gregus881 utworzono 8 października 2013 utworzono 8 października 2013 Witam, komputer tyle co kupiony, jak dotad chodzil bez zarzutu. Ostatnio jednak po starcie systemu automatycznie otwiera sie przegladarka a wraz z nia strona internetowa www.bing.com. Nie wiem czy to wirus czy cos innego. Wklejam tutaj logi: [attachment=26838:OTL.Txt] [attachment=26839:Extras.Txt] [attachment=26840:GMER.txt] Bardzo prosilem bym o ich sprawdzenie, z gory dziekuje Bylby ktos w stanie pomoc? :(
Natsuki Kuga komentarz 13 października 2013 komentarz 13 października 2013 Ostatnio jednak po starcie systemu automatycznie otwiera sie przegladarka a wraz z nia strona internetowa www.bing.com. O ile bing jest nieszkodliwą stroną, bo jest to wyszukiwarka internetowa (takie coś jak Google od Microsoftu), to otwieranie się przeglądarki automatycznie po starcie systemu jest już podejrzane, bo może być spowodowane infekcją. SRV:64bit: - [2013-07-02 02:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) Własnoręcznie wyłączałeś Defendera?1. Wykonaj ten skrypt w OTL (instrukcja: http://www.forumpc.pl/topic/277786-nieingerencyjne-narz%C4%99dzia-do-tworzenia-log%C3%B3w-systemowych/#entry1683607 ): [log] :Files C:\Program Files (x86)\CodeMeter C:\Program Files\CodeMeter C:\ProgramData\CodeMeter C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter :Reg [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"=- "C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"=- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"=- "C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"=- [/log] Pokaż raport.2. Użyj AdwCleaner z opcji Usuń. Pokaż raport.3. Do SystemLook wklej: [log] :file C:\Windows\SysNative\drivers\BCM43142A0_001.001.011.0122.0123.hex [/log]Look, pokaż raport.4. Wykonaj pełne skanowanie Malwarebytes' AntiMalware. Jeśli coś wykryje, pokaż raport.5. Pokaż nowe logi z OTL.
gregus881 komentarz 15 października 2013 Autor komentarz 15 października 2013 1. Raport z OTL po skrypcie ========== FILES ========== C:\Program Files (x86)\CodeMeter\Runtime\help\CmUserHelp\us folder moved successfully. C:\Program Files (x86)\CodeMeter\Runtime\help\CmUserHelp\img folder moved successfully. C:\Program Files (x86)\CodeMeter\Runtime\help\CmUserHelp\de folder moved successfully. C:\Program Files (x86)\CodeMeter\Runtime\help\CmUserHelp folder moved successfully. C:\Program Files (x86)\CodeMeter\Runtime\help folder moved successfully. Folder move failed. C:\Program Files (x86)\CodeMeter\Runtime\bin scheduled to be moved on reboot. Folder move failed. C:\Program Files (x86)\CodeMeter\Runtime scheduled to be moved on reboot. Folder move failed. C:\Program Files (x86)\CodeMeter scheduled to be moved on reboot. C:\Program Files\CodeMeter\Runtime\bin folder moved successfully. C:\Program Files\CodeMeter\Runtime folder moved successfully. C:\Program Files\CodeMeter folder moved successfully. C:\ProgramData\CodeMeter\Logs folder moved successfully. C:\ProgramData\CodeMeter\CmAct folder moved successfully. C:\ProgramData\CodeMeter\Backup folder moved successfully. C:\ProgramData\CodeMeter folder moved successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\Tools folder moved successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter folder moved successfully. ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe not found. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe not found. OTL by OldTimer - Version 3.2.69.0 log created on 10152013_205701 Files\Folders moved on Reboot... C:\Program Files (x86)\CodeMeter\Runtime\bin folder moved successfully. C:\Program Files (x86)\CodeMeter\Runtime folder moved successfully. C:\Program Files (x86)\CodeMeter folder moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot... 2. Raport z AdwCleaner # AdwCleaner v3.007 - Report created 15/10/2013 at 21:02:35 # Updated 09/10/2013 by Xplode # Operating System : Windows 8 Pro (64 bits) # Username : qaz - ZAQ # Running from : C:\Users\qaz\Downloads\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16537 -\\ Google Chrome v30.0.1599.69 [ File : C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1001 octets] - [15/10/2013 21:01:39] AdwCleaner[S0].txt - [930 octets] - [15/10/2013 21:02:35] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [989 octets] ########## 3. Raport z SystemLook SystemLook 30.07.11 by jpshortstuff Log created at 21:05 on 15/10/2013 by qaz Administrator - Elevation successful ========== file ========== C:\Windows\SysNative\drivers\BCM43142A0_001.001.011.0122.0123.hex - Unable to find/read file. -= EOF =- 4. Malwarebytes' AntiMalware Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Wersja bazy: v2013.10.08.08 Windows 8 x64 NTFS Internet Explorer 10.0.9200.16721 qaz :: ZAQ [administrator] 2013-10-15 21:06:11 mbam-log-2013-10-15 (21-06-11).txt Typ skanowania: Pełne skanowanie (C:\|E:\|F:\|) Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: P2P Przeskanowano obiektów: 442619 Upłynęło: 44 minut(y), 24 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych kluczy rejestru: 0 (Nie znaleziono zagrożeń) Wykrytych wartości rejestru: 0 (Nie znaleziono zagrożeń) Wykryte wpisy rejestru systemowego: 0 (Nie znaleziono zagrożeń) wykrytych folderów: 0 (Nie znaleziono zagrożeń) Wykrytych plików: 4 E:\Programy\P8_v25.exe (Trojan.Dropper.SFX) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. E:\Programy\Autodesk Robot 2014\Autodesk Robot Structural Analysis Professional 2014\System\Res\wloa_081.dll (Trojan.Dropper) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. E:\Programy\RSAPRO_2014_Multilingual_32-64bit_dlm\x64\RSA\RSA_FOLDER\System\Res\wloa_081.dll (Trojan.Dropper) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. E:\Programy\RSAPRO_2014_Multilingual_32-64bit_dlm\x86\RSA\RSA_FOLDER\System\Res\wloa_081.dll (Trojan.Dropper) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. (zakończone) 5. Nowe logi OTL OTL logfile created on: 2013-10-15 21:57:31 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\qaz\Downloads 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16721) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 15,88 Gb Total Physical Memory | 13,89 Gb Available Physical Memory | 87,47% Memory free 31,88 Gb Paging File | 29,84 Gb Available in Paging File | 93,60% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 146,14 Gb Total Space | 76,66 Gb Free Space | 52,46% Space Free | Partition Type: NTFS Drive E: | 390,62 Gb Total Space | 348,73 Gb Free Space | 89,27% Space Free | Partition Type: NTFS Drive F: | 394,40 Gb Total Space | 394,24 Gb Free Space | 99,96% Space Free | Partition Type: NTFS Computer Name: ZAQ | User Name: qaz | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-10-09 00:09:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\qaz\Downloads\OTL.exe PRC - [2013-10-03 08:03:07 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2013-04-03 05:00:00 | 008,486,776 | ---- | M] (WIBU-SYSTEMS AG) -- C:\_OTL\MovedFiles\10152013_205701\C_Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe PRC - [2013-04-03 05:00:00 | 002,915,704 | ---- | M] (WIBU-SYSTEMS AG) -- C:\_OTL\MovedFiles\10152013_205701\C_Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe PRC - [2013-02-25 14:54:30 | 001,260,320 | R--- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013-02-01 14:50:22 | 001,641,368 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe PRC - [2012-12-21 14:08:56 | 001,333,424 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe PRC - [2012-12-20 07:10:00 | 006,567,424 | ---- | M] (WIBU-SYSTEMS AG) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe PRC - [2012-12-13 17:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe PRC - [2012-09-18 18:19:52 | 000,364,416 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2012-09-18 18:19:50 | 000,276,864 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2012-09-18 18:19:46 | 000,128,896 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe PRC - [2012-09-18 18:19:36 | 000,165,760 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-10-03 08:03:05 | 000,415,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll MOD - [2013-10-03 08:03:03 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll MOD - [2013-10-03 08:02:12 | 000,698,832 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\libglesv2.dll MOD - [2013-10-03 08:02:11 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\libegl.dll MOD - [2013-10-03 08:02:09 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2013-10-13 14:32:48 | 001,471,352 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FlexNet Licensing Service 64) SRV:[b]64bit:[/b] - [2013-08-16 07:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:[b]64bit:[/b] - [2013-07-02 02:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:[b]64bit:[/b] - [2013-06-25 00:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:[b]64bit:[/b] - [2013-06-01 11:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:[b]64bit:[/b] - [2013-05-04 08:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:[b]64bit:[/b] - [2013-05-04 08:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:[b]64bit:[/b] - [2013-04-12 14:01:30 | 000,099,184 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService) SRV:[b]64bit:[/b] - [2013-04-09 06:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:[b]64bit:[/b] - [2013-03-13 15:14:40 | 000,332,800 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV) SRV:[b]64bit:[/b] - [2013-03-02 04:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:[b]64bit:[/b] - [2013-03-02 04:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:[b]64bit:[/b] - [2013-02-26 19:46:02 | 000,959,192 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins) SRV:[b]64bit:[/b] - [2013-01-10 01:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:[b]64bit:[/b] - [2013-01-10 01:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:[b]64bit:[/b] - [2012-12-21 14:08:56 | 001,333,424 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn) SRV:[b]64bit:[/b] - [2012-10-02 17:42:38 | 002,227,992 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Windows\SysNative\BtwRSupportService.exe -- (BcmBtRSupport) SRV:[b]64bit:[/b] - [2012-09-20 08:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:[b]64bit:[/b] - [2012-07-26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:[b]64bit:[/b] - [2012-07-26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:[b]64bit:[/b] - [2012-07-26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:[b]64bit:[/b] - [2012-07-26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:[b]64bit:[/b] - [2012-07-26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:[b]64bit:[/b] - [2012-07-26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:[b]64bit:[/b] - [2012-07-26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:[b]64bit:[/b] - [2012-07-26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:[b]64bit:[/b] - [2012-07-26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:[b]64bit:[/b] - [2012-07-26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:[b]64bit:[/b] - [2012-07-26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:[b]64bit:[/b] - [2012-07-26 05:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:[b]64bit:[/b] - [2012-06-19 20:10:34 | 000,634,632 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R) SRV - [2013-02-25 14:54:30 | 001,260,320 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-12-14 02:42:10 | 000,277,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2012-12-13 17:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2012-09-18 18:19:52 | 000,364,416 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012-09-18 18:19:50 | 000,276,864 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012-09-18 18:19:46 | 000,128,896 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R) SRV - [2012-09-18 18:19:36 | 000,165,760 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service) SRV - [2012-07-26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2013-12-09 15:58:02 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\LhdX64.sys -- (LHDmgr) DRV:[b]64bit:[/b] - [2013-12-09 15:58:02 | 000,033,560 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AcpiVpc.sys -- (ACPIVPC) DRV:[b]64bit:[/b] - [2013-09-17 16:44:31 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\atksgt.sys -- (atksgt) DRV:[b]64bit:[/b] - [2013-09-17 16:44:31 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\lirsgt.sys -- (lirsgt) DRV:[b]64bit:[/b] - [2013-08-16 07:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam) DRV:[b]64bit:[/b] - [2013-07-09 10:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101) DRV:[b]64bit:[/b] - [2013-07-02 03:41:47 | 000,447,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3) DRV:[b]64bit:[/b] - [2013-07-02 03:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI) DRV:[b]64bit:[/b] - [2013-07-02 03:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000) DRV:[b]64bit:[/b] - [2013-07-02 02:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot) DRV:[b]64bit:[/b] - [2013-07-02 00:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter) DRV:[b]64bit:[/b] - [2013-06-29 08:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus) DRV:[b]64bit:[/b] - [2013-06-10 23:17:46 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS) DRV:[b]64bit:[/b] - [2013-06-01 05:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:[b]64bit:[/b] - [2013-05-04 09:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport) DRV:[b]64bit:[/b] - [2013-04-25 17:25:08 | 000,368,904 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ETD.sys -- (ETD) DRV:[b]64bit:[/b] - [2013-03-13 15:14:40 | 000,546,304 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA) DRV:[b]64bit:[/b] - [2013-03-02 12:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci) DRV:[b]64bit:[/b] - [2013-03-02 12:45:20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM) DRV:[b]64bit:[/b] - [2013-03-02 12:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc) DRV:[b]64bit:[/b] - [2013-02-27 19:55:46 | 000,022,744 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwrchid.sys -- (btwrchid) DRV:[b]64bit:[/b] - [2013-02-27 19:55:44 | 000,227,032 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwavdt.sys -- (btwavdt) DRV:[b]64bit:[/b] - [2013-02-27 19:55:42 | 000,186,584 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwaudio.sys -- (btwaudio) DRV:[b]64bit:[/b] - [2013-02-27 19:55:38 | 000,165,080 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwampfl.sys -- (btwampfl) DRV:[b]64bit:[/b] - [2013-02-25 14:54:30 | 000,030,496 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\nvpciflt.sys -- (nvpciflt) DRV:[b]64bit:[/b] - [2013-01-20 20:48:26 | 000,044,912 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwpanfl.sys -- (BTWPANFL) DRV:[b]64bit:[/b] - [2013-01-10 10:25:22 | 000,139,768 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\epfwwfpr.sys -- (epfwwfpr) DRV:[b]64bit:[/b] - [2013-01-10 10:25:20 | 000,213,416 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\eamonm.sys -- (eamonm) DRV:[b]64bit:[/b] - [2013-01-10 10:25:20 | 000,150,616 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\ehdrv.sys -- (ehdrv) DRV:[b]64bit:[/b] - [2013-01-10 03:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32) DRV:[b]64bit:[/b] - [2012-12-20 07:10:00 | 000,105,160 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\WibuKey64.sys -- (WIBUKEY) DRV:[b]64bit:[/b] - [2012-12-14 02:42:22 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx) DRV:[b]64bit:[/b] - [2012-11-27 05:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid) DRV:[b]64bit:[/b] - [2012-11-20 06:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c) DRV:[b]64bit:[/b] - [2012-11-20 03:34:56 | 000,118,936 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\L1C63x64.sys -- (L1C) DRV:[b]64bit:[/b] - [2012-11-13 10:24:22 | 000,045,544 | ---- | M] (Fengtao Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\vdrive.sys -- (vdrive) DRV:[b]64bit:[/b] - [2012-11-13 10:24:22 | 000,012,776 | ---- | M] (Fengtao Software Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\dvdfabio.sys -- (dvdfabio) DRV:[b]64bit:[/b] - [2012-11-06 05:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM) DRV:[b]64bit:[/b] - [2012-10-13 22:36:36 | 006,835,784 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BCMWL63a.SYS -- (BCM43XX) DRV:[b]64bit:[/b] - [2012-10-12 10:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:[b]64bit:[/b] - [2012-10-11 09:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor) DRV:[b]64bit:[/b] - [2012-10-04 03:26:58 | 000,095,232 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AmUStor.sys -- (AmUStor) DRV:[b]64bit:[/b] - [2012-10-02 17:42:34 | 000,169,240 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\bcbtums.sys -- (bcbtums) DRV:[b]64bit:[/b] - [2012-09-20 09:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2012-09-20 09:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2012-07-27 20:18:26 | 000,040,248 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwl2cap.sys -- (btwl2cap) DRV:[b]64bit:[/b] - [2012-07-26 07:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2012-07-26 07:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv) DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt) DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor) DRV:[b]64bit:[/b] - [2012-07-26 07:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex) DRV:[b]64bit:[/b] - [2012-07-26 07:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis) DRV:[b]64bit:[/b] - [2012-07-26 07:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS) DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2012-07-26 07:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:[b]64bit:[/b] - [2012-07-26 07:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass) DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware) DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2012-07-26 07:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2012-07-26 06:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS) DRV:[b]64bit:[/b] - [2012-07-26 06:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci) DRV:[b]64bit:[/b] - [2012-07-26 05:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt) DRV:[b]64bit:[/b] - [2012-07-26 04:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf) DRV:[b]64bit:[/b] - [2012-07-26 04:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay) DRV:[b]64bit:[/b] - [2012-07-26 04:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo) DRV:[b]64bit:[/b] - [2012-07-26 04:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender) DRV:[b]64bit:[/b] - [2012-07-26 04:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter) DRV:[b]64bit:[/b] - [2012-07-26 04:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic) DRV:[b]64bit:[/b] - [2012-07-26 04:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime) DRV:[b]64bit:[/b] - [2012-07-26 04:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig) DRV:[b]64bit:[/b] - [2012-07-26 04:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:[b]64bit:[/b] - [2012-07-26 04:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr) DRV:[b]64bit:[/b] - [2012-07-26 04:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd) DRV:[b]64bit:[/b] - [2012-07-26 04:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx) DRV:[b]64bit:[/b] - [2012-07-26 04:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx) DRV:[b]64bit:[/b] - [2012-07-26 04:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD) DRV:[b]64bit:[/b] - [2012-07-26 04:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum) DRV:[b]64bit:[/b] - [2012-07-26 04:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc) DRV:[b]64bit:[/b] - [2012-07-26 04:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2012-07-26 04:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid) DRV:[b]64bit:[/b] - [2012-07-26 04:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp) DRV:[b]64bit:[/b] - [2012-07-26 04:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr) DRV:[b]64bit:[/b] - [2012-07-26 04:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr) DRV:[b]64bit:[/b] - [2012-07-26 04:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp) DRV:[b]64bit:[/b] - [2012-07-26 04:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum) DRV:[b]64bit:[/b] - [2012-07-26 04:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:[b]64bit:[/b] - [2012-07-26 04:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp) DRV:[b]64bit:[/b] - [2012-07-26 04:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu) DRV:[b]64bit:[/b] - [2012-07-03 16:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://pl.