA571BA0B93B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\portcls.sys.mui
2017-10-02 09:25 - 2009-07-13 17:56 - 000020992 ____A [10D7FFDAE0B0413359C8ECCCD5D3214C] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\processr.sys.mui
2017-10-02 09:26 - 2009-07-13 17:59 - 000004096 ____A [B30ECD941BC4B108D00D107CF6155107] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\es-ES\pscr.sys.mui
2017-10-02 09:25 - 2009-07-13 18:04 - 000002560 ____A [C916B989A01E66854E6EAD2F0A3953DC] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\qwavedrv.sys.mui
2017-10-02 09:25 - 2009-07-13 18:05 - 000005120 ____A [DDAFFBC37E076261C9B632F976B50D5E] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\rdbss.sys.mui
2017-10-02 09:26 - 2010-11-20 04:04 - 000002560 ____A [920AB42F61033DAF86C89250157FBFD4] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\rdpwd.sys.mui
2017-10-02 09:26 - 2010-11-20 04:11 - 000006656 ____A [874AF342849100646347D0FD392F5A66] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\rdvgkmd.sys.mui
2017-10-02 09:25 - 2009-07-13 18:03 - 000003072 ____A [C3AAAED860F02CC4187782EEEE9D1F15] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\RNDISMP.sys.mui
2017-10-02 09:26 - 2009-07-13 17:59 - 000003072 ____A [21AC11BEF40D73008BC733306F036085] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\rndismp6.sys.mui
2017-10-02 09:26 - 2009-07-13 18:02 - 000003072 ____A [C3AAAED860F02CC4187782EEEE9D1F15] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\rndismpx.sys.mui
2017-10-02 09:26 - 2009-07-13 18:00 - 000002560 ____A [3ED1663225C47C9BF6DDE8DE850A0EC9] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\scfilter.sys.mui
2017-10-02 09:26 - 2009-07-13 18:03 - 000003072 ____A [D3E2A3E49F92396574F572502ACF9B70] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\scsiport.sys.mui
2017-10-02 09:26 - 2009-07-13 18:00 - 000011264 ____A [21CCE8B7861B99671CB1362D7CE44E34] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\serial.sys.mui
2017-10-02 09:26 - 2009-07-13 18:00 - 000005632 ____A [63F6F4429874BF8D766DB99A556B2886] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\sermouse.sys.mui
2017-10-02 09:26 - 2009-07-13 18:06 - 000002560 ____A [7E228CFFD6EF85E1839025B582409CEB] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\serscan.sys.mui
2017-10-02 09:26 - 2009-07-13 18:00 - 000002560 ____A [C0B4667C38FE854DA645193DDF5314EE] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\srv.sys.mui
2017-10-02 09:26 - 2009-07-13 18:04 - 000048640 ____A [BD828C676D5989A59C556C905C796B4D] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 15:23 - 000008192 ____A [5C6CF7FBD01CA81277D4DB02301960A4] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\tpm.sys.mui
2017-10-02 09:26 - 2010-11-20 04:07 - 000003584 ____A [3D4691912D60C7CCD919E428E1020679] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\tsusbflt.sys.mui
2017-10-02 09:26 - 2010-11-20 03:56 - 000004608 ____A [53C8E90D56F734910BFC8A54FD00BB75] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\tsusbhub.sys.mui
2017-10-02 09:26 - 2009-07-13 16:58 - 000008704 ____A [B9D3A3C35A3CD5C7A6BD28B03A462444] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\tunnel.sys.mui
2017-10-02 09:25 - 2009-07-13 18:06 - 000002560 ____A [A90E0048D9EB85C02A96C2BBD704BBBF] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\UAGP35.SYS.mui
2017-10-02 09:25 - 2009-07-13 17:54 - 000002560 ____A [1ECCB32CF0A9CC76FF8239E68E30F49C] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ULIAGPKX.SYS.mui
2017-10-02 09:26 - 2009-07-13 18:04 - 000003072 ____A [995C4C905C17F14DC0160BF16E1AD913] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 22:26 - 000003072 ____A [6C24D8A7417EE00B3BA904AD54B571B5] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 22:25 - 000011776 ____A [F95561F65E662E55892476B12748C39B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 22:24 - 000025600 ____A [CF2E4A69B6702EFD833BF26460EEC734] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\usbport.sys.mui
2017-10-02 09:26 - 2009-07-13 17:58 - 000002560 ____A [8E59D04599D0007663D7AC44406D5A60] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\usbrpm.sys.mui
2017-10-02 09:25 - 2009-07-13 17:59 - 000004096 ____A [03234314A703E6B24AC86997CB5C3292] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\vdrvroot.sys.mui
2017-10-02 09:26 - 2009-07-13 18:01 - 000004096 ____A [D6475CF29C1E4D5CA80102550467DB4B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\vhdmp.sys.mui
2017-10-02 09:25 - 2009-07-13 17:56 - 000002560 ____A [44B5F8A4CB781ED355792BFE985E4275] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\volmgrx.sys.mui
2017-10-02 09:26 - 2009-07-13 18:04 - 000026112 ____A [8D78A76E87B23F249580EF305CFAB34B] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\volsnap.sys.mui
2017-10-02 09:26 - 2009-07-13 17:58 - 000002560 ____A [3FC65450D330DA6F4E8DD0151C53431C] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\vwifibus.sys.mui
2017-10-02 09:25 - 2009-07-13 18:08 - 000004096 ____A [90F102CAA4DA78D8EF4B3650AB81A5CA] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\wacompen.sys.mui
2017-10-02 09:26 - 2009-07-13 17:55 - 000002048 ____A [AA661B56518A11D4B0E404686F3E1DE3] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\wd.sys.mui
2017-10-03 10:56 - 2012-07-26 00:05 - 000002560 ____A [7D5460DBC35B896AC4B38E6D30A25143] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\wdf01000.sys.mui
2017-10-02 09:26 - 2009-07-13 18:06 - 000002048 ____A [5CDBAF10CF733453B6C4BF393B994133] (Microsoft Corporation) C:\Windows\System32\Drivers\es-ES\ws2ifsl.sys.mui
2009-07-13 22:20 - 2009-07-13 22:20 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\etc
2009-07-13 21:34 - 2017-11-07 23:47 - 000000681 ____A [799DF0FD9F0DBEEC0F81C6C4464E2023] () C:\Windows\System32\Drivers\etc\hosts
2009-07-13 21:35 - 2009-06-10 16:00 - 000003683 ____A [18413B90E1B291EC3E777A845C37CFEE] () C:\Windows\System32\Drivers\etc\lmhosts.sam
2009-07-13 21:34 - 2009-06-10 16:00 - 000000407 ____A [B65A1232FB4B35827CE7C5E2F8EC8947] () C:\Windows\System32\Drivers\etc\networks
2009-07-13 21:34 - 2009-06-10 16:00 - 000001358 ____A [7700D22FA108234E623D65FA72D9E29C] () C:\Windows\System32\Drivers\etc\protocol
2009-07-13 21:34 - 2009-06-10 16:00 - 000017463 ____A [D9E1A01B480D961B7CF0509D597A92D6] () C:\Windows\System32\Drivers\etc\services
2017-10-02 08:41 - 2017-10-02 08:41 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\fr-FR
2017-10-02 08:32 - 2009-07-13 18:09 - 000018432 ____A [96F1DF2E7B8E81CE482C57D41C043859] (Microsoft Corporation) C:\Windows\System32\Drivers\fr-FR\afd.sys.mui
2017-10-02 08:32 - 2009-07-13 17:56 - 000003584 ____A [954C14BCF6E8C783F9ED1B6A4DD19EBD] (Microsoft Corporation) C:\Windows\System32\Drivers\fr-FR\ipnat.sys.mui
2017-10-02 08:32 - 2009-07-13 17:55 - 000072704 ____A [CEE661520B81EC6140432391A45431EB] (Microsoft Corporation) C:\Windows\System32\Drivers\fr-FR\ntfs.sys.mui
2017-10-02 08:32 - 2009-07-13 18:04 - 000003072 ____A [CB6BE2E9FB0F7D407B493FAC37A1986E] (Microsoft Corporation) C:\Windows\System32\Drivers\fr-FR\RNDISMP.sys.mui
2017-10-02 08:32 - 2009-07-13 18:05 - 000003072 ____A [C0B92F179B9FE55A857E0724710F2C5C] (Microsoft Corporation) C:\Windows\System32\Drivers\fr-FR\scsiport.sys.mui
2017-10-02 08:32 - 2009-07-13 18:02 - 000002560 ____A [BB88EAC2E1D74CAF3137ABB97D32F0F0] (Microsoft Corporation) C:\Windows\System32\Drivers\fr-FR\srv.sys.mui
2017-10-02 11:24 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\he-IL
2017-10-02 09:09 - 2009-07-13 17:53 - 000011776 ____A [D6CBD71A82A7130FD0A366FCA405A82D] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\1394ohci.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000008192 ____A [373FECF8A789CA50268B67185B455F7F] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\acpi.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000002560 ____A [F24AD025E55CE2BA50CE7A6B697603FB] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\AGP440.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000002048 ____A [AB61B4B02D265C5E270120B347C7D8E8] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\amdide.sys.mui
2017-10-02 09:09 - 2009-07-13 17:50 - 000020992 ____A [1A03DE643073585CD7CA47CF1C6D7742] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\amdk8.sys.mui
2017-10-02 09:09 - 2009-07-13 18:00 - 000020992 ____A [F8A09DA9E14B9ED7AC6ABF382B560771] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\amdppm.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000003072 ____A [65D0FE6FEC9C2B20883015B25F08A9C1] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ataport.sys.mui
