

Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2014-06-22 12:56:49
Microsoft Windows 8.1 Pro
System drive C: has 64 GB (63%) free of 102 GB
Total RAM: 2046 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:56:59, on 22. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\admin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.toolksearchbook.info/? ... Z&unqvl=46
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: DivX Browser Bar - {77e8143b-6759-416e-b521-82cfed75150b} - C:\Program Files (x86)\DivX_Browser_Bar\prxtbDivX.dll
O2 - BHO: SaveLotse - {CA0C4489-0745-44CD-E43E-601664764C47} - C:\ProgramData\SaveLotse\lYRlMYt9.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: DivX Browser Bar Toolbar - {77e8143b-6759-416e-b521-82cfed75150b} - C:\Program Files (x86)\DivX_Browser_Bar\prxtbDivX.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre7\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\progra~3\assist~1\assist~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7590 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {C0C2186D-9894-42D6-B495-D7131A61226B}
"C:\WINDOWS\system32\rundll32.exe" "c:\progra~3\assist~1\AssistantSvc.dll",service
"C:\WINDOWS\system32\rundll32.exe" "c:\progra~3\assist~1\AssistantSvc.dll",service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
dashost.exe {699202ee-e7f4-4967-93b60616ed15a32d}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
taskhostex.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\setup.exe" --on-os-upgrade --multi-install --chrome --system-level --verbose-logging
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1468.0.1667689317\467884890" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27,33 --gpu-vendor-id=0x10de --gpu-device-id=0x0a65 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3788 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --enable-software-compositing --channel="1468.3.1660614127\963515752" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --enable-software-compositing --channel="1468.5.1165274578\1854819404" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --enable-software-compositing --channel="1468.6.1068322259\2040701137" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --enable-software-compositing --channel="1468.7.2127289869\1994505998" /prefetch:673131151
"C:\Users\admin\Downloads\RSITx64.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\0da6p387.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nullsoft.com/winampDetector;version=1]
"Description"=Winamp Detector
"Path"=C:\Program Files (x86)\Winamp Detect\npwachk.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\0da6p387.default\extensions\
o.pokpa@gbbcoyyey-.co.uk
oa_htxktl@o-nvoiuvojp.edu
ooiirfwf_uiie@oaueueo.co.uk
ymql-cii@fblp-auejmt.co.uk
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-25 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA0C4489-0745-44CD-E43E-601664764C47}]
SaveLotse - C:\ProgramData\SaveLotse\lYRlMYt9.x64.dll [2014-05-22 403968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-25 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77e8143b-6759-416e-b521-82cfed75150b}]
DivX Browser Bar Toolbar - C:\Program Files (x86)\DivX_Browser_Bar\prxtbDivX.dll [2013-11-06 226592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA0C4489-0745-44CD-E43E-601664764C47}]
SaveLotse - C:\ProgramData\SaveLotse\lYRlMYt9.dll [2014-05-22 372224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{77e8143b-6759-416e-b521-82cfed75150b} - DivX Browser Bar Toolbar - C:\Program Files (x86)\DivX_Browser_Bar\prxtbDivX.dll [2013-11-06 226592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-03-20 1797064]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SunJavaUpdateSched"=C:\Program Files (x86)\Java\jre7\bin\jusched.exe []
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe []
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\PROGRA~3\ASSIST~1\ASSIST~2.DLL"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2014-06-22 12:56:49 ----D---- C:\rsit
2014-06-22 12:56:49 ----D---- C:\Program Files\trend micro
2014-06-22 11:49:37 ----A---- C:\WINDOWS\ntbtlog.txt
2014-06-21 23:06:15 ----D---- C:\Users\admin\AppData\Roaming\WinRAR
2014-06-21 22:11:20 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-06-21 22:09:50 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2014-06-21 22:07:50 ----D---- C:\WINDOWS\LastGood.Tmp
2014-06-21 22:04:57 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2014-06-21 22:04:57 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2014-06-21 22:04:57 ----A---- C:\WINDOWS\system32\drivers\nvhda64v.sys
2014-06-21 22:04:56 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2014-06-21 22:04:55 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2014-06-21 22:04:53 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2014-06-21 22:04:53 ----A---- C:\WINDOWS\system32\nvopencl.dll
2014-06-21 22:04:52 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2014-06-21 22:04:52 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2014-06-21 22:04:51 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2014-06-21 22:04:51 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2014-06-21 22:04:51 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2014-06-21 22:04:50 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2014-06-21 22:04:50 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2014-06-21 22:04:50 ----A---- C:\WINDOWS\system32\nvdispgenco6433788.dll
2014-06-21 22:04:49 ----A---- C:\WINDOWS\system32\nvdispco6433788.dll
2014-06-21 22:04:49 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2014-06-21 22:04:48 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2014-06-21 22:04:48 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2014-06-21 22:04:48 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2014-06-21 22:04:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuvenc.dll
2014-06-21 22:04:47 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2014-06-21 22:04:46 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2014-06-21 22:04:46 ----A---- C:\WINDOWS\system32\nvcuda.dll
2014-06-21 22:04:42 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2014-06-21 22:04:42 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-06-21 22:04:42 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2014-06-21 22:04:42 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-06-21 22:02:08 ----D---- C:\ProgramData\NVIDIA
2014-06-21 22:01:55 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-06-21 22:00:16 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-06-21 22:00:15 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-06-21 22:00:15 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-06-21 22:00:15 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-06-21 22:00:15 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-06-21 22:00:14 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-06-21 21:59:03 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-21 21:59:03 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-21 21:58:02 ----D---- C:\ProgramData\NVIDIA Corporation
2014-06-21 21:56:50 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-21 21:55:19 ----D---- C:\NVIDIA
2014-06-16 17:28:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-16 14:47:38 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-16 14:47:34 ----A---- C:\WINDOWS\system32\win32k.sys
2014-06-16 14:47:33 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-16 14:47:33 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-16 14:47:32 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-16 14:47:32 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-16 14:47:32 ----A---- C:\WINDOWS\system32\authui.dll
2014-06-16 14:47:31 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-06-16 14:47:30 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-06-16 14:47:30 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-16 14:47:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-06-16 14:47:29 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-06-16 14:47:29 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-16 14:47:29 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-16 14:47:28 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-06-16 14:47:28 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-06-16 14:47:28 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-06-16 14:47:28 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-06-16 14:47:28 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-06-16 14:47:27 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-06-16 14:47:27 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-06-16 14:47:27 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-06-16 14:47:27 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-06-16 14:47:27 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2014-06-16 14:47:27 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-06-16 14:47:27 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-16 14:47:26 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-06-16 14:47:26 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-06-16 14:47:26 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-06-16 14:47:26 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2014-06-16 14:47:26 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-06-16 14:47:26 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-06-16 14:47:26 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-06-16 14:47:26 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-06-16 14:47:25 ----A---- C:\WINDOWS\system32\winbici.dll
