dosekaný NB, mrzne hlavne opera, pdf, celkové spomalenie

[sima707]

Zdravím, v poslednom čase mám nejaký spomalený a dosekaný NB, často mi zamrzne opera a dlho nereaguje, pdfka posúva strašne pomaly a opozdene, pomaly spúšťa priečinky atd....
ďakujem za pomoc

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sima at 2014-06-03 22:25:43
Microsoft Windows 8.1
System drive C: has 314 GB (69%) free of 452 GB
Total RAM: 3798 MB (28% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:26:01, on 3.6.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
C:\Program Files (x86)\Samsung\Settings\sSettings.exe
C:\Program Files (x86)\ConMet\ConMet.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files\trend micro\Sima.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\Microsoft Office\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Remote Mouse] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
O4 - HKCU\..\Run: [ConMet] C:\Program Files (x86)\ConMet\ConMet.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: Virtual Router Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY InfoPoisk LLC - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Easy Launcher - Samsung Electronics CO., LTD. - C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Condusiv Technologies - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SW Update Service (SWUpdateService) - Samsung Electronics CO., LTD. - C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VirtualRouterService (Virtual Router) - Chris Pietschmann (http://pietschsoft.com) - C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12689 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
dashost.exe {7894f590-3b54-4b99-ac53e68f5411e06f}
"C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\windows\SysWOW64\irstrtsv.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe"

"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe"
taskhostex.exe
"C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Samsung\Settings\sSettings.exe" /s
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Samsung\S Agent\CommonAgent.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\rundll32.exe" sbavmon.dll,SBAVMonitor
"C:\Program Files (x86)\ConMet\ConMet.exe"
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe" /SERVICE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Samsung\Support Center\GuaranaAgent.exe"
"C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
C:\WINDOWS\system32\WLANExt.exe 221731183488
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\alg.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe" "C:\Users\Simona\Desktop\PDF HARVEY 2014\5_6 Transplants.pdf"
"C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe" --channel=5984.00FBF89C.1347980417 --type=renderer "C:\Users\Simona\Desktop\PDF HARVEY 2014\5_6 Transplants.pdf"
"C:\Users\Simona\Desktop\nice\RSITx64.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe60_ Global\UsGthrCtrlFltPipeMssGthrPipe60 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-04-25 218784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\Microsoft Office\Office15\GROOVEEX.DLL [2014-04-08 2333400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-04-25 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\Microsoft Office\Office15\GROOVEEX.DLL [2014-04-08 1728216]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-10-04 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-10-04 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-10-04 769496]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-06 2862448]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-08-07 13191312]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-08-08 11554688]
"Creative SB Monitoring Utility"=RunDll32 sbavmon.dll,SBAVMonitor []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Remote Mouse"=C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe [2013-11-12 1187840]
"ConMet"=C:\Program Files (x86)\ConMet\ConMet.exe [2014-03-06 4483584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-13 155488]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Virtual Router Manager.lnk - C:\WINDOWS\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-10-04 623616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-03 22:25:43 ----D---- C:\Program Files\trend micro
2014-05-28 22:17:48 ----D---- C:\WINDOWS\Minidump
2014-05-19 23:35:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-05-19 23:35:25 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-05-19 23:35:24 ----A---- C:\WINDOWS\system32\twinui.dll
2014-05-19 23:35:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\wups.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-05-19 23:31:35 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-05-19 23:31:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-05-19 23:31:33 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-05-19 23:31:32 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-05-19 23:29:56 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-05-19 23:29:54 ----A---- C:\WINDOWS\system32\shell32.dll
2014-05-19 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-05-19 23:29:40 ----A---- C:\WINDOWS\system32\wusa.exe
2014-05-19 23:29:28 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-19 23:29:26 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-19 23:29:25 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-19 23:29:02 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-05-19 23:29:02 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-05-19 23:29:02 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-05-19 23:29:02 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-05-18 00:36:16 ----A---- C:\WINDOWS\system32\msrating.dll
2014-05-18 00:28:17 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-05-18 00:28:17 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-05-18 00:28:17 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-05-18 00:27:57 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-05-18 00:27:35 ----A---- C:\WINDOWS\system32\mfps.dll
2014-05-18 00:27:07 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-05-18 00:27:07 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-05-18 00:15:40 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-05-18 00:15:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-05-18 00:15:36 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-05-18 00:15:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-05-18 00:15:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-05-18 00:15:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-05-18 00:15:30 ----A---- C:\WINDOWS\system32\win32k.sys
2014-05-18 00:15:29 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-05-18 00:15:24 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-05-18 00:15:22 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-05-18 00:15:19 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-18 00:15:08 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-05-18 00:15:07 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-05-18 00:15:06 ----A---- C:\WINDOWS\system32\WSService.dll
2014-05-18 00:15:06 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-05-18 00:15:05 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-05-18 00:14:57 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-05-18 00:14:57 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-05-18 00:14:51 ----A---- C:\WINDOWS\system32\wininet.dll
2014-05-18 00:14:50 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-05-18 00:14:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-05-18 00:14:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-05-18 00:14:48 ----A---- C:\WINDOWS\system32\combase.dll
2014-05-18 00:14:43 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-05-18 00:14:43 ----A---- C:\WINDOWS\system32\qedit.dll
2014-05-18 00:14:42 ----A---- C:\WINDOWS\system32\wmp.dll
2014-05-18 00:14:39 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-05-18 00:14:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-05-18 00:14:38 ----A---- C:\WINDOWS\system32\tquery.dll
2014-05-18 00:14:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-18 00:14:35 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-05-18 00:14:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-05-18 00:14:33 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-05-18 00:14:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-05-18 00:14:29 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-05-18 00:14:28 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-05-18 00:14:25 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-05-18 00:14:23 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-05-18 00:14:22 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-05-18 00:14:22 ----A---- C:\WINDOWS\system32\dui70.dll
2014-05-18 00:14:21 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-05-18 00:14:20 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-05-18 00:14:18 ----A---- C:\WINDOWS\system32\webservices.dll
2014-05-18 00:14:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-05-18 00:14:17 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-05-18 00:14:16 ----A---- C:\WINDOWS\system32\winmde.dll
2014-05-18 00:14:16 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-18 00:14:15 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-05-18 00:14:15 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-05-18 00:14:15 ----A---- C:\WINDOWS\system32\msctf.dll
2014-05-18 00:14:14 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-05-18 00:14:14 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-05-18 00:14:14 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\system32\mispace.dll
2014-05-18 00:14:11 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-05-18 00:14:10 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-05-18 00:14:09 ----A---- C:\WINDOWS\system32\swprv.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-05-18 00:14:07 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-05-18 00:14:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-05-18 00:14:07 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-05-18 00:14:06 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-05-18 00:14:06 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-05-18 00:14:04 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-05-18 00:14:03 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-05-18 00:14:03 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-05-18 00:14:03 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-05-18 00:14:02 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-05-18 00:14:01 ----A---- C:\WINDOWS\system32\winresume.exe
2014-05-18 00:14:01 ----A---- C:\WINDOWS\system32\winload.exe
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\wer.dll
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-05-18 00:13:58 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-05-18 00:13:58 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-05-18 00:13:54 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-05-18 00:13:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-05-18 00:13:53 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-05-18 00:13:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-05-18 00:13:53 ----A---- C:\WINDOWS\system32\mf.dll
2014-05-18 00:13:52 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-05-18 00:13:51 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-05-18 00:13:50 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-05-18 00:13:49 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-05-18 00:13:49 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-05-18 00:13:48 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-05-18 00:13:48 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-05-18 00:13:46 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-05-18 00:13:46 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-05-18 00:13:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-05-18 00:13:45 ----A---- C:\WINDOWS\system32\user32.dll
2014-05-18 00:13:45 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\hal.dll
2014-05-18 00:13:43 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-05-18 00:13:43 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-05-18 00:13:42 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-05-18 00:13:42 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-05-18 00:13:42 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-05-18 00:13:41 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-05-18 00:13:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-05-18 00:13:38 ----A---- C:\WINDOWS\system32\schannel.dll
2014-05-18 00:13:38 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-05-18 00:13:37 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-05-18 00:13:37 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-05-18 00:13:37 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-05-18 00:13:37 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\recimg.exe
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\dfp.exe
2014-05-18 00:13:35 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-05-18 00:13:34 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-05-18 00:13:34 ----A---- C:\WINDOWS\system32\lsm.dll
2014-05-18 00:13:34 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-05-18 00:13:33 ----A---- C:\WINDOWS\system32\tdh.dll
2014-05-18 00:13:33 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-05-18 00:13:33 ----A---- C:\WINDOWS\system32\energy.dll
2014-05-18 00:13:32 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-05-18 00:13:31 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-05-18 00:13:31 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-18 00:13:31 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-05-18 00:13:31 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-05-18 00:13:30 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-18 00:13:30 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-05-18 00:13:30 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-05-18 00:13:30 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-05-18 00:13:30 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-05-18 00:13:29 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-05-18 00:13:29 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-05-18 00:13:29 ----A---- C:\WINDOWS\system32\mssph.dll
2014-05-18 00:13:29 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-05-18 00:13:28 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-05-18 00:13:28 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-05-18 00:13:28 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-05-18 00:13:27 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-05-18 00:13:27 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-05-18 00:13:27 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-05-18 00:13:27 ----A---- C:\WINDOWS\system32\stobject.dll
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\ci.dll
2014-05-18 00:13:25 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-05-18 00:13:23 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-05-18 00:13:23 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-05-18 00:13:23 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\printui.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\slc.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\Dism.exe
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-05-18 00:13:18 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-05-18 00:13:17 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-05-18 00:13:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-05-18 00:13:17 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-05-18 00:13:16 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-05-18 00:13:16 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-05-18 00:13:16 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\VAN.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\osk.exe
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\ninput.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-05-18 00:13:14 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-18 00:13:14 ----A---- C:\WINDOWS\system32\authz.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\conhost.exe
2014-05-18 00:13:12 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\themeui.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-05-18 00:13:11 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-05-18 00:13:10 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-05-18 00:13:09 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-05-18 00:13:09 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-05-18 00:13:08 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-05-18 00:13:08 ----A---- C:\WINDOWS\system32\sppc.dll
2014-05-18 00:13:08 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-05-18 00:13:08 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-05-18 00:13:06 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-05-18 00:13:06 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-05-18 00:13:06 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-05-18 00:13:04 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-05-18 00:13:04 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-05-18 00:13:04 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-05-18 00:13:04 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-05-18 00:13:04 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-05-18 00:13:04 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\system32\gameux.dll
2014-05-18 00:13:02 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-05-18 00:13:02 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-05-18 00:13:02 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-05-18 00:13:02 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\dwm.exe
2014-05-18 00:13:01 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-05-18 00:12:59 ----AC---- C:\WINDOWS\system32\drivers\rfcomm.sys
2014-05-18 00:12:59 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\smss.exe
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\imm32.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\netid.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\das.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-05-18 00:12:54 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-05-18 00:12:54 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-05-18 00:12:54 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-05-18 00:12:53 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-05-18 00:12:53 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-05-18 00:12:53 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\newdev.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\aepic.dll
2014-05-18 00:12:52 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-05-18 00:12:52 ----AC---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2014-05-18 00:12:52 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-05-18 00:12:52 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-05-18 00:12:52 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-05-18 00:12:51 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-05-18 00:12:51 ----A---- C:\WINDOWS\system32\vds.exe
2014-05-18 00:12:51 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-05-18 00:12:51 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\system32\bcd.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\bootux.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\system32\srclient.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-05-18 00:12:45 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-05-18 00:12:45 ----A---- C:\WINDOWS\system32\samlib.dll
2014-05-18 00:12:45 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-05-18 00:12:45 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-05-18 00:12:44 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-05-18 00:12:44 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-05-18 00:12:44 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-05-18 00:12:43 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-05-18 00:12:43 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-05-18 00:12:42 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-05-18 00:12:42 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-05-18 00:12:42 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-05-18 00:12:41 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-05-18 00:12:40 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-05-18 00:12:40 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-05-18 00:12:39 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-05-18 00:12:38 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-05-18 00:12:38 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\srcore.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\acppage.dll
2014-05-18 00:12:36 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-05-18 00:12:36 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-05-18 00:12:36 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-05-18 00:12:36 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-05-18 00:12:35 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-05-18 00:12:35 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-05-18 00:12:35 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\system32\slpts.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\sud.dll
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-05-18 00:12:30 ----A---- C:\WINDOWS\system32\untfs.dll
2014-05-18 00:12:30 ----A---- C:\WINDOWS\system32\autochk.exe
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-05-18 00:12:29 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\system32\migisol.dll
2014-05-18 00:12:28 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-05-18 00:12:28 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-05-18 00:12:28 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-05-18 00:12:26 ----AC---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2014-05-18 00:12:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\cscript.exe
2014-05-18 00:12:25 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-05-18 00:12:24 ----A---- C:\WINDOWS\system32\energytask.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-05-18 00:12:23 ----A---- C:\WINDOWS\system32\werui.dll
2014-05-18 00:12:23 ----A---- C:\WINDOWS\system32\devinv.dll
2014-05-18 00:12:22 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-05-18 00:12:21 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-05-18 00:12:21 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-05-18 00:12:18 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-05-18 00:12:17 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-05-18 00:12:17 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-05-18 00:12:17 ----A---- C:\WINDOWS\system32\offreg.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-05-18 00:12:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-05-18 00:12:16 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-05-18 00:12:14 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-05-18 00:12:14 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-05-18 00:12:13 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-05-18 00:12:13 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-05-18 00:12:13 ----A---- C:\WINDOWS\system32\winsku.dll
2014-05-18 00:12:13 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-05-18 00:12:13 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-05-18 00:12:12 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-05-18 00:12:11 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-05-18 00:12:11 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-05-18 00:12:10 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-05-18 00:12:10 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-05-18 00:12:09 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-05-18 00:12:06 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-18 00:12:06 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-05-18 00:12:06 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-05-18 00:12:04 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-05-18 00:12:04 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-05-18 00:12:03 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-05-18 00:12:02 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-05-18 00:12:02 ----A---- C:\WINDOWS\system32\syncui.dll
2014-05-18 00:12:02 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-05-18 00:12:01 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-05-18 00:12:00 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-05-18 00:12:00 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-05-18 00:12:00 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-18 00:12:00 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-05-18 00:11:59 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-05-18 00:11:58 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-05-18 00:11:58 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-05-18 00:11:57 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-05-18 00:11:56 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-18 00:11:56 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-18 00:11:56 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-05-18 00:11:55 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-05-18 00:11:55 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-05-18 00:11:54 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-18 00:11:54 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-05-18 00:11:53 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-18 00:11:53 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-18 00:11:53 ----A---- C:\WINDOWS\system32\winbici.dll
2014-05-18 00:11:53 ----A---- C:\WINDOWS\system32\occache.dll
2014-05-18 00:11:53 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-05-18 00:11:52 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-05-18 00:11:52 ----A---- C:\WINDOWS\system32\finger.exe
2014-05-18 00:11:49 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-05-18 00:11:49 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-05-18 00:11:47 ----A---- C:\WINDOWS\system32\srms.dat
2014-05-17 00:12:57 ----D---- C:\Program Files\Microsoft.NET
2014-05-16 22:33:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-16 22:33:43 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-05-16 22:33:43 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-05-16 22:33:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-05-16 22:33:38 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-16 22:33:38 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-05-16 22:33:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-16 22:33:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-05-16 22:33:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-05-16 22:33:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-05-16 22:33:24 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-05-16 22:33:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-05-16 22:33:23 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-16 22:33:22 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-16 22:33:21 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-05-16 22:33:21 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-05-16 22:33:20 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-05-16 22:33:20 ----A---- C:\WINDOWS\system32\authui.dll
2014-05-16 22:33:20 ----A---- C:\WINDOWS\explorer.exe
2014-05-16 22:33:19 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-05-16 22:33:19 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-05-16 22:33:19 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-05-16 22:33:19 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-05-16 22:33:18 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-05-16 22:33:18 ----A---- C:\WINDOWS\system32\ole32.dll
2014-05-16 22:33:18 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-05-16 22:33:17 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-05-16 22:33:17 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-05-16 22:33:17 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-05-16 22:33:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-05-16 22:33:16 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-05-16 22:33:16 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\system32\localspl.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-05-16 22:33:12 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-05-16 22:33:12 ----A---- C:\WINDOWS\system32\propsys.dll
2014-05-16 22:33:12 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-16 22:33:11 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-05-16 22:33:09 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-05-16 22:33:09 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-05-16 22:33:07 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-05-16 22:33:05 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-05-16 22:33:05 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-05-16 22:33:05 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-05-16 22:33:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-16 22:33:02 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-16 22:33:01 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\userenv.dll
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\pdh.dll
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\Display.dll
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\cdd.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\spp.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\aclui.dll
2014-05-16 22:32:56 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-05-16 22:32:56 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-05-16 22:32:55 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-05-16 22:32:55 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-05-16 22:32:55 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-05-16 22:32:54 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-05-16 22:32:54 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-05-16 22:32:54 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-05-16 22:32:54 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-05-16 22:32:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-05-16 22:32:54 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-05-16 22:32:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-05-16 22:32:52 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-05-16 22:32:52 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-05-16 22:32:52 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-05-16 22:32:49 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-05-16 22:32:49 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-05-16 21:29:26 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-05-16 21:28:46 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-05-16 21:28:45 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-05-16 21:28:43 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-05-16 20:34:07 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-16 20:30:48 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll

======List of files/folders modified in the last 1 month======

2014-06-03 22:25:44 ----D---- C:\WINDOWS\Prefetch
2014-06-03 22:25:43 ----RD---- C:\Program Files
2014-06-03 22:25:08 ----D---- C:\ProgramData\ConMet
2014-06-03 22:00:01 ----D---- C:\WINDOWS\system32\sru
2014-06-03 21:52:52 ----D---- C:\WINDOWS\Temp
2014-06-03 21:22:08 ----D---- C:\Users\Simona\AppData\Roaming\ConMet
2014-06-03 18:30:38 ----RD---- C:\WINDOWS\System32
2014-06-03 18:30:38 ----D---- C:\WINDOWS\Inf
2014-06-03 18:30:38 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-03 15:56:30 ----D---- C:\WINDOWS\system32\NDF
2014-06-03 09:09:19 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-02 21:39:49 ----SHD---- C:\System Volume Information
2014-06-02 21:23:36 ----D---- C:\ProgramData\WinClon
2014-06-02 21:22:29 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-06-01 10:45:21 ----D---- C:\WINDOWS\AppReadiness
2014-06-01 10:45:20 ----HD---- C:\Program Files\WindowsApps
2014-05-28 22:17:48 ----D---- C:\Windows
2014-05-28 21:29:05 ----D---- C:\Users\Simona\AppData\Roaming\vlc
2014-05-28 15:38:30 ----D---- C:\WINDOWS\system32\config
2014-05-28 10:47:12 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-24 22:54:10 ----D---- C:\WINDOWS\LiveKernelReports
2014-05-20 15:09:36 ----D---- C:\WINDOWS\rescache
2014-05-20 13:08:46 ----D---- C:\WINDOWS\WinSxS
2014-05-20 13:06:26 ----D---- C:\WINDOWS\SysWOW64
2014-05-20 13:06:26 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-20 13:06:25 ----D---- C:\WINDOWS\system32\drivers
2014-05-20 13:06:25 ----D---- C:\Program Files\Windows Defender
2014-05-20 13:06:24 ----RD---- C:\WINDOWS\ToastData
2014-05-20 13:06:24 ----D---- C:\WINDOWS\WinStore
2014-05-20 13:06:24 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2014-05-20 13:06:24 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-20 13:06:23 ----D---- C:\WINDOWS\system32\sk-SK
2014-05-20 13:06:23 ----D---- C:\WINDOWS\apppatch
2014-05-19 23:27:39 ----D---- C:\WINDOWS\CbsTemp
2014-05-18 09:58:37 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-05-18 09:58:33 ----D---- C:\WINDOWS\system32\wbem
2014-05-18 09:58:33 ----D---- C:\WINDOWS\system32\setup
2014-05-18 09:58:33 ----D---- C:\WINDOWS\system32\en-US
2014-05-18 09:58:25 ----D---- C:\Program Files\Internet Explorer
2014-05-18 09:58:25 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-18 09:58:21 ----D---- C:\WINDOWS\system32\drivers\en-US
2014-05-18 09:57:55 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-05-18 09:57:54 ----D---- C:\Program Files\Windows Multimedia Platform
2014-05-18 09:57:54 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-05-18 09:57:54 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-18 09:57:53 ----D---- C:\WINDOWS\MediaViewer
2014-05-18 09:57:53 ----D---- C:\Program Files\Windows Portable Devices
2014-05-18 09:57:53 ----D---- C:\Program Files\Windows Media Player
2014-05-18 09:57:50 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-05-18 09:57:50 ----D---- C:\WINDOWS\servicing
2014-05-18 09:57:49 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-05-18 09:57:49 ----D---- C:\WINDOWS\SYSWOW64\Dism
2014-05-18 09:57:48 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-05-18 09:57:39 ----D---- C:\WINDOWS\sk-SK
2014-05-18 09:57:38 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-05-18 09:57:37 ----D---- C:\WINDOWS\PolicyDefinitions
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\lv-LV
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\hr-HR
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\et-EE
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\da-DK
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\Sysprep
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\oobe
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\migration
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\ko-KR
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\it-IT
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\en-GB
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\el-GR
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\de-DE
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\zh-TW
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\zh-CN
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\uk-UA
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\sv-SE
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\sl-SI
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\ru-RU
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\pt-PT
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\pl-PL
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\ja-JP
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\hu-HU
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\he-IL
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\fr-FR
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\fi-FI
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\es-ES
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\cs-CZ
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\bg-BG
2014-05-18 09:57:31 ----D---- C:\WINDOWS\system32\ro-RO
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\zh-HK
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\tr-TR
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\th-TH
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\nl-NL
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\nb-NO
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\migwiz
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\lt-LT
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\ar-SA
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\pt-BR
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\Dism
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\Boot
2014-05-18 09:57:14 ----D---- C:\WINDOWS\Camera
2014-05-18 09:57:13 ----RSD---- C:\WINDOWS\Fonts
2014-05-18 09:57:12 ----D---- C:\WINDOWS\FileManager
2014-05-18 09:56:51 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-05-18 00:32:37 ----SH---- C:\WINDOWS\system32\desktop.ini
2014-05-17 19:44:51 ----SHD---- C:\WINDOWS\Installer
2014-05-17 19:44:50 ----SHD---- C:\Config.Msi
2014-05-17 11:04:06 ----RD---- C:\WINDOWS\assembly
2014-05-17 00:16:59 ----D---- C:\ProgramData\Microsoft Help
2014-05-17 00:12:57 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-17 00:12:55 ----D---- C:\Program Files\Common Files\microsoft shared
2014-05-17 00:05:06 ----A---- C:\WINDOWS\win.ini
2014-05-16 23:51:17 ----D---- C:\WINDOWS\system32\MRT
2014-05-16 23:48:11 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-16 21:31:45 ----D---- C:\WINDOWS\system32\catroot2
2014-05-07 21:29:58 ----RD---- C:\Program Files (x86)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 excsd;ExpressCache Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\excsd.sys [2012-08-17 103248]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-21 283064]
R1 excfs;ExpressCache File System Filter Driver; C:\WINDOWS\system32\DRIVERS\excfs.sys [2012-08-17 23376]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R3 AMPPAL;@oem22.inf,%AMPPAL.SVCDESC%;Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed Virtual Adapter; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-05-21 165344]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2012-07-14 825344]
R3 ETD;@oem7.inf,%SamsungDeviceDesc%;Samsung PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-06 313712]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2012-07-04 55848]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-10-04 4185600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-08-07 4102928]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 irstrtdv;@oem8.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\WINDOWS\System32\drivers\irstrtdv.sys [2012-07-20 43800]
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-09-26 27032]
R3 MEIx64;@oem31.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem34.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-19 3344352]
R3 RadioHIDMini;@oem4.inf,%RadioHIDMini%;Radio HID Mini-driver; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [2012-07-27 23408]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 usb3Hub;@oem27.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-10-09 47072]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-01-31 1200640]
S3 dg_ssudbus;@oem25.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-09-26 39320]
S3 ksaud;@oem39.inf,%KSAUD.SvcDesc%;Creative USB Audio Driver; C:\WINDOWS\system32\drivers\ksaud.sys [2011-09-13 1588608]
S3 Netaapl;@oem18.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\system32\DRIVERS\netaapl64.sys [2013-07-25 23040]
S3 nmwcd;@oem41.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;@oem45.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 rtport;rtport; \??\C:\windows\SysWOW64\drivers\rtport.sys [2012-12-04 15144]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;@oem1.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2013-08-22 33280]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-05-23 143120]
R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2013-05-15 821048]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-05-21 772064]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-08-08 1091520]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-08-08 1112000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 Easy Launcher;Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [2012-08-26 1593976]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-02 626416]
R2 ExpressCache;ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [2012-08-17 102224]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 irstrtsv;Intel(R) Rapid Start Technology Service; C:\windows\SysWOW64\irstrtsv.exe [2012-07-19 193576]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-02 149744]
R2 SWUpdateService;SW Update Service; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [2013-10-21 3018800]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R2 Virtual Router;VirtualRouterService; C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [2013-02-10 12288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-25 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-10-04 279000]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2013-05-04 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-25 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-02 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]