2017-10-02 09:09 - 2009-07-13 18:03 - 000003072 ____A [C689B899F34584B9ED3D39E722FFC574] (ATI Technologies Inc.) C:\Windows\System32\Drivers\he-IL\atikmdag.sys.mui
2017-10-02 09:09 - 2009-07-13 17:04 - 000009728 ____A [2CD72839F7FF0562C5CC929B5D61A2ED] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\battc.sys.mui
2017-10-02 09:09 - 2009-07-13 17:59 - 000023552 ____A [CB38549F54AA6D3215759F17AD667ACC] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\bfe.dll.mui
2017-10-02 09:09 - 2009-07-13 17:51 - 000002560 ____A [50BA51D76592FBFB0548A4E1AD8CD0A7] (Brother Industries Ltd.) C:\Windows\System32\Drivers\he-IL\BrParwdm.sys.mui
2017-10-02 09:09 - 2009-07-13 18:02 - 000008704 ____A [85CE8B2EE9E9D833565CCD25F60A6D8D] (Brother Industries Ltd.) C:\Windows\System32\Drivers\he-IL\BrSerIb.sys.mui
2017-10-02 09:09 - 2009-07-13 18:03 - 000008704 ____A [7C8E5CC07DB81EF4CD30804C14B12C97] (Brother Industries Ltd.) C:\Windows\System32\Drivers\he-IL\BrSerId.sys.mui
2017-10-02 09:09 - 2009-07-13 17:52 - 000002048 ____A [CB72BB7BD88CBBAB286535513E791D04] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\bthenum.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000004608 ____A [4F29B3A460099DA72D391F38728E0EBB] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\bthpan.sys.mui
2017-10-02 09:09 - 2009-07-13 17:59 - 000006656 ____A [C5AEBE5B6E0BEEB4CB6898EF2D1DD747] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\bthport.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000002560 ____A [68A12E56143D4C7BE45B1A68FF862C1C] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\BTHUSB.SYS.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000002048 ____A [3A8B197116F92604C435439E1129CB02] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\cdrom.sys.mui
2017-10-02 09:09 - 2009-07-13 18:01 - 000002048 ____A [1D7703E415DE8A77FD0258CFC1E7FC2F] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\disk.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000002560 ____A [882287016C8C9DAFF95BA7B3A7ACF05F] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\Dot4usb.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000004608 ____A [F824009A171419DCB7D97E0287749874] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\fltmgr.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000014336 ____A [E94D70D7F4DE173539BACAE3B8AC6C67] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\fvevol.sys.mui
2017-10-02 09:09 - 2009-07-13 18:00 - 000002560 ____A [61A26D4EB27EE540ECBC0F24670543A4] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\GAGP30KX.SYS.mui
2017-10-02 09:09 - 2009-07-13 17:59 - 000004096 ____A [0A8A6E9B4D2D96AD554D89B360374137] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\hdaudbus.sys.mui
2017-10-02 09:09 - 2009-07-13 18:00 - 000003584 ____A [D0E4CBB55A9553042B671AC847A1604A] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\HdAudio.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000002560 ____A [2BBAC287DFDA4B20065E1C0C1CFF3647] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\hidbth.sys.mui
2017-10-02 09:09 - 2009-07-13 18:00 - 000031232 ____A [685D5EAA2A2266E4FC71063144EF8B10] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\http.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000008704 ____A [D13A5B67B9E7E848CA1CFD1BC1CB65BB] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\i8042prt.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000020992 ____A [AD8A445E5F02ED01A93F991E4E59CE5E] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\intelppm.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000005120 ____A [B920AA640AD4614ED3C7D7DB6948C089] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\IPMIDrv.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000004096 ____A [6722F6BCE6A35706E14D715FD0465BC9] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\isapnp.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000004096 ____A [7E331ECAC78F03F8C1894ADE8BEC888C] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\kbdclass.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000002560 ____A [1A8B191195FAB15EDCA633084E10DF6F] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\kbdhid.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000006144 ____A [CE32A20F73405E153B2A0B4E0253517C] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\luafv.sys.mui
2017-10-02 09:09 - 2009-07-13 18:00 - 000003584 ____A [851A118EF05DF4AA57B1F8DF25329CA5] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\modem.sys.mui
2017-10-02 09:09 - 2009-07-13 17:51 - 000004096 ____A [6C7690334ABF4C5C800D6448C6AE8B12] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\mouclass.sys.mui
2017-10-02 09:09 - 2009-07-13 18:02 - 000002560 ____A [AF7AF5E1CD387D1E20368663568682E5] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 15:30 - 000002560 ____A [13F8E512B513B36477647242000F8856] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\mountmgr.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000035840 ____A [5D3E24EB7DB68B185C00BECB057F297F] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\mpio.sys.mui
2017-10-02 09:09 - 2009-07-13 18:02 - 000006656 ____A [A043F4710BF21559607F2B2117B52E89] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\msdsm.sys.mui
2017-10-02 09:09 - 2009-07-13 17:57 - 000003072 ____A [F9DFA6CAA77658BAC886D250DE47DB87] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\mssmbios.sys.mui
2017-10-02 09:09 - 2009-07-13 18:04 - 000002560 ____A [8DE1943D3AD733ECBE960DF1481B09A5] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\MTConfig.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000033280 ____A [4CBEBC2A0519BA138B84DEFDA8B90F5E] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ndis.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000005632 ____A [22E979114892FA0711B1D0A21410637A] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ndiscap.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000003072 ____A [55426BF008AD0C5C9F915A67BFD30EE6] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ndisuio.sys.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000002560 ____A [12C60677F17FCBDF009FF894156CEBE3] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\NV_AGP.SYS.mui
2017-10-02 09:09 - 2009-07-13 18:02 - 000013824 ____A [1D2B0E6D1DA1B04F89C6DF23D143DF46] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\nwifi.sys.mui
2017-10-02 09:09 - 2009-07-13 17:51 - 000011776 ____A [1CBEF975DE42EC69FE236B52A84DC683] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ohci1394.sys.mui
2017-10-02 09:09 - 2009-07-13 17:55 - 000012800 ____A [AA5F16BB3F287849F2F25FBD686AC0F6] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\pacer.sys.mui
2017-10-02 09:09 - 2009-07-13 17:59 - 000003072 ____A [5B2AD71BDAC0CA930AC486F43A8FAE7E] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\parport.sys.mui
2017-10-02 09:09 - 2009-07-13 17:51 - 000002560 ____A [E68591E12F9C70951E6ED6F2399425CE] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\partmgr.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000007680 ____A [ACD8ECA277F190BEE01F0346F0FAB6FF] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\pci.sys.mui
2017-10-02 09:09 - 2009-07-13 17:52 - 000003584 ____A [88AF0C4026B2582A2A3E0A1D51F8FC45] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\pcmcia.sys.mui
2017-10-02 09:09 - 2009-07-13 17:52 - 000002560 ____A [6D26B864F96A263DEC2C0A2D25C43E73] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\pnpmem.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000003584 ____A [9BE2C6FD4B7A6C87135A0A82E6BD2231] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\portcls.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000020992 ____A [7C0531C12A116A263AE9CC5F1EE980EF] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\processr.sys.mui
2017-10-02 09:09 - 2009-07-13 18:03 - 000003072 ____A [0C379B2C75B9ED381B3DA78904B96B7E] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\he-IL\pscr.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000002560 ____A [2761A7A15C6B71BEC13EBA8331D2FFC7] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\qwavedrv.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000004608 ____A [CFAB53E09BAC4A2AB786CA4B01D134D5] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\rdbss.sys.mui