2014-06-16 14:47:25 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-06-16 14:47:25 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-06-16 14:47:25 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2014-06-16 14:47:25 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2014-06-16 14:47:25 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-06-16 14:47:23 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-06-16 14:47:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-06-16 14:47:23 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-06-16 14:47:22 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-06-16 14:47:22 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-06-16 14:47:22 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-06-16 14:47:22 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-06-16 14:47:20 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-06-16 14:47:20 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-06-16 14:47:19 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-06-16 14:47:19 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-06-16 14:47:18 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-06-16 14:47:18 ----A---- C:\WINDOWS\system32\fvecpl.dll
2014-06-16 14:47:18 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-06-16 14:47:17 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-06-16 14:47:16 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-06-16 14:47:16 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-06-16 14:47:14 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-06-16 14:47:13 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-16 14:47:13 ----A---- C:\WINDOWS\system32\srms.dat
2014-06-16 14:47:13 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-06-16 14:47:13 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-06-16 14:47:13 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2014-06-16 14:46:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-16 14:45:46 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-16 11:40:19 ----D---- C:\Program Files (x86)\BitSaver
2014-06-16 11:35:57 ----D---- C:\Program Files (x86)\SaveLots
2014-06-13 15:22:49 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-06-13 15:22:37 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-06-13 15:22:36 ----D---- C:\Program Files\Reference Assemblies
2014-06-13 15:22:36 ----D---- C:\Program Files\MSBuild
2014-06-13 15:19:35 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-06-13 15:19:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-06-13 15:19:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-13 15:19:31 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-06-13 15:19:31 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-06-13 15:19:31 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-13 15:17:20 ----D---- C:\Program Files\Common Files\Autodesk Shared
2014-06-13 15:17:20 ----D---- C:\Program Files\Autodesk
2014-06-13 15:17:05 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-06-13 15:17:05 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-06-13 15:17:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-06-13 15:17:05 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-06-13 15:17:05 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-06-13 15:17:05 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-06-13 15:17:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-06-13 15:17:04 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-06-13 15:17:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-06-13 15:17:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-06-13 15:17:03 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-06-13 15:17:03 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-06-13 15:17:03 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-06-13 15:17:03 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-06-13 15:17:02 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-06-13 15:17:02 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-06-13 15:17:00 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-06-13 15:17:00 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-06-13 15:16:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-06-13 15:16:59 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-06-13 15:16:59 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-06-13 15:16:59 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-06-13 15:16:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-06-13 15:16:58 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-06-13 15:16:47 ----D---- C:\ProgramData\Package Cache
2014-06-13 15:15:45 ----D---- C:\ProgramData\Autodesk
2014-06-13 15:14:25 ----D---- C:\Autodesk
2014-06-13 15:06:35 ----D---- C:\WINDOWS\SYSWOW64\Binaries
2014-06-13 15:06:00 ----D---- C:\KROSplusData
2014-06-13 14:16:57 ----A---- C:\WINDOWS\SYSWOW64\cdintf400.dll
2014-06-13 14:16:36 ----A---- C:\WINDOWS\system32\Ry4CoInst.dll
2014-06-13 14:16:36 ----A---- C:\WINDOWS\system32\drivers\Rockey4USB.sys
2014-06-13 14:16:36 ----A---- C:\WINDOWS\system32\drivers\Rockey4.sys
2014-06-13 14:11:15 ----D---- C:\Program Files (x86)\KROSplus
2014-06-12 08:21:26 ----D---- C:\ProgramData\SaveLots
2014-06-11 23:34:59 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 23:34:59 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 23:34:58 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 23:34:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 23:34:57 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 23:34:57 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 23:34:57 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 23:34:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 23:34:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 23:34:53 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 23:34:53 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 23:34:52 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 23:34:52 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 23:34:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 23:34:50 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 23:34:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 23:34:48 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 23:34:47 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 23:34:47 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 23:34:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 23:34:46 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 23:34:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 23:34:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 23:34:42 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 23:34:39 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 23:34:38 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 23:34:37 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 23:34:13 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 23:34:13 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 23:34:12 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 23:34:11 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 23:34:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 23:34:11 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 23:34:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 23:34:09 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 23:34:09 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 23:34:07 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 23:34:07 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 23:34:07 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 23:34:06 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 23:34:06 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 