Padající průzkumník WIN 8.1
Napsal: 29 dub 2014 16:06
Dobrý den, poslední týden se mi stává, že mi při práci na PC spadnou všechny okna ve windows obrazovka zmodrá a znovu naběhne plocha to se mi stává i několikrát během 1 hodiny. Programy nepadají zůstavají funkční. Prosím o radu. Děkuji.
Přikládám log z RSIT.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Lukáš at 2014-04-29 17:00:43
Microsoft Windows 8.1 Pro
System drive C: has 619 GB (89%) free of 693 GB
Total RAM: 8010 MB (78% free)
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe"
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
dashost.exe {e10fe86d-0e27-444b-a0f15288a6f278b8}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\SysWOW64\ssins.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
"C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
explorer.exe
"C:\Users\Lukáš\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\ASC7_SkipUac_Lukáš.job
C:\WINDOWS\tasks\Driver Booster Update.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\c7uj3hin.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2013-11-07 2486592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08 654384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-01 13662936]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-21 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-21 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-21 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"MFNetworkScanUtility"=C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [2012-09-27 486552]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-03-21 6330568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 7"=C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2013-10-28 2283296]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2013-02-05 1081224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"HTC Sync Loader"=C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2013-05-13 659456]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-21 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-04-29 17:00:43 ----D---- C:\rsit
2014-04-29 17:00:43 ----D---- C:\Program Files\trend micro
2014-04-29 13:21:47 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-04-23 11:37:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\spp.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-04-23 11:37:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-04-23 11:37:42 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-04-23 11:37:42 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-04-23 11:37:42 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\Display.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\authui.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\cdd.dll
2014-04-23 11:37:39 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-04-23 11:37:39 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-04-23 11:37:38 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-04-23 11:37:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-04-23 11:37:38 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\explorer.exe
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\twinui.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\propsys.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\localspl.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\aclui.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\ole32.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-04-23 11:37:33 ----A---- C:\WINDOWS\system32\shell32.dll
2014-04-23 11:37:32 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-04-23 11:37:30 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-04-23 11:37:30 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-04-23 11:37:30 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-04-23 11:37:29 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-04-23 11:37:27 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-04-23 11:37:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-04-23 11:37:26 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-04-23 11:37:25 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-04-23 11:37:25 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-04-23 11:37:25 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-04-23 11:37:25 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-04-23 11:37:24 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-04-23 11:37:24 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-04-23 11:37:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-04-23 11:37:21 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-04-23 11:37:21 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-04-23 11:37:19 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\userenv.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\pdh.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-04-23 11:37:14 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-04-23 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-04-23 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2014-04-23 09:59:11 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-04-23 09:59:11 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-04-23 09:59:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-04-23 09:58:18 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-04-23 09:58:16 ----A---- C:\WINDOWS\system32\msrating.dll
2014-04-10 16:41:31 ----SH---- C:\WINDOWS\system32\desktop.ini
2014-04-10 16:39:21 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\dfp.exe
2014-04-10 16:39:20 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-04-10 16:39:20 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-04-10 16:39:20 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-04-10 16:39:20 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-04-10 16:39:20 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\system32\winmde.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\srcore.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\srclient.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\tquery.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssph.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\cscui.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\mf.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\system32\wmp.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-04-10 16:39:06 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-04-10 16:39:06 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-04-10 16:39:06 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\occache.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-04-10 16:39:00 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-10 16:39:00 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\system32\energy.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-04-10 16:38:53 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-04-10 16:38:53 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\dwm.exe