2017-10-02 09:09 - 2010-11-20 04:30 - 000002560 ____A [A81A00E553A484555840589D6583D136] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\rdpwd.sys.mui
2017-10-02 09:09 - 2010-11-20 04:30 - 000005632 ____A [18EA76A77F17C3F9344C49CAD397CCA0] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\rdvgkmd.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000003072 ____A [EF2B2CA56D2AC0FA9E4937ABD709AA60] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\rndismp6.sys.mui
2017-10-02 09:09 - 2009-07-13 17:59 - 000003072 ____A [4537BA2EB2B4087E55A063F526DCA8FE] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\rndismpx.sys.mui
2017-10-02 09:09 - 2009-07-13 17:57 - 000002560 ____A [90C6B53B5A1D36258CAB397B11E26122] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\scfilter.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000008704 ____A [1D2F55265239ECC8D28D845943293A30] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\serial.sys.mui
2017-10-02 09:09 - 2009-07-13 17:57 - 000004608 ____A [E7BE12FC1763579912E5C30135704F98] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\sermouse.sys.mui
2017-10-02 09:09 - 2009-07-13 18:03 - 000002560 ____A [7AB9A40300C1DA6071507CB44D379FCB] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\serscan.sys.mui
2017-10-02 09:09 - 2009-07-13 18:01 - 000040960 ____A [64B094F196D665A793F68CF42984882E] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 15:09 - 000008192 ____A [B1F312D6EE6383F03DF7A122E61709F8] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\tpm.sys.mui
2017-10-02 09:09 - 2010-11-20 04:27 - 000003072 ____A [C0CCE293B3ED31052B4FAA29D06EC14A] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\tsusbflt.sys.mui
2017-10-02 09:09 - 2010-11-20 04:24 - 000004096 ____A [9E84BE047D5311F0479EEC2C49E0366B] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\tsusbhub.sys.mui
2017-10-02 09:09 - 2009-07-13 17:02 - 000007168 ____A [5142F373A27FE4C74D9977D13A7A1B57] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\tunnel.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000002560 ____A [625422268495E1A21455C81A0822A5A3] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\UAGP35.SYS.mui
2017-10-02 09:09 - 2009-07-13 17:58 - 000002560 ____A [25D129D705C38EA434C5626BC7BC1904] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ULIAGPKX.SYS.mui
2017-10-02 09:09 - 2009-07-13 18:01 - 000003072 ____A [11F5B94F9CA387A4724961C5E3ECAFA4] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 22:25 - 000003072 ____A [6C959D13021E82DD85231A98C7FEA601] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 22:21 - 000011776 ____A [D3D49D1D34F62856C4D2B9A1CD2F6CE8] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 22:22 - 000024576 ____A [63480721969A3C54E7E0C2E7089D9BAF] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\usbport.sys.mui
2017-10-02 09:09 - 2009-07-13 17:55 - 000002048 ____A [A8C6AA8B230862EF028335B14E17E31B] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\usbrpm.sys.mui
2017-10-02 09:09 - 2009-07-13 18:03 - 000003584 ____A [053CC28C6B86E818CFFF4D33A156360B] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\vdrvroot.sys.mui
2017-10-02 09:09 - 2009-07-13 18:05 - 000003584 ____A [36AD356662E4C2E2B67B644A37B03A52] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\vhdmp.sys.mui
2017-10-02 09:09 - 2009-07-13 18:00 - 000002560 ____A [F2160168B4CFFE211951EB65B98ED849] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\volmgrx.sys.mui
2017-10-02 09:09 - 2009-07-13 17:53 - 000020992 ____A [DBC4263FECDCE9FE89A8BB05FBFD1562] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\volsnap.sys.mui
2017-10-02 09:09 - 2009-07-13 17:54 - 000002048 ____A [AD80BAA7890FEBA437BA0B553574D2E7] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\vwifibus.sys.mui
2017-10-02 09:09 - 2009-07-13 17:57 - 000004096 ____A [67ECE784EA821CD64099664C07FA4A87] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\wacompen.sys.mui
2017-10-02 09:09 - 2009-07-13 17:59 - 000002048 ____A [684373BF3F9598A9F4FB840487BBD026] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\wd.sys.mui
2017-10-03 10:56 - 2012-07-26 00:15 - 000002560 ____A [C9FC770BD10A99057AD6E480C95FDD5E] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\wdf01000.sys.mui
2017-10-02 09:09 - 2009-07-13 17:56 - 000002048 ____A [02B6E106DD0FC79BC7E939C87435BEC4] (Microsoft Corporation) C:\Windows\System32\Drivers\he-IL\ws2ifsl.sys.mui
2017-10-02 11:26 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\hu-HU
2017-10-02 10:04 - 2009-07-13 18:04 - 000011776 ____A [5894BED9027803B7A7919C027F07919E] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\1394ohci.sys.mui
2017-10-02 10:04 - 2009-07-13 17:58 - 000009728 ____A [4E4C441B4EFD70E7108581B226BD8C66] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\acpi.sys.mui
2017-10-02 10:05 - 2009-07-13 18:01 - 000016896 ____A [004B675E7ADC392975697BB8D95DEDCC] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\afd.sys.mui
2017-10-02 10:04 - 2009-07-13 17:57 - 000002560 ____A [31219E391151121F9E5DE0760B45BC71] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\AGP440.sys.mui
2017-10-02 10:05 - 2009-07-13 17:57 - 000002048 ____A [43B97FFFEB12B68467676F935DDD3503] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\amdide.sys.mui
2017-10-02 10:04 - 2009-07-13 18:01 - 000020992 ____A [3CA306EAFA4D86FF6CFFADDFDC37F3ED] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\amdk8.sys.mui
2017-10-02 10:04 - 2009-07-13 17:56 - 000020992 ____A [262EBF25ABB9097A707BD9437A324207] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\amdppm.sys.mui
2017-10-02 10:05 - 2009-07-13 17:58 - 000003584 ____A [D245F9FC851216C921480B6DFC1B0C02] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ataport.sys.mui
2017-10-02 10:04 - 2009-07-13 17:59 - 000003584 ____A [830E6C3254DCB201EEE7D9D677213083] (ATI Technologies Inc.) C:\Windows\System32\Drivers\hu-HU\atikmdag.sys.mui
2017-10-02 10:05 - 2009-07-13 17:07 - 000009728 ____A [C2E01A2A0530D80524E4E5CDBE5676B7] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\battc.sys.mui
2017-10-02 10:05 - 2009-07-13 17:56 - 000028160 ____A [6684137641A34F84817FEA691E8ABDF8] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\bfe.dll.mui
2017-10-02 10:04 - 2009-07-13 18:02 - 000002560 ____A [BCD7374995E8507F60EA6805FC6BCD4E] (Brother Industries Ltd.) C:\Windows\System32\Drivers\hu-HU\BrParwdm.sys.mui
2017-10-02 10:04 - 2009-07-13 18:06 - 000010752 ____A [F118EC84998933EF91614C3F74CD1FD2] (Brother Industries Ltd.) C:\Windows\System32\Drivers\hu-HU\BrSerIb.sys.mui
2017-10-02 10:04 - 2009-07-13 18:06 - 000010752 ____A [B0FCD5638A827988EB04F88B07145981] (Brother Industries Ltd.) C:\Windows\System32\Drivers\hu-HU\BrSerId.sys.mui
2017-10-02 10:04 - 2009-07-13 18:03 - 000002048 ____A [CD5205D6DE73154A4DB623FF4F9B0FCA] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\bthenum.sys.mui
2017-10-02 10:04 - 2009-07-13 18:01 - 000004608 ____A [B8A1E61F39A99E0F8C6E3AF09A29278C] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\bthpan.sys.mui
2017-10-02 10:04 - 2009-07-13 17:55 - 000007680 ____A [EEB3F36519C55DC4E87B7148AF92D7E5] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\bthport.sys.mui
2017-10-02 10:04 - 2009-07-13 18:07 - 000002560 ____A [B02861A539E05BCFC57EF71D4081F080] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\BTHUSB.SYS.mui
2017-10-02 10:04 - 2009-07-13 17:59 - 000002048 ____A [2FF8CCA8A2AA7E04A4E20E43F44378E2] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\cdrom.sys.mui
2017-10-02 10:04 - 2009-07-13 17:57 - 000002048 ____A [FC68ABB6E13B7492972AD62C91BE91DD] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\disk.sys.mui
2017-10-02 10:04 - 2009-07-13 17:55 - 000002560 ____A [A5E0BBA1985E563A4247F09C8F3513EA] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\Dot4usb.sys.mui
2017-10-02 10:05 - 2009-07-13 17:55 - 000005632 ____A [17388FDA5CA4230A804389A3D1C23B86] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\fltmgr.sys.mui
2017-10-02 10:05 - 2009-07-13 17:56 - 000016384 ____A [DD23BBCF2100A30F8935BF128BFFF673] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\fvevol.sys.mui
2017-10-02 10:04 - 2009-07-13 18:03 - 000002560 ____A [888A2E928E9FC1702791B76259F6A257] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\GAGP30KX.SYS.mui
2017-10-02 10:04 - 2009-07-13 17:55 - 000004096 ____A [01BDE53304300889A25E5ADEEFC30F61] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\hdaudbus.sys.mui
