Log z combofix

[rendywtf]

Zde je log z hitmana pro

Kód: Vybrat vše

HitmanPro 3.7.8.207
www.hitmanpro.com

   Computer name . . . . : MONIKA-PC
   Windows . . . . . . . : 6.2.0.9200.X64/2
   User name . . . . . . : monika-pc\monika
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2013-10-20 13:40:21
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 2m 45s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 1

   Objects scanned . . . : 1 009 229
   Files scanned . . . . : 10 276
   Remnants scanned  . . : 224 673 files / 774 280 keys

Suspicious files ____________________________________________________________

   C:\Windows\SysWOW64\DBCLIENT.DLL
      Size . . . . . . . : 210 032 bytes
      Age  . . . . . . . : 3.1 days (2013-10-17 12:01:09)
      Entropy  . . . . . : 6.4
      SHA-256  . . . . . : 8395C8F23C50D2203FC3F4A9847ABADDF6F240C593E17A4B3625F3985F423236
      Publisher  . . . . : Inprise Corporation
      Description  . . . : Borland Database Engine
      Version  . . . . . : 5.0.1.32
      Copyright  . . . . : Copyright Inprise Corp. 1991-1998
      RSA Key Size . . . : 512
      Authenticode . . . : Self-signed
      Fuzzy  . . . . . . : 28.0
         Program is code signed with a weak certificate. This is common to malware.
         Program is code self-signed.
         Time indicates that the file appeared recently on this computer.
         The file is located in a folder that contains core operating system files from Windows. This is not typical for most programs and is only common to system tools, drivers and hacking utilities.
      Forensic Cluster
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\BLW32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\bantam.dll
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\bantam.dll
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\bantam.dll
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\bantam.dll
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\bantam.dll
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDPDX32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDDBAS32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDASCI32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDQBE32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDSQL32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDAPI32.DLL
         -0.1s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDBAT32.DLL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDR20009.DLL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDDR32.DLL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDDAO32.DLL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDDA3532.DLL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDODBC32.DLL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\BDEADMIN.EXE
         -0.0s C:\Windows\SysWOW64\BDEADMIN.CPL
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\BDEADMIN.HLP
         -0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\BDEADMIN.CNT
          0.0s C:\Windows\SysWOW64\DBCLIENT.DLL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\USA.BTL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\EUROPE.BTL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\CEEUROPE.BTL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\FAREAST.BTL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\JAPAN.BTL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\OTHER.BTL
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\CHARSET.CVB
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\BDEADMIN.TOC
          0.0s C:\Users\monika\AppData\Local\Temp\BDEF2F6.BAK
          0.0s C:\Program Files (x86)\Common Files\Borland Shared\BDE\IDAPI32.CFG
          0.1s C:\Windows\Prefetch\MINIREG.EXE-A5A0405E.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf
          0.4s C:\Windows\Prefetch\BDESETUP.EXE-8AAC3D5B.pf

[vyosek]

Ty ikony zmizi jen tak, samy od sebe??

Poprosim o log z RSIT

[rendywtf]