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\acppage.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\dui70.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\conhost.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\werui.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\wer.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\user32.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\msctf.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\imm32.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\win32k.sys
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-04-10 16:38:39 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\themeui.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\sud.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\stobject.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\lsm.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\bootux.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\syncui.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\winbici.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\gameux.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-04-10 16:38:32 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\printui.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\VAN.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\finger.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\winresume.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\winload.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\wininet.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\cscript.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wups.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\WSService.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\osk.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\sppc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\slc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\schannel.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\ninput.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\webservices.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\energytask.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\offreg.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\devinv.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\das.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\aepic.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\autochk.exe
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\winsku.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\newdev.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\migisol.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\wusa.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vds.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\tdh.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\swprv.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\mispace.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\untfs.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\srms.dat
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\slpts.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\recimg.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\Dism.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\qedit.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\netid.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-10 16:38:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-04-10 16:38:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-04-10 16:38:10 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-04-10 16:38:09 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\samlib.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\hal.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\combase.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\ci.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\bcd.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\authz.dll
2014-04-10 16:38:06 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\smss.exe
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-04-10 16:38:05 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-04-10 16:38:05 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-04-10 16:38:05 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-04-10 16:35:35 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-04-10 16:35:21 ----A---- C:\WINDOWS\system32\mfps.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-04-10 16:35:13 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-04-10 16:35:13 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-04-10 16:35:13 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-04-10 16:35:13 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-04-10 16:35:13 ----A---- C:\WINDOWS\system32\iernonce.dll
======List of files/folders modified in the last 1 month======
2014-04-29 17:00:43 ----RD---- C:\Program Files
2014-04-29 17:00:00 ----D---- C:\WINDOWS\system32\sru
2014-04-29 16:21:26 ----D---- C:\WINDOWS\Prefetch
2014-04-29 16:08:20 ----D---- C:\WINDOWS\Temp
2014-04-29 14:03:29 ----D---- C:\WINDOWS\rescache
2014-04-29 14:01:43 ----D---- C:\WINDOWS\Microsoft.NET
2014-04-29 13:24:47 ----D---- C:\WINDOWS\system32\config
2014-04-29 13:21:57 ----HD---- C:\Program Files\WindowsApps
2014-04-29 13:21:50 ----D---- C:\WINDOWS\WinSxS
2014-04-29 13:21:48 ----D---- C:\WINDOWS\CbsTemp
2014-04-29 13:21:47 ----D---- C:\WINDOWS\SysWOW64
2014-04-29 13:20:31 ----SHD---- C:\System Volume Information
2014-04-29 13:17:29 ----D---- C:\WINDOWS\debug
2014-04-29 13:13:40 ----D---- C:\WINDOWS\AppReadiness
2014-04-29 13:10:14 ----D---- C:\WINDOWS\system32\catroot2
2014-04-29 13:08:04 ----D---- C:\ProgramData\ProductData
2014-04-29 13:07:49 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-04-29 13:04:53 ----D---- C:\WINDOWS\Inf
2014-04-29 13:04:00 ----D---- C:\Windows
2014-04-28 17:36:57 ----RD---- C:\WINDOWS\ToastData
2014-04-28 17:36:54 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-04-28 17:36:50 ----D---- C:\WINDOWS\system32\wbem
2014-04-28 17:36:50 ----D---- C:\WINDOWS\system32\drivers
2014-04-28 17:36:50 ----D---- C:\WINDOWS\PolicyDefinitions
2014-04-28 17:36:49 ----RD---- C:\WINDOWS\System32
2014-04-28 17:36:49 ----D---- C:\WINDOWS\system32\setup
2014-04-28 17:36:49 ----D---- C:\WINDOWS\system32\en-US
2014-04-28 17:36:49 ----D---- C:\WINDOWS\system32\cs-CZ
2014-04-28 17:36:49 ----D---- C:\Program Files\Internet Explorer