-----------------EOF-----------------

[Márty84]

Zdravim

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

[sima707]

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2014/06/04 13:30:22

-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series Chipset Family SATA AHCI Controller [ATA]
- HGST HTS545050A7E380
- SanDisk SSD i100 24GB
- Microsoft Storage Spaces Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) HGST HTS545050A7E380 : 500,1 GB [0/0/0, pd1]
(2) SanDisk SSD i100 24GB : 24,0 GB [1/0/0, pd1]

----------------------------------------------------------------------------
(1) HGST HTS545050A7E380
----------------------------------------------------------------------------
Model : HGST HTS545050A7E380
Firmware : GG2OACD0
Serial Number : TE85123RD1S32W
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 3450 hours
Power On Count : 1486 count
Temparature : 31 C (87 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4001h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Read Error Rate
02 100 100 _40 000000000000 Throughput Performance
03 234 234 _33 000E00000001 Spin-Up Time
04 _78 _78 __0 000000008CAD Start/Stop Count
05 100 100 __5 000000000000 Reallocated Sectors Count
07 100 100 _67 000000000000 Seek Error Rate
08 100 100 _40 000000000000 Seek Time Performance
09 _93 _93 __0 000000000D7A Power-On Hours
0A 100 100 _60 000000000000 Spin Retry Count
0C 100 100 __0 0000000005CE Power Cycle Count
BF 100 100 __0 000000000000 G-Sense Error Rate
C0 100 100 __0 000000000014 Power-off Retract Count
C1 _85 _85 __0 000000026715 Load/Unload Cycle Count
C2 193 193 __0 002B000C001F Temperature
C4 100 100 __0 000000000000 Reallocation Event Count
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
DF 100 100 __0 000000000000 Load/Unload Retry Count

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 5445 3835 3352 3352 4431 5333 3257
020: 0003 4000 0004 4747 324F 4430 4430 4847 5354 2048
030: 5453 3534 3530 3530 4137 3830 3830 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1F06 1F06 0000 005E 0048
080: 01FC 0028 746B 7D69 6163 BC49 BC49 6163 007F 0036
090: 0037 4001 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 6003 6003 826C 5000 CCA6
110: F9CE E296 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 000B
130: 0000 0000 2182 1CF1 FA00 4000 4000 0400 0003 0000
140: 0000 0802 0703 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 3232 4243 0000 0000 0000 5DBD 2388 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 DAA5

----------------------------------------------------------------------------
(2) SanDisk SSD i100 24GB
----------------------------------------------------------------------------
Model : SanDisk SSD i100 24GB
Firmware : 11.56.04
Serial Number : 124700117471
Disk Size : 24,0 GB (8,4/24,0/24,0)
Buffer Size : Unknown
Queue Depth : 32
# of Sectors : 46905264
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-2 Revision 3
Transfer Mode : SATA/600
Power On Hours : 629 hours
Power On Count : 1474 count
Temparature : Unknown
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 0000h [OFF]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 __0 000000000000 Reallocated Sectors Count
09 100 100 __0 000000000275 Power-On Hours
0C 100 100 __0 0000000005C2 Power Cycle Count
AB 100 100 __0 000000000000 Unknown
AC 100 100 __0 000000000000 Unknown
AD 100 100 __0 0000000003D1 Unknown
AE 100 100 __0 00000000000F Unknown
BB 100 100 __0 000000000000 Vendor Specific
E6 100 100 __0 000000000CB8 Unknown
E8 100 100 __5 000000000000 Vendor Specific
EA 100 100 __0 0000000007A9 Vendor Specific
F1 100 100 __0 0001EE0C3341 Vendor Specific
F2 100 100 __0 000109469D63 Vendor Specific

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 3132 3437 3030 3131 3734 2020 2020 2020 2020 2020
020: 0000 0000 0000 3131 2E35 3034 3034 5361 6E44 6973
030: 6B20 5353 4420 6931 3030 3447 3447 4220 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8001 4000 2F00
050: 4000 0200 0000 0007 3FFF 003F 003F FC10 00FB 9101
060: B7B0 02CB 0000 0007 0003 0078 0078 0078 0078 5200
070: 0000 0000 0000 0000 0000 050E 050E 0006 0048 0048
080: 03F0 0110 746B 7D09 4123 BC01 BC01 4123 007F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: B7B0 02CB 0000 0000 0000 4000 4000 0000 5001 B448
110: 1449 C5DF 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0004 0001
170: 2020 2020 2020 2020 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 1031 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0008 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 4DA5



__________________________________________________________
# AdwCleaner v3.211 - Report created 04/06/2014 at 14:09:52
# Updated 26/05/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Sima - SIMA
# Running from : C:\Users\Simona\Desktop\adwcleaner_3.211.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Simona\Documents\Optimizer Pro
File Deleted : C:\Users\Simona\AppData\Roaming\LiveSupport.exe_log.txt
File Deleted : C:\Users\Simona\AppData\Roaming\regsvr32.exe_log.txt

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17037


-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2586 octets] - [15/10/2013 20:30:21]
AdwCleaner[R1].txt - [2631 octets] - [04/06/2014 14:05:57]
AdwCleaner[S0].txt - [2689 octets] - [15/10/2013 20:30:55]
AdwCleaner[S1].txt - [2570 octets] - [04/06/2014 14:09:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2630 octets] ##########

[Márty84]

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[sima707]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 4.6.2014
Čas skenování: 19:25:39
Protokol:
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.03.04.09
Databáze rootkitů: v2014.02.20.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Sima

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 256482
Uplynulý čas: 20 min, 54 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 1
PUP.Optional.OpenCandy, C:\Users\Simona\Downloads\DTLite4491-0356.exe, , [0f3ab6495a20db5b7f677ed39a6a728e],

Fyzické sektory: 0
(No malicious items detected)


(end)

[Márty84]

Nalez nechte odstranit, pak MBAM odinstalujte.


Pouzivate antivir?


Dejte novy log z RSIT

a k tomu

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

[sima707]

momentálne používam len obyčajný Windows defenfer....aký by ste mi odporučili??

log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by Sima at 2014-06-05 10:58:27
Microsoft Windows 8.1
System drive C: has 316 GB (70%) free of 452 GB
Total RAM: 3798 MB (31% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:58:38, on 5.6.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
C:\Program Files (x86)\Samsung\Settings\sSettings.exe
C:\Program Files (x86)\ConMet\ConMet.exe
C:\Program Files (x86)\Opera\opera.exe
C:\WINDOWS\syswow64\wwahost.exe
C:\Program Files\trend micro\Sima.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\Microsoft Office\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Remote Mouse] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
O4 - HKCU\..\Run: [ConMet] C:\Program Files (x86)\ConMet\ConMet.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: Virtual Router Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY InfoPoisk LLC - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Easy Launcher - Samsung Electronics CO., LTD. - C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Condusiv Technologies - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SW Update Service (SWUpdateService) - Samsung Electronics CO., LTD. - C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VirtualRouterService (Virtual Router) - Chris Pietschmann (http://pietschsoft.com) - C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12883 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe

winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 95405501104
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
dashost.exe {8df93e7c-d1d3-49a2-bf5afaa9ea1256d0}
"C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\windows\SysWOW64\irstrtsv.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe"

"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\WINDOWS\Explorer.EXE
taskhostex.exe
"C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe"
"C:\Program Files (x86)\Samsung\Settings\sSettings.exe" /s

C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
taskeng.exe {0BB1DD1C-4F94-4073-9BAB-09641FA4FC96}
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Program Files\Samsung\S Agent\CommonAgent.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\rundll32.exe" sbavmon.dll,SBAVMonitor
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\ConMet\ConMet.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe" /min
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe" /SERVICE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Program Files\Samsung\Support Center\GuaranaAgent.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Program Files\Microsoft Office\Office15\MsoSync.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Simona\Desktop\RSITx64.exe"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-04-25 218784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\Microsoft Office\Office15\GROOVEEX.DLL [2014-04-08 2333400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-04-25 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\Microsoft Office\Office15\GROOVEEX.DLL [2014-04-08 1728216]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-10-04 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-10-04 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-10-04 769496]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-06 2862448]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-08-07 13191312]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-08-08 11554688]
"Creative SB Monitoring Utility"=RunDll32 sbavmon.dll,SBAVMonitor []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Remote Mouse"=C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe [2013-11-12 1187840]
"ConMet"=C:\Program Files (x86)\ConMet\ConMet.exe [2014-03-06 4483584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-13 155488]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Virtual Router Manager.lnk - C:\WINDOWS\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-10-04 623616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-04 19:23:35 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-06-04 19:22:23 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-04 19:22:23 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2014-06-04 19:22:23 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-06-04 19:22:23 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2014-06-04 14:06:32 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-06-03 22:25:43 ----D---- C:\Program Files\trend micro
2014-05-28 22:17:48 ----D---- C:\WINDOWS\Minidump
2014-05-19 23:35:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-05-19 23:35:25 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-05-19 23:35:24 ----A---- C:\WINDOWS\system32\twinui.dll
2014-05-19 23:35:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-05-19 23:35:22 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\wups.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-19 23:35:21 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-05-19 23:35:20 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-05-19 23:31:35 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-05-19 23:31:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-05-19 23:31:33 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-05-19 23:31:32 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-05-19 23:29:56 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-05-19 23:29:54 ----A---- C:\WINDOWS\system32\shell32.dll
2014-05-19 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-05-19 23:29:40 ----A---- C:\WINDOWS\system32\wusa.exe
2014-05-19 23:29:28 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-19 23:29:26 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-19 23:29:25 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-19 23:29:02 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-05-19 23:29:02 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-05-19 23:29:02 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-05-19 23:29:02 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-05-18 00:36:16 ----A---- C:\WINDOWS\system32\msrating.dll
2014-05-18 00:28:17 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-05-18 00:28:17 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-05-18 00:28:17 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-05-18 00:27:57 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-05-18 00:27:35 ----A---- C:\WINDOWS\system32\mfps.dll
2014-05-18 00:27:07 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-05-18 00:27:07 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-05-18 00:15:40 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-05-18 00:15:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-05-18 00:15:36 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-05-18 00:15:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-05-18 00:15:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-05-18 00:15:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-05-18 00:15:30 ----A---- C:\WINDOWS\system32\win32k.sys
2014-05-18 00:15:29 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-05-18 00:15:24 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-05-18 00:15:22 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-05-18 00:15:19 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-18 00:15:08 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-05-18 00:15:07 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-05-18 00:15:06 ----A---- C:\WINDOWS\system32\WSService.dll
2014-05-18 00:15:06 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-05-18 00:15:05 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-05-18 00:14:57 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-05-18 00:14:57 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-05-18 00:14:51 ----A---- C:\WINDOWS\system32\wininet.dll
2014-05-18 00:14:50 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-05-18 00:14:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-05-18 00:14:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-05-18 00:14:48 ----A---- C:\WINDOWS\system32\combase.dll
2014-05-18 00:14:43 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-05-18 00:14:43 ----A---- C:\WINDOWS\system32\qedit.dll
2014-05-18 00:14:42 ----A---- C:\WINDOWS\system32\wmp.dll
2014-05-18 00:14:39 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-05-18 00:14:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-05-18 00:14:38 ----A---- C:\WINDOWS\system32\tquery.dll
2014-05-18 00:14:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-18 00:14:35 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-05-18 00:14:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-05-18 00:14:33 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-05-18 00:14:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-05-18 00:14:29 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-05-18 00:14:28 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-05-18 00:14:25 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-05-18 00:14:23 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-05-18 00:14:22 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-05-18 00:14:22 ----A---- C:\WINDOWS\system32\dui70.dll
2014-05-18 00:14:21 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-05-18 00:14:20 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-05-18 00:14:18 ----A---- C:\WINDOWS\system32\webservices.dll
2014-05-18 00:14:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-05-18 00:14:17 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-05-18 00:14:16 ----A---- C:\WINDOWS\system32\winmde.dll
2014-05-18 00:14:16 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-18 00:14:15 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-05-18 00:14:15 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-05-18 00:14:15 ----A---- C:\WINDOWS\system32\msctf.dll
2014-05-18 00:14:14 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-05-18 00:14:14 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-05-18 00:14:14 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-05-18 00:14:13 ----A---- C:\WINDOWS\system32\mispace.dll
2014-05-18 00:14:11 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-05-18 00:14:10 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-05-18 00:14:09 ----A---- C:\WINDOWS\system32\swprv.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-05-18 00:14:08 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-05-18 00:14:07 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-05-18 00:14:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-05-18 00:14:07 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-05-18 00:14:06 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-05-18 00:14:06 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-05-18 00:14:05 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-05-18 00:14:04 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-05-18 00:14:04 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-05-18 00:14:03 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-05-18 00:14:03 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-05-18 00:14:03 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-05-18 00:14:02 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-05-18 00:14:01 ----A---- C:\WINDOWS\system32\winresume.exe
2014-05-18 00:14:01 ----A---- C:\WINDOWS\system32\winload.exe
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\wer.dll
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-05-18 00:14:00 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-05-18 00:13:59 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-05-18 00:13:58 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-05-18 00:13:58 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-05-18 00:13:54 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-05-18 00:13:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-05-18 00:13:53 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-05-18 00:13:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-05-18 00:13:53 ----A---- C:\WINDOWS\system32\mf.dll
2014-05-18 00:13:52 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-05-18 00:13:51 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-05-18 00:13:50 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-05-18 00:13:50 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-05-18 00:13:49 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-05-18 00:13:49 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-05-18 00:13:48 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-05-18 00:13:48 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-05-18 00:13:47 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-05-18 00:13:46 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-05-18 00:13:46 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-05-18 00:13:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-05-18 00:13:45 ----A---- C:\WINDOWS\system32\user32.dll
2014-05-18 00:13:45 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-05-18 00:13:44 ----A---- C:\WINDOWS\system32\hal.dll
2014-05-18 00:13:43 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-05-18 00:13:43 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-05-18 00:13:42 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-05-18 00:13:42 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-05-18 00:13:42 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-05-18 00:13:41 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-05-18 00:13:40 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-05-18 00:13:39 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-05-18 00:13:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-05-18 00:13:38 ----A---- C:\WINDOWS\system32\schannel.dll
2014-05-18 00:13:38 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-05-18 00:13:37 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-05-18 00:13:37 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-05-18 00:13:37 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-05-18 00:13:37 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\recimg.exe
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-05-18 00:13:36 ----A---- C:\WINDOWS\system32\dfp.exe
2014-05-18 00:13:35 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-05-18 00:13:35 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-05-18 00:13:34 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-05-18 00:13:34 ----A---- C:\WINDOWS\system32\lsm.dll
2014-05-18 00:13:34 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-05-18 00:13:33 ----A---- C:\WINDOWS\system32\tdh.dll
2014-05-18 00:13:33 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-05-18 00:13:33 ----A---- C:\WINDOWS\system32\energy.dll
2014-05-18 00:13:32 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-05-18 00:13:31 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-05-18 00:13:31 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-18 00:13:31 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-05-18 00:13:31 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-05-18 00:13:30 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-18 00:13:30 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-05-18 00:13:30 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-05-18 00:13:30 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-05-18 00:13:30 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-05-18 00:13:29 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-05-18 00:13:29 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-05-18 00:13:29 ----A---- C:\WINDOWS\system32\mssph.dll
2014-05-18 00:13:29 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-05-18 00:13:28 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-05-18 00:13:28 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-05-18 00:13:28 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-05-18 00:13:27 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-05-18 00:13:27 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-05-18 00:13:27 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-05-18 00:13:27 ----A---- C:\WINDOWS\system32\stobject.dll
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-18 00:13:26 ----A---- C:\WINDOWS\system32\ci.dll
2014-05-18 00:13:25 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-05-18 00:13:23 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-05-18 00:13:23 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-05-18 00:13:23 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\printui.dll
2014-05-18 00:13:22 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-05-18 00:13:21 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\slc.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\Dism.exe
2014-05-18 00:13:20 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-05-18 00:13:19 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-05-18 00:13:18 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-05-18 00:13:17 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-05-18 00:13:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-05-18 00:13:17 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-05-18 00:13:16 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-05-18 00:13:16 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-05-18 00:13:16 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\VAN.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\osk.exe
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\ninput.dll
2014-05-18 00:13:15 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-05-18 00:13:14 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-18 00:13:14 ----A---- C:\WINDOWS\system32\authz.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-05-18 00:13:13 ----A---- C:\WINDOWS\system32\conhost.exe
2014-05-18 00:13:12 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\themeui.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-05-18 00:13:12 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-05-18 00:13:11 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-05-18 00:13:11 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-05-18 00:13:10 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-05-18 00:13:10 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-05-18 00:13:09 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-05-18 00:13:09 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-05-18 00:13:08 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-05-18 00:13:08 ----A---- C:\WINDOWS\system32\sppc.dll
2014-05-18 00:13:08 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-05-18 00:13:08 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-05-18 00:13:07 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-05-18 00:13:06 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-05-18 00:13:06 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-05-18 00:13:06 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-05-18 00:13:05 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-05-18 00:13:04 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-05-18 00:13:04 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-05-18 00:13:04 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-05-18 00:13:04 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-05-18 00:13:04 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-05-18 00:13:04 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-05-18 00:13:03 ----A---- C:\WINDOWS\system32\gameux.dll
2014-05-18 00:13:02 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-05-18 00:13:02 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-05-18 00:13:02 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-05-18 00:13:02 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-05-18 00:13:02 ----A---- C:\WINDOWS\system32\dwm.exe
2014-05-18 00:13:01 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-05-18 00:13:01 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-05-18 00:13:00 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-05-18 00:12:59 ----AC---- C:\WINDOWS\system32\drivers\rfcomm.sys
2014-05-18 00:12:59 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-05-18 00:12:59 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\smss.exe
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\imm32.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-05-18 00:12:57 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\netid.dll
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-05-18 00:12:56 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\das.dll
2014-05-18 00:12:55 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-05-18 00:12:54 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-05-18 00:12:54 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-05-18 00:12:54 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-05-18 00:12:54 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-05-18 00:12:53 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-05-18 00:12:53 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-05-18 00:12:53 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\newdev.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-05-18 00:12:53 ----A---- C:\WINDOWS\system32\aepic.dll
2014-05-18 00:12:52 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-05-18 00:12:52 ----AC---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2014-05-18 00:12:52 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-05-18 00:12:52 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-05-18 00:12:52 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-05-18 00:12:51 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-05-18 00:12:51 ----A---- C:\WINDOWS\system32\vds.exe
2014-05-18 00:12:51 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-05-18 00:12:51 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-05-18 00:12:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-05-18 00:12:49 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-05-18 00:12:48 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\system32\bcd.dll
2014-05-18 00:12:48 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-05-18 00:12:47 ----A---- C:\WINDOWS\system32\bootux.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\system32\srclient.dll
2014-05-18 00:12:46 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-05-18 00:12:45 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-05-18 00:12:45 ----A---- C:\WINDOWS\system32\samlib.dll
2014-05-18 00:12:45 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-05-18 00:12:45 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-05-18 00:12:44 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-05-18 00:12:44 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-05-18 00:12:44 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-05-18 00:12:43 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-05-18 00:12:43 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-05-18 00:12:43 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-05-18 00:12:42 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-05-18 00:12:42 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-05-18 00:12:42 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-05-18 00:12:41 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-05-18 00:12:40 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-05-18 00:12:40 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-05-18 00:12:39 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-05-18 00:12:38 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-05-18 00:12:38 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\srcore.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-05-18 00:12:37 ----A---- C:\WINDOWS\system32\acppage.dll
2014-05-18 00:12:36 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-05-18 00:12:36 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-05-18 00:12:36 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-05-18 00:12:36 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-05-18 00:12:35 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-05-18 00:12:35 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-05-18 00:12:35 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\system32\slpts.dll
2014-05-18 00:12:34 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-05-18 00:12:33 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\sud.dll
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-05-18 00:12:32 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-18 00:12:31 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-05-18 00:12:30 ----A---- C:\WINDOWS\system32\untfs.dll
2014-05-18 00:12:30 ----A---- C:\WINDOWS\system32\autochk.exe
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-05-18 00:12:29 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-05-18 00:12:29 ----A---- C:\WINDOWS\system32\migisol.dll
2014-05-18 00:12:28 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-05-18 00:12:28 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-05-18 00:12:28 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-05-18 00:12:27 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-05-18 00:12:26 ----AC---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2014-05-18 00:12:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-05-18 00:12:26 ----A---- C:\WINDOWS\system32\cscript.exe
2014-05-18 00:12:25 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-05-18 00:12:24 ----A---- C:\WINDOWS\system32\energytask.dll
2014-05-18 00:12:24 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-05-18 00:12:23 ----A---- C:\WINDOWS\system32\werui.dll
2014-05-18 00:12:23 ----A---- C:\WINDOWS\system32\devinv.dll
2014-05-18 00:12:22 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-05-18 00:12:21 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-05-18 00:12:21 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-05-18 00:12:20 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-05-18 00:12:19 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-05-18 00:12:18 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-05-18 00:12:17 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-05-18 00:12:17 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-05-18 00:12:17 ----A---- C:\WINDOWS\system32\offreg.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-05-18 00:12:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-05-18 00:12:16 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-05-18 00:12:16 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-05-18 00:12:15 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-05-18 00:12:14 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-05-18 00:12:14 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-05-18 00:12:13 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-05-18 00:12:13 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-05-18 00:12:13 ----A---- C:\WINDOWS\system32\winsku.dll
2014-05-18 00:12:13 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-05-18 00:12:13 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-05-18 00:12:12 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-05-18 00:12:12 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-05-18 00:12:11 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-05-18 00:12:11 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-05-18 00:12:10 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-05-18 00:12:10 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-05-18 00:12:09 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-05-18 00:12:08 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-05-18 00:12:06 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-18 00:12:06 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-05-18 00:12:06 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-05-18 00:12:04 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-05-18 00:12:04 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-05-18 00:12:03 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-05-18 00:12:02 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-05-18 00:12:02 ----A---- C:\WINDOWS\system32\syncui.dll
2014-05-18 00:12:02 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-05-18 00:12:01 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-05-18 00:12:00 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-05-18 00:12:00 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-05-18 00:12:00 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-18 00:12:00 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-05-18 00:11:59 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-05-18 00:11:59 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-05-18 00:11:58 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-05-18 00:11:58 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-05-18 00:11:57 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-05-18 00:11:56 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-18 00:11:56 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-18 00:11:56 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-05-18 00:11:55 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-05-18 00:11:55 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-05-18 00:11:54 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-18 00:11:54 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-05-18 00:11:54 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-05-18 00:11:53 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-18 00:11:53 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-18 00:11:53 ----A---- C:\WINDOWS\system32\winbici.dll
2014-05-18 00:11:53 ----A---- C:\WINDOWS\system32\occache.dll
2014-05-18 00:11:53 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-05-18 00:11:52 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-05-18 00:11:52 ----A---- C:\WINDOWS\system32\finger.exe
2014-05-18 00:11:49 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-05-18 00:11:49 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-05-18 00:11:47 ----A---- C:\WINDOWS\system32\srms.dat
2014-05-17 00:12:57 ----D---- C:\Program Files\Microsoft.NET
2014-05-16 22:33:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-16 22:33:43 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-05-16 22:33:43 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-05-16 22:33:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-05-16 22:33:38 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-16 22:33:38 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-05-16 22:33:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-16 22:33:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-05-16 22:33:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-05-16 22:33:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-05-16 22:33:24 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-05-16 22:33:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-05-16 22:33:23 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-16 22:33:22 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-16 22:33:21 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-05-16 22:33:21 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-05-16 22:33:20 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-05-16 22:33:20 ----A---- C:\WINDOWS\system32\authui.dll
2014-05-16 22:33:20 ----A---- C:\WINDOWS\explorer.exe
2014-05-16 22:33:19 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-05-16 22:33:19 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-05-16 22:33:19 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-05-16 22:33:19 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-05-16 22:33:18 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-05-16 22:33:18 ----A---- C:\WINDOWS\system32\ole32.dll
2014-05-16 22:33:18 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-05-16 22:33:17 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-05-16 22:33:17 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-05-16 22:33:17 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-05-16 22:33:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-05-16 22:33:16 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-05-16 22:33:16 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-16 22:33:15 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\system32\localspl.dll
2014-05-16 22:33:14 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-05-16 22:33:13 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-05-16 22:33:12 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-05-16 22:33:12 ----A---- C:\WINDOWS\system32\propsys.dll
2014-05-16 22:33:12 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-05-16 22:33:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-16 22:33:11 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-05-16 22:33:10 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-05-16 22:33:09 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-05-16 22:33:09 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-05-16 22:33:08 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-05-16 22:33:07 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-05-16 22:33:07 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-05-16 22:33:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-05-16 22:33:05 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-05-16 22:33:05 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-05-16 22:33:05 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-05-16 22:33:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-05-16 22:33:04 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-05-16 22:33:03 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-16 22:33:02 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-05-16 22:33:02 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-16 22:33:01 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-05-16 22:33:01 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\userenv.dll
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\pdh.dll
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\Display.dll
2014-05-16 22:33:00 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-05-16 22:32:59 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-05-16 22:32:58 ----A---- C:\WINDOWS\system32\cdd.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\spp.dll
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-05-16 22:32:57 ----A---- C:\WINDOWS\system32\aclui.dll
2014-05-16 22:32:56 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-05-16 22:32:56 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-05-16 22:32:56 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-05-16 22:32:55 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-05-16 22:32:55 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-05-16 22:32:55 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-05-16 22:32:55 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-05-16 22:32:54 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-05-16 22:32:54 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-05-16 22:32:54 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-05-16 22:32:54 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-05-16 22:32:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-05-16 22:32:54 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-05-16 22:32:53 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-05-16 22:32:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-05-16 22:32:52 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-05-16 22:32:52 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-05-16 22:32:52 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-05-16 22:32:51 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-05-16 22:32:50 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-05-16 22:32:49 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-05-16 22:32:49 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-05-16 21:29:26 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-05-16 21:28:46 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-05-16 21:28:45 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-05-16 21:28:43 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-05-16 20:34:07 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-16 20:30:48 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll

======List of files/folders modified in the last 1 month======

2014-06-05 10:58:34 ----D---- C:\WINDOWS\Prefetch
2014-06-05 10:58:27 ----D---- C:\ProgramData\ConMet
2014-06-05 10:55:49 ----D---- C:\Users\Simona\AppData\Roaming\ConMet
2014-06-05 10:54:32 ----D---- C:\ProgramData\WinClon
2014-06-05 10:53:44 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-06-05 10:51:50 ----D---- C:\WINDOWS\Temp
2014-06-05 10:50:34 ----D---- C:\Windows
2014-06-05 10:50:33 ----D---- C:\WINDOWS\system32\drivers
2014-06-05 10:50:33 ----D---- C:\WINDOWS\AppReadiness
2014-06-05 10:42:40 ----D---- C:\Users\Simona\AppData\Roaming\vlc
2014-06-05 10:03:34 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-05 10:00:00 ----D---- C:\WINDOWS\system32\sru
2014-06-04 19:31:37 ----D---- C:\WINDOWS\system32\NDF
2014-06-04 19:22:23 ----RD---- C:\Program Files (x86)
2014-06-04 19:22:23 ----D---- C:\ProgramData\Malwarebytes
2014-06-04 14:31:56 ----D---- C:\WINDOWS\debug
2014-06-04 14:24:23 ----D---- C:\WINDOWS\SoftwareDistribution
2014-06-04 14:20:56 ----D---- C:\Users\Simona\AppData\Roaming\Winamp
2014-06-04 14:20:56 ----D---- C:\Users\Simona\AppData\Roaming\DAEMON Tools Lite
2014-06-04 14:20:47 ----D---- C:\WINDOWS\Inf
2014-06-04 14:12:07 ----D---- C:\AdwCleaner
2014-06-04 14:06:32 ----D---- C:\WINDOWS\SysWOW64
2014-06-04 13:23:41 ----RD---- C:\WINDOWS\System32
2014-06-04 13:23:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-03 22:25:43 ----RD---- C:\Program Files
2014-06-03 10:22:48 ----SHD---- C:\System Volume Information
2014-06-01 10:45:20 ----HD---- C:\Program Files\WindowsApps
2014-05-28 15:38:30 ----D---- C:\WINDOWS\system32\config
2014-05-28 10:47:12 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-24 22:54:10 ----D---- C:\WINDOWS\LiveKernelReports
2014-05-20 15:09:36 ----D---- C:\WINDOWS\rescache
2014-05-20 13:08:46 ----D---- C:\WINDOWS\WinSxS
2014-05-20 13:06:26 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-20 13:06:25 ----D---- C:\Program Files\Windows Defender
2014-05-20 13:06:24 ----RD---- C:\WINDOWS\ToastData
2014-05-20 13:06:24 ----D---- C:\WINDOWS\WinStore
2014-05-20 13:06:24 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2014-05-20 13:06:24 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-20 13:06:23 ----D---- C:\WINDOWS\system32\sk-SK
2014-05-20 13:06:23 ----D---- C:\WINDOWS\apppatch
2014-05-19 23:39:39 ----D---- C:\WINDOWS\CbsTemp
2014-05-18 09:58:37 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-05-18 09:58:33 ----D---- C:\WINDOWS\system32\wbem
2014-05-18 09:58:33 ----D---- C:\WINDOWS\system32\setup
2014-05-18 09:58:33 ----D---- C:\WINDOWS\system32\en-US
2014-05-18 09:58:25 ----D---- C:\Program Files\Internet Explorer
2014-05-18 09:58:25 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-18 09:58:21 ----D---- C:\WINDOWS\system32\drivers\en-US
2014-05-18 09:57:55 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-05-18 09:57:54 ----D---- C:\Program Files\Windows Multimedia Platform
2014-05-18 09:57:54 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-05-18 09:57:54 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-18 09:57:53 ----D---- C:\WINDOWS\MediaViewer
2014-05-18 09:57:53 ----D---- C:\Program Files\Windows Portable Devices
2014-05-18 09:57:53 ----D---- C:\Program Files\Windows Media Player
2014-05-18 09:57:50 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-05-18 09:57:50 ----D---- C:\WINDOWS\servicing
2014-05-18 09:57:49 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-05-18 09:57:49 ----D---- C:\WINDOWS\SYSWOW64\Dism
2014-05-18 09:57:48 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-05-18 09:57:39 ----D---- C:\WINDOWS\sk-SK
2014-05-18 09:57:38 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-05-18 09:57:37 ----D---- C:\WINDOWS\PolicyDefinitions
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\lv-LV
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\hr-HR
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\et-EE
2014-05-18 09:57:36 ----D---- C:\WINDOWS\system32\da-DK
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\Sysprep
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\oobe
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\migration
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\ko-KR
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\it-IT
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\en-GB
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\el-GR
2014-05-18 09:57:35 ----D---- C:\WINDOWS\system32\de-DE
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\zh-TW
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\zh-CN
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\uk-UA
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\sv-SE
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\sl-SI
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\ru-RU
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\pt-PT
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\pl-PL
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\ja-JP
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\hu-HU
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\he-IL
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\fr-FR
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\fi-FI
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\es-ES
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\cs-CZ
2014-05-18 09:57:32 ----D---- C:\WINDOWS\system32\bg-BG
2014-05-18 09:57:31 ----D---- C:\WINDOWS\system32\ro-RO
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\zh-HK
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\tr-TR
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\th-TH
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\nl-NL
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\nb-NO
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\migwiz
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\lt-LT
2014-05-18 09:57:30 ----D---- C:\WINDOWS\system32\ar-SA
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\pt-BR
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\Dism
2014-05-18 09:57:29 ----D---- C:\WINDOWS\system32\Boot
2014-05-18 09:57:14 ----D---- C:\WINDOWS\Camera
2014-05-18 09:57:13 ----RSD---- C:\WINDOWS\Fonts
2014-05-18 09:57:12 ----D---- C:\WINDOWS\FileManager
2014-05-18 09:56:51 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-05-18 00:32:37 ----SH---- C:\WINDOWS\system32\desktop.ini
2014-05-17 19:44:51 ----SHD---- C:\WINDOWS\Installer
2014-05-17 19:44:50 ----SHD---- C:\Config.Msi
2014-05-17 11:04:06 ----RD---- C:\WINDOWS\assembly
2014-05-17 00:16:59 ----D---- C:\ProgramData\Microsoft Help
2014-05-17 00:12:57 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-17 00:12:55 ----D---- C:\Program Files\Common Files\microsoft shared
2014-05-17 00:05:06 ----A---- C:\WINDOWS\win.ini
2014-05-16 23:51:17 ----D---- C:\WINDOWS\system32\MRT
2014-05-16 23:48:11 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-16 21:31:45 ----D---- C:\WINDOWS\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 excsd;ExpressCache Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\excsd.sys [2012-08-17 103248]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-21 283064]
R1 excfs;ExpressCache File System Filter Driver; C:\WINDOWS\system32\DRIVERS\excfs.sys [2012-08-17 23376]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R3 AMPPAL;@oem22.inf,%AMPPAL.SVCDESC%;Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed Virtual Adapter; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-05-21 165344]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2012-07-14 825344]
R3 ETD;@oem7.inf,%SamsungDeviceDesc%;Samsung PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-06 313712]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2012-07-04 55848]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-10-04 4185600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-08-07 4102928]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 irstrtdv;@oem8.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\WINDOWS\System32\drivers\irstrtdv.sys [2012-07-20 43800]
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-09-26 27032]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2014-05-12 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2014-06-05 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2014-05-12 64216]
R3 MEIx64;@oem31.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem34.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-19 3344352]
R3 RadioHIDMini;@oem4.inf,%RadioHIDMini%;Radio HID Mini-driver; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [2012-07-27 23408]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 usb3Hub;@oem27.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-10-09 47072]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-01-31 1200640]
S3 dg_ssudbus;@oem25.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-09-26 39320]
S3 ksaud;@oem39.inf,%KSAUD.SvcDesc%;Creative USB Audio Driver; C:\WINDOWS\system32\drivers\ksaud.sys [2011-09-13 1588608]
S3 Netaapl;@oem18.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\system32\DRIVERS\netaapl64.sys [2013-07-25 23040]
S3 nmwcd;@oem41.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;@oem45.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 rtport;rtport; \??\C:\windows\SysWOW64\drivers\rtport.sys [2012-12-04 15144]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;@oem1.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2013-08-22 33280]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-05-23 143120]
R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2013-05-15 821048]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-05-21 772064]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-08-08 1091520]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-08-08 1112000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 Easy Launcher;Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [2012-08-26 1593976]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-02 626416]
R2 ExpressCache;ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [2012-08-17 102224]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 irstrtsv;Intel(R) Rapid Start Technology Service; C:\windows\SysWOW64\irstrtsv.exe [2012-07-19 193576]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-02 149744]
R2 SWUpdateService;SW Update Service; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [2013-10-21 3018800]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R2 Virtual Router;VirtualRouterService; C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [2013-02-10 12288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-25 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-10-04 279000]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2013-05-04 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-25 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-02 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]

-----------------EOF-----------------

[sima707]

OTL logfile created on: 5.6.2014 11:00:56 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Simona\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17031)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d.M.yyyy

3,71 Gb Total Physical Memory | 1,09 Gb Available Physical Memory | 29,38% Memory free
7,46 Gb Paging File | 4,64 Gb Available in Paging File | 62,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 441,53 Gb Total Space | 308,36 Gb Free Space | 69,84% Space Free | Partition Type: NTFS

Computer Name: SIMA | User Name: Sima | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.06.05 10:47:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Simona\Desktop\OTL.exe
PRC - [2014.05.12 07:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014.05.12 07:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014.05.12 07:24:34 | 006,970,168 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2014.03.06 14:46:19 | 004,483,584 | ---- | M] (Mgr. Tomáš Papoušek) -- C:\Program Files (x86)\ConMet\ConMet.exe
PRC - [2014.02.22 10:00:27 | 000,514,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WWAHost.exe
PRC - [2013.12.18 11:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.11.20 22:19:06 | 000,879,456 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2013.10.21 21:07:30 | 003,018,800 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
PRC - [2013.05.15 22:46:26 | 000,821,048 | ---- | M] (ABBYY InfoPoisk LLC) -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
PRC - [2012.08.26 11:48:58 | 001,593,976 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
PRC - [2012.08.26 11:48:54 | 000,076,920 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
PRC - [2012.08.26 11:48:46 | 002,623,096 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\sSettings.exe
PRC - [2012.08.08 04:23:28 | 001,112,000 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2012.08.08 04:23:08 | 001,091,520 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2012.07.19 19:09:42 | 000,708,648 | ---- | M] (Intel) -- C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
PRC - [2012.07.19 19:09:42 | 000,193,576 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\irstrtsv.exe
PRC - [2012.07.18 03:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012.07.18 03:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012.07.18 03:10:24 | 000,128,896 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2012.07.18 03:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2007.12.06 22:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe


========== Modules (No Company Name) ==========

MOD - [2012.08.26 11:48:58 | 000,110,712 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
MOD - [2012.08.26 11:48:54 | 000,211,064 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
MOD - [2012.08.26 11:48:46 | 000,029,816 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
MOD - [2012.08.26 11:48:40 | 000,091,768 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
MOD - [2012.08.26 11:48:40 | 000,026,232 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014.05.18 00:28:17 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014.03.24 04:31:14 | 000,347,880 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014.03.24 04:31:14 | 000,023,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014.03.08 07:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014.03.06 09:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014.03.06 08:34:46 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014.02.22 17:53:10 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014.02.22 11:57:16 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014.02.22 11:26:58 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014.02.22 11:25:39 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014.02.22 11:25:14 | 000,269,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014.02.22 11:23:58 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014.01.27 17:38:59 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2013.12.10 09:35:18 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013.11.23 06:50:00 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013.09.30 06:16:26 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2013.08.22 14:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013.08.22 13:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013.08.22 13:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013.08.22 13:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013.08.22 13:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013.08.22 13:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013.08.22 12:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013.08.22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013.08.22 12:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013.08.22 11:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013.08.22 11:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013.08.22 11:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013.08.22 11:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013.08.22 11:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013.08.22 11:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013.08.22 11:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013.08.22 11:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013.08.02 13:41:10 | 003,378,416 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2013.08.02 13:40:48 | 000,273,136 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2013.08.02 13:40:34 | 000,626,416 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2013.08.02 13:40:08 | 000,149,744 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2013.05.23 22:12:02 | 000,143,120 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2013.05.21 08:14:18 | 000,772,064 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2012.09.12 18:07:06 | 000,135,984 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012.08.17 10:09:12 | 000,102,224 | ---- | M] (Condusiv Technologies) [Auto | Running] -- C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe -- (ExpressCache)
SRV:64bit: - [2012.04.20 07:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV - [2014.05.13 20:38:13 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.05.12 07:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014.05.12 07:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013.12.18 11:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.10.21 21:07:30 | 003,018,800 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe -- (SWUpdateService)
SRV - [2013.10.04 00:43:02 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013.09.30 06:16:24 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013.08.22 14:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013.08.22 05:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013.08.22 04:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013.05.15 22:46:26 | 000,821,048 | ---- | M] (ABBYY InfoPoisk LLC) [Auto | Running] -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0)
SRV - [2013.05.04 11:45:31 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2013.02.10 16:55:30 | 000,012,288 | ---- | M] (Chris Pietschmann (http://pietschsoft.com)) [Auto | Running] -- C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe -- (Virtual Router)
SRV - [2012.08.26 11:48:58 | 001,593,976 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe -- (Easy Launcher)
SRV - [2012.08.08 04:23:28 | 001,112,000 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2012.08.08 04:23:08 | 001,091,520 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2012.07.19 19:09:42 | 000,193,576 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysWOW64\irstrtsv.exe -- (irstrtsv)
SRV - [2012.07.18 03:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012.07.18 03:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012.07.18 03:10:24 | 000,128,896 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2012.07.18 03:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012.06.11 12:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007.12.06 22:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.06.05 10:51:45 | 000,122,584 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014.05.12 07:26:14 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:64bit: - [2014.05.12 07:25:56 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2014.04.21 15:54:12 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2014.03.24 04:30:57 | 000,257,880 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014.03.24 04:30:57 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014.03.24 04:27:03 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014.03.20 05:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014.03.13 14:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014.03.08 22:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014.03.08 22:35:45 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014.02.22 18:00:25 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014.02.22 17:50:31 | 000,054,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014.02.22 17:49:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014.02.22 17:49:49 | 000,384,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014.02.22 17:49:49 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014.02.22 17:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014.02.22 17:49:47 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014.02.22 17:44:13 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014.02.22 14:14:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014.01.22 08:52:10 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2014.01.22 08:52:10 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2013.12.04 20:41:54 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2013.11.19 18:40:54 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013.11.11 04:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013.11.01 13:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013.10.26 03:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013.10.04 00:42:44 | 004,185,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013.09.30 06:16:23 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013.09.30 06:02:01 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013.09.30 06:01:57 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013.09.26 11:08:22 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2013.09.26 11:08:22 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2013.08.22 15:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013.08.22 15:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013.08.22 14:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013.08.22 14:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013.08.22 14:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013.08.22 14:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013.08.22 14:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013.08.22 14:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013.08.22 14:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013.08.22 14:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013.08.22 14:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013.08.22 14:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013.08.22 14:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013.08.22 14:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013.08.22 14:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013.08.22 14:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013.08.22 14:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013.08.22 14:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013.08.22 14:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013.08.22 14:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013.08.22 14:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013.08.22 14:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013.08.22 14:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013.08.22 14:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013.08.22 14:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013.08.22 14:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013.08.22 14:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013.08.22 14:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013.08.22 14:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013.08.22 13:40:00 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2013.08.22 13:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013.08.22 13:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013.08.22 13:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013.08.22 13:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013.08.22 13:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013.08.22 13:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013.08.22 13:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013.08.22 13:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013.08.22 13:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013.08.22 13:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013.08.22 13:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013.08.22 13:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013.08.22 13:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013.08.22 13:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013.08.22 13:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013.08.22 13:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013.08.22 13:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013.08.22 13:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013.08.22 13:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013.08.22 13:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013.08.22 13:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013.08.22 13:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013.08.22 10:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013.08.19 05:53:34 | 003,344,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:64bit: - [2013.08.13 01:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013.08.10 02:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013.07.30 20:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013.07.25 21:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013.07.25 16:53:46 | 000,023,040 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:64bit: - [2013.06.18 16:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2013.05.21 08:14:00 | 000,165,344 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012.12.13 14:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012.10.09 18:48:48 | 000,188,896 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xHCIPort.sys -- (XHCIPort)
DRV:64bit: - [2012.10.09 18:48:48 | 000,047,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usb3Hub.sys -- (usb3Hub)
DRV:64bit: - [2012.08.21 14:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012.08.17 10:09:24 | 000,103,248 | ---- | M] (Condusiv Technologies) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\excsd.sys -- (excsd)
DRV:64bit: - [2012.08.17 10:09:24 | 000,023,376 | ---- | M] (Condusiv Technologies) [File_System | System | Running] -- C:\Windows\SysNative\drivers\excfs.sys -- (excfs)
DRV:64bit: - [2012.08.06 04:41:28 | 000,313,712 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2012.07.31 04:22:00 | 000,645,952 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012.07.27 14:00:03 | 000,023,408 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioHIDMini.sys -- (RadioHIDMini)
DRV:64bit: - [2012.07.20 10:09:40 | 000,043,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\irstrtdv.sys -- (irstrtdv)
DRV:64bit: - [2012.07.14 10:36:30 | 000,825,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2012.07.04 05:31:40 | 000,055,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2012.07.03 01:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.06.19 00:40:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2012.06.11 12:33:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2012.01.09 18:28:20 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2012.01.09 18:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2012.01.09 18:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2012.01.09 18:28:18 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.09.13 15:45:06 | 001,588,608 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ksaud.sys -- (ksaud)
DRV:64bit: - [2011.07.22 18:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011.07.12 23:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV - [2012.12.04 07:00:31 | 000,015,144 | ---- | M] (Windows (R) 2003 DDK 3790 provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\rtport.sys -- (rtport)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1228448097-215964479-906076251-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1228448097-215964479-906076251-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-1228448097-215964479-906076251-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1228448097-215964479-906076251-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)