zde log z rsit

Logfile of random's system information tool 1.09 (written by random/random)
Run by monika at 2013-10-21 22:21:17
Microsoft Windows 8 Enterprise Evaluation
System drive C: has 145 GB (82%) free of 177 GB
Total RAM: 8190 MB (89% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:21:23, on 21. 10. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Program Files\trend micro\monika.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @oem6.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\Windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wlms\wlms.exe,-1 (WLMS) - Unknown owner - C:\Windows\system32\wlms\wlms.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 4303 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"dwm.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\BtwRSupportService.exe
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\system32\wlms\wlms.exe
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Users\monika2\Downloads\RSITx64.exe"
C:\Windows\System32\ThumbnailExtractionHost.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-09-12 5618456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WLMS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WLMS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-10-21 22:19:30 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-10-21 22:18:02 ----D---- C:\Program Files\trend micro
2013-10-21 22:18:01 ----D---- C:\rsit
2013-10-20 15:10:35 ----D---- C:\Windows\system32\appmgmt
2013-10-20 13:39:12 ----D---- C:\ProgramData\HitmanPro
2013-10-18 19:46:21 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-18 19:46:20 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2013-10-18 19:46:20 ----A---- C:\Windows\system32\WebcamUi.dll
2013-10-18 19:46:20 ----A---- C:\Windows\system32\Taskmgr.exe
2013-10-18 19:46:20 ----A---- C:\Windows\system32\storagewmi.dll
2013-10-18 19:46:19 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2013-10-18 19:46:19 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2013-10-18 19:46:19 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2013-10-18 19:46:19 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2013-10-18 19:46:19 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-18 19:46:19 ----A---- C:\Windows\system32\wpnapps.dll
2013-10-18 19:46:19 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2013-10-18 19:46:19 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-18 19:46:18 ----A---- C:\Windows\SYSWOW64\vds_ps.dll
2013-10-18 19:46:18 ----A---- C:\Windows\system32\vdsldr.exe
2013-10-18 19:46:18 ----A---- C:\Windows\system32\vds_ps.dll
2013-10-18 19:46:18 ----A---- C:\Windows\system32\rfxvmt.dll
2013-10-18 19:46:18 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-18 19:46:18 ----A---- C:\Windows\system32\mstsc.exe
2013-10-18 19:46:09 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2013-10-18 19:46:09 ----A---- C:\Windows\system32\dwmcore.dll
2013-10-18 19:46:08 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-10-18 19:46:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-18 19:46:08 ----A---- C:\Windows\explorer.exe
2013-10-18 19:46:07 ----A---- C:\Windows\system32\samsrv.dll
2013-10-18 19:46:07 ----A---- C:\Windows\system32\mfcore.dll
2013-10-18 19:46:04 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2013-10-18 19:46:04 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-10-18 19:46:03 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-10-18 19:46:03 ----A---- C:\Windows\SYSWOW64\mscms.dll
2013-10-18 19:46:03 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-10-18 19:46:03 ----A---- C:\Windows\system32\winresume.exe
2013-10-18 19:46:03 ----A---- C:\Windows\system32\winload.exe
2013-10-18 19:46:03 ----A---- C:\Windows\system32\vdsutil.dll
2013-10-18 19:46:03 ----A---- C:\Windows\system32\vds.exe
2013-10-18 19:46:03 ----A---- C:\Windows\system32\samlib.dll
2013-10-18 19:46:03 ----A---- C:\Windows\system32\mscms.dll
2013-10-18 19:46:03 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2013-10-18 19:46:03 ----A---- C:\Windows\system32\audiosrv.dll
2013-10-18 19:46:02 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2013-10-18 19:46:02 ----A---- C:\Windows\system32\MbaeParserTask.exe
2013-10-18 19:46:02 ----A---- C:\Windows\system32\DeviceSetupManager.dll
2013-10-18 19:46:01 ----A---- C:\Windows\SYSWOW64\samlib.dll
2013-10-18 19:46:01 ----A---- C:\Windows\system32\drivers\BthAvrcpTg.sys
2013-10-18 19:45:25 ----D---- C:\Users\monika\AppData\Roaming\TeamViewer
2013-10-18 19:43:05 ----A---- C:\Windows\system32\glcndFilter.dll
2013-10-18 19:43:01 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2013-10-18 19:43:01 ----A---- C:\Windows\system32\winhttp.dll
2013-10-18 19:43:00 ----A---- C:\Windows\system32\ole32.dll
2013-10-18 19:43:00 ----A---- C:\Windows\system32\KernelBase.dll
2013-10-18 19:42:59 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2013-10-18 19:42:58 ----A---- C:\Windows\SYSWOW64\ole32.dll
2013-10-18 19:42:56 ----A---- C:\Windows\HelpPane.exe
2013-10-18 19:42:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-10-18 19:42:55 ----A---- C:\Windows\system32\wlansvc.dll
2013-10-18 19:42:53 ----A---- C:\Windows\system32\wlanmsm.dll
2013-10-18 19:42:53 ----A---- C:\Windows\system32\wlanapi.dll
2013-10-18 19:42:53 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-10-18 19:42:53 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-18 19:42:53 ----A---- C:\Windows\system32\dafWCN.dll
2013-10-18 19:42:52 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2013-10-18 19:42:52 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2013-10-18 19:42:52 ----A---- C:\Windows\system32\wlansec.dll
2013-10-18 19:42:52 ----A---- C:\Windows\system32\rdpclip.exe
2013-10-18 19:42:52 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2013-10-18 19:42:51 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2013-10-18 19:42:51 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2013-10-18 19:42:48 ----A---- C:\Windows\system32\wcncsvc.dll
2013-10-18 19:42:45 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2013-10-18 19:42:45 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2013-10-18 19:42:45 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2013-10-18 19:42:45 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\wlanhlp.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\wfdprov.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\WcnApi.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\fdWCN.dll
2013-10-18 19:42:45 ----A---- C:\Windows\system32\drivers\processr.sys
2013-10-18 19:42:45 ----A---- C:\Windows\system32\drivers\intelppm.sys
2013-10-18 19:42:45 ----A---- C:\Windows\system32\drivers\fxppm.sys
2013-10-18 19:42:45 ----A---- C:\Windows\system32\drivers\amdppm.sys
2013-10-18 19:42:45 ----A---- C:\Windows\system32\drivers\amdk8.sys
2013-10-18 19:42:43 ----A---- C:\Windows\system32\iscsilog.dll
2013-10-18 19:42:09 ----A---- C:\Windows\system32\dskquota.dll
2013-10-18 19:42:08 ----A---- C:\Windows\SYSWOW64\dskquota.dll
2013-10-18 19:42:06 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2013-10-18 19:42:06 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2013-10-18 19:42:06 ----A---- C:\Windows\system32\mfnetsrc.dll
2013-10-18 19:42:06 ----A---- C:\Windows\system32\mfnetcore.dll
2013-10-18 19:42:06 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2013-10-18 19:42:05 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2013-10-18 19:41:56 ----A---- C:\Windows\system32\hal.dll
2013-10-18 19:41:25 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2013-10-18 19:41:24 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2013-10-18 19:41:24 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-10-18 19:41:24 ----A---- C:\Windows\system32\SHCore.dll
2013-10-18 19:41:24 ----A---- C:\Windows\system32\mfplat.dll
2013-10-18 19:41:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-18 19:41:23 ----A---- C:\Windows\system32\MPSSVC.dll
2013-10-18 19:41:22 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2013-10-18 19:41:21 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2013-10-18 19:41:21 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2013-10-18 19:41:21 ----A---- C:\Windows\system32\winlogon.exe
2013-10-18 19:41:21 ----A---- C:\Windows\system32\drivers\netio.sys
2013-10-18 19:41:20 ----A---- C:\Windows\system32\usercpl.dll
2013-10-18 19:41:20 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-10-18 19:41:19 ----A---- C:\Windows\system32\Windows.Storage.Compression.dll
2013-10-18 19:41:18 ----A---- C:\Windows\system32\bdesvc.dll
2013-10-18 19:41:17 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2013-10-18 19:41:17 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-10-18 19:41:16 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-10-18 19:41:16 ----A---- C:\Windows\system32\ListSvc.dll
2013-10-18 19:41:15 ----A---- C:\Windows\system32\SpaceControl.dll
2013-10-18 19:41:14 ----A---- C:\Windows\system32\drivers\sdstor.sys
2013-10-18 19:41:14 ----A---- C:\Windows\system32\drivers\battc.sys
2013-10-18 19:41:13 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Compression.dll
2013-10-18 19:41:13 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-18 19:41:13 ----A---- C:\Windows\SYSWOW64\input.dll
2013-10-18 19:41:13 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-10-18 19:41:13 ----A---- C:\Windows\system32\mswsock.dll
2013-10-18 19:41:13 ----A---- C:\Windows\system32\microsoft-windows-pdc.dll
2013-10-18 19:41:13 ----A---- C:\Windows\system32\input.dll
2013-10-18 19:41:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-18 19:41:13 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-18 19:41:13 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-10-18 19:41:12 ----A---- C:\Windows\SYSWOW64\PCPKsp.dll
2013-10-18 19:41:12 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2013-10-18 19:41:12 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2013-10-18 19:41:12 ----A---- C:\Windows\SYSWOW64\AppxSip.dll
2013-10-18 19:41:12 ----A---- C:\Windows\system32\SysFxUI.dll
2013-10-18 19:41:12 ----A---- C:\Windows\system32\FntCache.dll
2013-10-18 19:41:12 ----A---- C:\Windows\system32\FirewallAPI.dll
2013-10-18 19:41:12 ----A---- C:\Windows\system32\dhcpcore.dll
2013-10-18 19:41:12 ----A---- C:\Windows\system32\AppxSip.dll
2013-10-18 19:41:11 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2013-10-18 19:41:11 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2013-10-18 19:41:11 ----A---- C:\Windows\system32\wfapigp.dll
2013-10-18 19:41:11 ----A---- C:\Windows\system32\PCPKsp.dll
2013-10-18 19:41:11 ----A---- C:\Windows\system32\icfupgd.dll
2013-10-18 19:41:11 ----A---- C:\Windows\system32\dhcpcsvc.dll
2013-10-18 19:41:11 ----A---- C:\Windows\system32\BdeUISrv.exe
2013-10-18 19:41:08 ----A---- C:\Windows\system32\kbdhebl3.dll
2013-10-18 19:41:08 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2013-10-18 19:41:08 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-10-18 19:41:06 ----A---- C:\Windows\SYSWOW64\kbdhebl3.dll
2013-10-18 19:41:05 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2013-10-18 19:40:39 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-10-18 19:31:04 ----A---- C:\Windows\system32\shell32.dll
2013-10-18 19:31:01 ----A---- C:\Windows\system32\twinui.dll
2013-10-18 19:30:55 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-10-18 19:30:53 ----A---- C:\Windows\SYSWOW64\twinui.dll
2013-10-18 19:30:52 ----A---- C:\Windows\SYSWOW64\msctf.dll
2013-10-18 19:30:52 ----A---- C:\Windows\system32\msctf.dll
2013-10-18 19:30:52 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-18 19:30:51 ----A---- C:\Windows\system32\appmgr.dll
2013-10-18 19:30:50 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-10-18 19:30:50 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2013-10-18 19:30:50 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2013-10-18 19:30:50 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-10-18 19:30:50 ----A---- C:\Windows\SYSWOW64\appmgr.dll
2013-10-18 19:30:50 ----A---- C:\Windows\system32\shdocvw.dll
2013-10-18 19:30:50 ----A---- C:\Windows\system32\SettingSync.dll
2013-10-18 19:30:50 ----A---- C:\Windows\system32\mbsmsapi.dll
2013-10-18 19:30:50 ----A---- C:\Windows\system32\authui.dll
2013-10-18 19:30:49 ----A---- C:\Windows\system32\SettingSyncInfo.dll
2013-10-18 19:30:42 ----A---- C:\Windows\SYSWOW64\wvc.dll
2013-10-18 19:30:42 ----A---- C:\Windows\SYSWOW64\wdc.dll
2013-10-18 19:30:42 ----A---- C:\Windows\system32\wvc.dll
2013-10-18 19:30:42 ----A---- C:\Windows\system32\wdc.dll
2013-10-18 19:30:35 ----A---- C:\Windows\system32\Display.dll
2013-10-18 19:30:34 ----A---- C:\Windows\SYSWOW64\KBDKURD.DLL
2013-10-18 19:30:34 ----A---- C:\Windows\SYSWOW64\Display.dll
2013-10-18 19:30:34 ----A---- C:\Windows\system32\KBDKURD.DLL
2013-10-17 13:28:26 ----A---- C:\Windows\system32\drivers\evbda.sys
2013-10-17 13:28:17 ----A---- C:\Windows\system32\WpcMon.exe
2013-10-17 13:28:15 ----A---- C:\Windows\system32\d2d1.dll
2013-10-17 13:28:14 ----A---- C:\Windows\system32\WinSAT.exe
2013-10-17 13:28:11 ----A---- C:\Windows\system32\drivers\bxvbda.sys
2013-10-17 13:28:10 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-10-17 13:28:10 ----A---- C:\Windows\system32\vssapi.dll
2013-10-17 13:28:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2013-10-17 13:28:06 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2013-10-17 13:28:06 ----A---- C:\Windows\system32\RacEngn.dll
2013-10-17 13:28:06 ----A---- C:\Windows\system32\d3d10warp.dll
2013-10-17 13:28:05 ----A---- C:\Windows\system32\uDWM.dll
2013-10-17 13:28:05 ----A---- C:\Windows\system32\MMDevAPI.dll
2013-10-17 13:28:04 ----A---- C:\Windows\system32\provcore.dll
2013-10-17 13:28:03 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2013-10-17 13:28:02 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-10-17 13:28:01 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-10-17 13:28:00 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2013-10-17 13:28:00 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2013-10-17 13:27:59 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2013-10-17 13:27:59 ----A---- C:\Windows\system32\apphelp.dll