23:34:06 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 23:34:06 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 23:34:05 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 23:34:05 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 23:34:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 23:34:04 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 23:34:04 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 23:34:03 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 23:34:03 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 23:34:02 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 23:34:01 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-11 23:31:07 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-11 23:31:07 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-11 23:31:03 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-11 23:31:03 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-11 23:31:03 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-11 23:31:03 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-11 23:31:03 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-11 23:31:01 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-11 23:31:01 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-11 23:31:00 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-11 23:31:00 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-11 23:30:58 ----A---- C:\WINDOWS\system32\msrating.dll
2014-05-22 09:24:43 ----D---- C:\ProgramData\SaveLotse
2014-05-21 16:03:54 ----D---- C:\ProgramData\BitSaver
2014-05-18 16:03:26 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-05-18 16:03:25 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-05-18 16:03:25 ----A---- C:\WINDOWS\system32\twinui.dll
2014-05-18 16:03:24 ----A---- C:\WINDOWS\system32\shell32.dll
2014-05-18 16:03:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-18 16:03:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-05-18 16:03:21 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-18 16:03:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-05-18 16:03:20 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-18 16:03:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-05-18 16:03:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-05-18 16:03:18 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-05-18 16:03:17 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-18 16:03:16 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-18 16:03:16 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-05-18 16:03:15 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-18 16:03:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-18 16:03:15 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-18 16:03:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-05-18 16:03:14 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-05-18 16:03:14 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-05-18 16:03:14 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-05-18 16:03:14 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-18 16:03:13 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-05-18 16:03:13 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-18 16:03:13 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-05-18 16:03:13 ----A---- C:\WINDOWS\system32\winmde.dll
2014-05-18 16:03:13 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-05-18 16:03:13 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-18 16:03:12 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\services.exe
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-18 16:03:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-18 16:03:11 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-18 16:03:11 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-05-18 16:03:11 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-05-18 16:03:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-05-18 16:03:11 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-05-18 16:03:11 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-05-18 16:03:11 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-05-18 16:03:11 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-05-18 16:03:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-18 16:03:10 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-18 16:03:10 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-05-18 16:03:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-05-18 16:03:09 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-18 16:03:09 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\swprv.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\resutils.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-18 16:03:09 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-18 16:03:08 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-05-18 16:03:08 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-05-18 16:03:08 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-05-18 16:03:08 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-05-18 16:03:08 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-18 16:03:07 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-18 16:03:07 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-05-18 16:03:07 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-05-18 16:03:07 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-18 16:03:06 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-05-18 16:03:06 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-05-18 16:03:06 ----A---- C:\WINDOWS\system32\propsys.dll
2014-05-18 16:03:06 ----A---- C:\WINDOWS\system32\mf.dll
2014-05-18 16:03:05 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-05-18 16:03:05 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-05-18 16:03:05 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-05-18 16:03:05 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-05-18 16:03:05 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-05-18 16:03:05 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-05-18 16:03:04 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-05-18 16:03:04 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-05-18 16:03:04 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-05-18 16:03:04 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-05-18 16:03:03 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-05-18 16:03:03 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-18 16:03:03 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-05-18 16:03:03 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-05-18 16:03:03 ----A---- C:\WINDOWS\system32\srcore.dll
2014-05-18 16:03:03 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-05-18 16:03:03 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-05-18 16:03:02 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-05-18 16:03:02 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-05-18 16:03:02 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-18 16:03:02 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-05-18 16:03:02 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-18 16:03:02 ----A---- C:\WINDOWS\system32\mispace.dll
2014-05-18 16:03:02 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-18 16:03:01 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-05-18 16:03:01 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-05-18 16:03:01 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-18 16:03:01 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-05-18 16:03:01 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-18 16:03:01 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\system32\srclient.dll
2014-05-18 16:03:00 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-05-18 16:00:13 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-05-15 19:24:09 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-05-14 22:29:13 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-05-14 22:29:13 ----A---- C:\WINDOWS\system32\wusa.exe
2014-05-14 22:29:10 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-14 22:29:09 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-14 22:29:05 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-14 22:28:21 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-05-14 22:28:19 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-05-14 22:28:18 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-05-14 22:28:18 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-14 22:28:18 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-05-14 22:28:18 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-05-14 22:28:18 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-14 22:28:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-14 22:28:17 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-05-14 22:28:17 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-05-14 22:28:17 ----A---- C:\WINDOWS\system32\wups.dll