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl-PL IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = BF 4D 17 54 EC C0 CE 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@graphisoft.com/GDL Web Plug-in: C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll () FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-12-09 16:09:50 | 000,000,000 | ---D | M] [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll CHR - Extension: Dokumenty Google = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Dysk Google = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Szukaj w Google = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: AdBlock = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0\ CHR - Extension: Chrome In-App Payments service = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\ CHR - Extension: Gmail = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-07-26 07:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited) O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited) O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.) O4 - HKLM..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk, Inc.) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKCU..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 10.21.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.200 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0001055E-E147-4D45-954E-694AED43BACB}: DhcpNameServer = 10.100.100.3 10.100.100.253 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1F94000E-6C5E-45A4-A07C-05AE44099252}: DhcpNameServer = 192.168.1.200 O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation) O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-10-13 14:12:44 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-12-10 13:53:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2013-12-10 13:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2013-12-10 13:53:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2013-12-10 01:56:19 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Diablo III [2013-12-09 20:06:34 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Adobe [2013-12-09 17:51:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III [2013-12-09 17:51:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment [2013-12-09 17:51:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment [2013-12-09 17:45:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net [2013-12-09 17:42:27 | 000,000,000 | ---D | C] -- C:\Drivers [2013-12-09 17:26:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013-12-09 17:24:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2013-12-09 17:24:56 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Google [2013-12-09 17:23:29 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\ESET [2013-12-09 16:16:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero [2013-12-09 16:15:53 | 001,757,184 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagX7.dll [2013-12-09 16:15:53 | 000,802,816 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXRA7.dll [2013-12-09 16:15:53 | 000,497,296 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXpr7.dll [2013-12-09 16:15:53 | 000,368,640 | ---- | C] (Pegasus Imaging Corporation) -- C:\Windows\SysWow64\TwnLib4.dll [2013-12-09 16:15:53 | 000,258,048 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXR7.dll [2013-12-09 16:15:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2013-12-09 16:15:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero [2013-12-09 16:15:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero [2013-12-09 16:12:22 | 000,106,496 | ---- | C] (windowsforum.kr) -- C:\Windows\SysNative\SLCHook.dll [2013-12-09 16:09:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2013-12-09 16:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET [2013-12-09 16:09:39 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2013-12-09 16:07:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2013-12-09 16:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2013-12-09 16:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2013-12-09 16:06:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office [2013-12-09 16:05:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works [2013-12-09 16:05:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2013-12-09 16:05:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio [2013-12-09 16:05:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2013-12-09 16:05:33 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2013-12-09 16:05:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Mozilla [2013-12-09 16:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2013-12-09 16:04:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013-12-09 16:04:27 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Microsoft Help [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\WinRAR [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2013-12-09 16:04:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR [2013-12-09 16:04:16 | 000,000,000 | RH-D | C] -- C:\MSOCache [2013-12-09 16:00:16 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Broadcom [2013-12-09 16:00:16 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Bluetooth Exchange Folder [2013-12-09 16:00:14 | 000,044,912 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwpanfl.sys [2013-12-09 16:00:12 | 000,165,080 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwampfl.sys [2013-12-09 15:59:45 | 002,231,064 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\BcmBtRSupport.dll [2013-12-09 15:59:45 | 002,227,992 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\BtwRSupportService.exe [2013-12-09 15:59:42 | 000,227,032 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwavdt.sys [2013-12-09 15:59:42 | 000,186,584 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwaudio.sys [2013-12-09 15:59:42 | 000,169,240 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\bcbtums.sys [2013-12-09 15:59:42 | 000,040,248 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwl2cap.sys [2013-12-09 15:59:42 | 000,022,744 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwrchid.sys [2013-12-09 15:58:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Energy Management [2013-12-09 15:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2013-12-09 15:58:44 | 000,039,008 | ---- | C] (Lenovo.) -- C:\Windows\SysNative\drivers\LhdX64.sys [2013-12-09 15:58:44 | 000,019,872 | ---- | C] (Lenovo (Beijing) Limited) -- C:\Windows\SysNative\LenovoSDKEmSubSystem.dll [2013-12-09 15:58:44 | 000,000,000 | ---D | C] -- C:\Program Files\Lenovo [2013-12-09 15:58:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lenovo [2013-12-09 15:58:08 | 006,101,504 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\StLang64.dll [2013-12-09 15:58:08 | 001,897,984 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\IDTNC64.cpl [2013-12-09 15:58:08 | 000,332,800 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stacsv64.exe [2013-12-09 15:58:08 | 000,088,576 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\IDTPMA64.exe [2013-12-09 15:57:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations [2013-12-09 15:57:46 | 000,546,304 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys [2013-12-09 15:57:45 | 002,193,920 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll [2013-12-09 15:57:45 | 000,674,304 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll [2013-12-09 15:57:45 | 000,499,200 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll [2013-12-09 15:57:45 | 000,256,000 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\st646467.dll [2013-12-09 15:57:44 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEP64A.dll [2013-12-09 15:57:44 | 002,714,720 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2013-12-09 15:57:44 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EED64A.dll [2013-12-09 15:57:44 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEL64A.dll [2013-12-09 15:57:44 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEA64A.dll [2013-12-09 15:57:44 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEG64A.dll [2013-12-09 15:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\IDT [2013-12-09 15:56:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2013-12-09 15:56:39 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2013-12-09 15:56:39 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\NV [2013-12-09 15:56:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\NV [2013-12-09 15:56:34 | 006,411,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll [2013-12-09 15:56:34 | 003,462,944 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll [2013-12-09 15:56:34 | 002,558,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll [2013-12-09 15:56:34 | 001,002,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll [2013-12-09 15:56:34 | 000,118,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll [2013-12-09 15:56:34 | 000,076,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll [2013-12-09 15:56:34 | 000,063,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll [2013-12-09 15:56:32 | 000,561,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\oemdspif.dll [2013-12-09 15:56:18 | 000,056,832 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2013-12-09 15:56:18 | 000,056,320 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2013-12-09 15:56:14 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2013-12-09 15:56:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2013-12-09 15:56:07 | 001,814,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll [2013-12-09 15:56:07 | 001,510,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll [2013-12-09 15:55:34 | 015,055,824 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2013-12-09 15:55:33 | 012,644,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2013-12-09 15:55:32 | 006,264,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013-12-09 15:55:32 | 001,110,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll [2013-12-09 15:55:32 | 000,961,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013-12-09 15:55:32 | 000,030,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvpciflt.sys [2013-12-09 15:55:31 | 026,936,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013-12-09 15:55:31 | 007,566,624 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013-12-09 15:55:29 | 020,456,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013-12-09 15:55:27 | 000,245,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013-12-09 15:55:27 | 000,201,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013-12-09 15:55:26 | 018,059,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2013-12-09 15:55:25 | 015,134,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2013-12-09 15:55:23 | 007,935,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013-12-09 15:55:23 | 002,907,936 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013-12-09 15:55:23 | 002,723,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013-12-09 15:55:23 | 002,349,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013-12-09 15:55:23 | 001,988,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013-12-09 15:55:22 | 009,393,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013-12-09 15:55:21 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013-12-09 15:55:20 | 025,256,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013-12-09 15:55:18 | 002,832,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2013-12-09 15:55:18 | 002,511,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2013-12-09 15:54:55 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2013-12-09 15:54:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AmIcoSingLun [2013-12-09 15:54:44 | 000,000,000 | ---D | C] -- C:\ProgramData\AmUStor [2013-12-09 15:54:16 | 000,015,136 | R--- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll [2013-12-09 15:54:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel [2013-12-09 15:54:03 | 000,037,616 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_1969.dll [2013-12-09 15:54:01 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2013-12-09 15:53:47 | 000,118,936 | ---- | C] (Qualcomm Atheros Co., Ltd.) -- C:\Windows\SysNative\drivers\L1C63x64.sys [2013-12-09 15:53:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent [2013-12-09 15:53:33 | 000,062,784 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\HECIx64.sys [2013-12-09 15:53:24 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Atheros_L1e [2013-12-09 15:53:18 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2013-12-09 15:52:57 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll [2013-12-09 15:52:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2013-12-09 15:52:41 | 000,000,000 | ---D | C] -- C:\Intel [2013-12-09 15:52:36 | 006,835,784 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL63a.SYS [2013-12-09 15:52:36 | 004,395,008 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvsrv64.dll [2013-12-09 15:52:36 | 003,659,264 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvui64.dll [2013-12-09 15:51:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StartIsBack [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\Searches [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\Contacts [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013-12-09 15:50:19 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Adobe [2013-12-09 15:50:00 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\VirtualStore [2013-12-09 15:49:56 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache [2013-12-09 15:49:56 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Packages [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Ustawienia lokalne [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\AppData\Local\Temporary Internet Files [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Szablony [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\SendTo [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Recent [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\PrintHood [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\NetHood [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Documents\Moje wideo [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Documents\Moje obrazy [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Moje dokumenty [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Documents\Moja muzyka [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Menu Start [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\AppData\Local\Historia [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Dane aplikacji [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\AppData\Local\Dane aplikacji [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Cookies [2013-12-09 15:49:52 | 000,000,000 | --SD | C] -- C:\Users\qaz\AppData\Roaming\Microsoft [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Videos [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Saved Games [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Pictures [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Music [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Links [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Favorites [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Downloads [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Documents [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Desktop [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2013-12-09 15:49:52 | 000,000,000 | -H-D | C] -- C:\Users\qaz\AppData [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Temp [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Microsoft [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Windows\CSC [2013-12-09 15:49:49 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start [2013-12-09 15:42:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit [2013-12-09 15:42:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty [2013-12-09 15:42:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji [2013-12-09 15:40:55 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2013-12-09 15:40:17 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013-12-09 15:40:00 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2013-10-15 21:01:05 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2013-10-15 20:57:01 | 000,000,000 | ---D | C] -- C:\_OTL [2013-10-14 00:16:02 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\cache [2013-10-14 00:14:25 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet [2013-10-13 23:35:16 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Autodesk [2013-10-13 23:35:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk Robot Structural Analysis Professional 2014 [2013-10-13 22:39:24 | 001,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll [2013-10-13 22:39:24 | 001,245,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll [2013-10-13 22:39:24 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll [2013-10-13 22:39:24 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx [2013-10-13 22:39:24 | 000,437,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll [2013-10-13 22:39:24 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx [2013-10-13 22:39:19 | 