[2013.10.17 12:25:52 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://samsung13.msn.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll
CHR - plugin: Norton Confidential (Enabled) = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.0.0.72_0\npcoplgn.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - Extension: Dokumenty Google = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.6_0\
CHR - Extension: Disk Google = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: HÄľadaĹĄ v Google = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.35_0\
CHR - Extension: Peňaženka Google = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013.10.23 20:20:30 | 000,000,035 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [Creative SB Monitoring Utility] C:\WINDOWS\SysNative\SBAVMon.dll (Creative Technology Ltd.)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKU\S-1-5-21-1228448097-215964479-906076251-1001..\Run: [ConMet] C:\Program Files (x86)\ConMet\ConMet.exe (Mgr. Tomáš Papoušek)
O4 - HKU\S-1-5-21-1228448097-215964479-906076251-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-1228448097-215964479-906076251-1001..\Run: [Remote Mouse] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe (RemoteMouse.net)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE6BF458-82D4-437C-B691-E4788B1D8860}: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E4AC0910-DBAB-4E8D-9F4C-4BF25067BAB5}: DhcpNameServer = 193.87.84.3 194.160.130.21
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{1b60e964-c8bb-11e3-bed3-c8f7334eab64}\Shell - "" = AutoRun
O33 - MountPoints2\{1b60e964-c8bb-11e3-bed3-c8f7334eab64}\Shell\AutoRun\command - "" = "E:\VLS\start.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.06.05 10:46:59 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Simona\Desktop\OTL.exe
[2014.06.04 19:23:35 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2014.06.04 19:22:23 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2014.06.04 19:22:23 | 000,064,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2014.06.04 19:22:23 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2014.06.04 19:22:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014.06.04 14:06:32 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\SysWow64\sqlite3.dll
[2014.06.03 22:25:43 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.06.01 23:54:01 | 000,000,000 | ---D | C] -- C:\Users\Simona\Desktop\nice
[2014.05.28 22:17:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2014.05.27 22:13:22 | 000,000,000 | ---D | C] -- C:\Users\Simona\Desktop\PDF HARVEY 2014
[2014.05.19 23:35:25 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2014.05.19 23:35:24 | 013,288,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2014.05.19 23:35:23 | 011,792,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2014.05.19 23:35:22 | 001,705,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2014.05.19 23:35:22 | 000,921,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2014.05.19 23:35:22 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2014.05.19 23:35:22 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2014.05.19 23:35:21 | 001,054,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2014.05.19 23:35:21 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2014.05.19 23:35:21 | 000,827,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2014.05.19 23:35:21 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2014.05.19 23:35:21 | 000,555,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2014.05.19 23:35:21 | 000,419,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2014.05.19 23:35:21 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2014.05.19 23:35:21 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll
[2014.05.19 23:35:21 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014.05.19 23:35:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2014.05.19 23:35:21 | 000,054,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2014.05.19 23:35:20 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll
[2014.05.19 23:35:20 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll
[2014.05.19 23:35:20 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll
[2014.05.19 23:35:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll
[2014.05.19 23:35:20 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSReset.exe
[2014.05.19 23:35:20 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe
[2014.05.19 23:35:20 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe
[2014.05.19 23:35:20 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll
[2014.05.19 23:31:35 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014.05.19 23:31:33 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014.05.19 23:29:40 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wusa.exe
[2014.05.19 23:29:40 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wusa.exe
[2014.05.19 23:29:28 | 000,257,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys
[2014.05.19 23:29:26 | 000,123,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys
[2014.05.19 23:29:25 | 000,035,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys
[2014.05.19 23:29:02 | 000,086,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mrt_map.dll
[2014.05.19 23:29:02 | 000,080,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mrt_map.dll
[2014.05.19 23:29:02 | 000,028,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mrt100.dll
[2014.05.19 23:29:02 | 000,026,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mrt100.dll
[2014.05.18 00:36:16 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014.05.18 00:28:17 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014.05.18 00:28:17 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014.05.18 00:28:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollectorres.dll
[2014.05.18 00:27:57 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014.05.18 00:27:35 | 000,233,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2014.05.18 00:27:07 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014.05.18 00:27:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014.05.18 00:15:36 | 001,967,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014.05.18 00:15:35 | 002,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014.05.18 00:15:32 | 005,784,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014.05.18 00:15:08 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014.05.18 00:15:07 | 011,742,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\glcndFilter.dll
[2014.05.18 00:15:06 | 003,394,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2014.05.18 00:15:06 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OobeFldr.dll
[2014.05.18 00:15:05 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OobeFldr.dll
[2014.05.18 00:14:57 | 008,946,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\glcndFilter.dll
[2014.05.18 00:14:57 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014.05.18 00:14:50 | 002,142,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2014.05.18 00:14:49 | 008,874,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2014.05.18 00:14:48 | 002,144,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2014.05.18 00:14:48 | 001,927,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2014.05.18 00:14:43 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2014.05.18 00:14:43 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2014.05.18 00:14:42 | 013,933,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2014.05.18 00:14:39 | 001,435,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2014.05.18 00:14:39 | 001,374,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2014.05.18 00:14:38 | 003,494,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2014.05.18 00:14:37 | 012,027,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2014.05.18 00:14:35 | 011,776,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2014.05.18 00:14:33 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014.05.18 00:14:33 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014.05.18 00:14:29 | 002,368,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2014.05.18 00:14:28 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2014.05.18 00:14:25 | 002,643,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2014.05.18 00:14:23 | 002,943,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wpc.dll
[2014.05.18 00:14:22 | 001,728,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dui70.dll
[2014.05.18 00:14:22 | 001,716,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2014.05.18 00:14:20 | 002,574,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2014.05.18 00:14:18 | 002,843,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014.05.18 00:14:18 | 001,445,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\webservices.dll
[2014.05.18 00:14:17 | 001,132,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Globalization.dll
[2014.05.18 00:14:16 | 002,100,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlowUI.dll
[2014.05.18 00:14:16 | 001,399,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2014.05.18 00:14:15 | 002,588,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2014.05.18 00:14:15 | 001,290,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2014.05.18 00:14:15 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014.05.18 00:14:14 | 001,640,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2014.05.18 00:14:14 | 001,341,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dui70.dll
[2014.05.18 00:14:13 | 001,287,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2014.05.18 00:14:13 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2014.05.18 00:14:13 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msTextPrediction.dll
[2014.05.18 00:14:11 | 000,647,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2014.05.18 00:14:10 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2014.05.18 00:14:08 | 001,727,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2014.05.18 00:14:08 | 001,206,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2014.05.18 00:14:08 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Globalization.dll
[2014.05.18 00:14:07 | 001,215,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2014.05.18 00:14:07 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2014.05.18 00:14:07 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2014.05.18 00:14:06 | 002,648,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebSync.dll
[2014.05.18 00:14:06 | 000,800,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2014.05.18 00:14:05 | 001,496,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2014.05.18 00:14:05 | 001,000,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2014.05.18 00:14:05 | 000,997,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2014.05.18 00:14:05 | 000,461,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2014.05.18 00:14:05 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWWIN.EXE
[2014.05.18 00:14:04 | 001,077,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webservices.dll
[2014.05.18 00:14:04 | 000,410,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2014.05.18 00:14:04 | 000,407,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2014.05.18 00:14:04 | 000,369,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2014.05.18 00:14:04 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DWWIN.EXE
[2014.05.18 00:14:03 | 002,825,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2014.05.18 00:14:03 | 000,825,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2014.05.18 00:14:02 | 002,410,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2014.05.18 00:14:01 | 001,659,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2014.05.18 00:14:01 | 001,519,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2014.05.18 00:14:01 | 001,487,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2014.05.18 00:14:01 | 001,356,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2014.05.18 00:14:00 | 000,791,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2014.05.18 00:14:00 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll
[2014.05.18 00:14:00 | 000,526,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2014.05.18 00:14:00 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WofTasks.dll
[2014.05.18 00:13:59 | 001,929,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setupapi.dll
[2014.05.18 00:13:59 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2014.05.18 00:13:59 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DfpCommon.dll
[2014.05.18 00:13:58 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2014.05.18 00:13:54 | 001,621,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RacEngn.dll
[2014.05.18 00:13:53 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2014.05.18 00:13:53 | 000,609,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2014.05.18 00:13:53 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2014.05.18 00:13:53 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe
[2014.05.18 00:13:52 | 001,011,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2014.05.18 00:13:51 | 000,422,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2014.05.18 00:13:50 | 001,653,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2014.05.18 00:13:50 | 000,650,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2014.05.18 00:13:50 | 000,645,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2014.05.18 00:13:50 | 000,569,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2014.05.18 00:13:50 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2014.05.18 00:13:49 | 002,760,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpccpl.dll
[2014.05.18 00:13:49 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2014.05.18 00:13:48 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2014.05.18 00:13:47 | 002,220,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Wpc.dll
[2014.05.18 00:13:47 | 001,392,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2014.05.18 00:13:46 | 002,428,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2014.05.18 00:13:46 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll
[2014.05.18 00:13:45 | 001,519,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2014.05.18 00:13:45 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2014.05.18 00:13:45 | 000,518,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2014.05.18 00:13:44 | 001,757,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2014.05.18 00:13:44 | 000,881,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2014.05.18 00:13:44 | 000,424,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2014.05.18 00:13:44 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2014.05.18 00:13:43 | 002,395,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2014.05.18 00:13:42 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2014.05.18 00:13:42 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014.05.18 00:13:42 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WofUtil.dll
[2014.05.18 00:13:40 | 000,477,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2014.05.18 00:13:40 | 000,391,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MMDevAPI.dll
[2014.05.18 00:13:40 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrrun.dll
[2014.05.18 00:13:40 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrrun.dll
[2014.05.18 00:13:39 | 001,206,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Taskmgr.exe
[2014.05.18 00:13:39 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2014.05.18 00:13:39 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2014.05.18 00:13:39 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppReadiness.dll
[2014.05.18 00:13:38 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll
[2014.05.18 00:13:37 | 001,374,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2014.05.18 00:13:37 | 001,258,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RacEngn.dll
[2014.05.18 00:13:37 | 001,063,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Taskmgr.exe
[2014.05.18 00:13:37 | 000,551,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2014.05.18 00:13:36 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perftrack.dll
[2014.05.18 00:13:36 | 000,707,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2014.05.18 00:13:36 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\recimg.exe
[2014.05.18 00:13:36 | 000,307,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2014.05.18 00:13:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dfp.exe
[2014.05.18 00:13:35 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2014.05.18 00:13:35 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2014.05.18 00:13:35 | 000,669,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2014.05.18 00:13:34 | 001,428,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe
[2014.05.18 00:13:34 | 000,710,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsm.dll
[2014.05.18 00:13:34 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2014.05.18 00:13:33 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2014.05.18 00:13:33 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll
[2014.05.18 00:13:33 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energy.dll
[2014.05.18 00:13:31 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\workfolderssvc.dll
[2014.05.18 00:13:31 | 001,403,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2014.05.18 00:13:31 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DismApi.dll
[2014.05.18 00:13:31 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2014.05.18 00:13:30 | 000,745,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2014.05.18 00:13:30 | 000,384,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2014.05.18 00:13:30 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll
[2014.05.18 00:13:29 | 000,441,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll
[2014.05.18 00:13:29 | 000,388,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcryptprimitives.dll
[2014.05.18 00:13:29 | 000,372,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2014.05.18 00:13:29 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2014.05.18 00:13:28 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werconcpl.dll
[2014.05.18 00:13:28 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll
[2014.05.18 00:13:28 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\thumbcache.dll
[2014.05.18 00:13:27 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll
[2014.05.18 00:13:26 | 001,791,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2014.05.18 00:13:26 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctfuimanager.dll
[2014.05.18 00:13:26 | 000,531,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2014.05.18 00:13:26 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2014.05.18 00:13:25 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014.05.18 00:13:23 | 000,716,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll
[2014.05.18 00:13:23 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msctfuimanager.dll
[2014.05.18 00:13:23 | 000,244,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2014.05.18 00:13:22 | 001,185,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\printui.dll
[2014.05.18 00:13:22 | 000,761,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2014.05.18 00:13:22 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2014.05.18 00:13:22 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcli.dll
[2014.05.18 00:13:22 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSClient.dll
[2014.05.18 00:13:22 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2014.05.18 00:13:21 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenter.dll
[2014.05.18 00:13:21 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vmrdvcore.dll
[2014.05.18 00:13:21 | 000,336,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcryptprimitives.dll
[2014.05.18 00:13:21 | 000,317,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2014.05.18 00:13:21 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSClient.dll
[2014.05.18 00:13:20 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmIndexer.dll
[2014.05.18 00:13:20 | 000,546,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2014.05.18 00:13:20 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Dism.exe
[2014.05.18 00:13:20 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Vpn.dll
[2014.05.18 00:13:20 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slc.dll
[2014.05.18 00:13:19 | 000,912,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nettrace.dll
[2014.05.18 00:13:19 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll
[2014.05.18 00:13:18 | 000,609,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2014.05.18 00:13:17 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmredir.dll
[2014.05.18 00:13:16 | 001,008,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMM.dll
[2014.05.18 00:13:16 | 000,324,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2014.05.18 00:13:15 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\osk.exe
[2014.05.18 00:13:15 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VAN.dll
[2014.05.18 00:13:15 | 000,388,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ninput.dll
[2014.05.18 00:13:15 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputSwitch.dll
[2014.05.18 00:13:14 | 000,372,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2014.05.18 00:13:14 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authz.dll
[2014.05.18 00:13:13 | 002,288,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncCenter.dll
[2014.05.18 00:13:13 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskeng.exe
[2014.05.18 00:13:13 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\conhost.exe
[2014.05.18 00:13:13 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2014.05.18 00:13:12 | 002,862,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themeui.dll
[2014.05.18 00:13:12 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdbui.dll
[2014.05.18 00:13:12 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcredprov.dll
[2014.05.18 00:13:12 | 000,258,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2014.05.18 00:13:12 | 000,123,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll
[2014.05.18 00:13:12 | 000,105,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2014.05.18 00:13:11 | 003,596,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcore.dll
[2014.05.18 00:13:11 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DismApi.dll
[2014.05.18 00:13:11 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2014.05.18 00:13:11 | 000,289,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sqmapi.dll
[2014.05.18 00:13:10 | 002,811,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themeui.dll
[2014.05.18 00:13:10 | 000,285,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2014.05.18 00:13:10 | 000,210,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVol.exe
[2014.05.18 00:13:10 | 000,089,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2014.05.18 00:13:09 | 000,559,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2014.05.18 00:13:09 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmIndexer.dll
[2014.05.18 00:13:08 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014.05.18 00:13:08 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Dism.exe
[2014.05.18 00:13:08 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveShell.dll
[2014.05.18 00:13:08 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppc.dll
[2014.05.18 00:13:07 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2014.05.18 00:13:07 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputSwitch.dll
[2014.05.18 00:13:07 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcrypt.dll
[2014.05.18 00:13:06 | 000,591,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepdu.dll
[2014.05.18 00:13:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2014.05.18 00:13:06 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clrhost.dll
[2014.05.18 00:13:05 | 001,144,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2014.05.18 00:13:05 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2014.05.18 00:13:05 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WLanConn.dll
[2014.05.18 00:13:05 | 000,448,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VAN.dll
[2014.05.18 00:13:05 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PkgMgr.exe
[2014.05.18 00:13:05 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppc.dll
[2014.05.18 00:13:04 | 000,779,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\osk.exe
[2014.05.18 00:13:04 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2014.05.18 00:13:04 | 000,236,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2014.05.18 00:13:04 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscinterop.dll
[2014.05.18 00:13:04 | 000,032,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ploptin.dll
[2014.05.18 00:13:03 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gameux.dll
[2014.05.18 00:13:03 | 002,165,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncCenter.dll
[2014.05.18 00:13:03 | 000,797,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PurchaseWindowsLicense.dll
[2014.05.18 00:13:03 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SkyDriveShell.dll
[2014.05.18 00:13:02 | 000,943,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WlanMM.dll
[2014.05.18 00:13:02 | 000,722,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsAnytimeUpgradeui.exe
[2014.05.18 00:13:02 | 000,693,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcfg.dll
[2014.05.18 00:13:02 | 000,506,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2014.05.18 00:13:02 | 000,325,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2014.05.18 00:13:02 | 000,180,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVol.exe
[2014.05.18 00:13:02 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwm.exe
[2014.05.18 00:13:02 | 000,083,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhost.exe
[2014.05.18 00:13:01 | 000,935,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasgcw.dll
[2014.05.18 00:13:01 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmdskmgr.dll
[2014.05.18 00:13:01 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll
[2014.05.18 00:13:01 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2014.05.18 00:13:00 | 003,085,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpcore.dll
[2014.05.18 00:13:00 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srchadmin.dll
[2014.05.18 00:13:00 | 000,170,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscapi.dll
[2014.05.18 00:13:00 | 000,139,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2014.05.18 00:12:59 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ninput.dll
[2014.05.18 00:12:59 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2014.05.18 00:12:59 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2014.05.18 00:12:59 | 000,151,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2014.05.18 00:12:59 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clrhost.dll
[2014.05.18 00:12:57 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RASMM.dll
[2014.05.18 00:12:57 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2014.05.18 00:12:57 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsqmcons.exe
[2014.05.18 00:12:57 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BioCredProv.dll
[2014.05.18 00:12:57 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVolSSO.dll
[2014.05.18 00:12:57 | 000,209,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imm32.dll
[2014.05.18 00:12:57 | 000,188,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2014.05.18 00:12:57 | 000,142,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smss.exe
[2014.05.18 00:12:57 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AltTab.dll
[2014.05.18 00:12:56 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\timedate.cpl
[2014.05.18 00:12:56 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcpl.dll
[2014.05.18 00:12:56 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsbas.dll
[2014.05.18 00:12:56 | 000,232,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sqmapi.dll
[2014.05.18 00:12:56 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2014.05.18 00:12:56 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netid.dll
[2014.05.18 00:12:56 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fsutil.exe
[2014.05.18 00:12:55 | 000,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sdclt.exe
[2014.05.18 00:12:55 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\das.dll
[2014.05.18 00:12:55 | 000,397,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sharemediacpl.dll
[2014.05.18 00:12:55 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014.05.18 00:12:55 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2014.05.18 00:12:55 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpioclx.sys
[2014.05.18 00:12:55 | 000,080,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhostex.exe
[2014.05.18 00:12:55 | 000,043,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudNotifications.exe
[2014.05.18 00:12:54 | 000,924,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys
[2014.05.18 00:12:54 | 000,660,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2014.05.18 00:12:54 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserLanguagesCpl.dll
[2014.05.18 00:12:54 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fsutil.exe
[2014.05.18 00:12:54 | 000,041,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudNotifications.exe
[2014.05.18 00:12:53 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\zipfldr.dll
[2014.05.18 00:12:53 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2014.05.18 00:12:53 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\newdev.dll
[2014.05.18 00:12:53 | 000,275,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powrprof.dll
[2014.05.18 00:12:53 | 000,140,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscapi.dll
[2014.05.18 00:12:53 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2014.05.18 00:12:53 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2014.05.18 00:12:53 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BasicRender.sys
[2014.05.18 00:12:52 | 002,537,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gameux.dll
[2014.05.18 00:12:52 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BthLEEnum.sys
[2014.05.18 00:12:52 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVolSSO.dll
[2014.05.18 00:12:52 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmvdsitf.dll
[2014.05.18 00:12:52 | 000,079,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2014.05.18 00:12:51 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\timedate.cpl
[2014.05.18 00:12:51 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwizeng.dll
[2014.05.18 00:12:51 | 000,137,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2014.05.18 00:12:51 | 000,101,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RestoreOptIn.exe
[2014.05.18 00:12:50 | 000,488,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2014.05.18 00:12:50 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wow64win.dll
[2014.05.18 00:12:50 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApiPublic.dll
[2014.05.18 00:12:50 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MicrosoftAccountTokenProvider.dll
[2014.05.18 00:12:50 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-kernel-power-events.dll
[2014.05.18 00:12:50 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContent.dll
[2014.05.18 00:12:50 | 000,032,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserAccountBroker.exe
[2014.05.18 00:12:49 | 000,835,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasgcw.dll
[2014.05.18 00:12:49 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WLanConn.dll
[2014.05.18 00:12:49 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2014.05.18 00:12:48 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srchadmin.dll
[2014.05.18 00:12:48 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dot3mm.dll
[2014.05.18 00:12:48 | 000,094,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcd.dll
[2014.05.18 00:12:48 | 000,089,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RestoreOptIn.exe
[2014.05.18 00:12:48 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2014.05.18 00:12:48 | 000,029,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserAccountBroker.exe
[2014.05.18 00:12:47 | 003,312,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bootux.dll
[2014.05.18 00:12:47 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\newdev.dll
[2014.05.18 00:12:47 | 000,131,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2014.05.18 00:12:47 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAMM.dll
[2014.05.18 00:12:47 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscinterop.dll
[2014.05.18 00:12:46 | 000,079,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcd.dll
[2014.05.18 00:12:46 | 000,071,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpfve.sys
[2014.05.18 00:12:46 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srclient.dll
[2014.05.18 00:12:45 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cleanmgr.exe
[2014.05.18 00:12:45 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cleanmgr.exe
[2014.05.18 00:12:45 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2014.05.18 00:12:45 | 000,054,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys
[2014.05.18 00:12:44 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpchttp.dll
[2014.05.18 00:12:43 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netiohlp.dll
[2014.05.18 00:12:43 | 000,189,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UCX01000.SYS
[2014.05.18 00:12:43 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2014.05.18 00:12:43 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2014.05.18 00:12:43 | 000,162,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2014.05.18 00:12:42 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\korwbrkr.dll
[2014.05.18 00:12:42 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netid.dll
[2014.05.18 00:12:42 | 000,036,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2014.05.18 00:12:41 | 000,033,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2014.05.18 00:12:40 | 000,260,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BioCredProv.dll
[2014.05.18 00:12:40 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmvdsitf.dll
[2014.05.18 00:12:38 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netiohlp.dll
[2014.05.18 00:12:37 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srcore.dll
[2014.05.18 00:12:37 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll
[2014.05.18 00:12:37 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudStorageWizard.exe
[2014.05.18 00:12:37 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acppage.dll
[2014.05.18 00:12:37 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014.05.18 00:12:36 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrobj.dll
[2014.05.18 00:12:36 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmdskmgr.dll
[2014.05.18 00:12:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2014.05.18 00:12:35 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rpchttp.dll
[2014.05.18 00:12:35 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2014.05.18 00:12:34 | 001,152,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscui.cpl
[2014.05.18 00:12:34 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MicrosoftAccountTokenProvider.dll
[2014.05.18 00:12:34 | 000,038,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContentServer.exe
[2014.05.18 00:12:34 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbrand.dll
[2014.05.18 00:12:34 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slpts.dll
[2014.05.18 00:12:33 | 000,902,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autoconv.exe
[2014.05.18 00:12:33 | 000,557,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PrintDialogs.dll
[2014.05.18 00:12:33 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe
[2014.05.18 00:12:33 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wbadmin.exe
[2014.05.18 00:12:33 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApiPublic.dll
[2014.05.18 00:12:33 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2014.05.18 00:12:33 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netplwiz.dll
[2014.05.18 00:12:33 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2014.05.18 00:12:33 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\acppage.dll
[2014.05.18 00:12:32 | 000,874,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autofmt.exe
[2014.05.18 00:12:32 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sud.dll
[2014.05.18 00:12:32 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Sockets.PushEnabledApplication.dll
[2014.05.18 00:12:32 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Renewal.dll
[2014.05.18 00:12:32 | 000,028,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2014.05.18 00:12:31 | 001,057,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\printui.dll
[2014.05.18 00:12:31 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcredprov.dll
[2014.05.18 00:12:31 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrobj.dll
[2014.05.18 00:12:31 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdboot.exe
[2014.05.18 00:12:31 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppnp.dll
[2014.05.18 00:12:31 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BootMenuUX.dll
[2014.05.18 00:12:31 | 000,027,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe
[2014.05.18 00:12:30 | 000,890,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autochk.exe
[2014.05.18 00:12:30 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2014.05.18 00:12:29 | 000,780,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autofmt.exe
[2014.05.18 00:12:29 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PkgMgr.exe
[2014.05.18 00:12:29 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\migisol.dll