2014-05-14 22:28:17 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-05-14 22:28:16 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-05-14 22:28:16 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-05-14 22:28:16 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-05-14 22:28:16 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-05-14 22:28:16 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-05-14 22:28:16 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-05-14 22:27:49 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-05-14 22:27:49 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-05-14 22:27:49 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-05-14 22:27:49 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-05-09 13:12:34 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-05-09 13:12:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-09 13:12:33 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-05-09 13:12:33 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-05-09 13:12:33 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-05-09 13:12:33 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-05-09 13:12:32 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-05-09 13:12:32 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-05-09 13:12:31 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-05-09 13:12:30 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-05-09 13:12:30 ----A---- C:\WINDOWS\system32\sud.dll
2014-05-09 13:12:29 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-05-09 13:12:29 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-05-09 13:12:27 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-05-09 13:12:27 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-05-09 13:12:27 ----A---- C:\WINDOWS\system32\devinv.dll
2014-05-09 13:12:27 ----A---- C:\WINDOWS\system32\aepic.dll
2014-05-09 13:12:27 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-05-09 13:12:27 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-05-09 13:12:26 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-05-09 13:12:26 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-05-09 13:12:25 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-05-09 13:12:25 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-05-09 13:12:25 ----A---- C:\WINDOWS\system32\dwm.exe
2014-05-09 13:12:24 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-05-09 13:12:24 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-05-09 13:12:23 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-05-09 13:12:23 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-09 13:12:23 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-05-09 13:12:23 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-05-09 13:12:22 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-05-09 13:12:21 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-05-09 13:12:20 ----A---- C:\WINDOWS\system32\tdh.dll
2014-05-09 13:12:18 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-05-09 13:12:18 ----A---- C:\WINDOWS\system32\cscui.dll
2014-05-09 13:12:17 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-05-09 13:12:17 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-05-09 13:12:16 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-05-09 13:12:16 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-05-09 13:12:16 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-05-09 13:12:13 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-05-09 13:12:13 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-05-09 13:12:13 ----A---- C:\WINDOWS\system32\das.dll
2014-05-09 13:12:13 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-05-09 13:12:11 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-05-09 13:12:10 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-05-09 13:12:09 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-05-09 13:12:08 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-05-09 13:12:08 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-05-09 13:12:04 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-05-09 13:12:03 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-05-09 13:12:02 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-05-09 13:12:01 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-05-09 13:12:01 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-05-09 13:11:59 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-05-09 13:11:58 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-05-09 13:11:56 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-05-09 13:11:56 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-05-09 13:11:56 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-05-09 13:11:56 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-05-09 13:11:55 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-05-09 13:11:54 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-05-09 13:11:53 ----A---- C:\WINDOWS\system32\winresume.exe
2014-05-09 13:11:53 ----A---- C:\WINDOWS\system32\dui70.dll
2014-05-09 13:11:52 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-05-09 13:11:52 ----A---- C:\WINDOWS\system32\winload.exe
2014-05-09 13:11:52 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-05-09 13:11:52 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-05-09 13:11:51 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-05-09 13:11:51 ----A---- C:\WINDOWS\system32\imm32.dll
2014-05-09 13:11:50 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-05-09 13:11:50 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-05-09 13:11:50 ----A---- C:\WINDOWS\system32\slpts.dll
2014-05-09 13:11:49 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-05-09 13:11:49 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-05-09 13:11:48 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-05-09 13:11:48 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-05-09 13:11:48 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-05-09 13:11:46 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-05-09 13:11:45 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-05-09 13:11:45 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-05-09 13:11:42 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-05-09 13:11:42 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-05-09 13:11:41 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-05-09 13:11:41 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-05-09 13:11:41 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-05-09 13:11:41 ----A---- C:\WINDOWS\system32\hal.dll
2014-05-09 13:11:39 ----A---- C:\WINDOWS\system32\conhost.exe
2014-05-09 13:11:38 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-05-09 13:11:38 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-05-09 13:11:38 ----A---- C:\WINDOWS\system32\energy.dll
2014-05-09 13:11:37 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-05-09 13:11:36 ----A---- C:\WINDOWS\system32\acppage.dll
2014-05-09 13:11:35 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-05-09 13:11:35 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-05-09 13:11:35 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-05-09 13:11:35 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-05-09 13:11:34 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-05-09 13:11:34 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-05-09 13:11:34 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-05-09 13:11:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-05-09 13:11:29 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-05-09 13:11:29 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-05-09 13:11:28 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-05-09 13:11:28 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-05-09 13:11:25 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-05-09 13:11:25 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-05-09 13:11:22 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-05-09 13:11:22 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-05-09 13:11:22 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-05-09 13:11:21 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-05-09 13:11:21 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-05-09 13:11:21 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-05-09 13:11:21 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-05-09 13:11:20 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-05-09 13:11:20 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-05-09 13:11:20 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-05-09 13:11:16 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-05-09 13:11:15 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-05-09 13:11:15 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-05-09 13:11:15 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-05-09 13:11:14 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-05-09 13:11:10 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-05-09 13:11:10 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-05-09 13:11:09 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-05-09 13:11:08 ----A---- C:\WINDOWS\system32\migisol.dll