010,116,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll [2013-10-13 22:39:18 | 008,858,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll [2013-10-13 22:39:17 | 002,304,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll [2013-10-13 22:39:17 | 002,035,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll [2013-10-13 22:39:17 | 001,125,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll [2013-10-13 22:39:17 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appmgr.dll [2013-10-13 22:39:17 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll [2013-10-13 22:39:17 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appmgr.dll [2013-10-13 22:39:17 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll [2013-10-13 22:39:17 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mbsmsapi.dll [2013-10-13 22:39:17 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll [2013-10-13 22:39:17 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mbsmsapi.dll [2013-10-13 22:39:16 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncInfo.dll [2013-10-13 19:42:09 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll [2013-10-13 19:42:09 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2013-10-13 14:34:18 | 000,000,000 | ---D | C] -- C:\ProgramData\FARO [2013-10-13 14:34:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk ReCap [2013-10-13 14:33:08 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Inventor Server SDK ACAD 2014 [2013-10-13 14:32:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2013-10-13 14:32:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2014 — Polski (Polish) [2013-10-13 14:31:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Autodesk [2013-10-13 14:31:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared [2013-10-13 14:31:53 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk [2013-10-13 14:31:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Autodesk [2013-10-13 14:29:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2013-10-13 14:28:43 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer [2013-10-13 14:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013-10-13 14:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013-10-13 14:28:01 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll [2013-10-13 14:28:01 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe [2013-10-13 14:27:55 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe [2013-10-13 14:27:54 | 001,166,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll [2013-10-13 14:25:03 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Autodesk [2013-10-13 14:25:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Autodesk [2013-10-13 14:15:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Autodesk Shared [2013-10-13 14:15:44 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Autodesk [2013-10-13 14:15:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk [2013-10-13 14:15:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Applications [2013-10-13 14:12:48 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Akamai [2013-10-13 14:12:40 | 000,000,000 | ---D | C] -- C:\Autodesk [2013-10-12 23:02:45 | 000,652,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll [2013-10-12 23:02:29 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-10-12 23:02:24 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll [2013-10-12 23:02:23 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013-10-12 23:02:23 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013-10-12 23:02:22 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013-10-12 23:02:22 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013-10-12 23:02:21 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013-10-12 23:02:21 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013-10-12 23:02:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013-10-12 23:02:21 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll [2013-10-12 23:02:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-10-12 23:02:21 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll [2013-10-12 23:02:21 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013-10-12 23:02:21 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013-10-12 23:02:19 | 000,498,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys [2013-10-12 23:02:19 | 000,054,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys [2013-10-12 23:02:19 | 000,021,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys [2013-10-12 23:02:17 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys [2013-10-12 23:02:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys [2013-10-12 23:02:12 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2013-10-12 23:02:12 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2013-10-12 23:02:12 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2013-10-12 23:02:12 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2013-10-12 23:02:09 | 000,447,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS [2013-10-12 23:02:09 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS [2013-10-12 23:02:09 | 000,213,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS [2013-10-09 01:52:12 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2013-10-08 23:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2013-10-08 23:20:58 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Malwarebytes [2013-10-08 23:20:42 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2013-10-08 23:20:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2013-10-08 23:20:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013-10-04 12:28:17 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\ElevatedDiagnostics [2013-09-30 01:00:15 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\TMS Pro-cTraderCommon [2013-09-30 01:00:15 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\cTrader [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\TMS cTraderUsers [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\TMS cTrader [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\cTrader [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\cAlgo [2013-09-30 01:00:09 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TMS Pro cTrader [2013-09-30 00:59:09 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Deployment [2013-09-30 00:59:09 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Apps [2013-09-29 19:52:42 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Clipboarder [2013-09-29 19:52:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Sidebar7 [2013-09-29 19:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack [2013-09-29 19:36:47 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Axialis [2013-09-24 23:39:21 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Nero [2013-09-19 11:14:06 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Might & Magic Heroes VI [2013-09-19 11:14:06 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Might & Magic Heroes VI [2013-09-19 10:59:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft [2013-09-19 00:17:32 | 000,000,000 | ---D | C] -- C:\ProgramData\MetaQuotes [2013-09-19 00:09:03 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Macromedia [2013-09-18 01:51:05 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll [2013-09-18 01:51:05 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll [2013-09-18 01:51:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDKURD.DLL [2013-09-18 01:51:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDKURD.DLL [2013-09-18 01:50:54 | 011,459,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\glcndFilter.dll [2013-09-18 01:50:52 | 008,552,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\glcndFilter.dll [2013-09-18 01:50:51 | 001,566,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2013-09-18 01:50:51 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll [2013-09-18 01:50:50 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe [2013-09-18 01:50:47 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll [2013-09-18 01:50:46 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll [2013-09-18 01:50:46 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll [2013-09-18 01:50:46 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll [2013-09-18 01:50:46 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe [2013-09-18 01:50:46 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl [2013-09-18 01:50:46 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl [2013-09-18 01:50:46 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll [2013-09-18 01:50:46 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWCN.dll [2013-09-18 01:50:45 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll [2013-09-18 01:50:45 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll [2013-09-18 01:50:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll [2013-09-18 01:50:44 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnApi.dll [2013-09-18 01:50:44 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WcnApi.dll [2013-09-18 01:50:43 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll [2013-09-18 01:50:43 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlansec.dll [2013-09-18 01:50:43 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdWCN.dll [2013-09-18 01:50:42 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfdprov.dll [2013-09-18 01:50:42 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapPeerProxy.dll [2013-09-18 01:50:42 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapAuthProxy.dll [2013-09-18 01:50:42 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfdprov.dll [2013-09-18 01:50:41 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll [2013-09-18 01:50:41 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fxppm.sys [2013-09-18 01:50:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsilog.dll [2013-09-18 01:50:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanhlp.dll [2013-09-18 01:50:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanhlp.dll [2013-09-18 01:50:28 | 001,347,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmclient.dll [2013-09-18 01:50:28 | 000,987,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmclient.dll [2013-09-18 01:50:28 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmscan.dll [2013-09-18 01:50:28 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmscan.dll [2013-09-18 01:50:28 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmshell.dll [2013-09-18 01:50:28 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adrclient.dll [2013-09-18 01:50:28 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmshell.dll [2013-09-18 01:50:28 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquota.dll [2013-09-18 01:50:28 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adrclient.dll [2013-09-18 01:50:28 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquota.dll [2013-09-18 01:50:27 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmtrace.dll [2013-09-18 01:50:27 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmtrace.dll [2013-09-18 01:50:27 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm_ps.dll [2013-09-18 01:50:27 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm_ps.dll [2013-09-18 01:50:21 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll [2013-09-18 01:50:20 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetsrc.dll [2013-09-18 01:50:20 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetsrc.dll [2013-09-18 01:50:20 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll [2013-09-18 01:50:20 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmpeg2srcsnk.dll [2013-09-18 01:50:20 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll [2013-09-18 01:50:20 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmpeg2srcsnk.dll [2013-09-18 01:50:05 | 001,361,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll [2013-09-18 01:50:05 | 001,265,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2013-09-18 01:50:05 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll [2013-09-18 01:50:04 | 000,793,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll [2013-09-18 01:50:04 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll [2013-09-18 01:50:04 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2013-09-18 01:50:03 | 000,612,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll [2013-09-18 01:50:03 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe [2013-09-18 01:50:03 | 000,441,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys [2013-09-18 01:49:59 | 001,045,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll [2013-09-18 01:49:59 | 000,962,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll [2013-09-18 01:49:59 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys [2013-09-18 01:49:59 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll [2013-09-18 01:49:59 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Storage.Compression.dll [2013-09-18 01:49:58 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SpaceControl.dll [2013-09-18 01:49:58 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll [2013-09-18 01:49:58 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\input.dll [2013-09-18 01:49:58 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll [2013-09-18 01:49:58 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll [2013-09-18 01:49:58 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Storage.Compression.dll [2013-09-18 01:49:58 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdstor.sys [2013-09-18 01:49:58 | 000,033,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\battc.sys [2013-09-18 01:49:56 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll [2013-09-18 01:49:56 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PCPKsp.dll [2013-09-18 01:49:56 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-pdc.dll [2013-09-18 01:49:55 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallAPI.dll [2013-09-18 01:49:55 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SysFxUI.dll [2013-09-18 01:49:55 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSip.dll [2013-09-18 01:49:55 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icfupgd.dll [2013-09-18 01:49:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxSip.dll [2013-09-18 01:49:55 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PCPKsp.dll [2013-09-18 01:49:55 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BdeUISrv.exe [2013-09-18 01:49:54 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys [2013-09-18 01:49:54 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfapigp.dll [2013-09-18 01:49:54 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfapigp.dll [2013-09-18 01:49:54 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdhebl3.dll [2013-09-18 01:49:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdhebl3.dll [2013-09-18 01:49:45 | 003,245,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll [2013-09-18 01:49:44 | 001,536,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storagewmi.dll [2013-09-18 01:49:44 | 001,122,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Taskmgr.exe [2013-09-18 01:49:44 | 001,027,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Taskmgr.exe [2013-09-18 01:49:44 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebcamUi.dll [2013-09-18 01:49:44 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WebcamUi.dll [2013-09-18 01:49:43 | 001,217,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\storagewmi.dll [2013-09-18 01:49:43 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe [2013-09-18 01:49:43 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe [2013-09-18 01:49:43 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserLanguagesCpl.dll [2013-09-18 01:49:43 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserLanguagesCpl.dll [2013-09-18 01:49:43 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll [2013-09-18 01:49:43 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll [2013-09-18 01:49:43 | 000,027,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys [2013-09-18 01:49:42 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll [2013-09-18 01:49:42 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vds_ps.dll [2013-09-18 01:49:42 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vds_ps.dll [2013-09-18 01:49:42 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rfxvmt.dll [2013-09-18 01:49:42 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsldr.exe [2013-09-18 01:49:38 | 002,219,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll [2013-09-18 01:49:37 | 006,987,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013-09-18 01:49:37 | 002,391,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013-09-18 01:49:37 | 002,106,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2013-09-18 01:49:37 | 001,842,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll [2013-09-18 01:49:37 | 001,048,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll [2013-09-18 01:49:36 | 001,527,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll [2013-09-18 01:49:36 | 001,453,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll [2013-09-18 01:49:36 | 001,403,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi [2013-09-18 01:49:36 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll [2013-09-18 01:49:36 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll [2013-09-18 01:49:35 | 001,271,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe [2013-09-18 01:49:35 | 001,217,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi [2013-09-18 01:49:35 | 001,093,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe [2013-09-18 01:49:35 | 000,583,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll [2013-09-18 01:49:35 | 000,523,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013-09-18 01:49:35 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013-09-18 01:49:35 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceSetupManager.dll [2013-09-18 01:49:35 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll [2013-09-18 01:49:35 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MbaeParserTask.exe [2013-09-18 01:49:34 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll [2013-09-18 01:49:34 | 000,037,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys [2013-09-18 01:49:27 | 002,094,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmc.exe [2013-09-18 01:49:27 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidsvc.dll [2013-09-18 01:49:26 | 001,611,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmc.exe [2013-09-18 01:49:26 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmstormod.dll [2013-09-18 01:49:25 | 001,886,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll [2013-09-18 01:49:25 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.dll [2013-09-18 01:49:25 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll [2013-09-18 