2014-04-28 17:36:49 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-28 17:36:48 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-04-28 17:36:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-04-28 17:36:47 ----D---- C:\WINDOWS\system32\DriverStore
2014-04-28 17:36:47 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-04-24 14:40:18 ----D---- C:\WINDOWS\SoftwareDistribution
2014-04-23 14:00:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-12 18:24:39 ----D---- C:\WINDOWS\system32\NDF
2014-04-11 14:09:31 ----D---- C:\WINDOWS\system32\MRT
2014-04-11 14:09:29 ----A---- C:\WINDOWS\system32\MRT.exe
2014-04-11 12:23:46 ----D---- C:\WINDOWS\apppatch
2014-04-10 18:58:08 ----D---- C:\Program Files\Windows Multimedia Platform
2014-04-10 18:58:07 ----D---- C:\WINDOWS\WinStore
2014-04-10 18:58:07 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-04-10 18:58:07 ----D---- C:\WINDOWS\SYSWOW64\Dism
2014-04-10 18:58:07 ----D---- C:\WINDOWS\servicing
2014-04-10 18:58:07 ----D---- C:\WINDOWS\MediaViewer
2014-04-10 18:58:07 ----D---- C:\Program Files\Windows Portable Devices
2014-04-10 18:58:07 ----D---- C:\Program Files\Windows Media Player
2014-04-10 18:58:07 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-04-10 18:58:07 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-04-10 18:58:07 ----D---- C:\Program Files (x86)\Windows Media Player
2014-04-10 18:58:06 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-04-10 18:58:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-04-10 18:57:59 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-04-10 18:57:59 ----D---- C:\WINDOWS\cs-CZ
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\sk-SK
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\oobe
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\lv-LV
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\ko-KR
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\it-IT
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\hr-HR
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\et-EE
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\en-GB
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\el-GR
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\de-DE
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\da-DK
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\zh-TW
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\zh-CN
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\uk-UA
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\Sysprep
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\sv-SE
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\sl-SI
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\ru-RU
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\pt-PT
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\pl-PL
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\migration
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\ja-JP
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\hu-HU
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\he-IL
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\fr-FR
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\fi-FI
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\es-ES
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\bg-BG
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\zh-HK
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\tr-TR
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\th-TH
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\ro-RO
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\nl-NL
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\nb-NO
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\migwiz
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\lt-LT
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\Dism
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\ar-SA
2014-04-10 18:57:53 ----D---- C:\WINDOWS\system32\pt-BR
2014-04-10 18:57:53 ----D---- C:\WINDOWS\system32\Boot
2014-04-10 18:57:51 ----RSD---- C:\WINDOWS\Fonts
2014-04-10 18:57:51 ----D---- C:\WINDOWS\Camera
2014-04-10 18:57:49 ----D---- C:\WINDOWS\FileManager
2014-04-10 18:52:52 ----SD---- C:\ProgramData\Microsoft
2014-04-10 16:57:27 ----SHD---- C:\WINDOWS\Installer
2014-04-10 16:57:26 ----SHD---- C:\Config.Msi
2014-04-10 16:57:22 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
Přikládám log z RSIT.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Lukáš at 2014-04-29 17:00:43
Microsoft Windows 8.1 Pro
System drive C: has 619 GB (89%) free of 693 GB
Total RAM: 8010 MB (78% free)
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe"
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
dashost.exe {e10fe86d-0e27-444b-a0f15288a6f278b8}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\SysWOW64\ssins.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
"C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
explorer.exe
"C:\Users\Lukáš\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\ASC7_SkipUac_Lukáš.job
C:\WINDOWS\tasks\Driver Booster Update.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\c7uj3hin.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2013-11-07 2486592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08 654384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-01 13662936]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-21 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-21 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-21 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"MFNetworkScanUtility"=C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [2012-09-27 486552]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-03-21 6330568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 7"=C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2013-10-28 2283296]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2013-02-05 1081224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"HTC Sync Loader"=C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2013-05-13 659456]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-21 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-04-29 17:00:43 ----D---- C:\rsit
2014-04-29 17:00:43 ----D---- C:\Program Files\trend micro
2014-04-29 13:21:47 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-04-23 11:37:48 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-04-23 11:37:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-04-23 11:37:46 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-04-23 11:37:45 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-04-23 11:37:44 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\spp.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-04-23 11:37:43 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-04-23 11:37:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-04-23 11:37:42 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-04-23 11:37:42 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-04-23 11:37:42 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\Display.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\authui.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-04-23 11:37:41 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-04-23 11:37:40 ----A---- C:\WINDOWS\system32\cdd.dll