[sima707]

[2014.05.18 00:12:29 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spbcd.dll
[2014.05.18 00:12:29 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setbcdlocale.dll
[2014.05.18 00:12:29 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014.05.18 00:12:29 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winbrand.dll
[2014.05.18 00:12:29 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\slpts.dll
[2014.05.18 00:12:28 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autochk.exe
[2014.05.18 00:12:28 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2014.05.18 00:12:28 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAConn.dll
[2014.05.18 00:12:27 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autoconv.exe
[2014.05.18 00:12:27 | 000,439,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2014.05.18 00:12:27 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IdCtrls.dll
[2014.05.18 00:12:27 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2014.05.18 00:12:27 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsAnytimeUpgradeResults.exe
[2014.05.18 00:12:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhevents.dll
[2014.05.18 00:12:27 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UXInit.dll
[2014.05.18 00:12:26 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscript.exe
[2014.05.18 00:12:26 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsutil.dll
[2014.05.18 00:12:26 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthBroker.dll
[2014.05.18 00:12:26 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spcompat.dll
[2014.05.18 00:12:26 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Sockets.PushEnabledApplication.dll
[2014.05.18 00:12:26 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StorageContextHandler.dll
[2014.05.18 00:12:26 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\watchdog.sys
[2014.05.18 00:12:25 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsAnytimeUpgrade.exe
[2014.05.18 00:12:24 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwizeng.dll
[2014.05.18 00:12:24 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diskpart.exe
[2014.05.18 00:12:24 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spbcd.dll
[2014.05.18 00:12:24 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energytask.dll
[2014.05.18 00:12:23 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2014.05.18 00:12:23 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2014.05.18 00:12:22 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powercfg.exe
[2014.05.18 00:12:21 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sud.dll
[2014.05.18 00:12:21 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RelPost.exe
[2014.05.18 00:12:20 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rstrui.exe
[2014.05.18 00:12:20 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingMonitor.dll
[2014.05.18 00:12:20 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnpclean.dll
[2014.05.18 00:12:20 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceassociation.dll
[2014.05.18 00:12:19 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcli.dll
[2014.05.18 00:12:19 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2014.05.18 00:12:19 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingMonitor.dll
[2014.05.18 00:12:19 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dasHost.exe
[2014.05.18 00:12:18 | 001,136,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscui.cpl
[2014.05.18 00:12:18 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srrstr.dll
[2014.05.18 00:12:17 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offreg.dll
[2014.05.18 00:12:17 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offreg.dll
[2014.05.18 00:12:17 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgentc.exe
[2014.05.18 00:12:16 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dfrgui.exe
[2014.05.18 00:12:16 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintDialogs.dll
[2014.05.18 00:12:16 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2014.05.18 00:12:16 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winsku.dll
[2014.05.18 00:12:16 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionQueue.dll
[2014.05.18 00:12:16 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudStorageWizard.exe
[2014.05.18 00:12:16 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SSShim.dll
[2014.05.18 00:12:16 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IdCtrls.dll
[2014.05.18 00:12:15 | 000,559,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserLanguagesCpl.dll
[2014.05.18 00:12:15 | 000,468,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.Handlers.dll
[2014.05.18 00:12:15 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2014.05.18 00:12:15 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2014.05.18 00:12:15 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\powercfg.exe
[2014.05.18 00:12:15 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf3216.dll
[2014.05.18 00:12:15 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll
[2014.05.18 00:12:15 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msshooks.dll
[2014.05.18 00:12:14 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\migisol.dll
[2014.05.18 00:12:14 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\f3ahvoas.dll
[2014.05.18 00:12:13 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dfrgui.exe
[2014.05.18 00:12:13 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsku.dll
[2014.05.18 00:12:13 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshom.ocx
[2014.05.18 00:12:13 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SrTasks.exe
[2014.05.18 00:12:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgentc.exe
[2014.05.18 00:12:12 | 002,566,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2014.05.18 00:12:12 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsdyn.dll
[2014.05.18 00:12:12 | 000,183,808 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Defrag.exe
[2014.05.18 00:12:12 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2014.05.18 00:12:12 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AepRoam.dll
[2014.05.18 00:12:12 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContentHost.dll
[2014.05.18 00:12:11 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2014.05.18 00:12:11 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\diskpart.exe
[2014.05.18 00:12:10 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cscript.exe
[2014.05.18 00:12:10 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxshared.dll
[2014.05.18 00:12:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msshooks.dll
[2014.05.18 00:12:08 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2014.05.18 00:12:08 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scavengeui.dll
[2014.05.18 00:12:08 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConfigureExpandedStorage.dll
[2014.05.18 00:12:08 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll
[2014.05.18 00:12:06 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2014.05.18 00:12:06 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014.05.18 00:12:06 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-session-winsta-l1-1-0.dll
[2014.05.18 00:12:04 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2014.05.18 00:12:04 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\setupugc.exe
[2014.05.18 00:12:03 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BulkOperationHost.exe
[2014.05.18 00:12:02 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\syncui.dll
[2014.05.18 00:12:02 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UXInit.dll
[2014.05.18 00:12:02 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncPolicy.dll
[2014.05.18 00:12:01 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\finger.exe
[2014.05.18 00:12:00 | 002,544,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2014.05.18 00:12:00 | 000,761,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkfoldersControl.dll
[2014.05.18 00:12:00 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpdxm.dll
[2014.05.18 00:12:00 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncPolicy.dll
[2014.05.18 00:11:59 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GlobCollationHost.dll
[2014.05.18 00:11:59 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GlobCollationHost.dll
[2014.05.18 00:11:59 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ocsetapi.dll
[2014.05.18 00:11:59 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ocsetapi.dll
[2014.05.18 00:11:59 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageContextHandler.dll
[2014.05.18 00:11:59 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-session-winsta-l1-1-0.dll
[2014.05.18 00:11:58 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitagent.exe
[2014.05.18 00:11:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dataclen.dll
[2014.05.18 00:11:57 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\korwbrkr.dll
[2014.05.18 00:11:56 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shsetup.dll
[2014.05.18 00:11:56 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-kernel32-package-l1-1-1.dll
[2014.05.18 00:11:56 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-kernel32-package-l1-1-1.dll
[2014.05.18 00:11:55 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bthprops.cpl
[2014.05.18 00:11:55 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dataclen.dll
[2014.05.18 00:11:55 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsvcctl.dll
[2014.05.18 00:11:54 | 000,527,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2014.05.18 00:11:54 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetupproxyserv.dll
[2014.05.18 00:11:54 | 000,008,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-ntuser-private-l1-1-1.dll
[2014.05.18 00:11:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shimeng.dll
[2014.05.18 00:11:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx
[2014.05.18 00:11:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll
[2014.05.18 00:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-ntuser-private-l1-1-0.dll
[2014.05.18 00:11:53 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\occache.dll
[2014.05.18 00:11:53 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2014.05.18 00:11:53 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2014.05.18 00:11:53 | 000,008,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-ntuser-private-l1-1-1.dll
[2014.05.18 00:11:53 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-ntuser-private-l1-1-0.dll
[2014.05.18 00:11:52 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\finger.exe
[2014.05.18 00:11:52 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-networking-wcmapi-l1-1-0.dll
[2014.05.18 00:11:49 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\occache.dll
[2014.05.18 00:11:49 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\f3ahvoas.dll
[2014.05.17 00:12:57 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014.05.16 22:33:46 | 016,875,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2014.05.16 22:33:43 | 000,376,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2014.05.16 22:33:41 | 012,732,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2014.05.16 22:33:38 | 008,653,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2014.05.16 22:33:38 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Shell.Search.UriHandler.dll
[2014.05.16 22:33:37 | 007,425,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2014.05.16 22:33:29 | 006,641,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2014.05.16 22:33:28 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Shell.Search.UriHandler.dll
[2014.05.16 22:33:27 | 005,833,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2014.05.16 22:33:24 | 005,770,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2014.05.16 22:33:23 | 002,900,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2014.05.16 22:33:22 | 004,268,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2014.05.16 22:33:21 | 002,270,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2014.05.16 22:33:20 | 002,641,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014.05.16 22:33:20 | 002,373,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2014.05.16 22:33:19 | 002,141,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2014.05.16 22:33:19 | 002,133,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2014.05.16 22:33:19 | 002,088,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2014.05.16 22:33:19 | 001,306,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2014.05.16 22:33:18 | 002,317,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014.05.16 22:33:18 | 001,542,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2014.05.16 22:33:17 | 001,764,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2014.05.16 22:33:17 | 001,411,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2014.05.16 22:33:16 | 001,779,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2014.05.16 22:33:16 | 001,112,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2014.05.16 22:33:15 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2014.05.16 22:33:15 | 001,129,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFolder.dll
[2014.05.16 22:33:15 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2014.05.16 22:33:14 | 001,291,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll
[2014.05.16 22:33:14 | 001,023,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014.05.16 22:33:14 | 000,918,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014.05.16 22:33:13 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll
[2014.05.16 22:33:13 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2014.05.16 22:33:13 | 000,801,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2014.05.16 22:33:13 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2014.05.16 22:33:13 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidprov.dll
[2014.05.16 22:33:12 | 001,466,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\propsys.dll
[2014.05.16 22:33:12 | 001,339,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014.05.16 22:33:12 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll
[2014.05.16 22:33:11 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2014.05.16 22:33:11 | 000,492,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2014.05.16 22:33:10 | 000,518,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2014.05.16 22:33:10 | 000,467,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2014.05.16 22:33:10 | 000,388,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2014.05.16 22:33:10 | 000,356,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2014.05.16 22:33:09 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidprov.dll
[2014.05.16 22:33:08 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netlogon.dll
[2014.05.16 22:33:08 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2014.05.16 22:33:08 | 000,379,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2014.05.16 22:33:08 | 000,364,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2014.05.16 22:33:07 | 001,656,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2014.05.16 22:33:07 | 000,305,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2014.05.16 22:33:07 | 000,157,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys
[2014.05.16 22:33:06 | 000,924,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2014.05.16 22:33:06 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2014.05.16 22:33:06 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2014.05.16 22:33:06 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2014.05.16 22:33:04 | 001,351,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2014.05.16 22:33:04 | 000,872,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2014.05.16 22:33:04 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2014.05.16 22:33:04 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2014.05.16 22:33:04 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll
[2014.05.16 22:33:04 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2014.05.16 22:33:03 | 000,621,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2014.05.16 22:33:03 | 000,488,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netcfgx.dll
[2014.05.16 22:33:03 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2014.05.16 22:33:03 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys
[2014.05.16 22:33:03 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2014.05.16 22:33:02 | 000,463,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2014.05.16 22:33:02 | 000,390,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netcfgx.dll
[2014.05.16 22:33:02 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanmsm.dll
[2014.05.16 22:33:02 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2014.05.16 22:33:02 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll
[2014.05.16 22:33:01 | 000,467,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2014.05.16 22:33:01 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2014.05.16 22:33:01 | 000,244,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2014.05.16 22:33:01 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWfdProvider.dll
[2014.05.16 22:33:00 | 001,843,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2014.05.16 22:33:00 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pdh.dll
[2014.05.16 22:33:00 | 000,113,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\userenv.dll
[2014.05.16 22:33:00 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\davclnt.dll
[2014.05.16 22:32:59 | 001,816,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Display.dll
[2014.05.16 22:32:59 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReInfo.dll
[2014.05.16 22:32:59 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2014.05.16 22:32:58 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlangpui.dll
[2014.05.16 22:32:58 | 000,360,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2014.05.16 22:32:58 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2014.05.16 22:32:58 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2014.05.16 22:32:57 | 001,015,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aclui.dll
[2014.05.16 22:32:57 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.Printing.dll
[2014.05.16 22:32:57 | 000,428,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014.05.16 22:32:57 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2014.05.16 22:32:57 | 000,355,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2014.05.16 22:32:57 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2014.05.16 22:32:57 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spp.dll
[2014.05.16 22:32:57 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll
[2014.05.16 22:32:56 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2014.05.16 22:32:56 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2014.05.16 22:32:56 | 000,425,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clusapi.dll
[2014.05.16 22:32:56 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSDMon.dll
[2014.05.16 22:32:56 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pdh.dll
[2014.05.16 22:32:56 | 000,136,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys
[2014.05.16 22:32:56 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvinst.exe
[2014.05.16 22:32:56 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\w32tm.exe
[2014.05.16 22:32:55 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlangpui.dll
[2014.05.16 22:32:55 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2014.05.16 22:32:55 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2014.05.16 22:32:55 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvinst.exe
[2014.05.16 22:32:55 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvcfg.exe
[2014.05.16 22:32:55 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredentialMigrationHandler.dll
[2014.05.16 22:32:54 | 000,887,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aclui.dll
[2014.05.16 22:32:54 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Scanners.dll
[2014.05.16 22:32:54 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys
[2014.05.16 22:32:54 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RMapi.dll
[2014.05.16 22:32:54 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\w32tm.exe
[2014.05.16 22:32:54 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredentialMigrationHandler.dll
[2014.05.16 22:32:53 | 001,057,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdvidcrl.dll
[2014.05.16 22:32:53 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdvidcrl.dll
[2014.05.16 22:32:53 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.Printing.dll
[2014.05.16 22:32:53 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationApi.dll
[2014.05.16 22:32:53 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReInfo.dll
[2014.05.16 22:32:53 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2014.05.16 22:32:53 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2014.05.16 22:32:52 | 000,717,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll
[2014.05.16 22:32:52 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clusapi.dll
[2014.05.16 22:32:52 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Scanners.dll
[2014.05.16 22:32:52 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevPropMgr.dll
[2014.05.16 22:32:51 | 000,794,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2014.05.16 22:32:51 | 000,567,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2014.05.16 22:32:51 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LocationApi.dll
[2014.05.16 22:32:51 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sxproxy.dll
[2014.05.16 22:32:51 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SetNetworkLocation.dll
[2014.05.16 22:32:51 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxproxy.dll
[2014.05.16 22:32:50 | 000,443,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2014.05.16 22:32:50 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmWmiPl.dll
[2014.05.16 22:32:50 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2014.05.16 22:32:50 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\l2gpstore.dll
[2014.05.16 22:32:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll
[2014.05.16 22:32:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll
[2014.05.16 22:32:49 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\l2gpstore.dll
[2014.05.16 22:32:49 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2014.05.16 21:28:46 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014.05.16 21:28:45 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014.05.16 21:28:43 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014.05.16 20:34:07 | 002,678,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2014.05.16 20:30:48 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2013.10.23 16:39:22 | 002,063,240 | ---- | C] (Samsung Electronics) -- C:\ProgramData\MakeMarkerFile.exe

========== Files - Modified Within 30 Days ==========

[2014.06.05 11:04:27 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.06.05 11:03:25 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2014.06.05 10:53:52 | 000,002,217 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.06.05 10:52:39 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.06.05 10:51:00 | 000,000,950 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.06.05 10:50:39 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014.06.05 10:50:35 | 3185,598,464 | -HS- | M] () -- C:\hiberfil.sys
[2014.06.05 10:47:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Simona\Desktop\OTL.exe
[2014.06.05 10:35:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.06.05 10:34:19 | 000,000,954 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.06.04 19:22:43 | 000,001,114 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.06.04 13:27:03 | 001,496,172 | ---- | M] () -- C:\Users\Simona\Desktop\CrystalDiskInfo5_0_0.zip
[2014.06.04 13:23:41 | 000,863,592 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014.06.04 13:23:41 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014.06.04 13:23:41 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014.06.03 22:29:39 | 000,007,604 | ---- | M] () -- C:\Users\Simona\AppData\Local\Resmon.ResmonCfg
[2014.06.03 22:25:34 | 001,222,144 | ---- | M] () -- C:\Users\Simona\Desktop\RSITx64.exe
[2014.05.18 10:02:48 | 000,482,112 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014.05.18 00:36:16 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014.05.18 00:28:17 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014.05.18 00:28:17 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014.05.18 00:28:17 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollectorres.dll
[2014.05.18 00:27:57 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014.05.18 00:27:35 | 000,233,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2014.05.18 00:27:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014.05.18 00:27:07 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014.05.17 19:44:26 | 000,002,039 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2014.05.16 21:28:46 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014.05.16 21:28:45 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014.05.16 21:28:43 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014.05.16 20:30:48 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2014.05.12 07:26:14 | 000,064,216 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2014.05.12 07:26:00 | 000,091,352 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2014.05.12 07:25:56 | 000,025,816 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2014.06.05 11:04:27 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.06.04 19:22:43 | 000,001,114 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.06.04 13:26:12 | 001,496,172 | ---- | C] () -- C:\Users\Simona\Desktop\CrystalDiskInfo5_0_0.zip
[2014.06.04 00:05:37 | 001,222,144 | ---- | C] () -- C:\Users\Simona\Desktop\RSITx64.exe
[2014.06.03 22:29:39 | 000,007,604 | ---- | C] () -- C:\Users\Simona\AppData\Local\Resmon.ResmonCfg
[2014.05.18 00:15:29 | 000,139,600 | ---- | C] () -- C:\WINDOWS\SysNative\systemsf.ebd
[2014.05.18 00:13:35 | 000,262,335 | ---- | C] () -- C:\WINDOWS\SysNative\dfpinc.dat
[2014.05.18 00:12:24 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014.05.18 00:12:24 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysNative\WimBootCompress.ini
[2014.05.18 00:11:59 | 000,100,197 | ---- | C] () -- C:\WINDOWS\SysWow64\RacRules.xml
[2014.05.18 00:11:59 | 000,100,197 | ---- | C] () -- C:\WINDOWS\SysNative\RacRules.xml
[2014.05.18 00:11:59 | 000,007,762 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-suggestions.searchconnector-ms
[2014.05.18 00:11:59 | 000,007,762 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-suggestions.searchconnector-ms
[2014.05.18 00:11:59 | 000,007,130 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-zeroinput.searchconnector-ms
[2014.05.18 00:11:59 | 000,007,130 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-zeroinput.searchconnector-ms
[2014.05.18 00:11:49 | 000,011,109 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-results.searchconnector-ms
[2014.05.18 00:11:49 | 000,011,109 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-results.searchconnector-ms
[2014.05.18 00:11:47 | 000,050,053 | ---- | C] () -- C:\WINDOWS\SysNative\srms.dat
[2014.05.18 00:11:45 | 000,002,440 | R-S- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
[2014.05.16 22:32:49 | 000,387,210 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014.04.30 20:11:35 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014.04.21 15:57:06 | 000,000,530 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2014.01.21 13:10:08 | 000,002,686 | ---- | C] () -- C:\Users\Simona\AppData\Local\SRDownloader.err
[2014.01.21 12:15:26 | 000,004,120 | ---- | C] () -- C:\Users\Simona\AppData\Local\SRDownloader.nast
[2013.10.23 20:18:56 | 000,029,696 | ---- | C] () -- C:\Users\Simona\AppData\Local\MSGBOX.EXE
[2013.10.23 16:39:22 | 000,003,004 | ---- | C] () -- C:\ProgramData\MakeMarkerFile.xml
[2013.10.04 00:42:46 | 000,343,040 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2013.10.04 00:42:40 | 000,180,736 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013.10.04 00:42:38 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2013.08.22 17:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013.08.22 17:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013.08.22 16:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013.08.22 09:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013.08.22 05:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013.08.22 01:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013.08.22 01:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013.04.09 16:58:57 | 000,000,135 | ---- | C] () -- C:\WINDOWS\AutoKMS.ini
[2013.01.25 18:12:11 | 000,001,476 | ---- | C] () -- C:\Users\Simona\AppData\Roaming\AbsoluteReminder.xml
[2010.06.29 16:04:18 | 000,001,772 | ---- | C] () -- C:\ProgramData\cfSB1095.ini