2014-05-09 13:11:07 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-05-09 13:11:07 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-05-09 13:11:07 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-05-09 13:11:04 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-05-09 13:11:03 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-05-09 13:11:02 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-05-09 13:11:02 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-05-09 13:11:01 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-05-09 13:11:01 ----A---- C:\WINDOWS\system32\msctf.dll
2014-05-09 13:11:00 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-05-09 13:11:00 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-05-09 13:11:00 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-05-09 13:10:59 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-05-09 13:10:58 ----A---- C:\WINDOWS\system32\webservices.dll
2014-05-09 13:10:58 ----A---- C:\WINDOWS\system32\sppc.dll
2014-05-09 13:10:58 ----A---- C:\WINDOWS\system32\slc.dll
2014-05-09 13:10:56 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-05-09 13:10:56 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-05-09 13:10:54 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-05-09 13:10:53 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-05-09 13:10:52 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-05-09 13:10:52 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-05-09 13:10:51 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-05-09 13:10:51 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-05-09 13:10:51 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-05-09 13:10:51 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-05-09 13:10:50 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-05-09 13:10:50 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-05-09 13:10:50 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-05-09 13:10:49 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-05-09 13:10:48 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-05-09 13:10:48 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-05-09 13:10:48 ----A---- C:\WINDOWS\system32\samlib.dll
2014-05-09 13:10:48 ----A---- C:\WINDOWS\system32\qedit.dll
2014-05-09 13:10:47 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-05-09 13:10:47 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-05-09 13:10:47 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-05-09 13:10:46 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-05-09 13:10:46 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-05-09 13:10:46 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-05-09 13:10:46 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-05-09 13:10:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-05-09 13:10:45 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-05-09 13:10:44 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-05-09 13:10:43 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-05-09 13:10:43 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-05-09 13:10:42 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-05-09 13:10:42 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-05-09 13:10:42 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-05-09 13:10:42 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-05-09 13:10:40 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-05-09 13:10:40 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-05-09 13:10:39 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-05-09 13:10:39 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-05-09 13:10:39 ----A---- C:\WINDOWS\system32\autochk.exe
2014-05-09 13:10:38 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-05-09 13:10:38 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-05-09 13:10:38 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-09 13:10:37 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-05-09 13:10:37 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-05-09 13:10:37 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-05-09 13:10:36 ----A---- C:\WINDOWS\system32\energytask.dll
2014-05-09 13:10:35 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-05-09 13:10:34 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-05-09 13:10:34 ----A---- C:\WINDOWS\system32\authz.dll
2014-05-09 13:10:33 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-05-09 13:10:32 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-05-09 13:10:32 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-05-09 13:10:32 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-05-09 13:10:32 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-05-09 13:10:31 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-05-09 13:10:31 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-05-09 13:10:31 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-05-09 13:10:30 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-05-09 13:10:30 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-05-09 13:10:30 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-05-09 13:10:30 ----A---- C:\WINDOWS\system32\combase.dll
2014-05-09 13:10:29 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-05-09 13:10:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-05-09 13:10:27 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-05-09 13:10:26 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-05-09 13:10:26 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-05-09 13:10:24 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-05-09 13:10:24 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-05-09 13:10:20 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-05-09 13:10:20 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-05-09 13:10:19 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-05-09 13:10:19 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-05-09 13:10:18 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-05-09 13:10:18 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-05-09 13:10:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-05-09 13:10:17 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-05-09 13:10:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-05-09 13:10:16 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-05-09 13:10:16 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-05-09 13:10:16 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-05-09 13:10:14 ----A---- C:\WINDOWS\system32\Dism.exe
2014-05-09 13:10:13 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-05-09 13:10:12 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-05-09 13:10:12 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-05-09 13:10:12 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-05-09 13:10:11 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-05-09 13:10:11 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-05-09 13:10:10 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-05-09 13:10:09 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-05-09 13:10:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-05-09 13:10:08 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-05-09 13:10:07 ----A---- C:\WINDOWS\system32\ninput.dll
2014-05-09 13:10:06 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-05-09 13:10:06 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-05-09 13:10:05 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-05-09 13:10:05 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-05-09 13:10:05 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-05-09 13:10:05 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-05-09 13:10:04 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-05-09 13:10:04 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-05-09 13:10:04 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-05-09 13:10:04 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-05-09 13:10:03 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-05-09 13:10:02 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-05-09 13:10:01 ----A---- C:\WINDOWS\system32\offreg.dll