2013-10-17 13:27:58 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-10-17 13:27:57 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2013-10-17 13:27:57 ----A---- C:\Windows\system32\MFPlay.dll
2013-10-17 13:27:57 ----A---- C:\Windows\system32\combase.dll
2013-10-17 13:27:55 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2013-10-17 13:27:55 ----A---- C:\Windows\system32\WWAHost.exe
2013-10-17 13:27:55 ----A---- C:\Windows\system32\drivers\csc.sys
2013-10-17 13:27:55 ----A---- C:\Windows\system32\dnsapi.dll
2013-10-17 13:27:54 ----A---- C:\Windows\system32\wlidcredprov.dll
2013-10-17 13:27:54 ----A---- C:\Windows\system32\WinTypes.dll
2013-10-17 13:27:54 ----A---- C:\Windows\system32\taskeng.exe
2013-10-17 13:27:54 ----A---- C:\Windows\system32\fveapi.dll
2013-10-17 13:27:53 ----A---- C:\Windows\system32\mfsvr.dll
2013-10-17 13:27:53 ----A---- C:\Windows\system32\mfsrcsnk.dll
2013-10-17 13:27:53 ----A---- C:\Windows\system32\bcdsrv.dll
2013-10-17 13:27:52 ----A---- C:\Windows\system32\wpnprv.dll
2013-10-17 13:27:52 ----A---- C:\Windows\system32\propsys.dll
2013-10-17 13:27:52 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-10-17 13:27:51 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2013-10-17 13:27:51 ----A---- C:\Windows\system32\VAN.dll
2013-10-17 13:27:50 ----A---- C:\Windows\system32\services.exe
2013-10-17 13:27:50 ----A---- C:\Windows\system32\fveapibase.dll
2013-10-17 13:27:48 ----A---- C:\Windows\system32\mmcss.dll
2013-10-17 13:27:46 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2013-10-17 13:27:46 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2013-10-17 13:27:46 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2013-10-17 13:27:45 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-10-17 13:27:45 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-10-17 13:27:44 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2013-10-17 13:27:44 ----A---- C:\Windows\system32\TpmTasks.dll
2013-10-17 13:27:44 ----A---- C:\Windows\system32\ProximityService.dll
2013-10-17 13:27:43 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2013-10-17 13:27:43 ----A---- C:\Windows\SYSWOW64\provcore.dll
2013-10-17 13:27:43 ----A---- C:\Windows\SYSWOW64\propsys.dll
2013-10-17 13:27:43 ----A---- C:\Windows\SYSWOW64\PackageStateRoaming.dll
2013-10-17 13:27:43 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-10-17 13:27:43 ----A---- C:\Windows\system32\msvproc.dll
2013-10-17 13:27:43 ----A---- C:\Windows\system32\avrt.dll
2013-10-17 13:27:42 ----A---- C:\Windows\SYSWOW64\VAN.dll
2013-10-17 13:27:42 ----A---- C:\Windows\SYSWOW64\svchost.exe
2013-10-17 13:27:42 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2013-10-17 13:27:42 ----A---- C:\Windows\SYSWOW64\combase.dll
2013-10-17 13:27:42 ----A---- C:\Windows\SYSWOW64\avrt.dll
2013-10-17 13:27:42 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2013-10-17 13:27:42 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2013-10-17 13:27:41 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2013-10-17 13:27:41 ----A---- C:\Windows\system32\SettingSyncHost.exe
2013-10-17 13:27:41 ----A---- C:\Windows\system32\perfdisk.dll
2013-10-17 13:27:41 ----A---- C:\Windows\system32\batmeter.dll
2013-10-17 13:27:41 ----A---- C:\Windows\system32\aelupsvc.dll
2013-10-17 13:27:40 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2013-10-17 13:27:40 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2013-10-17 13:27:40 ----A---- C:\Windows\SYSWOW64\perfdisk.dll
2013-10-17 13:27:40 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2013-10-17 13:27:40 ----A---- C:\Windows\system32\svchost.exe
2013-10-17 13:27:39 ----A---- C:\Windows\system32\user32.dll
2013-10-17 13:27:39 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-10-17 13:27:38 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2013-10-17 13:27:38 ----A---- C:\Windows\system32\winsrv.dll
2013-10-17 13:27:38 ----A---- C:\Windows\system32\lsass.exe
2013-10-17 13:27:38 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-10-17 13:27:37 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2013-10-17 13:27:37 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2013-10-17 13:27:37 ----A---- C:\Windows\SYSWOW64\mfh264enc.dll
2013-10-17 13:27:37 ----A---- C:\Windows\system32\twinapi.dll
2013-10-17 13:27:37 ----A---- C:\Windows\system32\perfnet.dll
2013-10-17 13:27:37 ----A---- C:\Windows\system32\mfh264enc.dll
2013-10-17 13:27:37 ----A---- C:\Windows\system32\lpksetup.exe
2013-10-17 13:27:37 ----A---- C:\Windows\system32\dwm.exe
2013-10-17 13:27:37 ----A---- C:\Windows\system32\DevPropMgr.dll
2013-10-17 13:27:36 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-10-17 13:27:36 ----A---- C:\Windows\system32\drvinst.exe
2013-10-17 13:27:35 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-10-17 13:27:35 ----A---- C:\Windows\system32\dxgi.dll
2013-10-17 13:27:35 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-10-17 13:27:35 ----A---- C:\Windows\system32\DAFWSD.dll
2013-10-17 13:27:34 ----A---- C:\Windows\SYSWOW64\perfnet.dll
2013-10-17 13:27:34 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-10-17 13:27:34 ----A---- C:\Windows\system32\d3d11.dll
2013-10-17 13:27:33 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-10-17 13:27:33 ----A---- C:\Windows\system32\webio.dll
2013-10-17 13:27:33 ----A---- C:\Windows\system32\RpcEpMap.dll
2013-10-17 13:27:33 ----A---- C:\Windows\system32\perfos.dll
2013-10-17 13:27:33 ----A---- C:\Windows\system32\CscMig.dll
2013-10-17 13:27:32 ----A---- C:\Windows\system32\umpo.dll
2013-10-17 13:27:32 ----A---- C:\Windows\system32\lpremove.exe
2013-10-17 13:27:31 ----A---- C:\Windows\system32\vsstrace.dll
2013-10-17 13:27:31 ----A---- C:\Windows\system32\sspicli.dll
2013-10-17 13:27:31 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys
2013-10-17 13:27:30 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2013-10-17 13:27:30 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2013-10-17 13:27:30 ----A---- C:\Windows\system32\sdbinst.exe
2013-10-17 13:27:28 ----A---- C:\Windows\SYSWOW64\perfproc.dll
2013-10-17 13:27:28 ----A---- C:\Windows\SYSWOW64\perfos.dll
2013-10-17 13:27:28 ----A---- C:\Windows\SYSWOW64\perfctrs.dll
2013-10-17 13:27:28 ----A---- C:\Windows\system32\sspisrv.dll
2013-10-17 13:27:28 ----A---- C:\Windows\system32\perfproc.dll
2013-10-17 13:27:28 ----A---- C:\Windows\system32\perfctrs.dll
2013-10-17 13:27:27 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2013-10-17 13:27:27 ----A---- C:\Windows\SYSWOW64\eventcls.dll
2013-10-17 13:27:27 ----A---- C:\Windows\system32\shimeng.dll
2013-10-17 13:27:27 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2013-10-17 13:27:27 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2013-10-17 13:27:27 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2013-10-17 13:27:27 ----A---- C:\Windows\system32\eventcls.dll
2013-10-17 13:27:26 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-10-17 13:27:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-17 13:27:26 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-10-17 13:25:21 ----A---- C:\Windows\SYSWOW64\newdev.dll
2013-10-17 13:25:21 ----A---- C:\Windows\system32\newdev.dll
2013-10-17 13:25:20 ----A---- C:\Windows\SYSWOW64\newdev.exe
2013-10-17 13:25:20 ----A---- C:\Windows\SYSWOW64\ndadmin.exe
2013-10-17 13:25:20 ----A---- C:\Windows\system32\newdev.exe
2013-10-17 13:25:20 ----A---- C:\Windows\system32\ndadmin.exe
2013-10-17 13:25:10 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2013-10-17 13:25:10 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2013-10-17 13:25:10 ----A---- C:\Windows\SYSWOW64\openfiles.exe
2013-10-17 13:25:09 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2013-10-17 13:25:08 ----A---- C:\Windows\SYSWOW64\winmmbase.dll
2013-10-17 13:25:08 ----A---- C:\Windows\SYSWOW64\winmm.dll
2013-10-17 13:25:08 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2013-10-17 13:25:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-10-17 13:25:07 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-10-17 13:25:07 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2013-10-17 13:25:07 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-10-17 13:25:06 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-10-17 13:24:55 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-10-17 13:24:54 ----A---- C:\Windows\system32\wwanmm.dll
2013-10-17 13:24:54 ----A---- C:\Windows\system32\wwanconn.dll
2013-10-17 13:24:54 ----A---- C:\Windows\system32\drivers\sdbus.sys
2013-10-17 13:24:54 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2013-10-17 13:24:53 ----A---- C:\Windows\system32\wwansvc.dll
2013-10-17 13:24:53 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-10-17 13:24:53 ----A---- C:\Windows\system32\Wwanadvui.dll
2013-10-17 13:24:51 ----A---- C:\Windows\system32\wcmsvc.dll
2013-10-17 13:24:51 ----A---- C:\Windows\system32\wcmcsp.dll
2013-10-17 13:24:50 ----A---- C:\Windows\system32\drivers\udfs.sys
2013-10-17 13:24:49 ----A---- C:\Windows\system32\WinSCard.dll
2013-10-17 13:24:49 ----A---- C:\Windows\system32\openfiles.exe
2013-10-17 13:24:49 ----A---- C:\Windows\system32\localspl.dll
2013-10-17 13:24:48 ----A---- C:\Windows\system32\oleaut32.dll
2013-10-17 13:24:47 ----A---- C:\Windows\system32\nshwfp.dll
2013-10-17 13:24:47 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-10-17 13:24:47 ----A---- C:\Windows\system32\drivers\wfplwfs.sys
2013-10-17 13:24:46 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-10-17 13:24:46 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-10-17 13:24:46 ----A---- C:\Windows\system32\BFE.DLL
2013-10-17 13:24:45 ----A---- C:\Windows\system32\msftedit.dll
2013-10-17 13:24:45 ----A---- C:\Windows\system32\LocationApi.dll
2013-10-17 13:24:45 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2013-10-17 13:24:44 ----A---- C:\Windows\system32\WerFault.exe
2013-10-17 13:24:44 ----A---- C:\Windows\system32\gdi32.dll
2013-10-17 13:24:43 ----A---- C:\Windows\system32\winmmbase.dll
2013-10-17 13:24:43 ----A---- C:\Windows\system32\winmm.dll
2013-10-17 13:24:43 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2013-10-17 13:24:43 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2013-10-17 12:01:09 ----A---- C:\Windows\SYSWOW64\DBCLIENT.DLL
2013-10-17 09:26:57 ----RD---- C:\Windows\BrowserChoice
2013-10-17 09:10:10 ----D---- C:\Windows\system32\MRT
2013-10-17 09:10:07 ----A---- C:\Windows\system32\MRT.exe
2013-10-17 08:47:49 ----A---- C:\Windows\system32\wmp.dll
2013-10-17 08:47:49 ----A---- C:\Windows\system32\tquery.dll
2013-10-17 08:47:47 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-10-17 08:47:46 ----A---- C:\Windows\system32\mssrch.dll
2013-10-17 08:47:44 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-10-17 08:47:42 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-10-17 08:47:42 ----A---- C:\Windows\system32\ntdll.dll
2013-10-17 08:47:41 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2013-10-17 08:47:40 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll
2013-10-17 08:47:39 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-17 08:47:39 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-10-17 08:47:39 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2013-10-17 08:47:39 ----A---- C:\Windows\system32\schedsvc.dll
2013-10-17 08:47:39 ----A---- C:\Windows\system32\schannel.dll
2013-10-17 08:47:39 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-10-17 08:47:39 ----A---- C:\Windows\system32\rsaenh.dll
2013-10-17 08:47:39 ----A---- C:\Windows\system32\kd_02_10ec.dll
2013-10-17 08:47:39 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-10-17 08:47:39 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2013-10-17 08:47:39 ----A---- C:\Windows\system32\AudioSes.dll
2013-10-17 08:47:38 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-10-17 08:47:38 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2013-10-17 08:47:38 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-17 08:47:38 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2013-10-17 08:47:38 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2013-10-17 08:47:38 ----A---- C:\Windows\system32\Windows.Networking.dll
2013-10-17 08:47:38 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-10-17 08:47:38 ----A---- C:\Windows\system32\mssph.dll
2013-10-17 08:47:38 ----A---- C:\Windows\system32\kerberos.dll
2013-10-17 08:47:38 ----A---- C:\Windows\system32\dwmredir.dll
2013-10-17 08:47:38 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-10-17 08:47:38 ----A---- C:\Windows\system32\conhost.exe
2013-10-17 08:47:38 ----A---- C:\Windows\system32\AudioEng.dll
2013-10-17 08:47:38 ----A---- C:\Windows\system32\audiodg.exe
2013-10-17 08:47:37 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-10-17 08:47:37 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-10-17 08:47:37 ----A---- C:\Windows\system32\wpncore.dll
2013-10-17 08:47:37 ----A---- C:\Windows\system32\RecoveryDrive.exe
2013-10-17 08:47:36 ----A---- C:\Windows\system32\MFMediaEngine.dll
2013-10-17 08:47:35 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2013-10-17 08:47:35 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2013-10-17 08:47:35 ----A---- C:\Windows\system32\ci.dll
2013-10-17 08:47:34 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-10-17 08:47:34 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-10-17 08:47:34 ----A---- C:\Windows\system32\rascfg.dll
2013-10-17 08:47:34 ----A---- C:\Windows\system32\fhengine.dll
2013-10-17 08:47:34 ----A---- C:\Windows\system32\dmvdsitf.dll
2013-10-17 08:47:34 ----A---- C:\Windows\system32\actxprxy.dll
2013-10-17 08:47:33 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2013-10-17 08:47:33 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2013-10-17 08:47:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-10-17 08:47:33 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2013-10-17 08:47:33 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2013-10-17 08:47:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-10-17 08:47:33 ----A---- C:\Windows\system32\Robocopy.exe