2014-04-23 11:37:39 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-04-23 11:37:39 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-04-23 11:37:38 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-04-23 11:37:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-04-23 11:37:38 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-04-23 11:37:37 ----A---- C:\WINDOWS\explorer.exe
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\twinui.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\propsys.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\localspl.dll
2014-04-23 11:37:36 ----A---- C:\WINDOWS\system32\aclui.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\ole32.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-04-23 11:37:35 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-04-23 11:37:34 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-04-23 11:37:33 ----A---- C:\WINDOWS\system32\shell32.dll
2014-04-23 11:37:32 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-04-23 11:37:31 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-04-23 11:37:30 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-04-23 11:37:30 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-04-23 11:37:30 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-04-23 11:37:29 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-04-23 11:37:28 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-04-23 11:37:27 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-04-23 11:37:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-04-23 11:37:26 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-04-23 11:37:25 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-04-23 11:37:25 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-04-23 11:37:25 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-04-23 11:37:25 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-04-23 11:37:24 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-04-23 11:37:24 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-04-23 11:37:23 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-04-23 11:37:22 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-04-23 11:37:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-04-23 11:37:21 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-04-23 11:37:21 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-04-23 11:37:20 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-04-23 11:37:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-04-23 11:37:19 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-04-23 11:37:18 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\userenv.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-04-23 11:37:17 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\pdh.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-04-23 11:37:16 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-04-23 11:37:15 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-04-23 11:37:14 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-04-23 11:37:14 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-04-23 11:37:13 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-04-23 11:37:13 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-04-23 11:37:12 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-04-23 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-04-23 11:37:11 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-04-23 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-04-23 11:37:10 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2014-04-23 09:59:11 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-04-23 09:59:11 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-04-23 09:59:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-04-23 09:58:18 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-04-23 09:58:16 ----A---- C:\WINDOWS\system32\msrating.dll
2014-04-10 16:41:31 ----SH---- C:\WINDOWS\system32\desktop.ini
2014-04-10 16:39:21 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-04-10 16:39:21 ----A---- C:\WINDOWS\system32\dfp.exe
2014-04-10 16:39:20 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-04-10 16:39:20 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-04-10 16:39:20 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-04-10 16:39:20 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-04-10 16:39:20 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-04-10 16:39:17 ----A---- C:\WINDOWS\system32\winmde.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\srcore.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\srclient.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-04-10 16:39:16 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-04-10 16:39:15 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-04-10 16:39:14 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\tquery.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\mssph.dll
2014-04-10 16:39:13 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-04-10 16:39:12 ----A---- C:\WINDOWS\system32\cscui.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-04-10 16:39:09 ----A---- C:\WINDOWS\system32\mf.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-04-10 16:39:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\system32\wmp.dll
2014-04-10 16:39:07 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-04-10 16:39:06 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-04-10 16:39:06 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-04-10 16:39:06 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-04-10 16:39:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-04-10 16:39:04 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\occache.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-04-10 16:39:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-04-10 16:39:00 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-10 16:39:00 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-04-10 16:38:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-04-10 16:38:55 ----A---- C:\WINDOWS\system32\energy.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-04-10 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-04-10 16:38:53 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-04-10 16:38:53 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-04-10 16:38:52 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-04-10 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-04-10 16:38:50 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-04-10 16:38:49 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-04-10 16:38:48 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-04-10 16:38:47 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-04-10 16:38:46 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\dwm.exe