01:49:25 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmstormod.dll [2013-09-18 01:49:24 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP4SDECD.DLL [2013-09-18 01:49:24 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP4SDECD.DLL [2013-09-18 01:49:24 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm.dll [2013-09-18 01:49:24 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm.dll [2013-09-18 01:49:24 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll [2013-09-18 01:49:24 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll [2013-09-18 01:49:24 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncbservice.dll [2013-09-18 01:49:24 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll [2013-09-18 01:49:24 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxm.dll [2013-09-18 01:49:24 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiaacmgr.exe [2013-09-18 01:49:24 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiaacmgr.exe [2013-09-18 01:49:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhsvc.dll [2013-09-18 01:49:24 | 000,028,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpiowin32.sys [2013-09-18 01:49:24 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhapi.dll [2013-09-18 01:49:24 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxp.dll [2013-09-18 01:49:24 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\keepaliveprovider.dll [2013-09-18 01:49:03 | 013,644,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll [2013-09-18 01:48:59 | 010,788,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll [2013-09-18 01:48:57 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll [2013-09-18 01:48:56 | 000,820,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll [2013-09-18 01:48:56 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netprofmsvc.dll [2013-09-18 01:48:56 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BCP47Langs.dll [2013-09-18 01:48:56 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BCP47Langs.dll [2013-09-18 01:48:55 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Magnify.exe [2013-09-18 01:48:55 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll [2013-09-18 01:48:55 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll [2013-09-18 01:48:55 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll [2013-09-18 01:48:55 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll [2013-09-18 01:48:55 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll [2013-09-18 01:48:55 | 000,284,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spaceport.sys [2013-09-18 01:48:55 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll [2013-09-18 01:48:55 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll [2013-09-18 01:48:55 | 000,014,848 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\rars.rs [2013-09-18 01:48:55 | 000,014,848 | ---- | C] (Microsoft) -- C:\Windows\SysNative\rars.rs [2013-09-18 01:48:54 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Magnify.exe [2013-09-18 01:48:54 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll [2013-09-18 01:48:54 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll [2013-09-18 01:48:54 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl [2013-09-18 01:48:54 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl [2013-09-18 01:48:54 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll [2013-09-18 01:48:54 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll [2013-09-18 01:48:54 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biwinrt.dll [2013-09-18 01:48:54 | 000,120,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthHost.exe [2013-09-18 01:48:54 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\biwinrt.dll [2013-09-18 01:48:54 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll [2013-09-18 01:48:54 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll [2013-09-18 01:48:48 | 001,257,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll [2013-09-18 01:48:48 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe [2013-09-18 01:48:48 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe [2013-09-18 01:48:48 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll [2013-09-18 01:48:48 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll [2013-09-18 01:48:38 | 001,627,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013-09-18 01:48:33 | 005,978,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll [2013-09-18 01:48:33 | 001,101,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll [2013-09-18 01:48:32 | 001,149,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll [2013-09-18 01:48:31 | 005,091,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll [2013-09-18 01:48:31 | 000,951,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Globalization.dll [2013-09-18 01:48:31 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll [2013-09-18 01:48:31 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll [2013-09-18 01:48:31 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll [2013-09-18 01:48:31 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerServer.dll [2013-09-18 01:48:30 | 000,893,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll [2013-09-18 01:48:30 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll [2013-09-18 01:48:30 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Globalization.dll [2013-09-18 01:48:30 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll [2013-09-18 01:48:30 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll [2013-09-18 01:48:30 | 000,332,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys [2013-09-18 01:48:30 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usbmon.dll [2013-09-18 01:48:29 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.OnlineId.dll [2013-09-18 01:48:29 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsquirt.exe [2013-09-18 01:48:29 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl [2013-09-18 01:48:29 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\discan.dll [2013-09-18 01:48:29 | 000,148,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys [2013-09-18 01:48:29 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl [2013-09-18 01:48:29 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NdisImPlatform.dll [2013-09-18 01:48:29 | 000,077,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storahci.sys [2013-09-18 01:48:29 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevDispItemProvider.dll [2013-09-18 01:48:28 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncInfo.dll [2013-09-18 01:48:28 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDPrintProxy.DLL [2013-09-18 01:48:28 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevDispItemProvider.dll [2013-09-18 01:47:47 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll [2013-09-18 01:47:43 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll [2013-09-18 01:46:49 | 014,267,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2013-09-18 01:46:49 | 003,552,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll [2013-09-18 01:46:47 | 011,878,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2013-09-18 01:46:47 | 002,107,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll [2013-09-18 01:46:44 | 002,767,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll [2013-09-18 01:46:43 | 001,829,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2013-09-18 01:46:43 | 001,593,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll [2013-09-18 01:46:42 | 001,444,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll [2013-09-18 01:46:38 | 001,113,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll [2013-09-18 01:46:38 | 000,306,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_10ec.dll [2013-09-18 01:46:37 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll [2013-09-18 01:46:36 | 000,489,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll [2013-09-18 01:46:36 | 000,446,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll [2013-09-18 01:46:36 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe [2013-09-18 01:46:36 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe [2013-09-18 01:46:36 | 000,298,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll [2013-09-18 01:46:36 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll [2013-09-18 01:46:35 | 000,804,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RecoveryDrive.exe [2013-09-18 01:46:35 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll [2013-09-18 01:46:35 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll [2013-09-18 01:46:35 | 000,435,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll [2013-09-18 01:46:35 | 000,253,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe [2013-09-18 01:46:34 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll [2013-09-18 01:46:33 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll [2013-09-18 01:46:33 | 000,659,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll [2013-09-18 01:46:33 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll [2013-09-18 01:46:33 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll [2013-09-18 01:46:33 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll [2013-09-18 01:46:33 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhengine.dll [2013-09-18 01:46:33 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmvdsitf.dll [2013-09-18 01:46:33 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll [2013-09-18 01:46:32 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll [2013-09-18 01:46:32 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GenuineCenter.dll [2013-09-18 01:46:32 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll [2013-09-18 01:46:32 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll [2013-09-18 01:46:32 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iuilp.dll [2013-09-18 01:46:32 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe [2013-09-18 01:46:32 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmvdsitf.dll [2013-09-18 01:46:32 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Robocopy.exe [2013-09-18 01:46:32 | 000,123,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll [2013-09-18 01:46:32 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Robocopy.exe [2013-09-18 01:46:32 | 000,086,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdnet.dll [2013-09-18 01:46:32 | 000,077,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdvm.dll [2013-09-18 01:46:32 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys [2013-09-18 01:46:32 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fmifs.dll [2013-09-18 01:46:32 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fmifs.dll [2013-09-18 01:46:31 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll [2013-09-18 01:46:31 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssitlb.dll [2013-09-18 01:46:31 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll [2013-09-18 01:46:31 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssitlb.dll [2013-09-18 01:46:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll [2013-09-18 01:46:31 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll [2013-09-18 01:46:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshooks.dll [2013-09-18 01:46:31 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshooks.dll [2013-09-17 23:20:46 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Anno 1404 [2013-09-17 16:48:21 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Ubisoft [2013-09-17 16:39:15 | 000,045,544 | ---- | C] (Fengtao Software Inc.) -- C:\Windows\SysNative\drivers\vdrive.sys [2013-09-17 16:39:15 | 000,012,776 | ---- | C] (Fengtao Software Inc.) -- C:\Windows\SysNative\drivers\dvdfabio.sys [2013-09-17 16:39:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab Virtual Drive [2013-09-17 16:39:15 | 000,000,000 | ---D | C] -- C:\Program Files\DVDFab Virtual Drive [2013-09-16 19:12:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\.gstreamer-0.10 [2013-09-16 19:11:57 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\ChomikBox [2013-09-16 19:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chomikuj.pl [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-12-09 16:16:03 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\Nero Express.lnk [2013-12-09 16:07:05 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2013-12-09 15:59:52 | 000,000,876 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-09 15:59:05 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl [2013-12-09 15:58:04 | 001,511,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WudfUpdate_01011.dll [2013-12-09 15:58:04 | 000,066,560 | ---- | M] (Lenovo) -- C:\Windows\SysNative\drivers\UMDF\LenovoVhid.dll [2013-12-09 15:58:04 | 000,019,872 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Windows\SysNative\LenovoSDKEmSubSystem.dll [2013-12-09 15:58:02 | 000,039,008 | ---- | M] (Lenovo.) -- C:\Windows\SysNative\drivers\LhdX64.sys [2013-12-09 15:58:02 | 000,033,560 | ---- | M] (Lenovo Corporation) -- C:\Windows\SysNative\drivers\AcpiVpc.sys [2013-12-09 15:41:58 | 000,001,074 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2013-12-09 15:41:58 | 000,001,074 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2013-12-09 15:41:32 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2013-10-15 22:00:10 | 001,793,398 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-10-15 22:00:10 | 000,794,946 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2013-10-15 22:00:10 | 000,710,244 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013-10-15 22:00:10 | 000,159,530 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2013-10-15 22:00:10 | 000,132,614 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013-10-15 21:59:00 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cec67033fad2ec.job [2013-10-15 21:56:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-10-15 21:55:22 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-10-15 21:55:15 | 000,000,000 | -H-- | M] () -- C:\ProgramData\cm-lock [2013-10-15 21:54:48 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013-10-15 21:54:40 | 757,784,573 | -HS- | M] () -- C:\hiberfil.sys [2013-10-15 20:58:00 | 000,002,553 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2013-10-14 15:57:45 | 000,505,888 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-10-13 23:35:04 | 000,002,097 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk Robot Structural Analysis Professional 2014.lnk [2013-10-13 14:32:54 | 000,000,153 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2013-10-13 14:32:35 | 000,001,737 | ---- | M] () -- C:\Users\Public\Desktop\AutoCAD 2014 — Polski (Polish).lnk [2013-10-09 01:52:09 | 1014,106,427 | ---- | M] () -- C:\Windows\MEMORY.DMP [2013-10-08 23:23:47 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013-10-08 23:20:43 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-10-08 23:09:04 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013-10-02 03:38:13 | 000,694,232 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-10-02 03:38:13 | 000,078,296 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-09-30 01:00:09 | 000,000,266 | ---- | M] () -- C:\Users\qaz\Desktop\TMS Pro cTrader.appref-ms [2013-09-29 19:52:18 | 000,000,872 | ---- | M] () -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar.lnk [2013-09-25 01:46:09 | 000,001,429 | ---- | M] () -- C:\Users\qaz\Desktop\Diablo 3 BOT.lnk [2013-09-25 00:28:11 | 000,008,293 | ---- | M] () -- C:\Users\qaz\Documents\aa.nra [2013-09-23 01:27:49 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013-09-23 00:55:16 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-09-23 00:54:55 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013-09-23 00:54:51 | 003,959,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-09-23 00:54:51 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013-09-18 20:51:14 | 000,001,020 | ---- | M] () -- C:\Users\qaz\Desktop\chomikbox — skrót.lnk [2013-09-17 16:44:31 | 000,314,016 | ---- | M] () -- C:\Windows\SysNative\drivers\atksgt.sys [2013-09-17 16:44:31 | 000,043,680 | ---- | M] () -- C:\Windows\SysNative\drivers\lirsgt.sys [2013-09-17 16:39:51 | 000,000,884 | ---- | M] () -- C:\Users\qaz\Desktop\DVDFab Virtual Drive.