2013-10-17 08:47:33 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-10-17 08:47:33 ----A---- C:\Windows\system32\kdvm.dll
2013-10-17 08:47:33 ----A---- C:\Windows\system32\iuilp.dll
2013-10-17 08:47:33 ----A---- C:\Windows\system32\drivers\pdc.sys
2013-10-17 08:47:33 ----A---- C:\Windows\system32\AUDIOKSE.dll
2013-10-17 08:47:33 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2013-10-17 08:47:32 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2013-10-17 08:47:32 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2013-10-17 08:47:32 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2013-10-17 08:47:32 ----A---- C:\Windows\system32\wscsvc.dll
2013-10-17 08:47:32 ----A---- C:\Windows\system32\kdnet.dll
2013-10-17 08:47:32 ----A---- C:\Windows\system32\drivers\wanarp.sys
2013-10-17 08:47:32 ----A---- C:\Windows\system32\drivers\hidbth.sys
2013-10-17 08:47:32 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\rasser.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-10-17 08:47:31 ----A---- C:\Windows\SYSWOW64\fmifs.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\rasser.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\rasmxs.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\rasdiag.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\mssvp.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\mssprxy.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\mssphtb.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\mssitlb.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\msshooks.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\msscntrs.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\GenuineCenter.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fmifs.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhtask.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhsvc.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhsrchph.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhsrchapi.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhshl.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhmanagew.exe
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhlisten.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhevents.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhcleanup.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhcfg.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhcat.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\fhautoplay.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\EncDump.dll
2013-10-17 08:47:31 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2013-10-17 08:47:31 ----A---- C:\Windows\system32\drivers\hidi2c.sys
2013-10-17 08:47:30 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-10-17 08:47:30 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2013-10-17 08:47:30 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2013-10-17 08:47:30 ----A---- C:\Windows\system32\wmploc.DLL
2013-10-17 08:47:30 ----A---- C:\Windows\system32\tzres.dll
2013-10-17 08:47:30 ----A---- C:\Windows\system32\spwmp.dll
2013-10-17 08:47:30 ----A---- C:\Windows\system32\fhsvcctl.dll
2013-10-17 08:47:30 ----A---- C:\Windows\system32\dxmasf.dll
2013-10-17 08:47:30 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2013-10-17 08:47:29 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-10-17 08:47:14 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2013-10-17 08:47:08 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2013-10-17 08:47:06 ----A---- C:\Windows\system32\VSSVC.exe
2013-10-17 08:47:06 ----A---- C:\Windows\system32\ubpm.dll
2013-10-17 08:47:06 ----A---- C:\Windows\system32\sysmain.dll
2013-10-17 08:47:06 ----A---- C:\Windows\system32\drivers\rdbss.sys
2013-10-17 08:47:06 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2013-10-17 08:47:05 ----A---- C:\Windows\system32\BCP47Langs.dll
2013-10-17 08:47:04 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2013-10-17 08:47:04 ----A---- C:\Windows\system32\netprofmsvc.dll
2013-10-17 08:47:03 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2013-10-17 08:47:03 ----A---- C:\Windows\system32\netprofm.dll
2013-10-17 08:47:03 ----A---- C:\Windows\system32\gpprefcl.dll
2013-10-17 08:47:02 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2013-10-17 08:47:01 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2013-10-17 08:47:01 ----A---- C:\Windows\system32\stobject.dll
2013-10-17 08:47:01 ----A---- C:\Windows\system32\psmsrv.dll
2013-10-17 08:47:01 ----A---- C:\Windows\system32\netplwiz.dll
2013-10-17 08:47:01 ----A---- C:\Windows\system32\Magnify.exe
2013-10-17 08:47:01 ----A---- C:\Windows\system32\bisrv.dll
2013-10-17 08:47:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\stobject.dll
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\Magnify.exe
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2013-10-17 08:47:00 ----A---- C:\Windows\SYSWOW64\biwinrt.dll
2013-10-17 08:47:00 ----A---- C:\Windows\system32\wuaext.dll
2013-10-17 08:47:00 ----A---- C:\Windows\system32\taskhostex.exe
2013-10-17 08:47:00 ----A---- C:\Windows\system32\taskhost.exe
2013-10-17 08:47:00 ----A---- C:\Windows\system32\drivers\spaceport.sys
2013-10-17 08:47:00 ----A---- C:\Windows\system32\DevicePairing.dll
2013-10-17 08:47:00 ----A---- C:\Windows\system32\biwinrt.dll
2013-10-17 08:47:00 ----A---- C:\Windows\system32\AuthHost.exe
2013-10-17 08:46:59 ----A---- C:\Windows\SYSWOW64\npmproxy.dll
2013-10-17 08:46:59 ----A---- C:\Windows\SYSWOW64\nlmsprep.dll
2013-10-17 08:46:59 ----A---- C:\Windows\SYSWOW64\nlmproxy.dll
2013-10-17 08:46:59 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2013-10-17 08:46:59 ----A---- C:\Windows\system32\wushareduxresources.dll
2013-10-17 08:46:59 ----A---- C:\Windows\system32\muifontsetup.dll
2013-10-17 08:46:50 ----A---- C:\Windows\SYSWOW64\untfs.dll
2013-10-17 08:46:50 ----A---- C:\Windows\SYSWOW64\autochk.exe
2013-10-17 08:46:50 ----A---- C:\Windows\system32\untfs.dll
2013-10-17 08:46:50 ----A---- C:\Windows\system32\autochk.exe
2013-10-17 08:46:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-10-17 08:46:49 ----A---- C:\Windows\system32\kernel32.dll
2013-10-17 08:46:33 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-10-17 08:46:31 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-10-17 08:46:31 ----A---- C:\Windows\system32\mstscax.dll
2013-10-17 08:46:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-17 08:46:30 ----A---- C:\Windows\system32\wmpmde.dll
2013-10-17 08:46:30 ----A---- C:\Windows\system32\winmde.dll
2013-10-17 08:46:30 ----A---- C:\Windows\system32\Windows.Globalization.dll
2013-10-17 08:46:29 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2013-10-17 08:46:29 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-10-17 08:46:29 ----A---- C:\Windows\system32\TimeBrokerServer.dll
2013-10-17 08:46:29 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2013-10-17 08:46:29 ----A---- C:\Windows\system32\pwcreator.exe
2013-10-17 08:46:29 ----A---- C:\Windows\system32\drivers\storport.sys
2013-10-17 08:46:29 ----A---- C:\Windows\system32\drivers\bthport.sys
2013-10-17 08:46:28 ----A---- C:\Windows\SYSWOW64\winmde.dll
2013-10-17 08:46:28 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2013-10-17 08:46:28 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2013-10-17 08:46:28 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2013-10-17 08:46:28 ----A---- C:\Windows\system32\wpdbusenum.dll
2013-10-17 08:46:28 ----A---- C:\Windows\system32\usbmon.dll
2013-10-17 08:46:28 ----A---- C:\Windows\system32\netcfgx.dll
2013-10-17 08:46:28 ----A---- C:\Windows\system32\drvstore.dll
2013-10-17 08:46:28 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2013-10-17 08:46:27 ----A---- C:\Windows\SYSWOW64\SettingSyncInfo.dll
2013-10-17 08:46:27 ----A---- C:\Windows\SYSWOW64\DevDispItemProvider.dll
2013-10-17 08:46:27 ----A---- C:\Windows\system32\WSDPrintProxy.DLL
2013-10-17 08:46:27 ----A---- C:\Windows\system32\NdisImPlatform.dll
2013-10-17 08:46:27 ----A---- C:\Windows\system32\fsquirt.exe
2013-10-17 08:46:27 ----A---- C:\Windows\system32\drivers\tpm.sys
2013-10-17 08:46:27 ----A---- C:\Windows\system32\drivers\storahci.sys
2013-10-17 08:46:27 ----A---- C:\Windows\system32\drivers\rfcomm.sys
2013-10-17 08:46:27 ----A---- C:\Windows\system32\drivers\mouhid.sys
2013-10-17 08:46:27 ----A---- C:\Windows\system32\discan.dll
2013-10-17 08:46:27 ----A---- C:\Windows\system32\DevDispItemProvider.dll
2013-10-17 08:46:26 ----A---- C:\Windows\system32\drivers\monitor.sys
2013-10-17 08:46:26 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2013-10-17 08:46:26 ----A---- C:\Windows\system32\drivers\bthenum.sys
2013-10-17 08:46:19 ----A---- C:\Windows\system32\rdpshell.exe
2013-10-17 08:45:39 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2013-10-17 08:45:39 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2013-10-17 08:44:14 ----A---- C:\Windows\system32\wlidsvc.dll
2013-10-17 08:44:14 ----A---- C:\Windows\system32\mmc.exe
2013-10-17 08:44:13 ----A---- C:\Windows\SYSWOW64\mmc.exe
2013-10-17 08:44:13 ----A---- C:\Windows\system32\srmstormod.dll
2013-10-17 08:44:12 ----A---- C:\Windows\system32\Windows.Media.dll
2013-10-17 08:44:12 ----A---- C:\Windows\system32\setupapi.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\wiaacmgr.exe
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\srmstormod.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\srmshell.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\srmscan.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\srmclient.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2013-10-17 08:44:11 ----A---- C:\Windows\SYSWOW64\adrclient.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\WSDMon.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\wiaacmgr.exe
2013-10-17 08:44:11 ----A---- C:\Windows\system32\srmshell.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\srmscan.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\srmclient.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\ncbservice.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\MP4SDECD.DLL
2013-10-17 08:44:11 ----A---- C:\Windows\system32\lsm.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\inetpp.dll
2013-10-17 08:44:11 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-10-17 08:44:11 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys
2013-10-17 08:44:11 ----A---- C:\Windows\system32\adrclient.dll
2013-10-17 08:44:10 ----A---- C:\Windows\SYSWOW64\srmtrace.dll
2013-10-17 08:44:10 ----A---- C:\Windows\SYSWOW64\srm_ps.dll
2013-10-17 08:44:10 ----A---- C:\Windows\SYSWOW64\srm.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\srmtrace.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\srm_ps.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\srm.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\keepaliveprovider.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\httpprxp.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\httpprxm.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\adhsvc.dll
2013-10-17 08:44:10 ----A---- C:\Windows\system32\adhapi.dll
2013-10-17 08:43:44 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2013-10-17 08:43:44 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2013-10-17 08:43:42 ----A---- C:\Windows\SYSWOW64\synceng.dll
2013-10-17 08:43:42 ----A---- C:\Windows\system32\synceng.dll
2013-10-17 08:43:23 ----A---- C:\Windows\system32\sppsvc.exe
2013-10-17 08:43:22 ----A---- C:\Windows\system32\wuaueng.dll
2013-10-17 08:43:21 ----A---- C:\Windows\system32\WSService.dll
2013-10-17 08:43:21 ----A---- C:\Windows\system32\NotificationUI.exe
2013-10-17 08:43:20 ----A---- C:\Windows\system32\sppobjs.dll
2013-10-17 08:43:18 ----A---- C:\Windows\system32\wuapi.dll
2013-10-17 08:43:18 ----A---- C:\Windows\system32\WSShared.dll
2013-10-17 08:43:18 ----A---- C:\Windows\system32\WinSetupUI.dll
2013-10-17 08:43:17 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2013-10-17 08:43:17 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2013-10-17 08:43:17 ----A---- C:\Windows\SYSWOW64\sppc.dll
2013-10-17 08:43:17 ----A---- C:\Windows\system32\wucltux.dll
2013-10-17 08:43:17 ----A---- C:\Windows\system32\sppwinob.dll
2013-10-17 08:43:17 ----A---- C:\Windows\system32\sppc.dll
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2013-10-17 08:43:16 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\wuwebv.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\wups2.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\wups.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\wudriver.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\wuauclt.exe
2013-10-17 08:43:16 ----A---- C:\Windows\system32\wuapp.exe
2013-10-17 08:43:16 ----A---- C:\Windows\system32\WSSync.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\WSClient.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\storewuauth.dll
2013-10-17 08:43:16 ----A---- C:\Windows\system32\drivers\dam.sys
2013-10-17 08:43:15 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 08:43:15 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2013-10-17 08:43:15 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2013-10-17 08:43:15 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 08:43:15 ----A---- C:\Windows\system32\setupcln.dll
2013-10-17 08:43:15 ----A---- C:\Windows\system32\OEMLicense.dll
2013-10-17 08:42:22 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-10-17 08:42:22 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-17 08:42:22 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-17 08:42:22 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-17 08:42:21 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-10-17 08:42:21 ----A---- C:\Windows\system32\rpcrt4.dll
2013-10-17 08:42:16 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-17 08:42:16 ----A---- C:\Windows\system32\comctl32.dll
2013-10-17 08:41:20 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-17 08:41:07 ----A---- C:\Windows\system32\drivers\usbprint.sys
2013-10-17 08:41:07 ----A---- C:\Windows\system32\drivers\hidusb.sys