2017-10-02 10:04 - 2009-07-13 17:57 - 000003584 ____A [C21AD166D0322C62CB792E9E45A4382F] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\HdAudio.sys.mui
2017-10-02 10:04 - 2009-07-13 18:03 - 000003072 ____A [6071886D937A59A91EEAC17822FEBB20] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\hidbth.sys.mui
2017-10-02 10:05 - 2009-07-13 17:56 - 000037888 ____A [3075590DD10C99AA8C1EBB3E35AE0E68] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\http.sys.mui
2017-10-02 10:05 - 2009-07-13 18:04 - 000010752 ____A [BA044766B9D93DFE1FF5ADD35378134A] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\i8042prt.sys.mui
2017-10-02 10:04 - 2009-07-13 18:01 - 000020992 ____A [76FDC8D671D5E07FB58CEB0EEB5CE0D6] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\intelppm.sys.mui
2017-10-02 10:04 - 2009-07-13 18:07 - 000006144 ____A [B39B0E89EE41A088BC6992AC86896014] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\IPMIDrv.sys.mui
2017-10-02 10:04 - 2009-07-13 18:03 - 000004096 ____A [7908CAA15D00CA3F9CF74F4DD0047233] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\isapnp.sys.mui
2017-10-02 10:04 - 2009-07-13 18:07 - 000004608 ____A [B21699F08FD80EFA6F44DE26C7161B94] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\kbdclass.sys.mui
2017-10-02 10:04 - 2009-07-13 18:05 - 000002560 ____A [4EEEAC9B0587EC7602ABF4370C26915F] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\kbdhid.sys.mui
2017-10-02 10:05 - 2009-07-13 18:01 - 000007168 ____A [A32F1FB4A1F4317AF93B64CFB223880A] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\luafv.sys.mui
2017-10-02 10:05 - 2009-07-13 18:03 - 000003584 ____A [79F467BD8EA846CF34440BCA20AE7A1A] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\modem.sys.mui
2017-10-02 10:05 - 2009-07-13 18:01 - 000004608 ____A [579B122A94DAA1A186EFF8E121142A3B] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\mouclass.sys.mui
2017-10-02 10:05 - 2009-07-13 18:05 - 000003072 ____A [85AE95B211783AB4111C5069099B3E5F] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 15:31 - 000002560 ____A [62BF7A4CE1CBD1C6379C3912B883A8D9] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\mountmgr.sys.mui
2017-10-02 10:05 - 2009-07-13 18:00 - 000038400 ____A [5F0F9FCBFE6DB0630D84E7E2A961DBAA] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\mpio.sys.mui
2017-10-02 10:05 - 2009-07-13 18:06 - 000007168 ____A [23DDC550EA2BEAA1E84DA73F49BAA969] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\msdsm.sys.mui
2017-10-02 10:04 - 2009-07-13 18:01 - 000003072 ____A [AFC72BC6C81F3B02BB3D989393847ED4] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\mssmbios.sys.mui
2017-10-02 10:05 - 2009-07-13 17:59 - 000003072 ____A [CD1A032440E0657B1257791AAA034566] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\MTConfig.sys.mui
2017-10-02 10:05 - 2009-07-13 18:01 - 000037888 ____A [117DA640065D58C5F0E7CC9CB8AD913C] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ndis.sys.mui
2017-10-02 10:05 - 2009-07-13 18:00 - 000005632 ____A [C7E7261E6BC78E078B5924C0CDFEAE0F] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ndiscap.sys.mui
2017-10-02 10:05 - 2009-07-13 17:54 - 000003072 ____A [B89AC34923A35E2D249DCA9EBAE5FCFB] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ndisuio.sys.mui
2017-10-02 10:05 - 2009-07-13 18:01 - 000064000 ____A [049BB04A86CD0664EA4D048973F92935] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ntfs.sys.mui
2017-10-02 10:04 - 2009-07-13 17:54 - 000002560 ____A [3B5985D82E4AE1954E0668C88FC6916D] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\NV_AGP.SYS.mui
2017-10-02 10:05 - 2009-07-13 17:57 - 000016896 ____A [0EC41E161264DFA8E514211517DFEE6A] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\nwifi.sys.mui
2017-10-02 10:04 - 2009-07-13 17:55 - 000011776 ____A [B24B59D717AA71AC51DCB81062D5C787] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ohci1394.sys.mui
2017-10-02 10:05 - 2009-07-13 17:58 - 000016384 ____A [50EAF9720F72AD8C1B82988502B5113D] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\pacer.sys.mui
2017-10-02 10:05 - 2009-07-13 17:55 - 000003584 ____A [7DA2C27D12480B8342C09D71CE9FEFB8] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\parport.sys.mui
2017-10-02 10:05 - 2009-07-13 18:01 - 000002560 ____A [9179597BF899D9A9C196ADDE7FA36F0D] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\partmgr.sys.mui
2017-10-02 10:04 - 2009-07-13 17:56 - 000008192 ____A [8C9FC742D79A888C46E5B2831873D80B] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\pci.sys.mui
2017-10-02 10:05 - 2009-07-13 17:56 - 000004096 ____A [265CC157424039062CDD417350ADF363] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\pcmcia.sys.mui
2017-10-02 10:04 - 2009-07-13 17:56 - 000002560 ____A [ECC969AB316429AECE482A801FDEAF44] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\pnpmem.sys.mui
2017-10-02 10:05 - 2009-07-13 17:57 - 000003584 ____A [E06C653D66B05A13821824BFD4C6A8B2] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\portcls.sys.mui
2017-10-02 10:04 - 2009-07-13 18:03 - 000020992 ____A [7758B47CC10B33701EF76549315985E4] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\processr.sys.mui
2017-10-02 10:05 - 2009-07-13 17:59 - 000003584 ____A [052493E9724A61FD1158EDF79366669B] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\hu-HU\pscr.sys.mui
2017-10-02 10:05 - 2009-07-13 18:04 - 000002560 ____A [DB4FEFD430A3A46D2DF72EC4128B0FAB] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\qwavedrv.sys.mui
2017-10-02 10:05 - 2009-07-13 18:05 - 000005120 ____A [25013F9891947809DEF389CBCC1203E0] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\rdbss.sys.mui
2017-10-02 10:05 - 2010-11-20 04:39 - 000002560 ____A [A3432BC555C684B98780DB06B38CA530] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\rdpwd.sys.mui
2017-10-02 10:05 - 2010-11-20 04:35 - 000006656 ____A [C78C810D4219D90040F8ECBD1F0FFEF3] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\rdvgkmd.sys.mui
2017-10-02 10:05 - 2009-07-13 18:06 - 000003072 ____A [60E03AAFC22E757A6EAAEF24FA68F610] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\rndismp6.sys.mui
2017-10-02 10:05 - 2009-07-13 17:55 - 000003072 ____A [25621474828A55F0867D8FC9676E3555] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\rndismpx.sys.mui
2017-10-02 10:05 - 2009-07-13 18:00 - 000002560 ____A [BF1ED85D7A50BC69AB7C4F531D2223AA] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\scfilter.sys.mui
2017-10-02 10:05 - 2009-07-13 18:07 - 000010752 ____A [4F538F0C43B9514A82A57BC4632BFEB2] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\serial.sys.mui
2017-10-02 10:05 - 2009-07-13 18:07 - 000005632 ____A [80C6631B59DEBD5FA0002B2ECE7B7E3E] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\sermouse.sys.mui
2017-10-02 10:05 - 2009-07-13 16:59 - 000002560 ____A [B93D60D6B1B14EFDE51D7DF18B994B70] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\serscan.sys.mui
2017-10-02 10:05 - 2009-07-13 18:04 - 000050176 ____A [78734D3B6A951298931AD4688E22C403] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 15:17 - 000008192 ____A [2F8DB6076E3A47E3D099FFB085CC60A1] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\tpm.sys.mui
2017-10-02 10:05 - 2010-11-20 04:40 - 000003584 ____A [E92117C6F5FFC146CA943638A25F4686] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\tsusbflt.sys.mui
2017-10-02 10:05 - 2010-11-20 04:32 - 000004096 ____A [A1685EC79D33252EBBD8B35E600597DE] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\tsusbhub.sys.mui
2017-10-02 10:05 - 2009-07-13 16:57 - 000008704 ____A [93CD316D9F67F346E3185DE28F559963] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\tunnel.sys.mui
2017-10-02 10:04 - 2009-07-13 18:06 - 000002560 ____A [FD88BED4044800689D23247FD11041FE] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\UAGP35.SYS.mui
2017-10-02 10:04 - 2009-07-13 17:54 - 000002560 ____A [3E28909C507CEA5AA8A1E02D9FE8535A] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ULIAGPKX.SYS.mui
2017-10-02 10:05 - 2009-07-13 17:57 - 000003072 ____A [62B0213716CAEDFACE3B525E31D7A08C] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 22:22 - 000003072 ____A [CE9E4A60724708F46F769229861613FF] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 22:26 - 000011776 ____A [061CA45160EAE0FA386733CE01D9C703] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 22:24 - 000024576 ____A [C955FB7E8281A375D43A162164230C65] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\usbport.sys.mui
2017-10-02 10:05 - 2009-07-13 18:05 - 000002048 ____A [42EED9EDE45E2AEE7F8E33615A8C8C34] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\usbrpm.sys.mui