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-12-09 17:26:43 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013-12-09 17:24:57 | 000,001,046 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-12-09 16:16:03 | 000,001,950 | ---- | C] () -- C:\Users\Public\Desktop\Nero Express.lnk [2013-12-09 16:07:05 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk [2013-12-09 16:07:05 | 000,002,014 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2013-12-09 15:59:44 | 000,056,420 | ---- | C] () -- C:\Windows\SysNative\drivers\BCM43142A0_001.001.011.0122.0123.hex [2013-12-09 15:59:40 | 000,000,876 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-09 15:59:05 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2013-12-09 15:56:34 | 003,040,724 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin [2013-12-09 15:56:07 | 000,017,266 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb [2013-12-09 15:50:19 | 000,001,438 | ---- | C] () -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013-12-09 15:42:20 | 757,784,573 | -HS- | C] () -- C:\hiberfil.sys [2013-12-09 15:41:32 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2013-12-09 15:40:18 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys [2013-10-15 21:55:15 | 000,000,000 | -H-- | C] () -- C:\ProgramData\cm-lock [2013-10-13 23:35:04 | 000,002,097 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk Robot Structural Analysis Professional 2014.lnk [2013-10-13 22:39:16 | 000,386,923 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml [2013-10-13 14:32:54 | 000,000,153 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2013-10-13 14:32:35 | 000,001,737 | ---- | C] () -- C:\Users\Public\Desktop\AutoCAD 2014 — Polski (Polish).lnk [2013-10-13 12:21:35 | 000,505,888 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-10-11 12:54:05 | 000,001,064 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cec67033fad2ec.job [2013-10-09 01:52:09 | 1014,106,427 | ---- | C] () -- C:\Windows\MEMORY.DMP [2013-10-08 23:23:47 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013-10-08 23:20:43 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-09-30 01:00:09 | 000,000,266 | ---- | C] () -- C:\Users\qaz\Desktop\TMS Pro cTrader.appref-ms [2013-09-29 19:52:18 | 000,000,872 | ---- | C] () -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar.lnk [2013-09-29 19:38:05 | 000,169,794 | ---- | C] () -- C:\Windows\market_clock.swf [2013-09-29 19:38:05 | 000,001,138 | ---- | C] () -- C:\Windows\market_clock.htm [2013-09-25 01:46:09 | 000,001,429 | ---- | C] () -- C:\Users\qaz\Desktop\Diablo 3 BOT.lnk [2013-09-25 00:28:11 | 000,008,293 | ---- | C] () -- C:\Users\qaz\Documents\aa.nra [2013-09-18 20:51:14 | 000,001,020 | ---- | C] () -- C:\Users\qaz\Desktop\chomikbox — skrót.lnk [2013-09-17 16:44:31 | 000,314,016 | ---- | C] () -- C:\Windows\SysNative\drivers\atksgt.sys [2013-09-17 16:44:31 | 000,043,680 | ---- | C] () -- C:\Windows\SysNative\drivers\lirsgt.sys [2013-09-17 16:39:15 | 000,000,884 | ---- | C] () -- C:\Users\qaz\Desktop\DVDFab Virtual Drive.lnk [2013-09-13 21:25:01 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll [2012-12-14 02:42:30 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll [2012-12-14 02:42:24 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin [2012-12-14 02:42:24 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin [2012-07-26 10:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2012-07-26 10:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2012-07-26 09:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2012-07-26 03:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2012-07-25 22:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2012-07-25 22:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2012-06-19 19:52:42 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll [2012-06-02 16:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2013-10-13 14:30:45 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013-08-02 08:28:20 | 019,758,080 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013-08-02 07:08:10 | 017,561,088 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-07-26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-07-26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2013-10-14 00:15:10 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Autodesk [2013-09-30 01:02:05 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\cTrader [2013-09-25 02:15:39 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\foobar2000 [2013-09-13 23:26:56 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Graphisoft [2013-09-13 23:15:07 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Install.GS [2013-09-19 16:52:39 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Might & Magic Heroes VI [2013-09-13 21:08:27 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\MPC-BE [2013-09-30 01:00:15 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\TMS cTrader [2013-09-30 01:02:05 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\TMS cTraderUsers [2013-09-30 01:00:15 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\TMS Pro-cTraderCommon [2013-09-17 16:48:21 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Ubisoft [color=#E56717]========== Purity Check ==========[/color] < End of report >OTL logfile created on: 2013-10-15 21:57:31 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\qaz\Downloads 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16721) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 15,88 Gb Total Physical Memory | 13,89 Gb Available Physical Memory | 87,47% Memory free 31,88 Gb Paging File | 29,84 Gb Available in Paging File | 93,60% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 146,14 Gb Total Space | 76,66 Gb Free Space | 52,46% Space Free | Partition Type: NTFS Drive E: | 390,62 Gb Total Space | 348,73 Gb Free Space | 89,27% Space Free | Partition Type: NTFS Drive F: | 394,40 Gb Total Space | 394,24 Gb Free Space | 99,96% Space Free | Partition Type: NTFS Computer Name: ZAQ | User Name: qaz | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-10-09 00:09:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\qaz\Downloads\OTL.exe PRC - [2013-10-03 08:03:07 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2013-04-03 05:00:00 | 008,486,776 | ---- | M] (WIBU-SYSTEMS AG) -- C:\_OTL\MovedFiles\10152013_205701\C_Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe PRC - [2013-04-03 05:00:00 | 002,915,704 | ---- | M] (WIBU-SYSTEMS AG) -- C:\_OTL\MovedFiles\10152013_205701\C_Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe PRC - [2013-02-25 14:54:30 | 001,260,320 | R--- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013-02-01 14:50:22 | 001,641,368 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe PRC - [2012-12-21 14:08:56 | 001,333,424 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe PRC - [2012-12-20 07:10:00 | 006,567,424 | ---- | M] (WIBU-SYSTEMS AG) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe PRC - [2012-12-13 17:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe PRC - [2012-09-18 18:19:52 | 000,364,416 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2012-09-18 18:19:50 | 000,276,864 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2012-09-18 18:19:46 | 000,128,896 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe PRC - [2012-09-18 18:19:36 | 000,165,760 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-10-03 08:03:05 | 000,415,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll MOD - [2013-10-03 08:03:03 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll MOD - [2013-10-03 08:02:12 | 000,698,832 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\libglesv2.dll MOD - [2013-10-03 08:02:11 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\libegl.dll MOD - [2013-10-03 08:02:09 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2013-10-13 14:32:48 | 001,471,352 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FlexNet Licensing Service 64) SRV:[b]64bit:[/b] - [2013-08-16 07:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:[b]64bit:[/b] - [2013-07-02 02:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:[b]64bit:[/b] - [2013-06-25 00:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:[b]64bit:[/b] - [2013-06-01 11:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:[b]64bit:[/b] - [2013-05-04 08:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:[b]64bit:[/b] - [2013-05-04 08:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:[b]64bit:[/b] - [2013-04-12 14:01:30 | 000,099,184 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService) SRV:[b]64bit:[/b] - [2013-04-09 06:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:[b]64bit:[/b] - [2013-03-13 15:14:40 | 000,332,800 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV) SRV:[b]64bit:[/b] - [2013-03-02 04:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:[b]64bit:[/b] - [2013-03-02 04:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:[b]64bit:[/b] - [2013-02-26 19:46:02 | 000,959,192 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins) SRV:[b]64bit:[/b] - [2013-01-10 01:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:[b]64bit:[/b] - [2013-01-10 01:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:[b]64bit:[/b] - [2012-12-21 14:08:56 | 001,333,424 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn) SRV:[b]64bit:[/b] - [2012-10-02 17:42:38 | 002,227,992 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Windows\SysNative\BtwRSupportService.exe -- (BcmBtRSupport) SRV:[b]64bit:[/b] - [2012-09-20 08:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:[b]64bit:[/b] - [2012-07-26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:[b]64bit:[/b] - [2012-07-26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:[b]64bit:[/b] - [2012-07-26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:[b]64bit:[/b] - [2012-07-26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:[b]64bit:[/b] - [2012-07-26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:[b]64bit:[/b] - [2012-07-26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:[b]64bit:[/b] - [2012-07-26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:[b]64bit:[/b] - [2012-07-26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:[b]64bit:[/b] - [2012-07-26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:[b]64bit:[/b] - [2012-07-26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:[b]64bit:[/b] - [2012-07-26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:[b]64bit:[/b] - [2012-07-26 05:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:[b]64bit:[/b] - [2012-06-19 20:10:34 | 000,634,632 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R) SRV - [2013-02-25 14:54:30 | 001,260,320 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-12-14 02:42:10 | 000,277,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2012-12-13 17:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2012-09-18 18:19:52 | 000,364,416 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012-09-18 18:19:50 | 000,276,864 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012-09-18 18:19:46 | 000,128,896 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R) SRV - [2012-09-18 18:19:36 | 000,165,760 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service) SRV - [2012-07-26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2013-12-09 15:58:02 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\LhdX64.sys -- (LHDmgr) DRV:[b]64bit:[/b] - [2013-12-09 15:58:02 | 000,033,560 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AcpiVpc.sys -- (ACPIVPC) DRV:[b]64bit:[/b] - [2013-09-17 16:44:31 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\atksgt.sys -- (atksgt) DRV:[b]64bit:[/b] - [2013-09-17 16:44:31 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\lirsgt.sys -- (lirsgt) DRV:[b]64bit:[/b] - [2013-08-16 07:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam) DRV:[b]64bit:[/b] - [2013-07-09 10:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101) DRV:[b]64bit:[/b] - [2013-07-02 03:41:47 | 000,447,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3) DRV:[b]64bit:[/b] - [2013-07-02 03:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI) DRV:[b]64bit:[/b] - [2013-07-02 03:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000) DRV:[b]64bit:[/b] - [2013-07-02 02:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot) DRV:[b]64bit:[/b] - [2013-07-02 00:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter) DRV:[b]64bit:[/b] - [2013-06-29 08:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus) DRV:[b]64bit:[/b] - [2013-06-10 23:17:46 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS) DRV:[b]64bit:[/b] - [2013-06-01 05:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:[b]64bit:[/b] - [2013-05-04 09:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport) DRV:[b]64bit:[/b] - [2013-04-25 17:25:08 | 000,368,904 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ETD.sys -- (ETD) DRV:[b]64bit:[/b] - [2013-03-13 15:14:40 | 000,546,304 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA) DRV:[b]64bit:[/b] - [2013-03-02 12:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci) DRV:[b]64bit:[/b] - [2013-03-02 12:45:20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM) DRV:[b]64bit:[/b] - [2013-03-02 12:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc) DRV:[b]64bit:[/b] - [2013-02-27 19:55:46 | 000,022,744 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwrchid.sys -- (btwrchid) DRV:[b]64bit:[/b] - [2013-02-27 19:55:44 | 000,227,032 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwavdt.sys -- (btwavdt) DRV:[b]64bit:[/b] - [2013-02-27 19:55:42 | 000,186,584 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwaudio.sys -- (btwaudio) DRV:[b]64bit:[/b] - [2013-02-27 19:55:38 | 000,165,080 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwampfl.sys -- (btwampfl) DRV:[b]64bit:[/b] - [2013-02-25 14:54:30 | 000,030,496 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\nvpciflt.sys -- (nvpciflt) DRV:[b]64bit:[/b] - [2013-01-20 20:48:26 | 000,044,912 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwpanfl.sys -- (BTWPANFL) DRV:[b]64bit:[/b] - [2013-01-10 10:25:22 | 000,139,768 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\epfwwfpr.sys -- (epfwwfpr) DRV:[b]64bit:[/b] - [2013-01-10 10:25:20 | 000,213,416 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\eamonm.sys -- (eamonm) DRV:[b]64bit:[/b] - [2013-01-10 10:25:20 | 000,150,616 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\ehdrv.sys -- (ehdrv) DRV:[b]64bit:[/b] - [2013-01-10 03:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32) DRV:[b]64bit:[/b] - [2012-12-20 07:10:00 | 000,105,160 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\WibuKey64.sys -- (WIBUKEY) DRV:[b]64bit:[/b] - [2012-12-14 02:42:22 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx) DRV:[b]64bit:[/b] - [2012-11-27 05:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid) DRV:[b]64bit:[/b] - [2012-11-20 06:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c) DRV:[b]64bit:[/b] - [2012-11-20 03:34:56 | 000,118,936 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\L1C63x64.sys -- (L1C) DRV:[b]64bit:[/b] - [2012-11-13 10:24:22 | 000,045,544 | ---- | M] (Fengtao Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\vdrive.sys -- (vdrive) DRV:[b]64bit:[/b] - [2012-11-13 10:24:22 | 000,012,776 | ---- | M] (Fengtao Software Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\dvdfabio.sys -- (dvdfabio) DRV:[b]64bit:[/b] - [2012-11-06 05:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM) DRV:[b]64bit:[/b] - [2012-10-13 22:36:36 | 006,835,784 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BCMWL63a.SYS -- (BCM43XX) DRV:[b]64bit:[/b] - [2012-10-12 10:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:[b]64bit:[/b] - [2012-10-11 09:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor) DRV:[b]64bit:[/b] - [2012-10-04 03:26:58 | 000,095,232 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AmUStor.sys -- (AmUStor) DRV:[b]64bit:[/b] - [2012-10-02 17:42:34 | 000,169,240 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\bcbtums.sys -- (bcbtums) DRV:[b]64bit:[/b] - [2012-09-20 09:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2012-09-20 09:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2012-07-27 20:18:26 | 000,040,248 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btwl2cap.sys -- (btwl2cap) DRV:[b]64bit:[/b] - [2012-07-26 07:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2012-07-26 07:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv) DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt) DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor) DRV:[b]64bit:[/b] - [2012-07-26 07:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex) DRV:[b]64bit:[/b] - [2012-07-26 07:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis) DRV:[b]64bit:[/b] - [2012-07-26 07:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS) DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2012-07-26 07:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:[b]64bit:[/b] - [2012-07-26 07:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass) DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware) DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2012-07-26 07:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2012-07-26 06:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS) DRV:[b]64bit:[/b] - [2012-07-26 06:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci) DRV:[b]64bit:[/b] - [2012-07-26 05:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt) DRV:[b]64bit:[/b] - [2012-07-26 04:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf) DRV:[b]64bit:[/b] - [2012-07-26 04:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay) DRV:[b]64bit:[/b] - [2012-07-26 04:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo) DRV:[b]64bit:[/b] - [2012-07-26 04:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender) DRV:[b]64bit:[/b] - [2012-07-26 04:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter) DRV:[b]64bit:[/b] - [2012-07-26 04:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic) DRV:[b]64bit:[/b] - [2012-07-26 04:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime) DRV:[b]64bit:[/b] - [2012-07-26 04:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig) DRV:[b]64bit:[/b] - [2012-07-26 04:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:[b]64bit:[/b] - [2012-07-26 04:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr) DRV:[b]64bit:[/b] - [2012-07-26 04:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd) DRV:[b]64bit:[/b] - [2012-07-26 04:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx) DRV:[b]64bit:[/b] - [2012-07-26 04:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx) DRV:[b]64bit:[/b] - [2012-07-26 04:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD) DRV:[b]64bit:[/b] - [2012-07-26 04:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum) DRV:[b]64bit:[/b] - [2012-07-26 04:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc) DRV:[b]64bit:[/b] - [2012-07-26 04:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2012-07-26 04:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid) DRV:[b]64bit:[/b] - [2012-07-26 04:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp) DRV:[b]64bit:[/b] - [2012-07-26 04:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr) DRV:[b]64bit:[/b] - [2012-07-26 04:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr) DRV:[b]64bit:[/b] - [2012-07-26 04:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp) DRV:[b]64bit:[/b] - [2012-07-26 04:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum) DRV:[b]64bit:[/b] - [2012-07-26 04:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:[b]64bit:[/b] - [2012-07-26 04:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp) DRV:[b]64bit:[/b] - [2012-07-26 04:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu) DRV:[b]64bit:[/b] - [2012-07-03 16:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://pl.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl-PL IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = BF 4D 17 54 EC C0 CE 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@graphisoft.com/GDL Web Plug-in: C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll () FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-12-09 16:09:50 | 000,000,000 | ---D | M] [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll CHR - Extension: Dokumenty Google = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Dysk Google = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Szukaj w Google = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: AdBlock = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0\ CHR - Extension: Chrome In-App Payments service = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\ CHR - Extension: Gmail = C:\Users\qaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-07-26 07:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited) O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited) O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.) O4 - HKLM..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk, Inc.) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKCU..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 10.21.