2013-10-17 08:41:07 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-17 08:41:07 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-17 08:40:16 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-10-17 08:40:16 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-10-17 08:40:16 ----A---- C:\Windows\system32\cryptnet.dll
2013-10-17 08:40:16 ----A---- C:\Windows\system32\certutil.exe
2013-10-17 08:40:06 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-10-17 08:39:22 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-10-17 08:39:22 ----A---- C:\Windows\system32\qedit.dll
2013-10-17 08:39:21 ----A---- C:\Windows\system32\mshtml.dll
2013-10-17 08:39:07 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-17 08:38:52 ----A---- C:\Windows\system32\ieframe.dll
2013-10-17 08:38:51 ----A---- C:\Windows\system32\jscript9.dll
2013-10-17 08:38:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-17 08:38:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-17 08:38:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-17 08:38:47 ----A---- C:\Windows\system32\iertutil.dll
2013-10-17 08:38:46 ----A---- C:\Windows\system32\wininet.dll
2013-10-17 08:38:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-17 08:38:44 ----A---- C:\Windows\system32\uxtheme.dll
2013-10-17 08:38:44 ----A---- C:\Windows\system32\urlmon.dll
2013-10-17 08:38:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-17 08:38:43 ----A---- C:\Windows\system32\jscript.dll
2013-10-17 08:38:42 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2013-10-17 08:38:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-17 08:38:42 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-17 08:38:42 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-17 08:38:42 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-17 08:38:42 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-17 08:38:41 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2013-10-17 08:38:41 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2013-10-17 08:38:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-17 08:38:41 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\UXInit.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\ncryptsslp.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\iesetup.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\iernonce.dll
2013-10-17 08:38:41 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-17 08:35:33 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2013-10-17 08:35:33 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-10-17 08:35:33 ----A---- C:\Windows\system32\ReAgentc.exe
2013-10-17 08:35:33 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-10-17 08:34:45 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2013-10-17 08:34:45 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-17 08:34:45 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2013-10-17 08:34:45 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-17 08:34:45 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2013-10-17 08:34:44 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-17 08:34:44 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-17 08:34:44 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-17 08:34:44 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-17 08:34:44 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-17 08:34:35 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-10-17 08:34:35 ----A---- C:\Windows\system32\DWrite.dll
2013-10-17 08:34:27 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-10-17 08:34:27 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-10-17 08:34:19 ----A---- C:\Windows\system32\tssdisai.dll
2013-10-17 08:34:18 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-10-17 08:34:18 ----A---- C:\Windows\system32\VmHostAI.dll
2013-10-17 08:34:18 ----A---- C:\Windows\system32\RDWebAI.dll
2013-10-17 08:34:18 ----A---- C:\Windows\system32\poqexec.exe
2013-10-17 08:34:18 ----A---- C:\Windows\system32\appserverai.dll
2013-10-17 08:34:14 ----A---- C:\Windows\system32\win32k.sys
2013-10-17 08:34:14 ----A---- C:\Windows\system32\pcasvc.dll
2013-10-17 08:34:14 ----A---- C:\Windows\system32\pcalua.exe
2013-10-17 08:34:14 ----A---- C:\Windows\system32\pcaevts.dll
2013-10-17 08:34:14 ----A---- C:\Windows\system32\pcadm.dll
2013-10-17 08:34:12 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2013-10-17 08:34:12 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-10-17 08:34:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2013-10-17 08:34:12 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-10-17 08:34:12 ----A---- C:\Windows\system32\msxml6r.dll
2013-10-17 08:34:12 ----A---- C:\Windows\system32\msxml6.dll
2013-10-17 08:34:12 ----A---- C:\Windows\system32\msxml3.dll
2013-10-17 08:34:11 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe
2013-10-17 08:34:11 ----A---- C:\Windows\SYSWOW64\dpnlobby.dll
2013-10-17 08:34:11 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll
2013-10-17 08:34:11 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll
2013-10-17 08:34:11 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-10-17 08:34:11 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\msxml3r.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnsvr.exe
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnlobby.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnhupnp.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnhpast.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnet.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnathlp.dll
2013-10-17 08:34:11 ----A---- C:\Windows\system32\dpnaddr.dll
2013-10-17 08:34:10 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2013-10-17 08:33:23 ----A---- C:\Windows\SYSWOW64\duser.dll
2013-10-17 08:33:23 ----A---- C:\Windows\system32\wlroamextension.dll
2013-10-17 08:33:23 ----A---- C:\Windows\system32\duser.dll
2013-10-17 08:33:22 ----A---- C:\Windows\SYSWOW64\wlroamextension.dll
2013-10-17 08:33:22 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2013-10-17 08:33:22 ----A---- C:\Windows\system32\WWanAPI.dll
2013-10-17 08:33:22 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2013-10-17 08:33:22 ----A---- C:\Windows\system32\taskkill.exe
2013-10-17 08:33:22 ----A---- C:\Windows\system32\ncsi.dll
2013-10-17 08:33:22 ----A---- C:\Windows\system32\hotspotauth.dll
2013-10-17 08:33:22 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-10-17 08:33:22 ----A---- C:\Windows\system32\drivers\ks.sys
2013-10-17 08:33:21 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2013-10-17 08:33:21 ----A---- C:\Windows\SYSWOW64\tasklist.exe
2013-10-17 08:33:21 ----A---- C:\Windows\SYSWOW64\taskkill.exe
2013-10-17 08:33:21 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-10-17 08:33:21 ----A---- C:\Windows\system32\wpd_ci.dll
2013-10-17 08:33:21 ----A---- C:\Windows\system32\wersvc.dll
2013-10-17 08:33:21 ----A---- C:\Windows\system32\tasklist.exe
2013-10-17 08:33:21 ----A---- C:\Windows\system32\nlasvc.dll
2013-10-17 08:33:21 ----A---- C:\Windows\system32\nlaapi.dll
2013-10-17 08:33:21 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2013-10-17 08:33:21 ----A---- C:\Windows\system32\drivers\BthhfHid.sys
2013-10-17 08:33:21 ----A---- C:\Windows\system32\drivers\BtaMPM.sys
2013-10-17 08:33:18 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-10-17 08:33:18 ----A---- C:\Windows\system32\crypt32.dll
2013-10-17 08:33:17 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-10-17 08:33:17 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2013-10-17 08:33:17 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2013-10-17 08:33:17 ----A---- C:\Windows\system32\wintrust.dll
2013-10-17 08:33:17 ----A---- C:\Windows\system32\cryptsvc.dll
2013-10-17 08:33:17 ----A---- C:\Windows\system32\apprepsync.dll
2013-10-17 08:33:17 ----A---- C:\Windows\system32\apprepapi.dll
2013-10-17 08:33:13 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-17 08:33:13 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-17 08:33:13 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-17 08:33:13 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-17 08:33:13 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-17 08:33:13 ----A---- C:\Windows\system32\lpk.dll
2013-10-17 08:33:13 ----A---- C:\Windows\system32\fontsub.dll
2013-10-17 08:33:13 ----A---- C:\Windows\system32\dciman32.dll
2013-10-17 08:33:13 ----A---- C:\Windows\system32\atmlib.dll
2013-10-17 08:33:13 ----A---- C:\Windows\system32\atmfd.dll
2013-10-17 08:33:12 ----A---- C:\Windows\system32\win32spl.dll
2013-10-17 08:33:12 ----A---- C:\Windows\system32\GdiPlus.dll
2013-10-17 08:33:12 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-10-17 08:33:12 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-10-17 08:33:11 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2013-10-17 08:33:11 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-10-17 08:32:54 ----A---- C:\Windows\system32\drivers\http.sys
2013-10-17 08:32:34 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-10-17 08:32:34 ----A---- C:\Windows\system32\cryptdlg.dll
2013-10-17 08:32:15 ----A---- C:\Windows\system32\consent.exe
2013-10-17 08:32:15 ----A---- C:\Windows\system32\appinfo.dll
2013-10-17 08:32:05 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2013-10-17 08:32:05 ----A---- C:\Windows\system32\sysreset.exe
2013-10-17 08:32:05 ----A---- C:\Windows\system32\resetengmig.dll
2013-10-17 08:32:05 ----A---- C:\Windows\system32\reseteng.dll
2013-10-17 08:32:05 ----A---- C:\Windows\system32\ReAgent.dll
2013-10-17 08:32:04 ----A---- C:\Windows\SYSWOW64\esent.dll
2013-10-17 08:32:04 ----A---- C:\Windows\system32\esent.dll
2013-10-17 08:24:54 ----A---- C:\Windows\system32\netcfg-15537.txt
2013-10-17 07:26:16 ----A---- C:\Windows\system32\netcfg-151757.txt
2013-10-17 07:24:00 ----A---- C:\Windows\system32\netcfg-15444.txt
2013-10-17 07:20:36 ----A---- C:\Windows\system32\netcfg-429798.txt
2013-10-17 07:17:52 ----A---- C:\Windows\system32\netcfg-266106.txt
2013-10-17 07:17:52 ----A---- C:\Windows\system32\netcfg-266044.txt
2013-10-17 07:13:42 ----A---- C:\Windows\system32\netcfg-15865.txt
2013-10-17 07:13:14 ----A---- C:\Windows\system32\netcfg-1164188.txt
2013-10-17 06:54:05 ----A---- C:\Windows\system32\netcfg-15756.txt
2013-10-17 06:53:38 ----A---- C:\Windows\system32\netcfg-22225056.txt
2013-10-17 06:51:06 ----D---- C:\Windows\Panther
2013-10-17 00:43:29 ----A---- C:\Windows\system32\netcfg-15896.txt
2013-10-17 00:42:59 ----A---- C:\Windows\system32\netcfg-407615.txt
2013-10-17 00:38:10 ----D---- C:\Program Files (x86)\CCleaner
2013-10-17 00:36:28 ----A---- C:\Windows\system32\netcfg-16551.txt
2013-10-17 00:35:56 ----A---- C:\Windows\system32\netcfg-217824.txt
2013-10-17 00:32:37 ----A---- C:\Windows\system32\netcfg-19266.txt
2013-10-17 00:32:04 ----A---- C:\Windows\system32\netcfg-610728.txt
2013-10-17 00:22:26 ----A---- C:\Windows\system32\netcfg-31824.txt
2013-10-16 23:38:36 ----A---- C:\Windows\system32\netcfg-908674.txt
2013-10-16 23:26:16 ----D---- C:\Users\monika\AppData\Roaming\Macromedia
2013-10-16 23:23:49 ----A---- C:\Windows\system32\netcfg-21091.txt
2013-10-16 23:23:10 ----A---- C:\Windows\system32\netcfg-125580.txt
2013-10-16 23:21:25 ----A---- C:\Windows\system32\netcfg-20467.txt
2013-10-16 23:16:20 ----A---- C:\Windows\system32\netcfg-35537.txt
2013-10-16 23:16:09 ----A---- C:\Windows\system32\netcfg-24304.txt
2013-10-16 23:15:24 ----A---- C:\Windows\system32\netcfg-6371221.txt
2013-10-16 22:58:34 ----D---- C:\ProgramData\STORMWARE
2013-10-16 22:57:16 ----A---- C:\Windows\SYSWOW64\msvcr100.dll
2013-10-16 22:57:16 ----A---- C:\Windows\SYSWOW64\mfc100.dll
2013-10-16 22:15:39 ----D---- C:\ProgramData\ESET
2013-10-16 22:15:39 ----D---- C:\Program Files\ESET
2013-10-16 22:12:39 ----A---- C:\Windows\system32\netcfg-2606636.txt
2013-10-16 21:58:51 ----A---- C:\Windows\system32\netcfg-1777958.txt
2013-10-16 21:58:27 ----A---- C:\Windows\system32\netcfg-1754059.txt
2013-10-16 21:58:10 ----A---- C:\Windows\system32\netcfg-1737788.txt
2013-10-16 21:53:18 ----A---- C:\Windows\system32\netcfg-1445006.txt
2013-10-16 21:53:17 ----A---- C:\Windows\system32\netcfg-1444132.txt
2013-10-16 21:51:50 ----A---- C:\Windows\system32\netcfg-1357302.txt
2013-10-16 21:51:50 ----A---- C:\Windows\system32\netcfg-1356881.txt
2013-10-16 21:50:47 ----A---- C:\Windows\system32\netcfg-1293841.txt
2013-10-16 21:50:44 ----A---- C:\Windows\system32\netcfg-1291391.txt
2013-10-16 21:47:10 ----A---- C:\Windows\system32\netcfg-1077530.txt
2013-10-16 21:47:08 ----A---- C:\Windows\system32\netcfg-1074862.txt
2013-10-16 20:57:05 ----D---- C:\Users\monika\AppData\Roaming\Adobe
2013-10-16 20:56:26 ----D---- C:\ProgramData\PRICache
2013-10-16 20:56:19 ----SD---- C:\Users\monika\AppData\Roaming\Microsoft
2013-10-16 20:56:18 ----D---- C:\Windows\CSC
2013-10-16 20:56:15 ----D---- C:\Windows\SoftwareDistribution
2013-10-16 20:55:40 ----A---- C:\Windows\system32\netcfg-68936.txt
2013-10-16 20:54:59 ----SHD---- C:\Recovery
2013-10-16 20:54:38 ----ASH---- C:\hiberfil.sys
2013-10-16 20:52:41 ----A---- C:\Windows\system32\netcfg-78889.txt
2013-10-16 20:52:41 ----A---- C:\Windows\system32\netcfg-78234.txt
2013-10-16 20:52:34 ----A---- C:\Windows\system32\atiicdxx.dat
2013-10-16 20:52:25 ----A---- C:\Windows\system32\netcfg-62010.txt
2013-10-16 20:52:24 ----A---- C:\Windows\system32\netcfg-61479.txt
2013-10-16 20:52:22 ----A---- C:\Windows\system32\netcfg-59155.txt
2013-10-16 20:52:20 ----A---- C:\Windows\system32\netcfg-57423.txt
2013-10-16 20:52:20 ----A---- C:\Windows\system32\netcfg-57189.txt
2013-10-16 20:52:20 ----A---- C:\Windows\system32\netcfg-56955.txt
2013-10-16 20:52:19 ----A---- C:\Windows\system32\netcfg-56690.txt
2013-10-16 20:52:19 ----A---- C:\Windows\system32\netcfg-55957.txt
2013-10-16 20:52:18 ----A---- C:\Windows\system32\netcfg-55645.txt
2013-10-16 20:52:18 ----A---- C:\Windows\system32\netcfg-55489.txt
2013-10-16 20:52:18 ----A---- C:\Windows\system32\netcfg-55208.txt
2013-10-16 20:52:17 ----A---- C:\Windows\system32\netcfg-54912.txt
2013-10-16 20:52:17 ----A---- C:\Windows\system32\netcfg-54600.txt
2013-10-16 20:52:12 ----D---- C:\Windows\Prefetch
2013-10-16 20:51:32 ----ASH---- C:\swapfile.sys
2013-10-16 20:51:32 ----ASH---- C:\pagefile.sys
2013-10-16 20:51:30 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 month======