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014.03.27 11:12:37 | 021,225,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.03.27 09:48:28 | 018,679,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013.08.22 11:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013.08.22 04:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013.08.22 11:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013.02.23 22:24:54 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Canon
[2014.06.05 10:55:49 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\ConMet
[2014.06.04 14:20:56 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\DAEMON Tools Lite
[2013.02.16 01:44:47 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\DVDVideoSoft
[2013.03.22 23:34:36 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Easy File Share
[2014.02.26 15:32:44 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\iFunbox_UserCache
[2013.11.24 18:02:25 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Nokia
[2013.01.25 23:13:20 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Opera
[2013.11.24 17:58:08 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\PC Suite
[2013.02.14 11:28:36 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\SecondLife
[2014.04.21 22:50:57 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Ulozto File Manager

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013.08.22 16:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2013.12.06 17:14:46 | 000,000,950 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2013.12.06 17:14:48 | 000,000,954 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2013.12.10 20:35:52 | 000,000,830 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2014.05.18 10:34:23 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\AGP440.sys
[2013.08.22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013.08.22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\AGP440.sys
[2013.08.22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys
[2013.08.22 15:45:05 | 000,062,304 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\AGP440.sys
[2013.08.22 15:45:05 | 000,062,304 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\AGP440.sys

< MD5 for: ATAPI.SYS >
[2013.08.22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013.08.22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013.08.22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys
[2013.08.22 15:45:01 | 000,026,464 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\atapi.sys
[2013.08.22 15:45:01 | 000,026,464 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2014.05.18 10:37:40 | 000,028,249 | ---- | M] () MD5=0CBDE27FB26761852F7B22AFB8C51ACB -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe
[2014.02.22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014.02.22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014.02.22 14:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014.02.22 14:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe
[2014.05.18 19:19:04 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe
[2013.08.22 15:45:35 | 000,891,392 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\autochk.exe
[2013.08.22 15:45:35 | 000,891,392 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe

< MD5 for: CDROM.SYS >
[2013.08.22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013.08.22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013.08.22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys
[2013.08.22 15:45:00 | 000,164,352 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\cdrom.sys
[2013.08.22 15:45:00 | 000,164,352 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2013.08.22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013.08.22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll
[2013.08.22 15:45:16 | 000,129,536 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\cryptsvc.dll
[2013.08.22 15:45:16 | 000,129,536 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2014.03.04 13:16:50 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\SysWOW64\explorer.exe
[2014.03.04 13:16:50 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2014.05.18 18:48:34 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2013.11.27 01:26:15 | 000,133,444 | ---- | M] () MD5=3DDF61E1B538A1205612192A61CC2376 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_42cd898b4d6ef82e\explorer.exe
[2014.05.18 18:48:23 | 000,238,918 | ---- | M] () MD5=5177BB4FECDDB9CDBCF10EF65916968D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2014.05.18 10:51:05 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014.03.04 14:25:49 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\explorer.exe
[2014.03.04 14:25:49 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
[2013.11.27 19:53:50 | 000,127,825 | ---- | M] () MD5=983D8A3EB94B05A199D3744C0F0C475F -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_4d2233dd81cfba29\explorer.exe
[2014.05.18 10:50:57 | 000,283,735 | ---- | M] () MD5=FA98C5D746E7C9E0912E88AC44FF9926 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe

< MD5 for: HAL.DLL >
[2014.02.22 17:44:06 | 000,424,280 | ---- | M] (Microsoft Corporation) MD5=4DFCE03EEB1BA325B8077A626B2F25F0 -- C:\WINDOWS\SysNative\hal.dll
[2014.02.22 17:44:06 | 000,424,280 | ---- | M] (Microsoft Corporation) MD5=4DFCE03EEB1BA325B8077A626B2F25F0 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll
[2014.05.01 19:52:51 | 000,014,096 | ---- | M] () MD5=64D2873F32BB723BFFF3F8895032AA35 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16408_none_9c41d51d2d5cc0c4\hal.dll
[2014.05.18 10:52:56 | 000,066,843 | ---- | M] () MD5=D714202F057A317C8E31776EBEA0AEA2 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16500_none_9c39d4b32d63f333\hal.dll
[2013.08.22 15:25:40 | 000,418,144 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\hal.dll
[2013.08.22 15:25:40 | 000,418,144 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16384_none_9be752af2da13dc9\hal.dll

< MD5 for: IASTORV.SYS >
[2013.08.22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013.08.22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013.08.22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys
[2013.08.22 15:45:01 | 000,412,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2014.05.18 10:34:25 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\isapnp.sys
[2013.08.22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013.08.22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\isapnp.sys
[2013.08.22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys
[2013.08.22 15:45:05 | 000,021,856 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\isapnp.sys
[2013.08.22 15:45:05 | 000,021,856 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\isapnp.sys

< MD5 for: LSASS.EXE >
[2013.08.22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013.08.22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe
[2013.08.22 15:25:35 | 000,045,008 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\lsass.exe
[2013.08.22 15:25:35 | 000,045,008 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16384_none_2e2a01a866456d93\lsass.exe

< MD5 for: NDIS.SYS >
[2013.11.27 02:55:55 | 000,123,655 | ---- | M] () MD5=17F1BC1A73EECEA6394EFA770B41DDD3 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16405_none_4a6b5fcffbc14927\ndis.sys
[2014.02.20 14:16:48 | 000,046,734 | ---- | M] () MD5=68A9BA38BB275850F91165D1C1FCA8DA -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16408_none_4a6e60adfbbe952c\ndis.sys
[2014.05.18 11:07:53 | 000,140,607 | ---- | M] () MD5=7B886741BDAE33AC4F116DF991D1E3CB -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16475_none_4a1fb05bfbfa0cbe\ndis.sys
[2014.02.22 17:40:03 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2014.02.22 17:40:03 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17031_none_4a46d083fbdd5ca3\ndis.sys
[2013.08.22 15:25:35 | 001,118,552 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\ndis.sys
[2013.08.22 15:25:35 | 001,118,552 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16384_none_4a13de3ffc031231\ndis.sys

< MD5 for: NETLOGON.DLL >
[2014.03.06 09:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\WINDOWS\SysNative\netlogon.dll
[2014.03.06 09:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2014.05.18 19:04:40 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2014.03.06 08:29:17 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\SysWOW64\netlogon.dll
[2014.03.06 08:29:17 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014.05.18 11:16:00 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll
[2013.08.22 15:45:16 | 000,832,512 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\netlogon.dll
[2013.08.22 15:45:16 | 000,832,512 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll

< MD5 for: NVRAID.SYS >
[2013.08.22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\drivers\nvraid.sys
[2013.08.22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvraid.sys
[2013.08.22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys
[2013.08.22 15:45:01 | 000,150,368 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2013.08.22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2013.08.22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvstor.sys
[2013.08.22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys
[2013.08.22 15:45:01 | 000,168,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys

[sima707]

< MD5 for: SCECLI.DLL >
[2013.08.22 04:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013.08.22 04:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013.08.22 11:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013.08.22 11:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll
[2013.08.22 15:45:29 | 000,271,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\scecli.dll
[2013.08.22 15:45:29 | 000,271,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll

< MD5 for: SMSS.EXE >
[2014.05.18 18:22:36 | 000,019,120 | ---- | M] () MD5=5FBA1F5F9AA1E09595F015118AE83A36 -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.16384_none_6f1f364dbcc273d3\smss.exe
[2014.02.22 17:43:03 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\WINDOWS\SysNative\smss.exe
[2014.02.22 17:43:03 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.17031_none_6f522891bc9cbe45\smss.exe
[2013.08.22 15:25:40 | 000,142,576 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\smss.exe
[2013.08.22 15:25:40 | 000,142,576 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.16384_none_6f1f364dbcc273d3\smss.exe

< MD5 for: SVCHOST.EXE >
[2014.05.12 07:24:30 | 000,750,392 | ---- | M] (MalwareBytes) MD5=09882E8EDD1144E6EF1AF6D1F98305EE -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2013.08.22 07:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013.08.22 07:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013.08.22 14:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013.08.22 14:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe
[2013.08.22 15:45:16 | 000,037,768 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\svchost.exe
[2013.08.22 15:45:16 | 000,037,768 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe

< MD5 for: TCPIP.SYS >
[2014.02.20 14:22:05 | 000,210,441 | ---- | M] () MD5=01941724D120729E2B680B22F05D4123 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16423_none_a41c53813a2d8394\tcpip.sys
[2014.03.14 00:53:49 | 000,271,861 | ---- | M] () MD5=2102610D6FD1D928A3D7155077A78B82 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_a3fee49b3a43236c\tcpip.sys
[2014.05.18 18:26:37 | 000,481,295 | ---- | M] () MD5=2F83A7537A9B8CF98E6B4710A3E3D381 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_a41a54d33a2f4e0d\tcpip.sys
[2013.11.27 11:23:52 | 000,250,257 | ---- | M] () MD5=D051052CB1A286833805C2E0F7710F85 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16408_none_a436f4cb3a18ca65\tcpip.sys
[2014.03.04 14:15:22 | 002,519,384 | ---- | M] (Microsoft Corporation) MD5=FEEFE783D87C9063CDAC6DBDCF95F533 -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2014.03.04 14:15:22 | 002,519,384 | ---- | M] (Microsoft Corporation) MD5=FEEFE783D87C9063CDAC6DBDCF95F533 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_a41766f13a305c94\tcpip.sys
[2013.08.22 15:25:35 | 002,549,600 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\tcpip.sys
[2013.08.22 15:25:35 | 002,549,600 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16384_none_a3dc725d3a5d476a\tcpip.sys

< MD5 for: USERINIT.EXE >
[2013.08.22 12:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013.08.22 12:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013.08.22 04:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013.08.22 04:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
[2013.08.22 15:45:19 | 000,025,088 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\userinit.exe
[2013.08.22 15:45:19 | 000,025,088 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe

< MD5 for: WINLOGON.EXE >
[2014.05.12 07:24:30 | 000,750,392 | ---- | M] (MalwareBytes) MD5=09882E8EDD1144E6EF1AF6D1F98305EE -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2014.02.22 11:45:48 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\WINDOWS\SysNative\winlogon.exe
[2014.02.22 11:45:48 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe
[2014.05.18 18:32:20 | 000,089,459 | ---- | M] () MD5=E40DC8DF924E02F04F3620DBAC1ACE31 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe
[2013.08.22 15:45:29 | 000,564,736 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\winlogon.exe
[2013.08.22 15:45:29 | 000,564,736 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe

< MD5 for: WS2_32.DLL >
[2013.08.22 07:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\SysWOW64\ws2_32.dll
[2013.08.22 07:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\WinSxS\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_87577549e9ef9b02\ws2_32.dll
[2013.08.22 15:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\WINDOWS\SysNative\ws2_32.dll
[2013.08.22 15:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll
[2013.08.22 15:25:35 | 000,355,872 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\ws2_32.dll
[2013.08.22 15:25:35 | 000,355,872 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013.02.23 22:24:49 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\ABBYY
[2013.02.05 18:59:29 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Adobe
[2013.10.06 21:33:53 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Apple Computer
[2013.02.23 22:24:54 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Canon
[2014.06.05 10:55:49 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\ConMet
[2014.06.04 14:20:56 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\DAEMON Tools Lite
[2013.07.07 16:05:39 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\dvdcss
[2013.02.16 01:44:47 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\DVDVideoSoft
[2013.03.22 23:34:36 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Easy File Share
[2013.11.24 18:04:14 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Identities
[2014.02.26 15:32:44 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\iFunbox_UserCache
[2013.01.25 18:10:59 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Intel
[2013.01.25 20:21:41 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Macromedia
[2013.10.15 20:58:08 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Malwarebytes
[2013.12.27 21:01:08 | 000,000,000 | --SD | M] -- C:\Users\Simona\AppData\Roaming\Microsoft
[2013.11.24 18:02:25 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Nokia
[2013.01.25 23:13:20 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Opera
[2013.11.24 17:58:08 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\PC Suite
[2013.02.14 11:28:36 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\SecondLife
[2013.11.24 21:23:46 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Skype
[2013.06.10 02:17:23 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\SUPERAntiSpyware.com
[2014.04.21 22:50:57 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Ulozto File Manager
[2014.06.05 10:42:40 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\vlc
[2014.06.04 14:20:56 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\Winamp
[2013.02.17 16:47:36 | 000,000,000 | ---D | M] -- C:\Users\Simona\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.01.09 20:05:16 | 000,071,894 | R--- | M] () -- C:\Users\Simona\AppData\Roaming\Microsoft\Installer\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}\GPUploader.exe
[2013.12.27 21:01:08 | 000,119,808 | R--- | M] () -- C:\Users\Simona\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
[2014.01.05 18:26:05 | 000,071,894 | R--- | M] () -- C:\Users\Simona\AppData\Roaming\Microsoft\Installer\{D4C4A751-F7F3-4DCA-B825-9AC391BFFC3F}\GPUploader.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2013.08.22 07:30:48 | 000,785,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\taskschd.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2013.08.22 07:30:48 | 000,785,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\taskschd.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.06.05 10:53:44 | 000,000,018 | ---- | M] () -- C:\WINDOWS\system32\log.txt

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Remote Mouse" = C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe -- [2013.11.12 17:35:10 | 001,187,840 | ---- | M] (RemoteMouse.net)
"ConMet" = C:\Program Files (x86)\ConMet\ConMet.exe -- [2014.03.06 14:46:19 | 004,483,584 | ---- | M] (Mgr. Tomáš Papoušek)
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2014.03.04 11:19:52 | 003,696,912 | ---- | M] (Disc Soft Ltd)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.06.05 11:04:27 | 000,000,512 | ---- | M] () MD5=B303DAF72CA2E3A143938DF8377A712F -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012.08.08 11:29:29 | 000,004,076 | ---- | M] () -- \Program Files\WindowsApps\ENFEEL.Birzzle_1.0.0.46_x64__x6zre6nb2hma6\ice_block_crack_RETINA.plist
[2012.08.08 11:29:29 | 000,034,726 | ---- | M] () -- \Program Files\WindowsApps\ENFEEL.Birzzle_1.0.0.46_x64__x6zre6nb2hma6\ice_block_crack_RETINA.png
[2012.08.08 11:29:29 | 000,046,538 | ---- | M] () -- \Program Files\WindowsApps\ENFEEL.Birzzle_1.0.0.46_x64__x6zre6nb2hma6\ice_break_crack.wav
[2012.08.02 11:47:48 | 000,145,606 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Audio\Sfx\Scenes\Canyon\CrackZoomCrowbarUse.wav
[2012.08.02 11:47:48 | 000,016,246 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Audio\Sfx\Scenes\Canyon\CrackZoomFlashlightUse.wav
[2012.08.02 11:47:48 | 000,076,306 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Audio\Sfx\Scenes\Canyon\CrackZoomGloveUse.wav
[2012.08.02 11:47:48 | 000,032,346 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Audio\Sfx\Scenes\Canyon\CrackZoomScorpianShow.wav
[2012.08.02 11:47:48 | 000,134,406 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Audio\Sfx\Scenes\Canyon\CrackZoomScorpionStrike.wav
[2012.08.02 11:47:48 | 000,085,406 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Audio\Sfx\Scenes\HelicopterCrash\WindshieldCrack.wav
[2013.11.21 15:57:18 | 000,023,487 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Data\Scenes\Canyon\WallCrackZoom.xml
[2012.08.02 11:47:20 | 000,150,608 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Graphics\Scenes\Canyon\WallCrackOpen.dds
[2012.08.02 11:47:22 | 001,008,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Graphics\Scenes\Canyon\WallCrackZoom\CrackLit.dds
[2013.11.21 15:58:54 | 000,383,744 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Graphics\Scenes\Canyon\WallCrackZoom\CrackOpen.dds
[2012.08.02 11:47:22 | 001,008,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Graphics\Scenes\Canyon\WallCrackZoom\WallCrackZoom_Background.dds
[2012.08.02 11:47:22 | 001,299,712 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Graphics\Scenes\Canyon\WallCrackZoom\Animations\WallCrack_Sandpuff.dds
[2012.08.02 11:47:22 | 000,005,379 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode1\Graphics\Scenes\Canyon\WallCrackZoom\Animations\WallCrack_Sandpuff_data.xml
[2013.11.21 15:59:45 | 000,079,559 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode2\Data\Scenes\CrackedWall\CrackedWall.xml
[2013.11.21 15:59:46 | 000,005,094 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.0.30562_x86__8wekyb3d8bbwe\Assets\Episode3\Data\Scenes\StoneCocoonChamber\FloorCrackZoom.xml
[2014.02.14 19:25:23 | 000,023,487 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Assets\Episode1\Data\Scenes\Canyon\WallCrackZoom.xml
[2014.02.14 19:25:24 | 000,079,559 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Assets\Episode2\Data\Scenes\CrackedWall\CrackedWall.xml
[2014.02.14 19:25:29 | 000,005,094 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Assets\Episode3\Data\Scenes\StoneCocoonChamber\FloorCrackZoom.xml
[2014.04.18 18:30:06 | 1073,741,824 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-1.rar
[2014.04.21 19:21:17 | 1073,741,824 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-2.rar
[2014.04.21 19:48:52 | 1073,741,824 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-3.rar
[2014.04.21 22:50:46 | 468,998,771 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-mod-crack-4.rar
[1 \Users\Simona\Downloads\*.tmp files -> \Users\Simona\Downloads\*.tmp -> ]
[2014.01.04 16:35:59 | 000,000,032 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-1\SKIDROWCRACK.COM.txt
[2014.01.04 16:35:59 | 000,000,113 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-1\WWW.SKIDROWCRACK.COM.url
[2014.01.04 16:35:59 | 000,000,032 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-1\Crack\SKIDROWCRACK.COM.txt
[2014.01.04 16:35:59 | 000,000,113 | ---- | M] () -- \Users\Simona\Downloads\simcity-5-offline-Mod-crack-1\Crack\WWW.SKIDROWCRACK.COM.url