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.200 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0001055E-E147-4D45-954E-694AED43BACB}: DhcpNameServer = 10.100.100.3 10.100.100.253 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1F94000E-6C5E-45A4-A07C-05AE44099252}: DhcpNameServer = 192.168.1.200 O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation) O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-10-13 14:12:44 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-12-10 13:53:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2013-12-10 13:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2013-12-10 13:53:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2013-12-10 01:56:19 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Diablo III [2013-12-09 20:06:34 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Adobe [2013-12-09 17:51:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III [2013-12-09 17:51:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment [2013-12-09 17:51:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment [2013-12-09 17:45:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net [2013-12-09 17:42:27 | 000,000,000 | ---D | C] -- C:\Drivers [2013-12-09 17:26:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013-12-09 17:24:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2013-12-09 17:24:56 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Google [2013-12-09 17:23:29 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\ESET [2013-12-09 16:16:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero [2013-12-09 16:15:53 | 001,757,184 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagX7.dll [2013-12-09 16:15:53 | 000,802,816 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXRA7.dll [2013-12-09 16:15:53 | 000,497,296 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXpr7.dll [2013-12-09 16:15:53 | 000,368,640 | ---- | C] (Pegasus Imaging Corporation) -- C:\Windows\SysWow64\TwnLib4.dll [2013-12-09 16:15:53 | 000,258,048 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXR7.dll [2013-12-09 16:15:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2013-12-09 16:15:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero [2013-12-09 16:15:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero [2013-12-09 16:12:22 | 000,106,496 | ---- | C] (windowsforum.kr) -- C:\Windows\SysNative\SLCHook.dll [2013-12-09 16:09:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2013-12-09 16:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET [2013-12-09 16:09:39 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2013-12-09 16:07:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2013-12-09 16:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2013-12-09 16:07:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2013-12-09 16:06:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office [2013-12-09 16:05:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works [2013-12-09 16:05:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2013-12-09 16:05:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio [2013-12-09 16:05:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2013-12-09 16:05:33 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2013-12-09 16:05:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Mozilla [2013-12-09 16:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2013-12-09 16:04:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013-12-09 16:04:27 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Microsoft Help [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\WinRAR [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2013-12-09 16:04:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2013-12-09 16:04:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR [2013-12-09 16:04:16 | 000,000,000 | RH-D | C] -- C:\MSOCache [2013-12-09 16:00:16 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Broadcom [2013-12-09 16:00:16 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Bluetooth Exchange Folder [2013-12-09 16:00:14 | 000,044,912 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwpanfl.sys [2013-12-09 16:00:12 | 000,165,080 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwampfl.sys [2013-12-09 15:59:45 | 002,231,064 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\BcmBtRSupport.dll [2013-12-09 15:59:45 | 002,227,992 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\BtwRSupportService.exe [2013-12-09 15:59:42 | 000,227,032 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwavdt.sys [2013-12-09 15:59:42 | 000,186,584 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwaudio.sys [2013-12-09 15:59:42 | 000,169,240 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\bcbtums.sys [2013-12-09 15:59:42 | 000,040,248 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwl2cap.sys [2013-12-09 15:59:42 | 000,022,744 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwrchid.sys [2013-12-09 15:58:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Energy Management [2013-12-09 15:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2013-12-09 15:58:44 | 000,039,008 | ---- | C] (Lenovo.) -- C:\Windows\SysNative\drivers\LhdX64.sys [2013-12-09 15:58:44 | 000,019,872 | ---- | C] (Lenovo (Beijing) Limited) -- C:\Windows\SysNative\LenovoSDKEmSubSystem.dll [2013-12-09 15:58:44 | 000,000,000 | ---D | C] -- C:\Program Files\Lenovo [2013-12-09 15:58:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lenovo [2013-12-09 15:58:08 | 006,101,504 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\StLang64.dll [2013-12-09 15:58:08 | 001,897,984 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\IDTNC64.cpl [2013-12-09 15:58:08 | 000,332,800 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stacsv64.exe [2013-12-09 15:58:08 | 000,088,576 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\IDTPMA64.exe [2013-12-09 15:57:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations [2013-12-09 15:57:46 | 000,546,304 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys [2013-12-09 15:57:45 | 002,193,920 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll [2013-12-09 15:57:45 | 000,674,304 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll [2013-12-09 15:57:45 | 000,499,200 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll [2013-12-09 15:57:45 | 000,256,000 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\st646467.dll [2013-12-09 15:57:44 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEP64A.dll [2013-12-09 15:57:44 | 002,714,720 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2013-12-09 15:57:44 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EED64A.dll [2013-12-09 15:57:44 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEL64A.dll [2013-12-09 15:57:44 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEA64A.dll [2013-12-09 15:57:44 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEG64A.dll [2013-12-09 15:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\IDT [2013-12-09 15:56:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2013-12-09 15:56:39 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2013-12-09 15:56:39 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\NV [2013-12-09 15:56:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\NV [2013-12-09 15:56:34 | 006,411,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll [2013-12-09 15:56:34 | 003,462,944 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll [2013-12-09 15:56:34 | 002,558,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll [2013-12-09 15:56:34 | 001,002,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll [2013-12-09 15:56:34 | 000,118,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll [2013-12-09 15:56:34 | 000,076,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll [2013-12-09 15:56:34 | 000,063,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll [2013-12-09 15:56:32 | 000,561,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\oemdspif.dll [2013-12-09 15:56:18 | 000,056,832 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2013-12-09 15:56:18 | 000,056,320 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2013-12-09 15:56:14 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2013-12-09 15:56:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2013-12-09 15:56:07 | 001,814,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll [2013-12-09 15:56:07 | 001,510,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll [2013-12-09 15:55:34 | 015,055,824 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2013-12-09 15:55:33 | 012,644,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2013-12-09 15:55:32 | 006,264,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013-12-09 15:55:32 | 001,110,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll [2013-12-09 15:55:32 | 000,961,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013-12-09 15:55:32 | 000,030,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvpciflt.sys [2013-12-09 15:55:31 | 026,936,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013-12-09 15:55:31 | 007,566,624 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013-12-09 15:55:29 | 020,456,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013-12-09 15:55:27 | 000,245,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013-12-09 15:55:27 | 000,201,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013-12-09 15:55:26 | 018,059,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2013-12-09 15:55:25 | 015,134,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2013-12-09 15:55:23 | 007,935,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013-12-09 15:55:23 | 002,907,936 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013-12-09 15:55:23 | 002,723,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013-12-09 15:55:23 | 002,349,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013-12-09 15:55:23 | 001,988,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013-12-09 15:55:22 | 009,393,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013-12-09 15:55:21 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013-12-09 15:55:20 | 025,256,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013-12-09 15:55:18 | 002,832,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2013-12-09 15:55:18 | 002,511,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2013-12-09 15:54:55 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2013-12-09 15:54:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AmIcoSingLun [2013-12-09 15:54:44 | 000,000,000 | ---D | C] -- C:\ProgramData\AmUStor [2013-12-09 15:54:16 | 000,015,136 | R--- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll [2013-12-09 15:54:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel [2013-12-09 15:54:03 | 000,037,616 | R--- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_1969.dll [2013-12-09 15:54:01 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2013-12-09 15:53:47 | 000,118,936 | ---- | C] (Qualcomm Atheros Co., Ltd.) -- C:\Windows\SysNative\drivers\L1C63x64.sys [2013-12-09 15:53:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent [2013-12-09 15:53:33 | 000,062,784 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\HECIx64.sys [2013-12-09 15:53:24 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Atheros_L1e [2013-12-09 15:53:18 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2013-12-09 15:52:57 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll [2013-12-09 15:52:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2013-12-09 15:52:41 | 000,000,000 | ---D | C] -- C:\Intel [2013-12-09 15:52:36 | 006,835,784 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL63a.SYS [2013-12-09 15:52:36 | 004,395,008 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvsrv64.dll [2013-12-09 15:52:36 | 003,659,264 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvui64.dll [2013-12-09 15:51:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StartIsBack [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\Searches [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\Contacts [2013-12-09 15:50:21 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013-12-09 15:50:19 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Adobe [2013-12-09 15:50:00 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\VirtualStore [2013-12-09 15:49:56 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache [2013-12-09 15:49:56 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Packages [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Ustawienia lokalne [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\AppData\Local\Temporary Internet Files [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Szablony [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\SendTo [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Recent [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\PrintHood [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\NetHood [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Documents\Moje wideo [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Documents\Moje obrazy [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Moje dokumenty [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Documents\Moja muzyka [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Menu Start [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\AppData\Local\Historia [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Dane aplikacji [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\AppData\Local\Dane aplikacji [2013-12-09 15:49:53 | 000,000,000 | -HSD | C] -- C:\Users\qaz\Cookies [2013-12-09 15:49:52 | 000,000,000 | --SD | C] -- C:\Users\qaz\AppData\Roaming\Microsoft [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Videos [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Saved Games [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Pictures [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Music [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Links [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Favorites [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Downloads [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Documents [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\Desktop [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013-12-09 15:49:52 | 000,000,000 | R--D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2013-12-09 15:49:52 | 000,000,000 | -H-D | C] -- C:\Users\qaz\AppData [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Temp [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Microsoft [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013-12-09 15:49:52 | 000,000,000 | ---D | C] -- C:\Windows\CSC [2013-12-09 15:49:49 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka [2013-12-09 15:42:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start [2013-12-09 15:42:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit [2013-12-09 15:42:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty [2013-12-09 15:42:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji [2013-12-09 15:40:55 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2013-12-09 15:40:17 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013-12-09 15:40:00 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2013-10-15 21:01:05 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2013-10-15 20:57:01 | 000,000,000 | ---D | C] -- C:\_OTL [2013-10-14 00:16:02 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\cache [2013-10-14 00:14:25 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet [2013-10-13 23:35:16 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Autodesk [2013-10-13 23:35:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk Robot Structural Analysis Professional 2014 [2013-10-13 22:39:24 | 001,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll [2013-10-13 22:39:24 | 001,245,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll [2013-10-13 22:39:24 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll [2013-10-13 22:39:24 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx [2013-10-13 22:39:24 | 000,437,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll [2013-10-13 22:39:24 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx [2013-10-13 22:39:19 | 010,116,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll [2013-10-13 22:39:18 | 008,858,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll [2013-10-13 22:39:17 | 002,304,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll [2013-10-13 22:39:17 | 002,035,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll [2013-10-13 22:39:17 | 001,125,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll [2013-10-13 22:39:17 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appmgr.dll [2013-10-13 22:39:17 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll [2013-10-13 22:39:17 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appmgr.dll [2013-10-13 22:39:17 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll [2013-10-13 22:39:17 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mbsmsapi.dll [2013-10-13 22:39:17 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll [2013-10-13 22:39:17 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mbsmsapi.dll [2013-10-13 22:39:16 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncInfo.dll [2013-10-13 19:42:09 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll [2013-10-13 19:42:09 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2013-10-13 14:34:18 | 000,000,000 | ---D | C] -- C:\ProgramData\FARO [2013-10-13 14:34:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk ReCap [2013-10-13 14:33:08 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Inventor Server SDK ACAD 2014 [2013-10-13 14:32:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2013-10-13 14:32:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2014 — Polski (Polish) [2013-10-13 14:31:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Autodesk [2013-10-13 14:31:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared [2013-10-13 14:31:53 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk [2013-10-13 14:31:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Autodesk [2013-10-13 14:29:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2013-10-13 14:28:43 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer [2013-10-13 14:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013-10-13 14:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013-10-13 14:28:01 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll [2013-10-13 14:28:01 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe [2013-10-13 14:27:55 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe [2013-10-13 14:27:54 | 001,166,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll [2013-10-13 14:25:03 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Autodesk [2013-10-13 14:25:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Autodesk [2013-10-13 14:15:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Autodesk Shared [2013-10-13 14:15:44 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Autodesk [2013-10-13 14:15:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk [2013-10-13 