2014-05-09 13:10:00 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-05-09 13:09:59 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-05-09 13:09:58 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-05-09 13:09:57 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-05-09 13:09:56 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-05-09 13:09:56 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-05-09 13:09:56 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-05-09 13:09:54 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-05-09 13:09:54 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-05-09 13:09:52 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-05-09 13:09:52 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-05-09 13:09:52 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-05-09 13:09:51 ----A---- C:\WINDOWS\system32\winsku.dll
2014-05-09 13:09:51 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-05-09 13:09:51 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-05-09 13:09:48 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-05-09 13:09:47 ----A---- C:\WINDOWS\system32\netid.dll
2014-05-09 13:09:46 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-05-09 13:09:46 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-05-09 13:09:46 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-05-09 13:09:46 ----A---- C:\WINDOWS\system32\dfp.exe
2014-05-09 13:09:45 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-05-09 13:09:45 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-05-09 13:09:45 ----A---- C:\WINDOWS\system32\user32.dll
2014-05-09 13:09:43 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-05-09 13:09:43 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-05-09 13:09:43 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-05-09 13:09:43 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-05-09 13:09:42 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-05-09 13:09:42 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-05-09 13:09:42 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-05-09 13:09:42 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-05-09 13:09:41 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-05-09 13:09:41 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-05-09 13:09:41 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-05-09 13:09:40 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-05-09 13:09:40 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-05-09 13:09:39 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-05-09 13:09:39 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-05-09 13:09:38 ----A---- C:\WINDOWS\system32\syncui.dll
2014-05-09 13:09:37 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-05-09 13:09:36 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-05-09 13:09:36 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-05-09 13:09:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-05-09 13:09:29 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-05-09 13:09:29 ----A---- C:\WINDOWS\system32\werui.dll
2014-05-09 13:09:29 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-05-09 13:09:29 ----A---- C:\WINDOWS\system32\bcd.dll
2014-05-09 13:09:28 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-05-09 13:09:28 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-05-09 13:09:28 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-05-09 13:09:28 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-05-09 13:09:27 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-05-09 13:09:26 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-05-09 13:09:26 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-05-09 13:09:26 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-05-09 13:09:24 ----A---- C:\WINDOWS\system32\stobject.dll
2014-05-09 13:09:22 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-05-09 13:09:22 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-05-09 13:09:21 ----A---- C:\WINDOWS\system32\smss.exe
2014-05-09 13:09:18 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-05-09 13:09:17 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-05-09 13:09:17 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-05-09 13:09:17 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-05-09 13:09:17 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-05-09 13:09:17 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-05-09 13:09:17 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-05-09 13:09:16 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-05-09 13:09:15 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-05-09 13:09:14 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-05-09 13:09:13 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-05-09 13:09:13 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-05-09 13:09:12 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-05-09 13:09:12 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-05-09 13:09:12 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-05-09 13:09:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-05-09 13:09:10 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-05-09 13:09:10 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-05-09 13:09:09 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-05-09 13:09:09 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-05-09 12:20:53 ----ASH---- C:\pagefile.sys
2014-05-09 11:45:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-05-09 11:45:31 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-05-09 11:45:30 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-05-09 11:45:30 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-05-09 11:45:29 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-05-09 11:45:28 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-05-09 11:45:24 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-05-09 11:45:20 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-05-09 11:45:20 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-05-09 11:45:18 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-05-09 11:45:16 ----A---- C:\WINDOWS\system32\tquery.dll
2014-05-09 11:45:16 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-05-09 11:45:16 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-05-09 11:45:16 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-05-09 11:45:15 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-05-09 11:45:15 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-05-09 11:45:15 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-05-09 11:45:15 ----A---- C:\WINDOWS\system32\mssph.dll
2014-05-09 11:45:15 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-05-09 11:45:14 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-05-09 11:45:07 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-05-09 11:45:07 ----A---- C:\WINDOWS\system32\printui.dll
2014-05-09 11:45:06 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-05-09 11:45:02 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-05-09 11:45:01 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-05-09 11:44:58 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-05-09 11:44:58 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-05-09 11:44:55 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-05-09 11:44:51 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-05-09 11:44:48 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-05-09 11:44:48 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-05-09 11:44:47 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-05-09 11:44:41 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-05-09 11:44:41 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-05-09 11:44:39 ----A---- C:\WINDOWS\system32\schannel.dll
2014-05-09 11:44:39 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-05-09 11:44:38 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-05-09 11:44:37 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-05-09 11:44:32 ----A---- C:\WINDOWS\system32\untfs.dll
2014-05-09 11:44:28 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-05-09 11:44:23 ----A---- C:\WINDOWS\system32\gameux.dll