2013-10-21 22:21:21 ----D---- C:\Windows\Temp
2013-10-21 22:19:30 ----RD---- C:\Windows\System32
2013-10-21 22:18:02 ----RD---- C:\Program Files
2013-10-21 22:11:48 ----D---- C:\Windows\system32\sru
2013-10-20 15:14:21 ----D---- C:\Windows\Inf
2013-10-20 15:14:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 15:10:35 ----SHD---- C:\Windows\Installer
2013-10-20 15:10:29 ----RD---- C:\Program Files (x86)
2013-10-20 15:10:29 ----D---- C:\Program Files (x86)\Common Files
2013-10-20 15:10:28 ----D---- C:\Windows\SysWOW64
2013-10-20 14:16:05 ----D---- C:\Windows\system32\Drivers
2013-10-20 13:39:12 ----HD---- C:\ProgramData
2013-10-20 13:30:30 ----D---- C:\Windows\system32\DriverStore
2013-10-20 09:57:25 ----D---- C:\Windows\Microsoft.NET
2013-10-19 07:40:50 ----D---- C:\Windows\Logs
2013-10-18 20:13:31 ----D---- C:\Windows\system32\Tasks
2013-10-18 20:10:47 ----D---- C:\Windows\system32\config
2013-10-18 20:08:49 ----SHD---- C:\$Recycle.Bin
2013-10-18 20:07:26 ----RD---- C:\Users
2013-10-18 20:06:01 ----D---- C:\Windows\WinSxS
2013-10-18 20:03:38 ----D---- C:\Windows\system32\Boot
2013-10-18 20:03:38 ----D---- C:\Windows
2013-10-18 20:03:34 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-18 20:03:34 ----D---- C:\Windows\system32\wbem
2013-10-18 20:03:31 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-18 20:03:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-18 20:03:28 ----D---- C:\Windows\system32\en-US
2013-10-18 20:03:22 ----RSD---- C:\Windows\Fonts
2013-10-18 20:03:21 ----RD---- C:\Windows\ToastData
2013-10-18 20:03:03 ----D---- C:\Program Files\Windows Media Player
2013-10-18 20:03:03 ----D---- C:\Program Files (x86)\Windows Media Player
2013-10-18 20:02:54 ----RD---- C:\Windows\ImmersiveControlPanel
2013-10-18 20:02:53 ----D---- C:\Windows\system32\oobe
2013-10-18 20:02:43 ----D---- C:\Windows\apppatch
2013-10-18 20:00:51 ----D---- C:\Windows\CbsTemp
2013-10-18 19:25:26 ----D---- C:\Windows\system32\catroot2
2013-10-17 09:30:28 ----D---- C:\Windows\servicing
2013-10-17 09:27:20 ----D---- C:\Windows\SYSWOW64\migration
2013-10-17 09:27:20 ----D---- C:\Windows\system32\migration
2013-10-17 09:27:19 ----D---- C:\Program Files\Common Files\microsoft shared
2013-10-17 09:27:17 ----D---- C:\Program Files\Windows Defender
2013-10-17 09:27:15 ----D---- C:\Program Files (x86)\Windows Defender
2013-10-17 09:27:13 ----D---- C:\Windows\WinStore
2013-10-17 09:27:06 ----D---- C:\Program Files\Windows Journal
2013-10-17 09:26:55 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-17 09:26:51 ----D---- C:\Program Files\Internet Explorer
2013-10-17 09:26:00 ----D---- C:\Windows\SYSWOW64\Dism
2013-10-17 09:26:00 ----D---- C:\Program Files\Windows Photo Viewer
2013-10-17 09:26:00 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-10-17 09:25:58 ----D---- C:\Windows\system32\Dism
2013-10-17 09:24:39 ----D---- C:\Windows\system32\drivers\UMDF
2013-10-17 09:11:08 ----HD---- C:\Program Files\WindowsApps
2013-10-17 08:59:56 ----D---- C:\Windows\AUInstallAgent
2013-10-17 08:50:52 ----SD---- C:\ProgramData\Microsoft
2013-10-17 06:55:10 ----D---- C:\Windows\system32\wdi
2013-10-17 00:38:35 ----D---- C:\Windows\debug
2013-10-16 22:58:15 ----D---- C:\Windows\system32\restore
2013-10-16 22:38:47 ----D---- C:\Windows\rescache
2013-10-16 21:04:34 ----D---- C:\Windows\system32\CodeIntegrity
2013-10-16 20:54:59 ----D---- C:\Windows\system32\Recovery
2013-10-02 03:38:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2012-09-20 425192]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 77040]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 361200]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-10-11 562392]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2012-07-26 102640]
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-16 239296]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 81136]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 71920]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 374512]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2012-09-20 465128]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2012-09-20 100072]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-10-11 172264]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 93936]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 17136]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 83696]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2013-06-17 997632]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2013-01-10 91880]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 234224]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 52464]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2013-03-02 69864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 217328]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2013-05-04 284416]
R0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2013-03-02 77544]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2013-08-01 2233688]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 36080]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 83184]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 378608]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2013-06-01 327936]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2013-06-22 785624]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2013-06-10 96512]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2012-11-06 560640]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 48640]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 29696]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 174080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2012-09-20 571392]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 118784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 50688]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-16 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-16 168256]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 26112]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 37616]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 46080]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 331776]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 49152]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 23552]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 34304]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 145408]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2013-05-04 427520]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 117248]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2013-04-09 83456]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2013-09-16 157432]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 60416]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 134144]
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 427520]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 97792]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2013-04-09 805376]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 78848]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 45056]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-26 11926528]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-06-29 360448]
R3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2012-11-06 88064]
R3 athr;@oem8.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athw8x.sys [2013-08-22 3915264]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 101888]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@Bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 25600]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 36352]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2013-04-16 1455368]
R3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2013-06-26 341504]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2012-09-20 71168]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2013-03-15 861184]
R3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;PS/2 Keyboard and Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 112640]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 48368]