2017-10-02 10:04 - 2009-07-13 17:59 - 000004608 ____A [581601322B5849C7F1B6A8ED484AD616] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\vdrvroot.sys.mui
2017-10-02 10:05 - 2009-07-13 18:08 - 000004608 ____A [A63DE60E566EB44C75F5778D884DDE42] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\vhdmp.sys.mui
2017-10-02 10:04 - 2009-07-13 18:03 - 000002560 ____A [FF52F458A8C9CD84890B1267D08AA947] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\volmgrx.sys.mui
2017-10-02 10:05 - 2009-07-13 17:57 - 000026112 ____A [17C5B92E4BF2D34A1D5C82E788BAEDFE] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\volsnap.sys.mui
2017-10-02 10:05 - 2009-07-13 18:05 - 000002560 ____A [79CF165E31D3C17D8F28D3366E3C4B9E] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\vwifibus.sys.mui
2017-10-02 10:04 - 2009-07-13 18:07 - 000004096 ____A [DF4C44375FD8DCE752B350B946942681] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\wacompen.sys.mui
2017-10-02 10:05 - 2009-07-13 18:03 - 000002048 ____A [8DC7D747602C1EFF276ABA81AB8C7EC9] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\wd.sys.mui
2017-10-03 10:56 - 2012-07-26 02:48 - 000002560 ____A [5E38AB2C827BCE920DCAEC5611747B65] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\wdf01000.sys.mui
2017-10-02 10:05 - 2009-07-13 18:06 - 000002048 ____A [34F1E651726F0A8132E8DA03484239AA] (Microsoft Corporation) C:\Windows\System32\Drivers\hu-HU\ws2ifsl.sys.mui
2017-10-02 08:52 - 2017-11-16 12:34 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\it-IT
2017-10-02 08:44 - 2009-07-13 18:04 - 000011776 ____A [3388A49FEE6747AC87626E7AD748D56B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\1394ohci.sys.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000010752 ____A [5C8C361DB88E319A8C60B2988D424EAF] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\acpi.sys.mui
2017-10-02 08:44 - 2009-07-13 18:08 - 000016896 ____A [55F60C7A975FFAAD792160BAD675A85D] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\afd.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000002560 ____A [47E731F3D22ABA54C52CD7FEBCAEEE3C] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\AGP440.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000002048 ____A [86732465E75A874A61BC246254C1F971] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\amdide.sys.mui
2017-10-02 08:44 - 2009-07-13 17:54 - 000020992 ____A [46BE0D28874EDFC8852EAE6924129F7A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\amdk8.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000020992 ____A [E3955787F60CB6840A43A9456AC82ACB] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\amdppm.sys.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000003584 ____A [F02C7091B77F882AC132054FB5121025] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ataport.sys.mui
2017-10-02 08:44 - 2009-07-13 18:07 - 000003584 ____A [312EDFC0E2EE332FDC2E4ABD65000F62] (ATI Technologies Inc.) C:\Windows\System32\Drivers\it-IT\atikmdag.sys.mui
2017-10-02 08:45 - 2009-07-13 17:07 - 000009728 ____A [5338F8E1FA325C4950A731EC1A49E720] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\battc.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000030720 ____A [D8C49FC9FD530D6FE01A37194504A99B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\bfe.dll.mui
2017-10-02 08:44 - 2009-07-13 17:55 - 000002560 ____A [948AE875101520D59786D58A786DEE8E] (Brother Industries Ltd.) C:\Windows\System32\Drivers\it-IT\BrParwdm.sys.mui
2017-10-02 08:44 - 2009-07-13 18:06 - 000011264 ____A [A96F8A9277ADBD624174042863243126] (Brother Industries Ltd.) C:\Windows\System32\Drivers\it-IT\BrSerIb.sys.mui
2017-10-02 08:44 - 2009-07-13 18:06 - 000011264 ____A [9F8F8EF17155B77E9B36E1962EC6CB5D] (Brother Industries Ltd.) C:\Windows\System32\Drivers\it-IT\BrSerId.sys.mui
2017-10-02 08:44 - 2009-07-13 18:02 - 000002048 ____A [89A7D897A137A69735DF5EE9E4E170EA] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\bthenum.sys.mui
2017-10-02 08:44 - 2009-07-13 17:54 - 000004608 ____A [C4057476DA380CC4FFF9A7B5563CFD08] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\bthpan.sys.mui
2017-10-02 08:44 - 2009-07-13 18:02 - 000008192 ____A [3FA185245A9C22CB16D782A915F7B2C3] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\bthport.sys.mui
2017-10-02 08:44 - 2009-07-13 18:06 - 000002560 ____A [475B0BEAD9CA2F572E7A61716C78117B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\BTHUSB.SYS.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000002048 ____A [0238B9A4062F2361E71C4DD2462BFA57] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\cdrom.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000002560 ____A [28437FA4B9BE353D02887AF1ACD5448F] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\disk.sys.mui
2017-10-02 08:44 - 2009-07-13 17:55 - 000002560 ____A [D0FBAAD1E0DE6FE567900778D0C4D7ED] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\Dot4usb.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000005632 ____A [74A712EF7D91D2704EF6ADB0F75F20B3] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\fltmgr.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000016384 ____A [4412732EDBD8B361D9FA440DE22CA2B7] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\fvevol.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000002560 ____A [2CA436BE2FC02A9135132EADA536699A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\GAGP30KX.SYS.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000004096 ____A [8F18873AA73B560886295EE4471D964C] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\hdaudbus.sys.mui
2017-10-02 08:44 - 2009-07-13 18:04 - 000003584 ____A [788DFD5D51DC81B46C32B3C25944C7F9] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\HdAudio.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000003072 ____A [C942D9C293B09D30D075F9A8D0E86256] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\hidbth.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000038912 ____A [C816D434C88B5F0FAEA123EE97788D4E] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\http.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000011264 ____A [6B553663A1E521CCEA4C637D93D5DE0A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\i8042prt.sys.mui
2017-10-02 08:44 - 2009-07-13 17:55 - 000020992 ____A [E560AACAAAF1152A3B7893C508E7A3E9] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\intelppm.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000006144 ____A [85887667D061C9670D6B9D1F45D7F4AE] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\IPMIDrv.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000003584 ____A [A6F1DEF22B7EAFE69D574C47C34898F9] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ipnat.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000004096 ____A [6A58FABE08672D4D282D89D11987EDEA] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\isapnp.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000004608 ____A [F4DC7676C9AE82DD1BAF9FEA42399A1A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\kbdclass.sys.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000002560 ____A [4EAEBA3F13D46E700F3BCE7010BC097A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\kbdhid.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000007168 ____A [6E872E353507AB7C2542A4EADD0A0919] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\luafv.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000003584 ____A [9136533095BA37266B1F812195A0AD1E] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\modem.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000004608 ____A [C39453E616993CCAF0614BB7DECA865C] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\mouclass.sys.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000002560 ____A [DC1CC7EC13D7D3CBB024CDB9E7D90C16] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\mouhid.sys.mui