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2013.02.16 01:44:36 | 000,000,257 | ---- | M] () -- \AdwCleaner\Quarantine\C\Users\Simona\AppData\Roaming\dvdvideosoftiehelpers\freeytvdownloader.htm.vir
[2013.09.13 20:51:30 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2014.01.23 16:05:00 | 000,268,440 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2013.05.09 02:43:22 | 000,019,080 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2014.01.06 20:47:02 | 000,000,702 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_advoptions.fen
[2014.01.06 20:47:02 | 000,000,790 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_debug.fen
[2014.01.06 20:47:02 | 000,000,723 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_download.fen
[2014.01.06 20:47:02 | 000,000,694 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_file_errors.fen
[2013.02.09 03:39:28 | 000,000,934 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_main.fen
[2014.01.06 20:47:04 | 000,000,634 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_manage_devices.fen
[2014.01.06 20:47:04 | 000,002,283 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_onboard.fen
[2014.01.06 20:47:04 | 000,001,417 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_options.fen
[2014.01.06 20:47:04 | 000,001,330 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_pinwheel_72.png
[2014.01.06 20:47:04 | 000,002,541 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_pinwheel_72x2.png
[2014.01.06 20:47:04 | 000,002,109 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_prefs.fen
[2014.01.06 20:47:04 | 000,000,956 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_quota_error1.fen
[2014.01.06 20:47:04 | 000,001,080 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_quota_error2.fen
[2014.01.06 20:47:04 | 000,001,139 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_quota_error_estimate.fen
[2014.01.06 20:47:04 | 000,002,181 | ---- | M] () -- \Program Files (x86)\Google\Picasa3\runtime\gpuploader_welcome.fen
[2014.01.23 16:05:00 | 000,364,184 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2013.05.09 02:43:22 | 000,019,080 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2014.02.19 19:31:38 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.2.258_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2013.09.30 06:02:37 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013.09.30 06:02:38 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013.09.30 06:02:38 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013.09.30 06:05:29 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013.11.21 16:03:50 | 000,053,667 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.299.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014.05.14 19:41:24 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.902.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014.02.17 01:46:53 | 000,002,686 | ---- | M] () -- \Users\Simona\AppData\Local\SRDownloader.err
[2014.02.17 01:46:57 | 000,004,120 | ---- | M] () -- \Users\Simona\AppData\Local\SRDownloader.nast
[2014.01.06 11:52:30 | 003,244,032 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\gpuploader_i18n.dll
[2014.01.06 11:47:04 | 000,000,702 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_advoptions.fen
[2014.01.06 11:47:04 | 000,000,790 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_debug.fen
[2014.01.06 11:47:04 | 000,000,723 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_download.fen
[2014.01.06 11:47:04 | 000,000,694 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_file_errors.fen
[2014.01.06 11:47:06 | 000,171,541 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_icons.psd
[2014.01.06 11:47:06 | 000,000,634 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_manage_devices.fen
[2014.01.06 11:47:06 | 000,002,283 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_onboard.fen
[2014.01.06 11:47:06 | 000,001,417 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_options.fen
[2014.01.06 11:47:06 | 000,002,109 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_prefs.fen
[2014.01.06 11:47:06 | 000,000,956 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_quota_error1.fen
[2014.01.06 11:47:06 | 000,001,080 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_quota_error2.fen
[2014.01.06 11:47:06 | 000,001,139 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_quota_error_estimate.fen
[2014.01.06 11:47:06 | 000,002,181 | ---- | M] () -- \Users\Simona\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_welcome.fen
[2013.02.18 19:56:54 | 010,240,064 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader.bak
[2013.02.19 20:04:55 | 006,656,319 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader.log
[2013.02.16 01:44:30 | 000,145,401 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader_install.txt
[2013.10.22 16:45:11 | 000,056,025 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader_uninstall.txt
[2013.02.19 19:50:29 | 000,176,827 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\YTVDownloader_extra1.log
[2013.02.18 16:40:31 | 000,022,640 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\YTVDownloader_extra2.log
[2013.02.19 18:08:49 | 000,236,240 | ---- | M] () -- \Users\Simona\AppData\Roaming\DVDVideoSoft\logs\YTVDownloader_extra3.log
[2014.01.09 20:05:16 | 000,071,894 | R--- | M] () -- \Users\Simona\AppData\Roaming\Microsoft\Installer\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}\GPUploader.exe
[2014.01.05 18:26:05 | 000,071,894 | R--- | M] () -- \Users\Simona\AppData\Roaming\Microsoft\Installer\{D4C4A751-F7F3-4DCA-B825-9AC391BFFC3F}\GPUploader.exe
[2014.01.21 12:13:29 | 000,905,728 | ---- | M] () -- \Users\Simona\Desktop\SRDownloader.exe
[2014.04.21 18:56:29 | 002,168,761 | ---- | M] () -- \Users\Simona\Downloads\Uloz.to_Uploader-setup.exe
[1 \Users\Simona\Downloads\*.tmp files -> \Users\Simona\Downloads\*.tmp -> ]
[2014.05.18 10:44:00 | 000,017,920 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.O29577370#\bc1d11f57f24a0dd64d67b5ebe84e8ff\Microsoft.Office.InfoPath.CLRLoader.ni.dll
[2014.05.18 10:44:00 | 000,000,696 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.O29577370#\bc1d11f57f24a0dd64d67b5ebe84e8ff\Microsoft.Office.InfoPath.CLRLoader.ni.dll.aux
[2012.10.01 20:34:40 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012.10.01 20:34:40 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012.10.01 20:34:40 | 000,364,128 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4420\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012.10.01 20:34:40 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.05.09 02:43:22 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4569\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.05.09 02:43:22 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4569\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.11.19 18:54:53 | 000,015,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Office.InfoPath.CLRLoader\v4.0_15.0.0.0__71e9bce111e9429c\Microsoft.Office.InfoPath.CLRLoader.dll
[2014.02.17 01:46:57 | 000,066,602 | ---- | M] () -- \Windows\Prefetch\SRDOWNLOADER.EXE-F0E676A0.pf
[2013.08.22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013.08.22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013.08.22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.08.22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013.08.22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013.08.22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013.08.22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 15:45:09 | 000,003,584 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:45:09 | 000,003,584 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:45:09 | 000,003,584 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013.08.22 15:45:09 | 000,002,560 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013.08.22 15:45:09 | 000,002,560 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.22 15:45:09 | 000,002,560 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 15:25:37 | 000,003,584 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:37 | 000,003,072 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:36 | 000,002,560 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 15:25:37 | 000,003,584 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:37 | 000,003,072 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:36 | 000,002,560 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 15:45:09 | 000,003,584 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:45:09 | 000,003,584 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:45:09 | 000,003,584 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013.08.22 15:45:09 | 000,002,560 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013.08.22 15:45:09 | 000,002,560 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.22 15:45:09 | 000,002,560 | -H-- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 23:13:22 | 000,000,459 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7.manifest
[2013.08.22 23:13:22 | 000,030,048 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winload.efi.mui_35ee487d
[2013.08.22 23:13:22 | 000,030,048 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winload.exe.mui_3bc5b827
[2013.08.22 23:13:22 | 000,020,320 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winresume.efi.mui_f412814e
[2013.08.22 23:13:22 | 000,020,320 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winresume.exe.mui_ff8b5358
[2013.09.30 05:59:30 | 000,000,546 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2013.09.30 05:59:30 | 001,641,496 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3_winload.efi_75834aa0
[2013.09.30 05:59:30 | 001,506,168 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3_winload.exe_75835076
[2013.09.30 05:59:30 | 001,476,184 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3_winresume.efi_85cd069f
[2013.09.30 05:59:30 | 001,344,984 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3_winresume.exe_85cd1215
[2013.08.22 23:13:01 | 000,000,459 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7.manifest
[2013.08.22 15:44:34 | 000,000,542 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2013.09.30 05:59:28 | 000,000,546 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2013.08.22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2014.05.17 11:09:42 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2014.05.17 11:09:37 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2014.02.22 17:49:46 | 001,390,936 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.efi
[2014.02.22 17:49:46 | 001,263,960 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.exe
[2014.03.04 14:26:22 | 001,390,936 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.efi
[2014.03.04 14:26:22 | 001,263,960 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.exe
[2013.08.22 13:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013.08.22 15:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 13:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 13:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 13:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013.08.22 13:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013.08.22 13:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.22 13:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2014.05.18 00:32:23 | 000,000,462 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_678a0c54b7d52759.manifest
[2014.05.18 19:46:17 | 000,009,321 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_678a0c54b7d52759_winload.efi.mui_35ee487d
[2014.05.18 19:46:17 | 000,009,332 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_678a0c54b7d52759_winload.exe.mui_3bc5b827
[2014.05.18 19:46:17 | 000,007,774 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_678a0c54b7d52759_winresume.efi.mui_f412814e
[2014.05.18 19:46:17 | 000,007,774 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_678a0c54b7d52759_winresume.exe.mui_ff8b5358
[2014.05.18 00:32:05 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2014.05.18 19:46:27 | 000,724,144 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.efi_75834aa0
[2014.05.18 19:46:31 | 000,660,345 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.exe_75835076
[2014.05.18 19:46:35 | 000,646,217 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.efi_85cd069f
[2014.05.18 19:46:39 | 000,586,798 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.exe_85cd1215
[2013.08.22 17:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013.09.30 05:57:18 | 000,000,459 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7.manifest
[2014.05.16 20:30:44 | 000,000,462 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_678a0c54b7d52759.manifest
[2013.08.22 17:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2013.09.30 06:15:35 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_4c2dcab94067d447.manifest
[2013.09.30 06:19:48 | 000,000,546 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2014.01.21 00:03:03 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2014.03.13 11:41:17 | 000,000,550 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16496_none_4bdc4ccb40a43282.manifest
[2014.05.16 21:26:46 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2013.08.22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013.08.22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013.08.22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013.08.22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013.08.22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013.08.22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >
[2013.04.09 16:58:57 | 000,000,135 | ---- | M] () -- \Windows\AutoKMS.ini

< *activator* /s >

< *serial* /s >
[2012.06.14 04:54:48 | 001,489,920 | ---- | M] () -- \Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\serializer.dll
[2012.06.14 05:04:08 | 002,053,632 | ---- | M] () -- \Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\x64\serializer64.dll
[2012.07.13 17:30:10 | 000,539,136 | ---- | M] () -- \Program Files (x86)\Intel\IntelAppStore\bin\serializer.dll
[2013.08.03 06:41:46 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012.07.12 13:44:36 | 001,000,288 | ---- | M] () -- \Program Files\Intel Corporation\Intel WiDi\serializer.dll
[2014.04.15 13:11:02 | 000,167,616 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.BackEnd.XmlSerializers.dll
[2014.04.15 13:11:02 | 000,210,112 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.Common.FrontEnd.XmlSerializers.dll
[2013.11.19 18:35:28 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2013.10.07 10:55:15 | 000,000,024 | ---- | M] () -- \Users\Simona\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2014.03.05 12:24:39 | 000,000,133 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Ffilmy-serialy-online.eu%2Ffavicon.png
[2014.04.05 11:28:41 | 000,000,446 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.filmy-serialy-online.sk%2Ffavicon.png
[2013.02.17 20:29:13 | 000,000,711 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.serial-scrubs.cz%2Ffavicon.png
[2014.05.23 22:52:47 | 000,000,878 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.serialovysvet.cz%2Ffavicon.png
[2014.02.06 11:47:50 | 000,000,339 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.serialycz.cz%2Fwp-content%2Fthemes%2Farras%2Fimages%2Ffavicon.png
[2013.07.06 00:11:54 | 000,000,673 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.serialycz.cz%2Fwp-content%2Fuploads%2Ffavicon1.png
[2013.01.29 14:17:06 | 000,000,581 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.serialzone.cz%2Ffavicon.png
[2014.03.02 12:48:17 | 000,000,544 | ---- | M] () -- \Users\Simona\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.sledujuserialy.cz%2Ffavicon.png
[1 \Users\Simona\Downloads\*.tmp files -> \Users\Simona\Downloads\*.tmp -> ]
[2013.08.17 02:06:31 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.11.19 18:35:29 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.04.18 15:56:30 | 000,008,192 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtb09a0784#\0ce7a0a4f53a844ee6c5f833fec5cff4\System.Runtime.Serialization.Json.ni.dll
[2014.04.18 15:56:30 | 000,000,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtb09a0784#\0ce7a0a4f53a844ee6c5f833fec5cff4\System.Runtime.Serialization.Json.ni.dll.aux
[2014.04.18 15:56:38 | 000,008,704 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtdf6812ee#\f279d121e46865753b95d29c5d4d0cb8\System.Runtime.Serialization.Primitives.ni.dll
[2014.04.18 15:56:38 | 000,000,300 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtdf6812ee#\f279d121e46865753b95d29c5d4d0cb8\System.Runtime.Serialization.Primitives.ni.dll.aux
[2014.05.18 10:25:06 | 002,804,736 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll
[2014.05.18 10:25:06 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll.aux
[2014.04.18 15:56:32 | 000,008,704 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.429e8964#\f2cc82f8999d2aa1c6660c806177ec61\System.Xml.XmlSerializer.ni.dll
[2014.04.18 15:56:32 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.429e8964#\f2cc82f8999d2aa1c6660c806177ec61\System.Xml.XmlSerializer.ni.dll.aux
[2014.03.04 09:08:21 | 000,009,728 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtb09a0784#\5c1ce511d82bd774d86a0e842224cb69\System.Runtime.Serialization.Json.ni.dll
[2014.03.04 09:08:21 | 000,000,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtb09a0784#\5c1ce511d82bd774d86a0e842224cb69\System.Runtime.Serialization.Json.ni.dll.aux
[2014.02.24 14:45:51 | 000,009,728 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\ab33b53bbacb5e524456a1a9de0d7c1e\System.Runtime.Serialization.Primitives.ni.dll
[2014.02.24 14:45:51 | 000,000,300 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\ab33b53bbacb5e524456a1a9de0d7c1e\System.Runtime.Serialization.Primitives.ni.dll.aux
[2014.05.18 10:50:03 | 000,009,728 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\d7c19ec0784ce130d53d43af71a371db\System.Runtime.Serialization.Primitives.ni.dll
[2014.05.18 10:50:03 | 000,000,300 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\d7c19ec0784ce130d53d43af71a371db\System.Runtime.Serialization.Primitives.ni.dll.aux
[2014.05.18 10:35:52 | 003,530,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll
[2014.05.18 10:35:52 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll.aux
[2013.08.22 17:32:39 | 000,001,032 | ---- | M] () -- \Windows\Inf\c_multiportserial.inf
[2012.10.01 20:36:32 | 000,166,864 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4420\AS_Client_BackEnd_XmlSerializers_dll_64.47B66533_5246_4BD8_8040_12B3E5660DA4
[2012.10.01 20:36:32 | 000,209,360 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000100000000F01FEC\15.0.4420\AS_Client_Common_FrontEnd_XmlSerializers_dll_64.47B66533_5246_4BD8_8040_12B3E5660DA4
[2013.08.10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.08.10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013.08.10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.08.10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013.08.10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.08.10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013.08.10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2013.08.17 02:06:31 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013.11.19 18:35:30 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.08.10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013.08.10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013.08.10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013.08.10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013.08.10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013.08.10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013.08.10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.08.17 02:06:27 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013.11.19 18:35:30 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.08.10 02:41:27 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013.08.10 02:41:27 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013.08.10 02:41:27 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013.08.10 02:41:28 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013.08.10 02:41:28 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013.08.10 02:42:08 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013.08.10 02:42:08 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.08.22 22:07:12 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~sk-SK~6.3.9600.16384.cat
[2013.08.22 21:41:06 | 000,000,781 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~sk-SK~6.3.9600.16384.mum
[2013.08.22 14:55:01 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013.08.22 08:47:48 | 000,000,511 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum
[2013.08.22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\System32\serialui.dll
[2013.08.22 22:07:12 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~sk-SK~6.3.9600.16384.cat
[2013.08.22 14:55:01 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013.09.30 05:57:58 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013.08.22 08:57:38 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.inf
[2013.11.19 18:51:14 | 000,004,224 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.PNF
[2013.08.22 13:40:08 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_1be60ad3a61e5531\serial.sys
[2013.09.30 05:58:06 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2013.08.22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2013.09.30 05:58:06 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\sk-SK\serialui.dll.mui
[2013.08.22 15:45:01 | 000,083,456 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\serial.sys
[2013.08.22 23:13:09 | 000,010,240 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\drivers\en-US\serial.sys.mui
[2013.08.22 23:13:09 | 000,000,232 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013.08.22 23:13:09 | 000,000,232 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013.08.22 15:45:00 | 000,001,032 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2013.08.22 23:13:09 | 000,010,240 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_f8cacded072dc6f7\serial.sys.mui
[2013.08.22 15:45:01 | 000,083,456 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2013.08.22 23:12:47 | 000,000,276 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_sk-sk_ee95d5b2aeec0f13.manifest
[2013.08.22 23:12:54 | 000,000,249 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013.08.22 15:44:26 | 000,000,210 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013.08.22 15:25:34 | 000,000,297 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013.08.22 15:44:37 | 000,001,512 | ---- | M] () -- \Windows\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9\Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013.09.30 05:57:58 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013.08.22 08:57:38 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2013.09.30 05:58:06 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_sk-sk_6abba959e4bb151f\serialui.dll.mui
[2013.08.22 13:13:54 | 000,017,920 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_e5c00198f2a1c32d\serialui.dll
[2013.09.30 05:57:58 | 000,010,240 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_f8cacded072dc6f7\serial.sys.mui
[2013.08.22 13:40:08 | 000,083,456 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2013.08.10 02:41:27 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_f73c7de0bb1de286\System.Runtime.Serialization.Formatters.Soap.dll
[2013.08.10 02:41:28 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..lization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_64635c6af076b012\System.Runtime.Serialization.Primitives.dll
[2013.08.10 02:41:27 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288\System.Runtime.Serialization.Json.dll
[2013.08.10 02:41:28 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5\System.Runtime.Serialization.Xml.dll
[2013.08.10 02:41:27 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba\System.Runtime.Serialization.dll
[2013.08.10 02:42:08 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399\System.Xml.Serialization.dll
[2013.08.10 02:42:08 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c\System.Xml.XmlSerializer.dll
[2013.08.17 02:06:27 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_f057a9271ce694b1\System.Runtime.Serialization.Formatters.Soap.dll
[2013.11.19 18:35:30 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7\System.Runtime.Serialization.dll
[2013.11.19 18:35:28 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060\System.Runtime.Serialization.dll
[2013.09.30 05:56:23 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_sk-sk_ee95d5b2aeec0f13.manifest
[2013.09.30 05:56:43 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013.08.22 17:20:14 | 000,000,210 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013.08.22 15:25:34 | 000,000,297 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013.08.22 17:22:11 | 000,001,512 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013.08.22 17:22:07 | 000,000,110 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_1d7b32f2da6cfe0c.manifest
[2013.08.22 17:24:27 | 000,000,402 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288.manifest
[2013.08.22 17:24:29 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5.manifest
[2013.08.22 17:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba.manifest
[2013.08.22 17:24:28 | 000,000,397 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399.manifest
[2013.08.22 17:24:27 | 000,000,403 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c.manifest
[2013.08.22 17:24:13 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7.manifest
[2013.08.22 17:24:13 | 000,000,416 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060.manifest
[2013.08.22 17:24:29 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013.08.22 17:24:24 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013.08.22 17:24:13 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2013.09.30 05:57:33 | 000,000,149 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_en-us_80951863a93f3c56.manifest
[2013.09.30 05:57:30 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_en-us_d5f7bfa5c739f91d.manifest
[2013.08.22 17:24:24 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013.08.22 17:24:27 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2013.08.22 17:24:13 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2013.08.22 17:24:28 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013.08.22 17:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013.08.22 17:24:56 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2013.08.10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2013.08.17 02:06:31 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2013.08.10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013.08.10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2013.11.19 18:35:30 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2013.08.10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2013.08.10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2013.11.19 18:35:29 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2013.08.10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013.08.10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2013.09.30 05:58:06 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_sk-sk_0e9d0dd62c5da3e9\serialui.dll.mui
[2013.08.22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2013.08.03 06:41:46 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 456 bytes -> C:\WINDOWS\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9:$WIMMOUNTDATA
@Alternate Data Stream - 233 bytes -> C:\Users\Simona\SkyDrive:ms-properties

< End of report >

[sima707]

OTL Extras logfile created on: 5.6.2014 11:00:56 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Simona\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17031)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d.M.yyyy

3,71 Gb Total Physical Memory | 1,09 Gb Available Physical Memory | 29,38% Memory free
7,46 Gb Paging File | 4,64 Gb Available in Paging File | 62,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 441,53 Gb Total Space | 308,36 Gb Free Space | 69,84% Space Free | Partition Type: NTFS