2014-04-10 16:38:45 ----A---- C:\WINDOWS\system32\acppage.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\dui70.dll
2014-04-10 16:38:42 ----A---- C:\WINDOWS\system32\conhost.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\werui.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\wer.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\user32.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\msctf.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\imm32.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-04-10 16:38:41 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\win32k.sys
2014-04-10 16:38:40 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-04-10 16:38:39 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\themeui.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\sud.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\stobject.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\lsm.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-04-10 16:38:38 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\bootux.dll
2014-04-10 16:38:37 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\syncui.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-04-10 16:38:36 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-04-10 16:38:35 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-04-10 16:38:34 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\winbici.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\gameux.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-04-10 16:38:33 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-04-10 16:38:32 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\printui.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-04-10 16:38:32 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\VAN.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-04-10 16:38:31 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-04-10 16:38:30 ----A---- C:\WINDOWS\system32\finger.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\winresume.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\winload.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-04-10 16:38:29 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\wininet.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-04-10 16:38:28 ----A---- C:\WINDOWS\system32\cscript.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wups.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\WSService.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\osk.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-04-10 16:38:27 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\sppc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\slc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-04-10 16:38:26 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\schannel.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\ninput.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-04-10 16:38:25 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\webservices.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\energytask.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-04-10 16:38:24 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\offreg.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\devinv.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\das.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\aepic.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-04-10 16:38:23 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\autochk.exe
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-04-10 16:38:21 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\winsku.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\newdev.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\migisol.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-04-10 16:38:20 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\wusa.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\vds.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\tdh.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\swprv.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\mispace.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-04-10 16:38:19 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\untfs.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\srms.dat
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\slpts.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\recimg.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-04-10 16:38:18 ----A---- C:\WINDOWS\system32\Dism.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\qedit.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\netid.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-04-10 16:38:17 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-04-10 16:38:16 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-04-10 16:38:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-10 16:38:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-04-10 16:38:15 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-04-10 16:38:13 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-04-10 16:38:12 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-04-10 16:38:11 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-04-10 16:38:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-04-10 16:38:10 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-04-10 16:38:09 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-04-10 16:38:08 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\samlib.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\hal.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\combase.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\ci.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\bcd.dll
2014-04-10 16:38:07 ----A---- C:\WINDOWS\system32\authz.dll
2014-04-10 16:38:06 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\smss.exe