2017-10-02 13:02 - 2015-07-15 15:25 - 000002560 ____A [27F21D3613252BF9FB9E74CA782F9F3D] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\mountmgr.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000037888 ____A [1CFBEC9E567527894B3797BFFAD39F03] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\mpio.sys.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000007168 ____A [E11457E440B72425FD3AB6A43C91EA2B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\msdsm.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000003072 ____A [EBD434FC69A8E2A323858695C9CA3585] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\mssmbios.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000002560 ____A [423DF6E62A1518D60C5FDDB3E5EA3E63] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\MTConfig.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000039936 ____A [E35FFE73092FB01C25564E996ED9EA16] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ndis.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000006144 ____A [0B527C8E9578FD9C9B05CBEE808B5648] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ndiscap.sys.mui
2017-10-02 08:44 - 2009-07-13 17:54 - 000003072 ____A [89A370FE53875EB4DA14C4984DE99221] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ndisuio.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000067584 ____A [630AC1E045360A8098555E368113638B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ntfs.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000002560 ____A [D4F256CABC5608573074D0F4997F34A0] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\NV_AGP.SYS.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000015872 ____A [DB1EF8796B8208360F81F6EB1A8777BB] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\nwifi.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000011776 ____A [B8DEFC20B04C824544EAB3F23BDDB0DD] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ohci1394.sys.mui
2017-10-02 08:44 - 2009-07-13 18:05 - 000016384 ____A [5C07F7CC52B46EEE0ADD6CC8BDC7643A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\pacer.sys.mui
2017-10-02 08:44 - 2009-07-13 18:02 - 000003584 ____A [5DA77518D4A059CCD2922D7F8F6FE786] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\parport.sys.mui
2017-10-02 08:44 - 2009-07-13 17:55 - 000002560 ____A [2EC2251074E43C273F132BABB425FFBF] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\partmgr.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000009216 ____A [2707F0C37341EC3E1B88D2CA19BB532F] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\pci.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000004096 ____A [1AE48680B79BE967A8188473CD483450] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\pcmcia.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000002560 ____A [839EFBC050380513C0D6AF93189DC49B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\pnpmem.sys.mui
2017-10-02 08:44 - 2009-07-13 18:04 - 000003584 ____A [954C75A0A7360DDF3E9385CFA4C9B48E] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\portcls.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000020992 ____A [F31DE5B35C89D3A3AA95C2D5E6B4F698] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\processr.sys.mui
2017-10-02 08:44 - 2009-07-13 17:59 - 000003584 ____A [20B1104110CDEC50DBF3F6208CD7C095] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\it-IT\pscr.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000002560 ____A [01FB748CFB8E7925A84095AE8E4A4EEA] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\qwavedrv.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000005120 ____A [6529944F9DB9107B50CDE5220C2203F4] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\rdbss.sys.mui
2017-10-02 08:45 - 2010-11-20 04:44 - 000002560 ____A [2AD73B2DF3276496F322C37C173CD055] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\rdpwd.sys.mui
2017-10-02 08:45 - 2010-11-20 04:35 - 000006656 ____A [A136DD8B4B50698ED87A1C717310DC4D] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\rdvgkmd.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000003072 ____A [98543CE8BCA4D289619DBB9EFDFF930B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\RNDISMP.sys.mui
2017-10-02 08:44 - 2009-07-13 17:59 - 000003072 ____A [DB6C57EAAC900638EBE6A53D796FB803] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\rndismp6.sys.mui
2017-10-02 08:44 - 2009-07-13 17:55 - 000003072 ____A [98543CE8BCA4D289619DBB9EFDFF930B] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\rndismpx.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000002560 ____A [4C279AE8B73BA50D57F35049F3096EC9] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\scfilter.sys.mui
2017-10-02 08:44 - 2009-07-13 18:03 - 000003072 ____A [C0C4826482BFECF0DAA285D20B6808E9] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\scsiport.sys.mui
2017-10-02 08:44 - 2009-07-13 18:07 - 000011264 ____A [FDE75A28929B0D6DEC0C2781A62B84A5] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\serial.sys.mui
2017-10-02 08:44 - 2009-07-13 18:00 - 000005632 ____A [2B3153B03F097D965E73E3AD5F222E09] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\sermouse.sys.mui
2017-10-02 08:44 - 2009-07-13 17:59 - 000002560 ____A [E126F28BFE5AD98B1780504149FE0E1E] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\serscan.sys.mui
2017-10-02 08:44 - 2009-07-13 18:08 - 000002560 ____A [507E105AB75189EBB1D5C8D07B72B8BF] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\srv.sys.mui
2017-10-02 08:44 - 2009-07-13 17:57 - 000049152 ____A [5256738F8AC3BA926B4839D1488B0DC4] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\tcpip.sys.mui
2017-10-02 12:58 - 2016-02-05 15:22 - 000008192 ____A [2E033DA7388356CF126A08EA7FD8F475] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\tpm.sys.mui
2017-10-02 08:45 - 2010-11-20 04:34 - 000003584 ____A [DC19C085A539AB670B88F63A3B41374A] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\tsusbflt.sys.mui
2017-10-02 08:45 - 2010-11-20 04:36 - 000004608 ____A [18E849D85990F06B09063BA186A9C7AF] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\tsusbhub.sys.mui
2017-10-02 08:45 - 2009-07-13 17:04 - 000008704 ____A [06A128208FB26E82372DC9F9D7E67DE7] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\tunnel.sys.mui
2017-10-02 08:44 - 2009-07-13 18:06 - 000002560 ____A [4906CB2CA09E7C3E95693ED16E97444F] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\UAGP35.SYS.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000002560 ____A [F2CDFD4C9F54A87A1504B85EA0CB5D1D] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ULIAGPKX.SYS.mui
2017-10-02 08:44 - 2009-07-13 18:04 - 000003072 ____A [AC001011053B068BECB32F7FE30E26B7] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\umbus.sys.mui
2017-11-15 12:48 - 2017-10-17 22:27 - 000003072 ____A [DB5D55090517D641A5F6964AE1538B3E] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\usbehci.sys.mui
2017-11-15 12:48 - 2017-10-17 22:22 - 000011776 ____A [70B6529E59B8E252B12832604A47A6C7] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\usbhub.sys.mui
2017-11-15 12:48 - 2017-10-17 22:23 - 000025088 ____A [56C015F4FB3FDC1BF10BD60FDC649273] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\usbport.sys.mui
2017-10-02 08:44 - 2009-07-13 18:05 - 000002560 ____A [BD3E5E67EBB0D0F5334D6B76E245E7BF] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\usbrpm.sys.mui
2017-10-02 08:44 - 2009-07-13 18:07 - 000004096 ____A [9C76CC668272554B42BD5BD9A6AA6994] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\vdrvroot.sys.mui
2017-10-02 08:44 - 2009-07-13 18:01 - 000004096 ____A [CBFBEE87ABD2001FA8F3477A32098BAA] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\vhdmp.sys.mui
2017-10-02 08:44 - 2009-07-13 17:56 - 000002560 ____A [61C96C6450CDF4A9226CD6C8E67BE14E] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\volmgrx.sys.mui
2017-10-02 08:44 - 2009-07-13 18:04 - 000027136 ____A [809ADE504682ADC3A838FF119810C53C] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\volsnap.sys.mui
2017-10-02 08:44 - 2009-07-13 17:58 - 000002560 ____A [D5B88708E44EE356B87698332E4D68F7] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\vwifibus.sys.mui
2017-10-02 08:44 - 2009-07-13 18:07 - 000004096 ____A [AF9FC46EFECB26455C124A782ABA5AD7] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\wacompen.sys.mui
2017-10-02 08:44 - 2009-07-13 18:02 - 000002048 ____A [E3D7E8BF411CDE620BECDC1EFA7CA005] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\wd.sys.mui
2017-10-03 10:56 - 2012-07-26 03:00 - 000002560 ____A [EDC46531D2D4D85D747D94BC83F40798] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\wdf01000.sys.mui
2017-10-02 08:44 - 2009-07-13 17:59 - 000002048 ____A [52CB6C0D1DB2706D55108486B0D8C6EB] (Microsoft Corporation) C:\Windows\System32\Drivers\it-IT\ws2ifsl.sys.mui
2017-10-02 08:30 - 2017-10-02 08:30 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\sk-SK
2017-10-02 08:23 - 2009-07-13 17:53 - 000002048 ____A [775CC58EB25AD0FDAF7D60FBF2C9B6F5] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\amdide.sys.mui