[rendywtf]

R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 18432]
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2012-07-26 21376]
R3 L1C;@oem7.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C63x64.sys [2012-06-22 110744]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\Windows\System32\drivers\monitor.sys [2013-03-01 30720]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 45808]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2012-10-11 74752]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2013-02-06 370688]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 279552]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2013-02-06 215552]
R3 MTsensor;@oem5.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2012-09-20 25088]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 58880]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2013-04-09 60416]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2013-02-02 1933544]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 114176]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 68608]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 124928]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 81920]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 92672]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 22528]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 416768]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2013-04-09 623104]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2013-04-09 247808]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13680]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2013-03-02 148712]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 149504]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 48128]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2013-06-29 120832]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2013-07-01 79192]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\Windows\System32\drivers\usbhub.sys [2013-07-01 623448]
R3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2012-11-20 27136]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-06 210560]
R3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 24064]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 106736]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 492272]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 340720]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 184048]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 63216]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 76016]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 258288]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 26352]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 104688]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 108272]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 25840]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys [2012-09-20 533224]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys [2012-09-20 3265256]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 113904]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 66800]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 64752]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24816]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 411888]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 45296]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 18672]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 22256]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 108784]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 92400]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 116976]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 81136]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 51952]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 353008]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 64240]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 52464]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 125168]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 150256]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 168176]
S0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 14064]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 237808]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 107760]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 44784]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 81648]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 30960]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 45160]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 37992]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 65776]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 66800]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 19184]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 137832]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 164080]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 322800]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 23792]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2013-08-16 58200]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 226304]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys [2012-07-26 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2012-11-06 90624]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 79360]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 26624]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-06-01 37632]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-11-27 29952]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 65536]
S3 BTHPORT;@Bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 45056]
S3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 33792]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 33280]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2012-10-11 5632]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 10240]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 194560]
S3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 210672]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 24576]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 57584]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2012-11-06 22528]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 12288]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2013-07-09 120144]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 27136]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2013-04-09 95744]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2012-11-20 39936]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 46080]
S3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2013-05-04 27648]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 11776]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 24576]
S3 InputFilter_Hid_FlexDef2b;@oem9.inf,%HIDUASServiceDesc%;Siliten HID Devices(FlexDef2b) Driver Service; C:\Windows\System32\drivers\InputFilter_FlexDef2b.sys [2010-06-19 17920]
S3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2012-11-06 89088]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 89088]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 78336]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 145920]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2012-11-06 277736]
S3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 29184]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 40448]
S3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2013-03-02 26112]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 141312]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 129536]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2013-01-10 28904]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 10752]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 11008]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 68608]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 7168]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 6912]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 390896]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 8192]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 14848]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 46592]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 126464]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys [2012-07-26 105984]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2012-11-06 87552]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 46592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 16384]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 179712]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-12 27880]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 208384]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 36864]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2013-06-29 195416]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2012-10-11 56552]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 62976]
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\Windows\System32\drivers\serenum.sys [2012-07-26 23040]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\Windows\System32\drivers\serial.sys [2012-07-26 76800]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 27136]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 16896]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 59392]
S3 storvsp;storvsp; C:\Windows\System32\drivers\storvsp.sys [2012-07-26 67584]
S3 Synth3dVsc;@synth3dvsc.inf,%Synth3dVsc.SVCDESC%;Microsoft Virtual 3D Video Transport Driver; C:\Windows\System32\drivers\Synth3dVsc.sys [2012-07-26 53352]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2013-08-01 2233688]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 36592]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-07-26 57344]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2012-07-26 115712]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 97008]
S3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2013-07-02 213336]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\Windows\System32\drivers\umpass.sys [2012-07-26 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2013-07-06 99328]
S3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2013-07-02 447320]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2013-07-02 25600]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2013-06-06 119040]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2013-06-29 32256]
S3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2013-07-02 337752]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 106224]
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2013-03-02 495336]
S3 Vid;Vid; C:\Windows\System32\drivers\Vid.sys [2012-07-26 203776]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 22144]
S3 vmbusr;@%SystemRoot%\system32\vmbusres.dll,-1001; C:\Windows\System32\drivers\vmbusr.sys [2012-07-26 117248]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys [2012-07-26 67824]
S3 vpcivsp;@wvpcivsp.inf,%vpcivsp.SVCDESC%;Microsoft Hyper-V PCI Server; C:\Windows\System32\drivers\vpcivsp.sys [2012-07-26 66048]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 27008]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2013-04-09 83456]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2013-07-02 36288]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2013-07-02 247216]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 33520]
S3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\drivers\wmiacpi.sys [2012-07-26 17408]
S3 wpcfltr;Family Safety Filter Driver; C:\Windows\system32\DRIVERS\wpcfltr.sys [2012-07-26 45056]
S3 WpdUpFltr;@%systemroot%\System32\drivers\WpdUpFltr.sys,-100; C:\Windows\System32\drivers\WpdUpFltr.sys [2012-07-26 19968]
S3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 87040]
S3 WUDFRd;@hidbthle.inf,%WudfRdDisplayName%;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\Windows\System32\drivers\WUDFRd.sys [2012-07-26 198656]
S3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
S4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 108544]
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2013-06-26 321536]
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; C:\Windows\system32\drivers\ws2ifsl.sys [2012-09-20 22528]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 BcmBtRSupport;@oem6.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\Windows\system32\BtwRSupportService.exe [2011-12-15 2246184]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2013-09-12 1337752]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2012-09-20 35840]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 769024]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 WlanSvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 WLMS;@%SystemRoot%\system32\wlms\wlms.exe,-1; C:\Windows\system32\wlms\wlms.exe [2012-07-26 21504]
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2013-04-09 816128]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2013-08-16 4917760]
S2 wscsvc;@%SystemRoot%\System32\wscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 94208]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 10752]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2012-09-20 35840]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 669696]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 144384]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 124416]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2012-07-26 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2013-05-16 98304]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 40960]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2013-06-01 680960]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2013-05-04 1483776]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1616896]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2013-07-02 16048]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\Windows\system32\wbem\WmiApSrv.exe [2012-07-26 198144]
S3 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files\Windows Media Player\wmpnetwk.exe [2012-09-20 1314816]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WSService;@%SystemRoot%\system32\WSService.dll,-103; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 wuauserv;@%systemroot%\system32\wuaueng.dll,-105; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-12 139696]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\Windows\System32\svchost.exe [2012-09-20 29696]