14:15:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Applications [2013-10-13 14:12:48 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Akamai [2013-10-13 14:12:40 | 000,000,000 | ---D | C] -- C:\Autodesk [2013-10-12 23:02:45 | 000,652,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll [2013-10-12 23:02:29 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-10-12 23:02:24 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll [2013-10-12 23:02:23 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013-10-12 23:02:23 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013-10-12 23:02:22 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013-10-12 23:02:22 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013-10-12 23:02:21 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013-10-12 23:02:21 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013-10-12 23:02:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013-10-12 23:02:21 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll [2013-10-12 23:02:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-10-12 23:02:21 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll [2013-10-12 23:02:21 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013-10-12 23:02:21 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013-10-12 23:02:19 | 000,498,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys [2013-10-12 23:02:19 | 000,054,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys [2013-10-12 23:02:19 | 000,021,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys [2013-10-12 23:02:17 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys [2013-10-12 23:02:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys [2013-10-12 23:02:12 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2013-10-12 23:02:12 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2013-10-12 23:02:12 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2013-10-12 23:02:12 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2013-10-12 23:02:09 | 000,447,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS [2013-10-12 23:02:09 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS [2013-10-12 23:02:09 | 000,213,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS [2013-10-09 01:52:12 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2013-10-08 23:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2013-10-08 23:20:58 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Malwarebytes [2013-10-08 23:20:42 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2013-10-08 23:20:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2013-10-08 23:20:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013-10-04 12:28:17 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\ElevatedDiagnostics [2013-09-30 01:00:15 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\TMS Pro-cTraderCommon [2013-09-30 01:00:15 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\cTrader [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\TMS cTraderUsers [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\TMS cTrader [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\cTrader [2013-09-30 01:00:13 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\cAlgo [2013-09-30 01:00:09 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TMS Pro cTrader [2013-09-30 00:59:09 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Deployment [2013-09-30 00:59:09 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Apps [2013-09-29 19:52:42 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Clipboarder [2013-09-29 19:52:26 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Sidebar7 [2013-09-29 19:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack [2013-09-29 19:36:47 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\Axialis [2013-09-24 23:39:21 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Nero [2013-09-19 11:14:06 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Might & Magic Heroes VI [2013-09-19 11:14:06 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Might & Magic Heroes VI [2013-09-19 10:59:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft [2013-09-19 00:17:32 | 000,000,000 | ---D | C] -- C:\ProgramData\MetaQuotes [2013-09-19 00:09:03 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Macromedia [2013-09-18 01:51:05 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll [2013-09-18 01:51:05 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll [2013-09-18 01:51:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDKURD.DLL [2013-09-18 01:51:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDKURD.DLL [2013-09-18 01:50:54 | 011,459,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\glcndFilter.dll [2013-09-18 01:50:52 | 008,552,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\glcndFilter.dll [2013-09-18 01:50:51 | 001,566,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2013-09-18 01:50:51 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll [2013-09-18 01:50:50 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe [2013-09-18 01:50:47 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll [2013-09-18 01:50:46 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll [2013-09-18 01:50:46 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll [2013-09-18 01:50:46 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll [2013-09-18 01:50:46 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe [2013-09-18 01:50:46 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl [2013-09-18 01:50:46 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl [2013-09-18 01:50:46 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll [2013-09-18 01:50:46 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWCN.dll [2013-09-18 01:50:45 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll [2013-09-18 01:50:45 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll [2013-09-18 01:50:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll [2013-09-18 01:50:44 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnApi.dll [2013-09-18 01:50:44 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WcnApi.dll [2013-09-18 01:50:43 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll [2013-09-18 01:50:43 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlansec.dll [2013-09-18 01:50:43 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdWCN.dll [2013-09-18 01:50:42 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfdprov.dll [2013-09-18 01:50:42 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapPeerProxy.dll [2013-09-18 01:50:42 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapAuthProxy.dll [2013-09-18 01:50:42 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfdprov.dll [2013-09-18 01:50:41 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll [2013-09-18 01:50:41 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fxppm.sys [2013-09-18 01:50:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsilog.dll [2013-09-18 01:50:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanhlp.dll [2013-09-18 01:50:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanhlp.dll [2013-09-18 01:50:28 | 001,347,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmclient.dll [2013-09-18 01:50:28 | 000,987,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmclient.dll [2013-09-18 01:50:28 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmscan.dll [2013-09-18 01:50:28 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmscan.dll [2013-09-18 01:50:28 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmshell.dll [2013-09-18 01:50:28 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adrclient.dll [2013-09-18 01:50:28 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmshell.dll [2013-09-18 01:50:28 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquota.dll [2013-09-18 01:50:28 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adrclient.dll [2013-09-18 01:50:28 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquota.dll [2013-09-18 01:50:27 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmtrace.dll [2013-09-18 01:50:27 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmtrace.dll [2013-09-18 01:50:27 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm_ps.dll [2013-09-18 01:50:27 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm_ps.dll [2013-09-18 01:50:21 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll [2013-09-18 01:50:20 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetsrc.dll [2013-09-18 01:50:20 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetsrc.dll [2013-09-18 01:50:20 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll [2013-09-18 01:50:20 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmpeg2srcsnk.dll [2013-09-18 01:50:20 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll [2013-09-18 01:50:20 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmpeg2srcsnk.dll [2013-09-18 01:50:05 | 001,361,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll [2013-09-18 01:50:05 | 001,265,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2013-09-18 01:50:05 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll [2013-09-18 01:50:04 | 000,793,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll [2013-09-18 01:50:04 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll [2013-09-18 01:50:04 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2013-09-18 01:50:03 | 000,612,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll [2013-09-18 01:50:03 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe [2013-09-18 01:50:03 | 000,441,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys [2013-09-18 01:49:59 | 001,045,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll [2013-09-18 01:49:59 | 000,962,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll [2013-09-18 01:49:59 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys [2013-09-18 01:49:59 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll [2013-09-18 01:49:59 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Storage.Compression.dll [2013-09-18 01:49:58 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SpaceControl.dll [2013-09-18 01:49:58 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll [2013-09-18 01:49:58 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\input.dll [2013-09-18 01:49:58 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll [2013-09-18 01:49:58 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll [2013-09-18 01:49:58 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Storage.Compression.dll [2013-09-18 01:49:58 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdstor.sys [2013-09-18 01:49:58 | 000,033,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\battc.sys [2013-09-18 01:49:56 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll [2013-09-18 01:49:56 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PCPKsp.dll [2013-09-18 01:49:56 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-pdc.dll [2013-09-18 01:49:55 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallAPI.dll [2013-09-18 01:49:55 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SysFxUI.dll [2013-09-18 01:49:55 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSip.dll [2013-09-18 01:49:55 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icfupgd.dll [2013-09-18 01:49:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxSip.dll [2013-09-18 01:49:55 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PCPKsp.dll [2013-09-18 01:49:55 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BdeUISrv.exe [2013-09-18 01:49:54 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys [2013-09-18 01:49:54 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfapigp.dll [2013-09-18 01:49:54 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfapigp.dll [2013-09-18 01:49:54 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdhebl3.dll [2013-09-18 01:49:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdhebl3.dll [2013-09-18 01:49:45 | 003,245,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll [2013-09-18 01:49:44 | 001,536,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storagewmi.dll [2013-09-18 01:49:44 | 001,122,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Taskmgr.exe [2013-09-18 01:49:44 | 001,027,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Taskmgr.exe [2013-09-18 01:49:44 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebcamUi.dll [2013-09-18 01:49:44 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WebcamUi.dll [2013-09-18 01:49:43 | 001,217,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\storagewmi.dll [2013-09-18 01:49:43 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe [2013-09-18 01:49:43 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe [2013-09-18 01:49:43 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserLanguagesCpl.dll [2013-09-18 01:49:43 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserLanguagesCpl.dll [2013-09-18 01:49:43 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll [2013-09-18 01:49:43 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll [2013-09-18 01:49:43 | 000,027,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys [2013-09-18 01:49:42 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll [2013-09-18 01:49:42 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vds_ps.dll [2013-09-18 01:49:42 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vds_ps.dll [2013-09-18 01:49:42 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rfxvmt.dll [2013-09-18 01:49:42 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsldr.exe [2013-09-18 01:49:38 | 002,219,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll [2013-09-18 01:49:37 | 006,987,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013-09-18 01:49:37 | 002,391,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013-09-18 01:49:37 | 002,106,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2013-09-18 01:49:37 | 001,842,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll [2013-09-18 01:49:37 | 001,048,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll [2013-09-18 01:49:36 | 001,527,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll [2013-09-18 01:49:36 | 001,453,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll [2013-09-18 01:49:36 | 001,403,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi [2013-09-18 01:49:36 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll [2013-09-18 01:49:36 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll [2013-09-18 01:49:35 | 001,271,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe [2013-09-18 01:49:35 | 001,217,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi [2013-09-18 01:49:35 | 001,093,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe [2013-09-18 01:49:35 | 000,583,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll [2013-09-18 01:49:35 | 000,523,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013-09-18 01:49:35 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013-09-18 01:49:35 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceSetupManager.dll [2013-09-18 01:49:35 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll [2013-09-18 01:49:35 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MbaeParserTask.exe [2013-09-18 01:49:34 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll [2013-09-18 01:49:34 | 000,037,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys [2013-09-18 01:49:27 | 002,094,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmc.exe [2013-09-18 01:49:27 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidsvc.dll [2013-09-18 01:49:26 | 001,611,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmc.exe [2013-09-18 01:49:26 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmstormod.dll [2013-09-18 01:49:25 | 001,886,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll [2013-09-18 01:49:25 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.dll [2013-09-18 01:49:25 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll [2013-09-18 01:49:25 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmstormod.dll [2013-09-18 01:49:24 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP4SDECD.DLL [2013-09-18 01:49:24 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP4SDECD.DLL [2013-09-18 01:49:24 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm.dll [2013-09-18 01:49:24 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm.dll [2013-09-18 01:49:24 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll [2013-09-18 01:49:24 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll [2013-09-18 01:49:24 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncbservice.dll [2013-09-18 01:49:24 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll [2013-09-18 01:49:24 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxm.dll [2013-09-18 01:49:24 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiaacmgr.exe [2013-09-18 01:49:24 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiaacmgr.exe [2013-09-18 01:49:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhsvc.dll [2013-09-18 01:49:24 | 000,028,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpiowin32.sys [2013-09-18 01:49:24 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhapi.dll [2013-09-18 01:49:24 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxp.dll [2013-09-18 01:49:24 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\keepaliveprovider.dll [2013-09-18 01:49:03 | 013,644,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll [2013-09-18 01:48:59 | 010,788,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll [2013-09-18 01:48:57 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll [2013-09-18 01:48:56 | 000,820,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll [2013-09-18 01:48:56 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netprofmsvc.dll [2013-09-18 01:48:56 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BCP47Langs.dll [2013-09-18 01:48:56 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BCP47Langs.dll [2013-09-18 01:48:55 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Magnify.exe [2013-09-18 01:48:55 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll [2013-09-18 01:48:55 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll [2013-09-18 01:48:55 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll [2013-09-18 01:48:55 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll [2013-09-18 01:48:55 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll [2013-09-18 01:48:55 | 000,284,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spaceport.sys [2013-09-18 01:48:55 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll [2013-09-18 01:48:55 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll [2013-09-18 01:48:55 | 000,014,848 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\rars.rs [2013-09-18 01:48:55 | 000,014,848 | ---- | C] (Microsoft) -- C:\Windows\SysNative\rars.rs [2013-09-18 01:48:54 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Magnify.exe [2013-09-18 01:48:54 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll [2013-09-18 01:48:54 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll [2013-09-18 01:48:54 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl [2013-09-18 01:48:54 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl [2013-09-18 01:48:54 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll [2013-09-18 01:48:54 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll [2013-09-18 01:48:54 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biwinrt.dll [2013-09-18 01:48:54 | 000,120,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthHost.exe [2013-09-18 01:48:54 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\biwinrt.dll [2013-09-18 01:48:54 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll [2013-09-18 01:48:54 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll [2013-09-18 01:48:48 | 001,257,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll [2013-09-18 01:48:48 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe [2013-09-18 01:48:48 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe [2013-09-18 01:48:48 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll [2013-09-18 01:48:48 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll [2013-09-18 01:48:38 | 001,627,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013-09-18 01:48:33 | 005,978,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll [2013-09-18 01:48:33 | 001,101,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll [2013-09-18 01:48:32 | 001,149,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll [2013-09-18 01:48:31 | 005,091,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll [2013-09-18 01:48:31 | 000,951,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Globalization.dll [2013-09-18 01:48:31 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll [2013-09-18 01:48:31 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll [2013-09-18 01:48:31 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll [2013-09-18 01:48:31 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerServer.dll [2013-09-18 01:48:30 | 000,893,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll [2013-09-18 01:48:30 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll [2013-09-18 01:48:30 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Globalization.dll [2013-09-18 01:48:30 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll [2013-09-18 01:48:30 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll [2013-09-18 01:48:30 | 000,332,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys [2013-09-18 01:48:30 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usbmon.dll [2013-09-18 01:48:29 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.OnlineId.dll [2013-09-18 01:48:29 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsquirt.exe [2013-09-18 01:48:29 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl [2013-09-18 01:48:29 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\discan.dll [2013-09-18 01:48:29 | 000,148,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys [2013-09-18 01:48:29 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl [2013-09-18 01:48:29 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NdisImPlatform.dll [2013-09-18 01:48:29 | 000,077,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storahci.sys [2013-09-18 01:48:29 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevDispItemProvider.dll [2013-09-18 01:48:28 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncInfo.dll [2013-09-18 01:48:28 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDPrintProxy.DLL [2013-09-18 01:48:28 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevDispItemProvider.dll [2013-09-18 01:47:47 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll [2013-09-18 01:47:43 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll [2013-09-18 01:46:49 | 014,267,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2013-09-18 01:46:49 | 003,552,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll [2013-09-18 01:46:47 | 011,878,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2013-09-18 01:46:47 | 002,107,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll [2013-09-18 01:46:44 | 002,767,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll [2013-09-18 01:46:43 | 001,829,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2013-09-18 01:46:43 | 001,593,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll [2013-09-18 01:46:42 | 001,444,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll [2013-09-18 01:46:38 | 001,113,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll [2013-09-18 01:46:38 | 000,306,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_10ec.dll [2013-09-18 01:46:37 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll [2013-09-18 01:46:36 | 000,489,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll [2013-09-18 01:46:36 | 000,446,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll [2013-09-18 01:46:36 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe [2013-09-18 01:46:36 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe [2013-09-18 01:46:36 | 000,298,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll [2013-09-18 01:46:36 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll [2013-09-18 01:46:35 | 000,804,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RecoveryDrive.exe [2013-09-18 01:46:35 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll [2013-09-18 01:46:35 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll [2013-09-18 01:46:35 | 000,435,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll [2013-09-18 01:46:35 | 000,253,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe [2013-09-18 01:46:34 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll [2013-09-18 01:46:33 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll [2013-09-18 01:46:33 | 000,659,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll [2013-09-18 01:46:33 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll [2013-09-18 01:46:33 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll [2013-09-18 01:46:33 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll [2013-09-18 01:46:33 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhengine.dll [2013-09-18 01:46:33 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmvdsitf.dll [2013-09-18 01:46:33 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll [2013-09-18 01:46:32 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll [2013-09-18 01:46:32 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GenuineCenter.dll [2013-09-18 01:46:32 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll [2013-09-18 01:46:32 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll [2013-09-18 01:46:32 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iuilp.dll [2013-09-18 01:46:32 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe [2013-09-18 01:46:32 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmvdsitf.dll [2013-09-18 01:46:32 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Robocopy.exe [2013-09-18 01:46:32 | 000,123,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll [2013-09-18 01:46:32 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Robocopy.exe [2013-09-18 01:46:32 | 000,086,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdnet.dll [2013-09-18 01:46:32 | 000,077,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdvm.dll [2013-09-18 01:46:32 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys [2013-09-18 01:46:32 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fmifs.dll [2013-09-18 01:46:32 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fmifs.dll [2013-09-18 01:46:31 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll [2013-09-18 01:46:31 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssitlb.dll [2013-09-18 01:46:31 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll [2013-09-18 01:46:31 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssitlb.dll [2013-09-18 01:46:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll [2013-09-18 01:46:31 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll [2013-09-18 01:46:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshooks.dll [2013-09-18 01:46:31 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshooks.dll [2013-09-17 23:20:46 | 000,000,000 | ---D | C] -- C:\Users\qaz\Documents\Anno 1404 [2013-09-17 16:48:21 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Roaming\Ubisoft [2013-09-17 16:39:15 | 000,045,544 | ---- | C] (Fengtao Software Inc.) -- C:\Windows\SysNative\drivers\vdrive.sys [2013-09-17 16:39:15 | 000,012,776 | ---- | C] (Fengtao Software Inc.) -- C:\Windows\SysNative\drivers\dvdfabio.sys [2013-09-17 16:39:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab Virtual Drive [2013-09-17 16:39:15 | 000,000,000 | ---D | C] -- C:\Program Files\DVDFab Virtual Drive [2013-09-16 19:12:52 | 000,000,000 | ---D | C] -- C:\Users\qaz\.gstreamer-0.10 [2013-09-16 19:11:57 | 000,000,000 | ---D | C] -- C:\Users\qaz\AppData\Local\ChomikBox [2013-09-16 19:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chomikuj.pl [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-12-09 16:16:03 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\Nero Express.lnk [2013-12-09 16:07:05 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2013-12-09 15:59:52 | 000,000,876 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-09 15:59:05 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl [2013-12-09 15:58:04 | 001,511,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WudfUpdate_01011.dll [2013-12-09 15:58:04 | 000,066,560 | ---- | M] (Lenovo) -- C:\Windows\SysNative\drivers\UMDF\LenovoVhid.dll [2013-12-09 15:58:04 | 000,019,872 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Windows\SysNative\LenovoSDKEmSubSystem.dll [2013-12-09 15:58:02 | 000,039,008 | ---- | M] (Lenovo.) -- C:\Windows\SysNative\drivers\LhdX64.sys [2013-12-09 15:58:02 | 000,033,560 | ---- | M] (Lenovo Corporation) -- C:\Windows\SysNative\drivers\AcpiVpc.sys [2013-12-09 15:41:58 | 000,001,074 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2013-12-09 15:41:58 | 000,001,074 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2013-12-09 15:41:32 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2013-10-15 22:00:10 | 001,793,398 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-10-15 22:00:10 | 000,794,946 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2013-10-15 22:00:10 | 000,710,244 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013-10-15 22:00:10 | 000,159,530 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2013-10-15 22:00:10 | 000,132,614 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013-10-15 21:59:00 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cec67033fad2ec.job [2013-10-15 21:56:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-10-15 21:55:22 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-10-15 21:55:15 | 000,000,000 | -H-- | M] () -- C:\ProgramData\cm-lock [2013-10-15 21:54:48 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013-10-15 21:54:40 | 757,784,573 | -HS- | M] () -- C:\hiberfil.sys [2013-10-15 20:58:00 | 000,002,553 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2013-10-14 15:57:45 | 000,505,888 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-10-13 23:35:04 | 000,002,097 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk Robot Structural Analysis Professional 2014.lnk [2013-10-13 14:32:54 | 000,000,153 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2013-10-13 14:32:35 | 000,001,737 | ---- | M] () -- C:\Users\Public\Desktop\AutoCAD 2014 — Polski (Polish).lnk [2013-10-09 01:52:09 | 1014,106,427 | ---- | M] () -- C:\Windows\MEMORY.DMP [2013-10-08 23:23:47 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013-10-08 23:20:43 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-10-08 23:09:04 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013-10-02 03:38:13 | 000,694,232 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-10-02 03:38:13 | 000,078,296 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-09-30 01:00:09 | 000,000,266 | ---- | M] () -- C:\Users\qaz\Desktop\TMS Pro cTrader.appref-ms [2013-09-29 19:52:18 | 000,000,872 | ---- | M] () -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar.lnk [2013-09-25 01:46:09 | 000,001,429 | ---- | M] () -- C:\Users\qaz\Desktop\Diablo 3 BOT.lnk [2013-09-25 00:28:11 | 000,008,293 | ---- | M] () -- C:\Users\qaz\Documents\aa.nra [2013-09-23 01:27:49 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013-09-23 00:55:16 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-09-23 00:54:55 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013-09-23 00:54:51 | 003,959,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-09-23 00:54:51 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013-09-18 20:51:14 | 000,001,020 | ---- | M] () -- C:\Users\qaz\Desktop\chomikbox — skrót.lnk [2013-09-17 16:44:31 | 000,314,016 | ---- | M] () -- C:\Windows\SysNative\drivers\atksgt.sys [2013-09-17 16:44:31 | 000,043,680 | ---- | M] () -- C:\Windows\SysNative\drivers\lirsgt.sys [2013-09-17 16:39:51 | 000,000,884 | ---- | M] () -- C:\Users\qaz\Desktop\DVDFab Virtual Drive.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-12-09 17:26:43 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013-12-09 17:24:57 | 000,001,046 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-12-09 16:16:03 | 000,001,950 | ---- | C] () -- C:\Users\Public\Desktop\Nero Express.lnk [2013-12-09 16:07:05 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk [2013-12-09 16:07:05 | 000,002,014 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2013-12-09 15:59:44 | 000,056,420 | ---- | C] () -- C:\Windows\SysNative\drivers\BCM43142A0_001.001.011.0122.0123.hex [2013-12-09 15:59:40 | 000,000,876 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-09 15:59:05 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2013-12-09 15:56:34 | 003,040,724 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin [2013-12-09 15:56:07 | 000,017,266 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb [2013-12-09 15:50:19 | 000,001,438 | ---- | C] () -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013-12-09 15:42:20 | 757,784,573 | -HS- | C] () -- C:\hiberfil.sys [2013-12-09 15:41:32 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2013-12-09 15:40:18 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys [2013-10-15 21:55:15 | 000,000,000 | -H-- | C] () -- C:\ProgramData\cm-lock [2013-10-13 23:35:04 | 000,002,097 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk Robot Structural Analysis Professional 2014.lnk [2013-10-13 22:39:16 | 000,386,923 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml [2013-10-13 14:32:54 | 000,000,153 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2013-10-13 14:32:35 | 000,001,737 | ---- | C] () -- C:\Users\Public\Desktop\AutoCAD 2014 — Polski (Polish).lnk [2013-10-13 12:21:35 | 000,505,888 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-10-11 12:54:05 | 000,001,064 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cec67033fad2ec.job [2013-10-09 01:52:09 | 1014,106,427 | ---- | C] () -- C:\Windows\MEMORY.DMP [2013-10-08 23:23:47 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013-10-08 23:20:43 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-09-30 01:00:09 | 000,000,266 | ---- | C] () -- C:\Users\qaz\Desktop\TMS Pro cTrader.appref-ms [2013-09-29 19:52:18 | 000,000,872 | ---- | C] () -- C:\Users\qaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar.lnk [2013-09-29 19:38:05 | 000,169,794 | ---- | C] () -- C:\Windows\market_clock.swf [2013-09-29 19:38:05 | 000,001,138 | ---- | C] () -- C:\Windows\market_clock.htm [2013-09-25 01:46:09 | 000,001,429 | ---- | C] () -- C:\Users\qaz\Desktop\Diablo 3 BOT.lnk [2013-09-25 00:28:11 | 000,008,293 | ---- | C] () -- C:\Users\qaz\Documents\aa.nra [2013-09-18 20:51:14 | 000,001,020 | ---- | C] () -- C:\Users\qaz\Desktop\chomikbox — skrót.lnk [2013-09-17 16:44:31 | 000,314,016 | ---- | C] () -- C:\Windows\SysNative\drivers\atksgt.sys [2013-09-17 16:44:31 | 000,043,680 | ---- | C] () -- C:\Windows\SysNative\drivers\lirsgt.sys [2013-09-17 16:39:15 | 000,000,884 | ---- | C] () -- C:\Users\qaz\Desktop\DVDFab Virtual Drive.lnk [2013-09-13 21:25:01 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll [2012-12-14 02:42:30 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll [2012-12-14 02:42:24 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin [2012-12-14 02:42:24 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin [2012-07-26 10:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2012-07-26 10:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2012-07-26 09:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2012-07-26 03:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2012-07-25 22:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2012-07-25 22:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2012-06-19 19:52:42 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll [2012-06-02 16:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2013-10-13 14:30:45 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013-08-02 08:28:20 | 019,758,080 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013-08-02 07:08:10 | 017,561,088 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-07-26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-07-26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2013-10-14 00:15:10 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Autodesk [2013-09-30 01:02:05 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\cTrader [2013-09-25 02:15:39 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\foobar2000 [2013-09-13 23:26:56 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Graphisoft [2013-09-13 23:15:07 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Install.GS [2013-09-19 16:52:39 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Might & Magic Heroes VI [2013-09-13 21:08:27 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\MPC-BE [2013-09-30 01:00:15 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\TMS cTrader [2013-09-30 01:02:05 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\TMS cTraderUsers [2013-09-30 01:00:15 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\TMS Pro-cTraderCommon [2013-09-17 16:48:21 | 000,000,000 | ---D | M] -- C:\Users\qaz\AppData\Roaming\Ubisoft [color=#E56717]========== Purity Check ==========[/color] < End of report > Ja nie przypominam sobie zebym wylaczal defendera. Byc moze zrobil to brat.
Natsuki Kuga komentarz 18 października 2013 komentarz 18 października 2013 Ja nie przypominam sobie zebym wylaczal defendera. Byc moze zrobil to brat. W takim razie zapytaj się brata.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.