2017-10-02 08:23 - 2009-07-13 17:54 - 000003072 ____A [5C566AD0B49DECA6AF459804456C4E8C] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\ataport.sys.mui
2017-10-02 08:23 - 2009-07-13 17:53 - 000002048 ____A [3B546BF077E0657F8FBC4F5C11C5D03B] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\bthenum.sys.mui
2017-10-02 08:23 - 2009-07-13 17:49 - 000007680 ____A [5149122A775D5766F234942FC88836C5] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\bthport.sys.mui
2017-10-02 08:23 - 2009-07-13 17:47 - 000002560 ____A [3E227F3FE48217AAFA64946A918378A6] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\BTHUSB.SYS.mui
2017-10-02 08:23 - 2009-07-13 17:46 - 000003072 ____A [59095C08354EA5BB2539FFB37CA4412D] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\hidbth.sys.mui
2017-10-02 08:23 - 2009-07-13 17:46 - 000003584 ____A [5B3DA321069CCF9E5AB0CB0E27A0A94B] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\portcls.sys.mui
2017-10-02 08:23 - 2009-07-13 17:48 - 000002560 ____A [FBB1B7916D3288A7C674E72A19D49641] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\scfilter.sys.mui
2017-10-02 08:23 - 2009-07-13 16:54 - 000002560 ____A [A14DFC10ED8E7612061728AB88BDD768] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\serscan.sys.mui
2017-10-02 08:23 - 2009-07-13 17:50 - 000047616 ____A [372CA280CFAF2806CD8838B911AA3080] (Microsoft Corporation) C:\Windows\System32\Drivers\sk-SK\tcpip.sys.mui
2017-10-02 09:07 - 2017-10-02 09:07 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\sl-SI
2017-10-02 08:59 - 2009-07-13 18:01 - 000002048 ____A [C1C5004D0D0654A8C5465A781046436F] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\amdide.sys.mui
2017-10-02 08:59 - 2009-07-13 18:02 - 000003072 ____A [0A02E656B0D8B7EF1D6FDD3F31FAD1DA] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\ataport.sys.mui
2017-10-02 08:58 - 2009-07-13 17:50 - 000002048 ____A [89C688E0AE393437EBF9729E4811DA0A] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\bthenum.sys.mui
2017-10-02 08:58 - 2009-07-13 17:58 - 000007680 ____A [4B1940B19C419494B2C99426041A96C0] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\bthport.sys.mui
2017-10-02 08:58 - 2009-07-13 18:03 - 000002560 ____A [F5CBA0A5BC1796F27639999998697E93] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\BTHUSB.SYS.mui
2017-10-02 08:58 - 2009-07-13 18:00 - 000003072 ____A [706738435201CC4BAC06097461FFE23D] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\hidbth.sys.mui
2017-10-02 08:59 - 2009-07-13 17:51 - 000003584 ____A [0211A4F073BFB61374658B028F9AC3AA] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\portcls.sys.mui
2017-10-02 08:59 - 2009-07-13 16:56 - 000002560 ____A [D8B3947C741062AB46DCAEC286D085EA] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\scfilter.sys.mui
2017-10-02 08:59 - 2009-07-13 17:53 - 000002560 ____A [E5A5878E08E2C49ADF1F5BC3FA4767C0] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\serscan.sys.mui
2017-10-02 08:59 - 2009-07-13 18:01 - 000048128 ____A [90B07568998FDD0B2C5FFDEA3D2C4B4E] (Microsoft Corporation) C:\Windows\System32\Drivers\sl-SI\tcpip.sys.mui
2017-10-02 11:26 - 2017-10-02 11:26 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\uk-UA
2017-10-02 09:51 - 2009-07-13 17:51 - 000002048 ____A [0A11BBFB58F8EFD385C0732B44DC7E27] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\amdide.sys.mui
2017-10-02 09:51 - 2009-07-13 17:58 - 000003072 ____A [01C2DBDDF89F59B06E33E2C91D52E5F0] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\ataport.sys.mui
2017-10-02 09:51 - 2009-07-13 17:49 - 000002048 ____A [BC631AC3A5560FF5E7DA720B73E907E7] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\bthenum.sys.mui
2017-10-02 09:51 - 2009-07-13 17:55 - 000007680 ____A [685C64D419FBB1091066E7A8D1F0B700] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\bthport.sys.mui
2017-10-02 09:51 - 2009-07-13 17:53 - 000002560 ____A [51733DDFFBCA37D7E6EF94D8AE210C12] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\BTHUSB.SYS.mui
2017-10-02 09:51 - 2009-07-13 17:57 - 000003072 ____A [C74893A5D09133C66D6356B85FB2FE5D] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\hidbth.sys.mui
2017-10-02 09:51 - 2009-07-13 17:58 - 000003584 ____A [958C2CBC0E9676590DE65CAD4CDA6418] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\portcls.sys.mui
2017-10-02 09:52 - 2009-07-13 17:02 - 000002560 ____A [F241108938BD2B8A46C5B5EB55B3E288] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\scfilter.sys.mui
2017-10-02 09:51 - 2009-07-13 17:52 - 000002560 ____A [6843A71782FD092713B41502D550879E] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\serscan.sys.mui
2017-10-02 09:51 - 2009-07-13 17:51 - 000048640 ____A [0013C0A271F29C0B792057B22DA8810F] (Microsoft Corporation) C:\Windows\System32\Drivers\uk-UA\tcpip.sys.mui
2009-07-13 22:20 - 2017-11-04 01:45 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF
2017-10-01 12:07 - 2010-11-20 08:27 - 000109056 ____A [8F1E572C5DF084ECD65C3CBCD720534C] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\usbdr.dll
2009-07-13 19:21 - 2009-07-13 20:41 - 000299520 ____A [91D6F0AB79AA36FFB932157865206F35] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\WpdFs.dll
2017-10-02 07:41 - 2015-01-28 22:19 - 001195008 ____A [E506DF49926F3086124F629D3352976E] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\WpdMtpDr.dll
2017-10-02 08:41 - 2017-10-02 08:41 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\ar-SA
2017-10-02 08:32 - 2009-07-13 18:00 - 000002560 ____A [97E607A6144F2758FD1E848B9892DB13] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\ar-SA\WpdMtpDr.dll.mui
2017-10-02 08:32 - 2009-07-13 18:06 - 000006144 ____A [73E200006D4D457D4128CCA530471CC8] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\ar-SA\WUDFUsbccidDriver.dll.mui
2017-10-02 08:20 - 2017-10-02 08:20 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\de-DE
2017-10-02 08:11 - 2009-07-13 17:56 - 000002560 ____A [805E0B50360AF8F687935E99F73A8A6E] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\de-DE\WpdMtpDr.dll.mui
2017-10-02 08:11 - 2009-07-13 18:01 - 000006656 ____A [12C5E3E3A6D0EF4AA95633DF3C048854] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\de-DE\WUDFUsbccidDriver.dll.mui
2009-07-14 00:37 - 2009-07-14 00:37 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\en-US
2009-07-14 00:35 - 2009-07-13 21:24 - 000002560 ____A [5D15B0705E707F02D71B9547007D2727] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\WpdMtpDr.dll.mui
2009-07-14 00:35 - 2009-07-13 21:26 - 000006144 ____A [930D103D5C3BE0F6074C67C0F3296602] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
2017-10-02 11:25 - 2017-10-02 11:25 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\es-ES
2017-10-02 09:26 - 2009-07-13 17:55 - 000002560 ____A [54C8D0AF57A667BF10A6EFE9F2242E57] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\es-ES\WpdMtpDr.dll.mui
2017-10-02 09:26 - 2009-07-13 18:08 - 000007168 ____A [58BA4F8DA949876A0B1FDA32FEF808A9] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\es-ES\WUDFUsbccidDriver.dll.mui
2017-10-02 08:41 - 2017-10-02 08:41 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\fr-FR
2017-10-02 11:24 - 2017-10-02 11:24 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\he-IL
2017-10-02 09:09 - 2009-07-13 17:52 - 000002560 ____A [FE8B7692AD70620886B6935DF064D156] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\he-IL\WpdMtpDr.dll.mui
2017-10-02 09:09 - 2009-07-13 18:05 - 000006144 ____A [6E166FC9A438F1F064E8F475430A799A] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\he-IL\WUDFUsbccidDriver.dll.mui
2017-10-02 11:26 - 2017-10-02 11:26 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\hu-HU
2017-10-02 10:05 - 2009-07-13 17:55 - 000002560 ____A [9F008337A84050CB1FF9ECB6DDEB68B2] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\hu-HU\WpdMtpDr.dll.mui
2017-10-02 10:05 - 2009-07-13 18:00 - 000006656 ____A [DAA06140D97E000610CED152F930D83B] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\hu-HU\WUDFUsbccidDriver.dll.mui
2017-10-02 08:52 - 2017-10-02 08:52 - 000000000 ____D [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\UMDF\it-IT
2017-10-02 08:44 - 2009-07-13 17:56 - 000002560 ____A [43583AB5ABE7A747CC8B7D5AD4636C9A] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\it-IT\WpdMtpDr.dll.mui
2017-10-02 08:44 - 2009-07-13 18:08 - 000006656 ____A [99A156106DC75D4E89496F7B1636F304] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\it-IT\WUDFUsbccidDriver.dll.mui
 