2014-05-09 11:44:22 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-05-09 11:44:17 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-05-06 17:33:12 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-05-06 17:33:11 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-05-06 17:33:11 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-05-06 17:33:10 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-05-06 17:33:10 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-05-06 17:33:10 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-05-06 17:33:06 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-05-06 17:33:05 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-05-06 17:33:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-05-06 17:32:56 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-05-06 17:32:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-05-06 17:32:54 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-05-06 17:32:53 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-05-06 17:32:53 ----A---- C:\WINDOWS\explorer.exe
2014-05-06 17:32:52 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-05-06 17:32:52 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-05-06 17:32:52 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-05-06 17:32:51 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-05-06 17:32:50 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-05-06 17:32:50 ----A---- C:\WINDOWS\system32\ole32.dll
2014-05-06 17:32:49 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-05-06 17:32:49 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-05-06 17:32:48 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-05-06 17:32:47 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-05-06 17:32:47 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-05-06 17:32:46 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-05-06 17:32:45 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-05-06 17:32:45 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-05-06 17:32:45 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-05-06 17:32:43 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-05-06 17:32:41 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-05-06 17:32:41 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-05-06 17:32:39 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-05-06 17:32:39 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-05-06 17:32:38 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-05-06 17:32:37 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-05-06 17:32:37 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-05-06 17:32:37 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-05-06 17:32:35 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-05-06 17:32:34 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-05-06 17:32:34 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-05-06 17:32:33 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-05-06 17:32:32 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-05-06 17:32:32 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-05-06 17:32:32 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-05-06 17:32:32 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-05-06 17:32:31 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-05-06 17:32:31 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-05-06 17:32:30 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-05-06 17:32:29 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-05-06 17:32:29 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-05-06 17:32:28 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-05-06 17:32:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-05-06 17:32:27 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-05-06 17:32:26 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-05-06 17:32:25 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-05-06 17:32:25 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-05-06 17:32:22 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-05-06 17:32:22 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-05-06 17:32:22 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-05-06 17:32:21 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-05-06 17:32:21 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-05-06 17:32:20 ----A---- C:\WINDOWS\system32\userenv.dll
2014-05-06 17:32:20 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-05-06 17:32:20 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2014-05-06 17:32:19 ----A---- C:\WINDOWS\system32\pdh.dll
2014-05-06 17:32:19 ----A---- C:\WINDOWS\system32\Display.dll
2014-05-06 17:32:19 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-05-06 17:32:18 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-05-06 17:32:18 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-05-06 17:32:18 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-05-06 17:32:17 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-05-06 17:32:17 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-05-06 17:32:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-05-06 17:32:17 ----A---- C:\WINDOWS\system32\cdd.dll
2014-05-06 17:32:16 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-05-06 17:32:16 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-05-06 17:32:15 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-05-06 17:32:15 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-05-06 17:32:15 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-05-06 17:32:15 ----A---- C:\WINDOWS\system32\aclui.dll
2014-05-06 17:32:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-05-06 17:32:12 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-05-06 17:32:12 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-05-06 17:32:11 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-05-06 17:32:11 ----A---- C:\WINDOWS\system32\spp.dll
2014-05-06 17:32:10 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-05-06 17:32:10 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-05-06 17:32:10 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-05-06 17:32:10 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-05-06 17:32:09 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-05-06 17:32:07 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-05-06 17:32:07 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-05-06 17:32:06 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-05-06 17:32:05 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-05-06 17:32:05 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-05-06 17:32:05 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-05-06 17:32:04 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-05-06 17:32:04 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-05-06 17:32:04 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-05-06 17:32:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-05-06 17:32:03 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-05-06 17:32:02 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-05-06 17:32:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-05-06 17:32:01 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-05-06 17:32:00 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2014-05-06 17:32:00 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-05-06 17:32:00 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-05-06 17:31:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-05-06 17:31:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-05-06 17:31:59 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-05-06 17:31:57 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-05-06 17:31:57 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-05-06 17:31:57 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-05-06 17:31:56 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-05-06 17:31:56 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-05-06 17:31:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-05-06 17:31:55 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-05-06 17:31:53 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-05-06 17:31:53 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-05-06 17:31:52 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-05-02 15:25:25 ----D---- C:\Program Files (x86)\550Ceoupuons
2014-04-29 18:06:12 ----A---- C:\WINDOWS\system32\WSService.dll
2014-04-29 18:05:52 ----A---- C:\WINDOWS\system32\wmp.dll
2014-04-29 18:05:43 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-04-29 18:05:42 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-04-29 18:05:34 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-04-29 18:05:32 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-04-29 18:05:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-04-29 18:05:16 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-04-29 18:05:06 ----A---- C:\WINDOWS\system32\wer.dll