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-04-10 16:38:06 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-04-10 16:38:05 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-04-10 16:38:05 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-04-10 16:38:05 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-10 16:38:04 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-04-10 16:38:03 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-04-10 16:35:35 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-04-10 16:35:21 ----A---- C:\WINDOWS\system32\mfps.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-04-10 16:35:14 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-04-10 16:35:13 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-04-10 16:35:13 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-04-10 16:35:13 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-04-10 16:35:13 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-04-10 16:35:13 ----A---- C:\WINDOWS\system32\iernonce.dll
======List of files/folders modified in the last 1 month======
2014-04-29 17:00:43 ----RD---- C:\Program Files
2014-04-29 17:00:00 ----D---- C:\WINDOWS\system32\sru
2014-04-29 16:21:26 ----D---- C:\WINDOWS\Prefetch
2014-04-29 16:08:20 ----D---- C:\WINDOWS\Temp
2014-04-29 14:03:29 ----D---- C:\WINDOWS\rescache
2014-04-29 14:01:43 ----D---- C:\WINDOWS\Microsoft.NET
2014-04-29 13:24:47 ----D---- C:\WINDOWS\system32\config
2014-04-29 13:21:57 ----HD---- C:\Program Files\WindowsApps
2014-04-29 13:21:50 ----D---- C:\WINDOWS\WinSxS
2014-04-29 13:21:48 ----D---- C:\WINDOWS\CbsTemp
2014-04-29 13:21:47 ----D---- C:\WINDOWS\SysWOW64
2014-04-29 13:20:31 ----SHD---- C:\System Volume Information
2014-04-29 13:17:29 ----D---- C:\WINDOWS\debug
2014-04-29 13:13:40 ----D---- C:\WINDOWS\AppReadiness
2014-04-29 13:10:14 ----D---- C:\WINDOWS\system32\catroot2
2014-04-29 13:08:04 ----D---- C:\ProgramData\ProductData
2014-04-29 13:07:49 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-04-29 13:04:53 ----D---- C:\WINDOWS\Inf
2014-04-29 13:04:00 ----D---- C:\Windows
2014-04-28 17:36:57 ----RD---- C:\WINDOWS\ToastData
2014-04-28 17:36:54 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-04-28 17:36:50 ----D---- C:\WINDOWS\system32\wbem
2014-04-28 17:36:50 ----D---- C:\WINDOWS\system32\drivers
2014-04-28 17:36:50 ----D---- C:\WINDOWS\PolicyDefinitions
2014-04-28 17:36:49 ----RD---- C:\WINDOWS\System32
2014-04-28 17:36:49 ----D---- C:\WINDOWS\system32\setup
2014-04-28 17:36:49 ----D---- C:\WINDOWS\system32\en-US
2014-04-28 17:36:49 ----D---- C:\WINDOWS\system32\cs-CZ
2014-04-28 17:36:49 ----D---- C:\Program Files\Internet Explorer
2014-04-28 17:36:49 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-28 17:36:48 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-04-28 17:36:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-04-28 17:36:47 ----D---- C:\WINDOWS\system32\DriverStore
2014-04-28 17:36:47 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-04-24 14:40:18 ----D---- C:\WINDOWS\SoftwareDistribution
2014-04-23 14:00:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-12 18:24:39 ----D---- C:\WINDOWS\system32\NDF
2014-04-11 14:09:31 ----D---- C:\WINDOWS\system32\MRT
2014-04-11 14:09:29 ----A---- C:\WINDOWS\system32\MRT.exe
2014-04-11 12:23:46 ----D---- C:\WINDOWS\apppatch
2014-04-10 18:58:08 ----D---- C:\Program Files\Windows Multimedia Platform
2014-04-10 18:58:07 ----D---- C:\WINDOWS\WinStore
2014-04-10 18:58:07 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-04-10 18:58:07 ----D---- C:\WINDOWS\SYSWOW64\Dism
2014-04-10 18:58:07 ----D---- C:\WINDOWS\servicing
2014-04-10 18:58:07 ----D---- C:\WINDOWS\MediaViewer
2014-04-10 18:58:07 ----D---- C:\Program Files\Windows Portable Devices
2014-04-10 18:58:07 ----D---- C:\Program Files\Windows Media Player
2014-04-10 18:58:07 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-04-10 18:58:07 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-04-10 18:58:07 ----D---- C:\Program Files (x86)\Windows Media Player
2014-04-10 18:58:06 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-04-10 18:58:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-04-10 18:57:59 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-04-10 18:57:59 ----D---- C:\WINDOWS\cs-CZ
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\sk-SK
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\oobe
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\lv-LV
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\ko-KR
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\it-IT
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\hr-HR
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\et-EE
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\en-GB
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\el-GR
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\de-DE
2014-04-10 18:57:58 ----D---- C:\WINDOWS\system32\da-DK
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\zh-TW
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\zh-CN
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\uk-UA
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\Sysprep
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\sv-SE
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\sl-SI
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\ru-RU
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\pt-PT
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\pl-PL
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\migration
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\ja-JP
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\hu-HU
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\he-IL
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\fr-FR
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\fi-FI
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\es-ES
2014-04-10 18:57:57 ----D---- C:\WINDOWS\system32\bg-BG
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\zh-HK
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\tr-TR
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\th-TH
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\ro-RO
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\nl-NL
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\nb-NO
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\migwiz
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\lt-LT
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\Dism
2014-04-10 18:57:56 ----D---- C:\WINDOWS\system32\ar-SA
2014-04-10 18:57:53 ----D---- C:\WINDOWS\system32\pt-BR
2014-04-10 18:57:53 ----D---- C:\WINDOWS\system32\Boot
2014-04-10 18:57:51 ----RSD---- C:\WINDOWS\Fonts
2014-04-10 18:57:51 ----D---- C:\WINDOWS\Camera
2014-04-10 18:57:49 ----D---- C:\WINDOWS\FileManager
2014-04-10 18:52:52 ----SD---- C:\ProgramData\Microsoft
2014-04-10 16:57:27 ----SHD---- C:\WINDOWS\Installer
2014-04-10 16:57:26 ----SHD---- C:\Config.Msi
2014-04-10 16:57:22 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