Computer Name: SIMA | User Name: Sima | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1228448097-215964479-906076251-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{014D102A-0016-4ACC-A9C1-63FC9B55B835}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{068C2DCD-FEA8-43CA-B066-33002D01292C}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{12568561-B36A-4E15-B795-F88C2025C349}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4D703ED9-5FCC-4884-88DD-6D7175A4C9C6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6CB62F76-208D-44A5-8167-153909D7BB99}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{7D03FCD2-E1CD-419E-AD7A-8243D95A0556}" = rport=2869 | protocol=6 | dir=out | app=system |
"{8BDF7A8B-A941-42E3-9CC6-F07215FC0E47}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8E84B96B-6FF2-4B03-A08C-8F01FB3C6DED}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8ECC8D5D-A2CE-4180-BF85-417C1EFC3483}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{9C41B5D8-F998-4D03-9F0C-857F984E78B6}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{EC6C37AA-5F6D-445D-9183-D0FE8DFF69B4}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{045F4741-F449-4147-9C48-DDF985566468}" = dir=out | name=windows_ie_ac_001 |
"{066DB5DC-CF4A-4739-88D7-8606D8910BE4}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{0DC1E781-C678-431E-AE12-935F55650D36}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{1382FEB5-0A53-4CB9-9431-1D82EFD2CACF}" = protocol=6 | dir=out | app=c:\program files (x86)\samsung\easy file share\easyfileshare.exe |
"{1428EB06-38F9-4781-AF9B-D890FB332BD8}" = dir=out | name=kindle |
"{18709A62-5A6F-4B3E-B4FD-B10497E399E9}" = dir=in | name=pinball fx2 |
"{1D26CD5D-C35D-46C7-87CE-C407BCBC9337}" = dir=out | name=s camera |
"{20391D32-8899-4748-AC02-281E172D39B7}" = dir=out | name=s player |
"{21A91FF5-3FE5-4F7C-A313-5F3D45DBAACA}" = dir=out | name=@{microsoft.bingtravel_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{2B3B5DC1-5D80-497D-9D55-EEA4941E3EC0}" = dir=out | name=@{microsoft.bingweather_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{2CA95D15-F47A-4F5A-B8FB-CFC2D4AFB36E}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{2FAFBAE3-EF71-4C93-A7B4-41FDDF82CEF6}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{30A63308-CBFA-4D90-89A8-3E2A4F69DF12}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{3242CFED-B1B3-475A-A3FA-44A07AA92C4C}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{3256CB6D-4680-4DE7-9DDA-79ADB0390402}" = dir=out | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
"{3324D655-7426-4EBA-8F49-042B08CE3DE0}" = dir=in | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
"{353798A5-ACF3-404C-8AEA-010DE15E1679}" = dir=in | app=c:\program files\intel corporation\intel widi\widiapp.exe |
"{3F2E6FCA-AAAA-4E5C-BE85-A19B3C33A790}" = dir=out | name=windows_ie_ac_001 |
"{3FC257AA-C287-4301-8263-AB471B06A46E}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{42124123-0464-4B54-8888-91C8714F8502}" = protocol=6 | dir=in | app=c:\program files (x86)\remote mouse\miniweb.exe |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{454C257A-290B-44F6-B765-54A0421A8C3C}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{459739F7-F86A-491C-ABB6-C636E1127595}" = protocol=17 | dir=in | app=c:\program files (x86)\remote mouse\remotemouse.exe |
"{48B0E36C-147D-46FE-BCCD-AFDCCC5ABA6B}" = dir=out | name=@{microsoft.bingnews_3.0.2.261_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{49210B96-2EDA-4382-BFB1-3201C1C9565C}" = protocol=17 | dir=in | app=c:\program files (x86)\remote mouse\miniweb.exe |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{56416F7D-7E49-4F9E-A5C0-FFCDA7529D11}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{58A03D4B-F32A-4F05-B793-2E42BA9EA8D0}" = dir=out | name=@{microsoft.bingmaps_2.1.2922.2139_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{5A23E85A-2714-40D3-A671-5B74F3B5D8D2}" = dir=out | name=@{microsoft.bingfinance_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{5BC54D0F-54D0-4331-A058-C193BA011221}" = dir=in | name=skype |
"{5BE78F03-D3D5-455C-A1A2-73F9CAFB197D}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{5F532BA5-A0FB-4F73-B955-B39C6BB8F388}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{60E6206C-F229-4015-A582-92CEC199E874}" = dir=out | name=s gallery |
"{62F72A74-0AB0-495E-8AF7-7553DCB4D3C7}" = dir=out | name=photoeditor |
"{63C2A2F7-D4BD-4ED2-8643-C143E8E0E08A}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{64238E7D-4BAB-49AB-A5C8-D8FE11BB4DE4}" = dir=out | name=@{microsoft.zunemusic_2.2.902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{644D38D1-8771-4AA7-BB4B-07338DB5B4D6}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{654FE72D-F551-405B-A7B2-A480CEB656DB}" = dir=out | name=fresh paint |
"{69A66C9A-C5A4-45C9-847C-A860828F14EC}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{6A9CF313-A4AC-4FA0-9C2E-FEDE744E9F3E}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6E813079-3A3D-4F74-88D0-527F1FBB80D1}" = dir=in | app=%systemroot%\system32\alg.exe |
"{72B19942-9FC0-42D7-A30D-4012B94B32A7}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7A070492-787C-416C-815C-FFD62B6E3FF4}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{86BD3E1C-1874-4B3C-B535-8815513641A8}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{884001BC-E73B-4ABF-B394-1BA6FE66B79F}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{8F259AB7-64F0-4386-A656-7A7F391723FA}" = dir=out | name=juniper networks junos pulse |
"{8F6E87BE-81F0-42B9-A882-90FD6CD9C1CB}" = dir=in | name=sonicwall mobile connect |
"{9135E5E9-7F8C-45BD-9163-D5A050F1DE74}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{9187F155-E069-4BD7-9BA1-231830253732}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{933533F7-3FFA-4051-BB7A-2AA92A73F408}" = dir=out | name=shark dash |
"{93DD5623-07D7-48CB-848B-8CE67C710716}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{96525927-110F-40DE-986B-536980A364AB}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{9A367690-D324-4C11-9C86-0D538F47D0AF}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{9B1F1965-A2E5-49F9-AAEE-2A47231CDF39}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{9DB91831-9A82-4573-8BB5-DB4B4F5592A8}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9FAC4E87-B360-41A9-86E3-B70C3ECEE4C0}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{A0769769-C5FD-4328-BA93-0F89F4071E76}" = dir=out | name=family story |
"{A4520305-D6F1-4B09-BDF7-78128F8B09E3}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{A5FDAE6C-B385-4CFB-BA60-650450E29089}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{ABA22A94-87C9-47F2-BA6B-06B9507718ED}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B12CABF2-902F-45E9-8A1A-C3270D845F99}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{B6E71829-7DFF-49F2-B8B9-E313D0696CD0}" = dir=out | name=windows_ie_ac_001 |
"{B7C37F89-771E-44BD-B3E6-EB8CDF51BBAE}" = dir=in | name=f5 vpn |
"{B8DDE26E-E70B-4132-9CEE-10211F335117}" = protocol=6 | dir=in | app=c:\program files (x86)\remote mouse\remotemouse.exe |
"{BBBA08D9-DCA0-4C70-9C5D-7CEF72A930E6}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{C368047C-91BC-4751-931F-9088AAEE5421}" = dir=out | name=chaton |
"{CA4585C9-C568-4E91-A351-A25242258FF7}" = dir=out | name=merriam-webster dictionary |
"{CE4DFFFA-0C79-4B5A-9480-DEFE7A1C91C9}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{CF761490-3787-4643-A17A-685E8474955B}" = protocol=6 | dir=in | app=c:\program files (x86)\samsung\easy file share\easyfileshare.exe |
"{CF8CEA16-F9D4-493D-919B-61351EEBFF65}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D24CBE4C-331E-4C5E-AAF9-A0A00DE4CC84}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{D6358E0A-A583-4584-BE81-014D6E8AB8A3}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{D66A94D0-CD19-415E-9C16-A0FED0882C8E}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D73BB825-CC10-4A47-AF4A-8BA9333DBD07}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{D83BCB71-546E-4834-A3DD-6B120E5D856E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{D89F586A-2C79-4C68-999B-6FA8ECC24561}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DB7D5B81-C333-42B8-9424-F9D5FC3E3591}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{DC37A998-6B06-4200-A2DB-555B8C71BB91}" = dir=out | name=norton studio |
"{E09A1764-F19F-485A-BDB7-22E15791DE9B}" = dir=out | name=jamie's recipes |
"{E4BB1870-F16E-44A4-B0E7-92B913E885D8}" = dir=out | name=pinball fx2 |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{EBA53646-64CE-46FF-87C3-D6415870F8B0}" = dir=in | name=evernote touch |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EC7A4ADE-F9AE-419E-B9E7-016311F6ED65}" = dir=out | name=check point vpn |
"{ED3D7FAE-640F-474D-863A-5D4A1E85F2EB}" = dir=out | name=evernote touch |
"{EDA93A35-DF4E-4B82-967E-99BB22531E4D}" = dir=out | name=skype |
"{F2428D20-491F-4D11-B400-2C2016A45389}" = dir=in | name=juniper networks junos pulse |
"{F4D655A9-1264-4A90-86D2-43839BC2A2BE}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{F51F6A98-9A5A-487F-BC42-0A7C0238AB33}" = dir=out | name=@{microsoft.bingsports_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FA587B74-FC24-47E5-BED7-BD0B4612E2B1}" = dir=out | name=@{microsoft.zunevideo_2.2.902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{FBCAB59A-3E9B-497C-AED7-5A9703B2686B}" = dir=out | name=sonicwall mobile connect |
"{FC5194AC-A7F4-42D9-B154-2A76C499F642}" = dir=in | name=check point vpn |
"{FD81ECDF-4F7E-458A-B115-29DC855F5D22}" = dir=out | name=f5 vpn |
"{FE5E7A7C-91F4-4ED3-B820-72ADC91405E5}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{FE721EF6-48DC-4C19-8373-ED5B29CE983A}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{FFDA299D-6C0D-4145-9A52-FB651737B61C}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"TCP Query User{17E176D2-8E4C-4A51-8357-70F4B8C66801}D:\vls\vlsserver.exe" = protocol=6 | dir=in | app=d:\vls\vlsserver.exe |
"TCP Query User{1CBA44F6-1D6E-4987-9D07-883E216498E1}D:\vls\vlsserver.exe" = protocol=6 | dir=in | app=d:\vls\vlsserver.exe |
"TCP Query User{218BCC46-40CD-4251-8BF6-C9C29257AC0D}C:\program files (x86)\remote mouse\miniweb.exe" = protocol=6 | dir=in | app=c:\program files (x86)\remote mouse\miniweb.exe |
"TCP Query User{2455B52B-E881-4A20-B584-9C6AD34EAB84}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"TCP Query User{2E5B6B86-D17D-4B24-B3BE-2DF0CE9CD14B}C:\program files (x86)\remote mouse\remotemouse.exe" = protocol=6 | dir=in | app=c:\program files (x86)\remote mouse\remotemouse.exe |
"TCP Query User{7E206A32-7430-40F9-B499-7DBB4C226F95}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{A1B6E8A3-8FC9-4A0E-97A6-88ED10D7851F}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"TCP Query User{ABBCAAA4-3103-45F4-BB66-502F998DFFA9}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{109BCECA-90F2-4899-8C5A-4AAA77BE56CA}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{1D77AF88-52BF-4E34-8A8E-B5553A65F146}D:\vls\vlsserver.exe" = protocol=17 | dir=in | app=d:\vls\vlsserver.exe |
"UDP Query User{2B76C98C-B290-4448-9084-CB93178DEB0C}C:\program files (x86)\remote mouse\remotemouse.exe" = protocol=17 | dir=in | app=c:\program files (x86)\remote mouse\remotemouse.exe |
"UDP Query User{3FF1B606-5C77-42DE-9192-01C17962E723}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{E5F22E68-F50E-43B9-87A4-DF76DAF008DC}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{F072F781-0DCF-491F-AC2B-31951FE396FD}C:\program files (x86)\remote mouse\miniweb.exe" = protocol=17 | dir=in | app=c:\program files (x86)\remote mouse\miniweb.exe |
"UDP Query User{F08A084C-1192-470E-A9AC-49DD632307A6}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{F3EF6F44-073A-45E5-8742-B118580A2442}D:\vls\vlsserver.exe" = protocol=17 | dir=in | app=d:\vls\vlsserver.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP230_series" = Canon MP230 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}" = Apple Mobile Device Support
"{3CB5FD1E-CE42-4A72-ACD2-7A8CD022845E}" = Intel® PROSet/Wireless WiFi Software
"{3EA6AB5D-D434-4ACA-9609-48F1319518EF}" = ExpressCache
"{40803cc6-8796-448c-b164-db92c4ea98fc}" = Intel(R) PRO/Wireless Driver
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6097158B-0184-4140-BEC3-7885794D2571}" = Intel(R) WiDi
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7288D4E1-8050-4B81-B9EC-F812D17AD693}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}" = Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology
"{843A1BDC-0879-4E5B-83E1-B81CC0CF3580}" = Support Center
"{90150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-041B-1000-0000000FF1CE}" = Microsoft Access MUI (Slovak) 2013
"{90150000-0016-041B-1000-0000000FF1CE}" = Microsoft Excel MUI (Slovak) 2013
"{90150000-0018-041B-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (Slovak) 2013
"{90150000-0019-041B-1000-0000000FF1CE}" = Microsoft Publisher MUI (Slovak) 2013
"{90150000-001A-041B-1000-0000000FF1CE}" = Microsoft Outlook MUI (Slovak) 2013
"{90150000-001B-041B-1000-0000000FF1CE}" = Microsoft Word MUI (Slovak) 2013
"{90150000-001F-0405-1000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040E-1000-0000000FF1CE}" = Microsoft Office Nyelvi ellenőrző eszközök 2013 – magyar
"{90150000-001F-041B-1000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-002C-041B-1000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2013
"{90150000-0044-041B-1000-0000000FF1CE}" = Microsoft InfoPath MUI (Slovak) 2013
"{90150000-006E-041B-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2013
"{90150000-0090-041B-1000-0000000FF1CE}" = Microsoft DCF MUI (Slovak) 2013
"{90150000-00A1-041B-1000-0000000FF1CE}" = Microsoft OneNote MUI (Slovak) 2013
"{90150000-00BA-041B-1000-0000000FF1CE}" = Microsoft Groove MUI (Slovak) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-041B-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Slovak) 2013
"{90150000-00E1-041B-1000-0000000FF1CE}" = Microsoft Office OSM MUI (Slovak) 2013
"{90150000-00E2-041B-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Slovak) 2013
"{90150000-012B-041B-1000-0000000FF1CE}" = Microsoft Lync MUI (Slovak) 2013
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{AEC9D273-E162-4614-83F1-722B8C74B185}" = Help Desk
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CFEA455B-E368-45B2-A01E-1C3A6C0F06B6}" = S Agent
"{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}" = iTunes
"{EC36E2BC-86F7-44C9-84B2-93930F0FBDBF}" = Quick Starter
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"{F842F8B0-6942-4930-821F-543E976B2C66}" = MSVCRT110_amd64
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Windows Driver Package - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"9F04C462DAB591BDCCE784F77E4D4F1736010B92" = Windows Driver Package - Samsung Electronics Co. Ltd. (RadioHIDMini) HIDClass (07/27/2012 20.57.1.735)
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-X64 11.7.2.1_WHQL
"Office15.PROPLUS" = Microsoft Office 2013 Professional Plus

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01C62BE2-E4D2-4B53-9584-1A91FB3E153D}" = Photo Common
"{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1" = Remote Mouse version 2.06
"{07EDFDF9-F920-4BCB-B6FD-59DB8FFFFF47}" = Movie Maker
"{0FE5A4D8-08BF-4D73-AB4B-2820D637E02E}" = Fast Flash Sleep Resume
"{1057511B-F8FE-4230-9ED3-AB949A57EE4A}" = Windows Live PIMT Platform
"{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}" = Recovery
"{1AED08A6-6BC5-4927-8FCD-FEE9ED00D2F2}" = Fotogalerie
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{233B918E-99FD-4643-BEDD-A9855A56FC3A}" = Windows Live UX Platform Language Pack
"{29315CEC-E6CE-4394-84DC-6F862E8D9A52}" = Windows Live UX Platform
"{295A4A93-4462-4B26-9800-7706D8C22A60}" = Movie Maker
"{3136AA57-563A-4BF4-98A5-CC0276BF4DC0}" = Fotogalerija
"{34D42BA7-804F-41CB-A7F5-6C1E5169422F}" = Windows Live UX Platform Language Pack
"{35BD47F4-C19B-474F-AACC-E8C0BE38148A}" = Photo Common
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40F4FF7A-B214-4453-B973-080B09CED019}" = Absolute Reminder
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4C0D8B3E-63F0-4773-83F5-C5B7795B0FB8}" = Photo Gallery
"{4F9A382F-4478-4036-905C-F77DF2EA0370}" = Windows Live SOXE
"{4FA8F084-C42F-45E1-B7E5-E0C8A1083DC5}" = Windows Live SOXE Definitions
"{52E5DE60-C96B-42CC-9A37-FE04725940AE}" = Settings
"{55F84131-D974-4CDA-AD01-C7DDAA3F19F2}" = Windows Live UX Platform Language Pack
"{5BD54B96-C51E-4CE0-A507-1B606EE4364E}" = Photo Common
"{5D382E05-9CFA-45A5-962B-8F578E7D3A23}" = Photo Common
"{5D4E117D-FC6A-4FB8-81E3-BEFFAE2F7BE6}" = User Guide
"{61889FC7-9738-439A-96B3-17AF981BDDEF}" = Movie Maker
"{63535877-2396-4437-9BF5-C9BE41EE7677}" = Windows Live Essentials
"{644F4910-E812-49AD-93EC-86828CB81A0D}" = PC Connectivity Solution
"{64DF7404-9D46-44AF-AFA1-A2F8D5648C2D}" = Windows Live Photo Common
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{723E4732-695B-4628-B5EC-A98EA34AA0F0}" = Movie Maker
"{76EE8FE7-1957-4C51-9074-4930A8CFB1AF}" = Windows Live Installer
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A214298-DDD9-470E-895D-A8051ECA0093}" = Windows Live UX Platform Language Pack
"{8190420D-F4BA-4744-8940-A466F81AF89C}_is1" = Ulož.to File Manager verzia 1.6
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8A05A5FC-339B-434E-B46E-B74A5D5E1BDB}" = Fotogaléria
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{91786428-D4AA-476D-8AF9-A63FFAC2901F}" = Allshare Play Link
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B2E55F8-5BA8-4A45-9682-ACB6F2CC0DA5}" = Photo Gallery
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9FB5E2F2-510A-4D1D-AE5A-82EC382A5D8C}" = Galerija fotografija
"{A50DE037-B5C0-4C8A-8049-B0C576B313D1}" = Google+ Auto Backup
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A59DA39F-305C-44A0-9747-0646A31394CA}" = Windows Live Essentials
"{A6C48A9F-694A-4234-B3AA-62590B668927}" = Intel(R) Manageability Engine Firmware Recovery Agent
"{A7A34FC9-DF24-4A36-00AD-D4EFE94CC116}" = SimCity 4 Deluxe
"{A7C37D4B-F37A-42E8-9B6A-B28C18AD4C12}" = Easy File Share
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.10) MUI
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{b1b3d602-c833-4b5d-9dd7-172fb4122b30}" = Intel® PROSet/Wireless Software
"{B8292FC1-3D39-43A0-B65B-BADDA11151FB}" = Windows Live Essentials
"{BA73469B-D8C7-4FE3-B33C-1340D09F0709}" = Windows Live Communications Platform
"{BE905C46-2B34-4D73-AEE1-769ED138E0FF}" = Virtual Router v1.0
"{C2CDACDF-EC5C-4F9F-B2D7-D6486CFAAD58}" = Fotótár
"{C5335524-82F2-4C78-8A86-7B44AD1946FB}" = Windows Live Essentials
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{D296620B-C85E-4890-A9B3-197A521B3457}" = Photo Common
"{D71BC54E-A4E6-4E06-866C-FD6EE16EA187}" = Movie Maker
"{DA06101F-FD76-4BF0-88BD-B26A197005E3}" = SW Update
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1B7239A-120F-4676-9B19-D2B028BEBDD1}" = Windows Live Essentials
"{E48B3EBF-0CEC-43AB-AC12-B36439ABE14C}" = Movie Maker
"{E653AB36-18D7-4FB3-BDAF-024283971050}" = Support Center FAQ
"{E9CA6D2F-30AF-48DB-8B29-6593AA68D61B}" = Windows Live UX Platform Language Pack
"{EBFCBD05-77A3-4FC3-A6D2-27218B61D957}" = Windows Live Essentials
"{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}" = E-POP
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F11000FE-0010-0000-0000-074957833700}" = ABBYY FineReader 11
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5153DD9-B31E-48DA-BBB3-34E9428DA84B}" = Movie Maker
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{F9328515-878F-4AB9-A113-104DD1A1F6EB}" = Photo Common
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FDF614F8-710F-4C28-A90F-07A9BC82774D}" = Windows Live UX Platform Language Pack
"3D073343-CEEB-4ce7-85AC-A69A7631B5D6" = Intel(R) Rapid Start Technology
"Adobe Flash Player Plugin" = Adobe Flash Player 13 Plugin
"AudioCS" = Creative Audio Control Panel
"Canon_IJ_Scan_Utility" = Canon IJ Scan Utility
"ConMet" = Connection Meter
"Console Launcher" = Creative Console Launcher
"DAEMON Tools Lite" = DAEMON Tools Lite
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"FastShare.cz_is1" = FastShare.cz verze 1.1
"Google Chrome" = Google Chrome
"Intel AppUp(SM) center 33070" = Intel AppUp(SM) center
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 2.0.2.1012
"Opera 12.16.1860" = Opera 12.16
"Picasa 3" = Picasa 3
"Verbatim Product Update_is1" = Verbatim Product Update 1.06
"VLC media player" = VLC media player 2.0.8
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.20 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1228448097-215964479-906076251-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 3.6.2014 12:30:38 | Computer Name = Sima | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4.6.2014 1:45:42 | Computer Name = Sima | Source = Office 2013 Licensing Service | ID = 0
Description =

Error - 4.6.2014 2:29:36 | Computer Name = Sima | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 4.6.2014 2:29:36 | Computer Name = Sima | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 15375

Error - 4.6.2014 2:29:36 | Computer Name = Sima | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 15375

Error - 4.6.2014 7:19:59 | Computer Name = Sima | Source = Perflib | ID = 1008
Description =

Error - 4.6.2014 7:23:40 | Computer Name = Sima | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4.6.2014 7:23:41 | Computer Name = Sima | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4.6.2014 18:04:25 | Computer Name = Sima | Source = Office 2013 Licensing Service | ID = 0
Description =

Error - 5.6.2014 3:52:52 | Computer Name = Sima | Source = Application Hang | ID = 1002
Description = The program LiveComm.exe version 17.5.9600.20498 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1fb4 Start
Time: 01cf8041bb0b583a Termination Time: 4294967295 Application Path: C:\Program
Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

Report
Id: 6397b777-ec86-11e3-beec-50b7c3823237 Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

Faulting
package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

[ System Events ]
Error - 5.6.2014 4:54:36 | Computer Name = Sima | Source = Schannel | ID = 36882
Description = The certificate received from the remote server was issued by an untrusted
certificate authority. Because of this, none of the data contained in the certificate
can be validated. The SSL connection request has failed. The attached data contains
the server certificate.

Error - 5.6.2014 4:55:00 | Computer Name = Sima | Source = ipnathlp | ID = 34001
Description =

Error - 5.6.2014 4:55:13 | Computer Name = Sima | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
code is 48. The Windows SChannel error state is 552.

Error - 5.6.2014 4:55:13 | Computer Name = Sima | Source = Schannel | ID = 36882
Description = The certificate received from the remote server was issued by an untrusted
certificate authority. Because of this, none of the data contained in the certificate
can be validated. The SSL connection request has failed. The attached data contains
the server certificate.

Error - 5.6.2014 4:56:34 | Computer Name = Sima | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
code is 48. The Windows SChannel error state is 552.

Error - 5.6.2014 4:56:34 | Computer Name = Sima | Source = Schannel | ID = 36882
Description = The certificate received from the remote server was issued by an untrusted
certificate authority. Because of this, none of the data contained in the certificate
can be validated. The SSL connection request has failed. The attached data contains
the server certificate.

Error - 5.6.2014 4:57:46 | Computer Name = Sima | Source = Schannel | ID = 36888
Description = A fatal alert was generated and sent to the remote endpoint. This
may result in termination of the connection. The TLS protocol defined fatal error
code is 48. The Windows SChannel error state is 552.

Error - 5.6.2014 4:57:46 | Computer Name = Sima | Source = Schannel | ID = 36882
Description = The certificate received from the remote server was issued by an untrusted
certificate authority. Because of this, none of the data contained in the certificate
can be validated. The SSL connection request has failed. The attached data contains
the server certificate.

Error - 5.6.2014 5:07:01 | Computer Name = Sima | Source = ipnathlp | ID = 34001
Description =

Error - 5.6.2014 5:19:09 | Computer Name = Sima | Source = ipnathlp | ID = 34001
Description =


< End of report >

[Márty84]

momentálne používam len obyčajný Windows defenfer....aký by ste mi odporučili??

Ja pouzivam uz radu let Avast free.


Odinstalujte MBAM


Vypnete antivir, at nebrani programu v praci.
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
AdobeARMservice
gupdate
AdobeFlashPlayerUpdateSvc
gupdatem
gusvc

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:otl
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1228448097-215964479-906076251-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 \Users\Simona\Downloads\*.tmp files -> \Users\Simona\Downloads\*.tmp -> ]
@Alternate Data Stream - 456 bytes -> C:\WINDOWS\Temp\9154bb95-e53f-4146-bcc5-ad4faa63aec9:$WIMMOUNTDATA
@Alternate Data Stream - 233 bytes -> C:\Users\Simona\SkyDrive:ms-properties

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Creative SB Monitoring Utility"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ConMet"=-
"DAEMON Tools Lite"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

[sima707]

nainštalovala som si ten avast...

a čo sa týka logu z OTL...po reštarte mi ostal počítač 5 min s čiernou obrazovkou, jediné načo reagoval bolo ctrl+alt+del, tak som ho znovu reštartovala a log sa neobjavil....môžem ho niekde vyhrabať alebo je stratený?

[sima707]

teraz mi vyhodilo odrazu nejaký log, ale je hrozne dlhý, bol by asi na 27 príspevkov a nedá sa mi poslať ani ako príloha

[Márty84]

a čo sa týka logu z OTL...po reštarte mi ostal počítač 5 min s čiernou obrazovkou, jediné načo reagoval bolo ctrl+alt+del, tak som ho znovu reštartovala a log sa neobjavil....môžem ho niekde

OTL nekdy pracuje jeste po restartu.

teraz mi vyhodilo odrazu nejaký log, ale je hrozne dlhý, bol by asi na 27 príspevkov a nedá sa mi poslať ani ako príloha

Poslete mi ho jako prilohu na mail (adresu mam v podpisu), nebo, pokud nechcete, at mam vasi adresu , hodte ho treba na leteckou postu a sem dejte odkaz na stazeni.