2014-04-29 18:05:05 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-04-29 18:04:59 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-04-29 18:04:57 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-04-29 18:04:55 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-04-29 18:04:53 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-04-29 18:04:52 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-04-29 18:04:43 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-04-29 18:04:43 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-04-29 18:04:41 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-04-29 18:04:34 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-04-29 18:04:34 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-04-29 18:04:31 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-04-29 18:04:31 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-04-29 18:04:31 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-04-29 18:04:28 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-04-29 18:04:27 ----A---- C:\WINDOWS\system32\recimg.exe
2014-04-29 18:04:26 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-04-29 18:04:25 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-04-29 18:04:25 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-04-29 18:04:24 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-04-29 18:04:23 ----A---- C:\WINDOWS\system32\lsm.dll
2014-04-29 18:04:18 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-04-29 18:04:16 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-04-29 18:04:15 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-04-29 18:04:12 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-04-29 18:04:11 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-04-29 18:04:09 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-04-29 18:04:08 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-04-29 18:04:07 ----A---- C:\WINDOWS\system32\ci.dll
2014-04-29 18:04:03 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-04-29 18:04:01 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-04-29 18:03:59 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-04-29 18:03:56 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-04-29 18:03:56 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-04-29 18:03:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-04-29 18:03:49 ----A---- C:\WINDOWS\system32\VAN.dll
2014-04-29 18:03:49 ----A---- C:\WINDOWS\system32\osk.exe
2014-04-29 18:03:45 ----A---- C:\WINDOWS\system32\themeui.dll
2014-04-29 18:03:42 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-04-29 18:03:42 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-04-29 18:03:37 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2014-04-29 18:03:27 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-04-29 18:03:25 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-04-29 18:03:25 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-04-29 18:03:24 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-04-29 18:03:23 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-04-29 18:03:18 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-04-29 18:03:12 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-04-29 18:03:12 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-04-29 18:03:04 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-04-29 18:03:00 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-04-29 18:02:58 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-04-29 18:02:57 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-04-29 18:02:51 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-04-29 18:02:51 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-04-29 18:02:51 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-04-29 18:02:40 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-04-29 18:02:34 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-04-29 18:02:31 ----A---- C:\WINDOWS\system32\newdev.dll
2014-04-29 18:02:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-04-29 18:02:30 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-04-29 18:02:29 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-04-29 18:02:26 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-04-29 18:02:22 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-04-29 18:02:21 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-04-29 18:02:21 ----A---- C:\WINDOWS\system32\vds.exe
2014-04-29 18:02:17 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-04-29 18:02:13 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-04-29 18:02:12 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-04-29 18:02:09 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-04-29 18:02:09 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-04-29 18:02:08 ----A---- C:\WINDOWS\system32\bootux.dll
2014-04-29 18:02:03 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-04-29 18:02:03 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-04-29 18:02:00 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-04-29 18:01:59 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-04-29 18:01:58 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-04-29 18:01:54 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-04-29 18:01:54 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-04-29 18:01:52 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-04-29 18:01:51 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-04-29 18:01:50 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-04-29 18:01:47 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-04-29 18:01:46 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-04-29 18:01:46 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-04-29 18:01:44 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-04-29 18:01:44 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-04-29 18:01:40 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-04-29 18:01:40 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-04-29 18:01:38 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-04-29 18:01:37 ----A---- C:\WINDOWS\system32\cscript.exe
2014-04-29 18:01:36 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-04-29 18:01:36 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-04-29 18:01:35 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-04-29 18:01:35 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-04-29 18:01:23 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-04-29 18:01:22 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-04-29 18:01:21 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-04-29 18:01:20 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-04-29 18:01:16 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-04-29 18:01:16 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-04-29 18:01:13 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-04-29 18:01:10 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-04-29 18:01:09 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-04-29 18:01:02 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-29 18:00:50 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-04-29 18:00:49 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-04-29 18:00:49 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-04-29 18:00:46 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-29 18:00:43 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-29 18:00:43 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-29 18:00:39 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-04-29 18:00:38 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-29 18:00:38 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-04-29 18:00:38 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-04-29 18:00:36 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-29 18:00:35 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-04-29 18:00:34 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-29 18:00:33 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-29 18:00:32 ----A---- C:\WINDOWS\system32\occache.dll
2014-04-29 18:00:31 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-04-29 18:00:31 ----A---- C:\WINDOWS\system32\finger.exe
2014-04-12 18:08:56 ----D---- C:\ProgramData\550Ceoupuons
2014-04-11 13:47:42 ----D---- C:\Users\admin\AppData\Roaming\GHISLER
2014-04-11 13:47:42 ----D---- C:\totalcmd
2014-04-11 13:30:43 ----D---- C:\Users\admin\AppData\Roaming\TeamViewer
2014-03-24 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2014-03-24 21:40:00 ----A---- C:\WINDOWS\system32\poqexec.exe
2014-03-24 21:39:05 ----D---- C:\ProgramData\Assistant