====== End of Folder: ======
 
 
========= Reg query "HKLM\SYSTEM\Select" =========
 
 
HKEY_LOCAL_MACHINE\SYSTEM\Select
    Current    REG_DWORD    0x1
    Default    REG_DWORD    0x1
    Failed    REG_DWORD    0x0
    LastKnownGood    REG_DWORD    0x2
 
 
 
========= End of Reg: =========
 
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
 
========= Removeproxy =========
 
'Removeproxy' is not recognized as an internal or external command,
operable program or batch file.
 
========= End of CMD: =========
 
 
========= netsh advfirewall reset =========
 
Ok.
 
 
========= End of CMD: =========
 
 
========= netsh advfirewall set allprofiles state ON =========
 
Ok.
 
 
========= End of CMD: =========
 
 
========= ipconfig /flushdns =========
 
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========= End of CMD: =========
 
 
========= netsh winsock reset catalog =========
 
 
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
 
 
========= End of CMD: =========
 
 
========= netsh int ip reset C:\resettcpip.txt =========
 
Reseting Global, OK!
Reseting Interface, OK!
Restart the computer to complete this action.
 
 
========= End of CMD: =========
 
 
========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" =========
 
 
========= End of CMD: =========
 
 
========= Bitsadmin /Reset /Allusers =========
 
 
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.
 
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
 
{84733EF5-4432-48F2-B85B-D557CB242E31} canceled.
1 out of 1 jobs canceled.
 
========= End of CMD: =========
 
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 440460707 B
Java, Flash, Steam htmlcache => 10266873 B
Windows/system/drivers => 93194513 B
Edge => 0 B
Chrome => 28627537 B
Firefox => 0 B
Opera => 147070 B
 
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 60257554 B
systemprofile32 => 971430 B
LocalService => 132244 B
NetworkService => 88888 B
PC => 73852549 B
 
RecycleBin => 0 B
EmptyTemp: => 683.3 MB temporary data Removed.
 
================================
 
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-12-2017 13:46:48)
 
C:\Windows\system32\drivers\cskloruy.sys => Is moved successfully
C:\Users\PC\AppData\Local\zahnrio => Could not move
C:\Users\PC\AppData\Local\wiheuog => Could not move
C:\Users\PC\AppData\Local\igfxmtc => Could not move
 
==== End of Fixlog 13:46:48 ====


#13 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 30 December 2017 - 02:53 PM

Are you able to run FRST in WinRE. Tried the 32 bits application? At the X:\ Command prompt window in Winre

 

Try to run this command at the X:\ Command prompt window in Winre:

 

BDCEDIT | Find "osdevice"

 

Let me know the partition letter for the osdevice.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#14 MGFJR1

MGFJR1
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 31 December 2017 - 11:04 AM

It will not allow me to enter the recoverary envir  from F8 anymore...It wont let me creat a repair disk either. This is getting scary...I'll try to run frst from safe mode cmd



#15 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,545 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:04:51 AM

Posted 31 December 2017 - 12:59 PM

  • Copy the entire contents of the Quote Box below to Notepad.
  • Name the file as BCD.bat
  • Change the Save as Type to All Files
  • and Save it on the desktop
  • Once saved, right click on the BCD.bat file and run as Administrator. Post the resulting report.


 

Echo off

cd /d %~dp0
Color 1F

BCDEDIT /Enum all >Report.txt

Start Report.txt

Exit

 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users