-----------------EOF-----------------

[rendywtf]

Jen pro informaci ntb jsem preinstalovala a formatoval cely disk.

[vyosek]

Log vypada OK

[rendywtf]

Tak nevis v cem je problem ? opravdu uz nevim v cem to muze byt....

[vyosek]

Pokud mizi i po reinstalu, tak zkuste kontaktovat technickou podporu microsoftu...Mozna je chyba primo v systemu...

[rendywtf]

Primo v systemu chyba není. Zkousel jsem jak Windows 7, tak Windows 8.

[vyosek]

Ty ikony mizi samy od sebe i po reinstalu?? To si jako jeden den dam ikonu na plochu a druhy den ji tam nemam, nebo jak to je??

[rendywtf]

Presne tak. Po reinstalu jsem delal všechny mozny testy na pritomnost viru a všechny mi ukazaly, ze tam nic není. Nemuze se stat, ze nejakej vir zustane na disku i po reinstalu ? Ja o zadnym takovym neslysel, ale to neznamena, ze neexistuje... Kazdopadne prubeh je takovy, ze přeinstaluju uplne na cisto nic ze starého pocitace nepridavam. Nainstaluju programy jakožto antivirovy program ESET a ucetni program Pohoda Premium. Po nejake době co uctuji a zalohuji ( po zaloze se program vypne ) tak zmizi všechny ikony jak na plose tak start a lista. Nekolikrat mi pocitac i napsal, ze nemam pristup do céčka, ale to jen asi dvakrát.

[vyosek]

Po formatu zustava disk cisty, jedine misto je cast MBR ale tam jsem tez nic nenasel

Toto je mi nejak zahadou, nemuze v tom mit prsty ten ucetni program

[rendywtf]

prave taky jsem se s tim nesetkal. taky me to napadlo psal jsem na podporu toho programu a rekli mi, ze chyba u nich byt nemuze. asi je jeste podusim aby mi rekli pravdu jinak netusim teda. kazdopadne dekuji za Vas cas

[vyosek]

Nemate zac, pak prosim treba napiste jak jste dopadl...