Beeeno

Thx Maurice for all the help and patience you had !!

All done ! Both scans didn't reveal anything suspicious and I've checked I've only running AGData I've regularly bought ! Any other advice ? Thx by now !!!

Hi ... I haven't seen Securityhijack scanning PC with MBAM no more. I've run mbar.exe without any malware found. How's going ? THX!

ehm ... I've just discovered I've run procedures with usb key connected ... :\

How's going ?

... and at last chkup.txt Results of screen317's Security Check version 0.99.64 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` G Data TotalProtection 2013 Windows Defender Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware versione 1.75.0.1300 TuneUp Utilities 2013 TuneUp Utilities Language Pack (it-IT) TuneUp Utilities 2013 Google Chrome 26.0.1410.64 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Malwarebytes' Anti-Malware mbamscheduler.exe G Data TotalProtection Firewall GDFwSvcx64.exe G Data TotalProtection Firewall GDFirewallTray.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log``````````````````````

Here it is Extra.txt: OTL Extras logfile created on: 24/05/2013 19.33.18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Barbara\Desktop 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16580) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 4,00 Gb Total Physical Memory | 2,57 Gb Available Physical Memory | 64,24% Memory free 4,38 Gb Paging File | 2,58 Gb Available in Paging File | 58,86% Paging File free Paging file location(s): c:\pagefile.sys 100 1024 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 107,34 Gb Total Space | 10,34 Gb Free Space | 9,63% Space Free | Partition Type: NTFS Computer Name: BARNEYPC | User Name: Barbara | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{01DA9390-AA30-4E63-B61A-EC21EC616CE5}" = lport=138 | protocol=17 | dir=in | app=system | "{07BD2B7B-1967-4A74-9E7A-2386134FA103}" = rport=10243 | protocol=6 | dir=out | app=system | "{0A18EA2E-D900-4120-8EFE-91AC24B84C6B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{0D3D5FDE-7674-4566-8F46-9FFA8A5C1A7C}" = rport=139 | protocol=6 | dir=out | app=system | "{0EAA0BF9-429D-4EBD-B411-5C0D7EB377E1}" = lport=137 | protocol=17 | dir=in | app=system | "{34E4E1E7-C36D-4121-B0A1-1E02C509C6B4}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{42ECA828-776E-4BE2-B22D-773D3F284869}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{5D337CD4-CD98-48F3-BD82-B392C87E79D3}" = lport=445 | protocol=6 | dir=in | app=system | "{5FDF7807-BEAA-45DC-9523-0BDA855ECF88}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{687386C7-9E06-4628-973C-55A2BDA57E09}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{68F4E773-E0B3-400F-A1C0-99E813CE31C2}" = lport=2869 | protocol=6 | dir=in | app=system | "{71152AFF-CFC9-48AC-A3AF-6B2DAE7C5B2F}" = rport=137 | protocol=17 | dir=out | app=system | "{933356EB-20FC-430E-AEFC-CE94722BA190}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{95E58388-22DB-4895-B6BD-45BD29FED0A7}" = lport=139 | protocol=6 | dir=in | app=system | "{AFED28BE-E355-4B31-A55A-C451523EC269}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{C576A289-C9DD-4A20-80D9-2CC68D71DA45}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{C5ED0ABD-BA79-489C-A062-E299C60735AB}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C6FB37CC-4B41-4AB3-943B-F3BAD6D349D0}" = rport=445 | protocol=6 | dir=out | app=system | "{E43F48DC-6CD5-4266-985E-27C7E6A051D2}" = rport=138 | protocol=17 | dir=out | app=system | "{EFBB4FB4-4C20-4DC9-ADE9-29C92399191C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{FB276308-4FD7-4A28-B012-EB56DECB189F}" = lport=10243 | protocol=6 | dir=in | app=system | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{059D4C34-B1AD-415E-9E90-260045D37C29}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe | "{05E5D01C-9A32-411E-814A-24C1AB6DC5F0}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{0718A9FF-18A6-4330-B1F8-CB3C7DD2CD67}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{0874AE4A-7A0A-46FC-BB96-2D2ACFA9795D}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{0CD36968-00DC-4F47-B377-067CEBB88A25}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{0CF70E4B-7BB7-485D-B190-F990B5BE4AEB}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{17049D2D-D515-4E16-8DFF-E56A2DDCFEA1}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | "{17FE74D1-E738-42DB-899F-CC8B3DB24834}" = dir=in | name=hp printer control | "{1893403C-E046-45DD-AE3E-51FC4AD5BDB7}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{1C13E1AB-D284-4658-9DD9-CE77F674AD27}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} | "{20140DF3-A186-4C53-8ED9-9E56FBC2B52C}" = dir=in | app=c:\users\barbara\appdata\local\facebook\video\skype\facebookvideocalling.exe | "{22940659-E33B-4B88-9647-B51B1F995EA5}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{231A26EC-66D3-4943-9D22-677974035F43}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{24C5D642-4C56-4EB8-9E6C-0C83ABA5BC6D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{264385D9-F540-4E57-9B10-CE7CCB646A53}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | "{36E7326B-02C6-4FD8-A597-BA0C1A0B5C5F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rising storm beta\binaries\win32\rogame.exe | "{3883BCCD-3C4B-497A-8928-E34F69A752FC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rising storm beta\binaries\win32\rogame.exe | "{4E429A30-3121-4AEE-92FC-DE765FDD39D3}" = dir=out | name=hp printer control | "{5634E123-556A-4CC0-ADB7-A67761551D64}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{59DEEFBE-DCA6-403F-AF77-0900A8BCB7AD}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{65CC2A3E-A4B8-40AD-A025-45208B7A5508}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | "{6BB57C06-54AC-46C6-B50E-6B92E944EBD7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{6F3AFB51-E391-4E9E-96B7-7502B6A6FA52}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{72B737C2-C5D8-40FC-8E1B-5D7811042F13}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{73C69484-C171-4011-A93E-8B504A5E16A0}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | "{73FD4C89-EC9A-4B9A-BF04-B754F1E4111C}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{74C3B413-A953-40AC-8B62-FD031B06992C}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{75683CB2-38C5-4813-B8B8-093D70044E65}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | "{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{89FAD710-FBBF-4F48-B60C-9034EEBBD958}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | "{8EC1DC31-848C-4EEB-B58F-2405286049DB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{92320D01-5D1E-48B0-B03C-32B469836483}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{92BE6AAA-CB96-4F12-B866-D5F1ED4BF670}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{95FD452E-3A3B-4EEA-AE34-80F3BD36BED8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{97C34DA4-47D0-41E7-802B-7F83E19EEB5B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\men of war assault squad\mow_assault_squad.exe | "{A2010C8F-056D-48E5-BBE2-18F1477675B9}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{B0BA4399-5F82-43E4-822B-971E3FBC50D7}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe | "{B98DB158-9EFC-4308-B6C1-F233B561C2BE}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | "{BDCD6190-BE47-4909-8FAB-BEDF23770148}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{C07BD5B1-8938-4E9C-95AA-67D80C8DBB9A}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{C1253C7B-F0C6-41D2-9DA9-6936012FB938}" = protocol=6 | dir=out | app=system | "{C2110207-AF6A-452D-A044-3062FEE2C9D5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{C6EBC75E-FD73-44CF-94AD-5BA22E92B411}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{C7BDE01B-FDC3-41E1-941E-FE1C80BFE823}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | "{C98F0E05-F153-4D94-9F5D-AF7B2287F337}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{CC243F08-B2B3-4766-B765-56426A29C512}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{CEAEF79A-4725-4313-855B-F98CEEF002E1}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{D054F6F2-3DB2-425A-BF2F-EDA3AC123BF9}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{D5170F0C-FEC3-48E9-B49B-C6456CFB1835}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | "{D63DD895-738F-4F1A-911D-771C34BB1042}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{D7125EA0-EFFD-42CA-8D63-5BE45AC2C189}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{DD6B21E4-90D0-43E4-9536-DDC6D9152AD3}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | "{DEF8819A-110F-4A8D-AC9F-A07C9DFCAA2A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | "{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{EC3895DD-C74B-462B-860F-EC48720F3DCA}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{ECA5D24D-B85C-409F-B3BB-C85416A136A9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{F6B52A53-D9AE-4979-940E-89F8777783EB}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{FFF45E4F-8F70-449A-85D3-9B8F57543EF4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\men of war assault squad\mow_assault_squad.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{003B37AE-21F5-5BC5-F5EB-CD60A8928696}" = AMD Accelerated Video Transcoding "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{653B9326-BD45-53BE-681A-A49CAAEE8A3C}" = ccc-utility64 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}" = AMD Catalyst Install Manager "{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 "TeamSpeak 3 Client" = TeamSpeak 3 Client [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{13464292-6666-B2DB-1B0C-A3FE14DAD1F9}" = CCC Help Dutch "{1ADB558F-1E50-43F2-8EAC-E7D75294C1D8}" = OpenOffice.org 3.4.1 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1" = Samsung Magician "{338CD56F-1CDC-CF32-33F6-DED2DF92284E}" = CCC Help French "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology "{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5 "{46458556-5C46-79A9-A6FF-81DF1F8B2729}" = CCC Help Hungarian "{519D68B8-A768-4CDC-E4C9-B115D49CED93}" = CCC Help Norwegian "{51D383BC-D988-8C1E-FAA1-BC5260A32A87}" = CCC Help Polish "{5A883D2B-D279-0D01-6E62-B810AFD8CC62}" = Catalyst Control Center InstallProxy "{67A4760F-9804-CCF6-C319-27840ED77924}" = CCC Help Korean "{6BE5E4A9-D88B-532D-26E6-883C32BF098A}" = CCC Help Thai "{6E0D26C1-4265-1D02-4D19-D0A8F6A463F8}" = Catalyst Control Center "{7DD62206-7B6C-E32E-BD11-B49B3B089D16}" = CCC Help Danish "{8D5088A9-4376-4765-B5E4-695AFFBA4F7A}" = TuneUp Utilities Language Pack (it-IT) "{9739158D-EDED-D628-9865-1460B5A7FAE3}" = CCC Help Portuguese "{9809124C-0C4C-2367-7889-1E16D8EF1AAF}" = CCC Help Chinese Standard "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A6E1EE9D-01DD-82FD-BDBC-193BCEF9FD5C}" = CCC Help Greek "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AB13F192-49FC-A065-F15C-746B10CC43C8}" = CCC Help Japanese "{AE548812-D611-608D-61C6-7E40F28573A2}" = CCC Help Russian "{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287 "{BC63AEF9-1367-9F7C-5926-52E56450EDCD}" = CCC Help Spanish "{C0246430-508E-45F0-9781-9EF5B417B0ED}_is1" = German Soldiers Mod Fields of Honor IX "{C1E2D27F-B363-588E-8859-9EF7F4EBF418}" = CCC Help Chinese Traditional "{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013 "{CE6217F3-6072-40E2-9157-A4695C334F8E}" = G Data TotalProtection 2013 "{D76AC809-CCC1-6198-4970-A63FA5CF7DCB}" = CCC Help Swedish "{DA675EE2-4C04-9699-0EE2-7EF9FE7AB870}" = CCC Help German "{E06F7C95-4D68-63D9-2231-AA5F8E186FCB}" = CCC Help English "{E21A8F3C-1ACB-46B1-CE72-E9CF09549DED}" = Catalyst Control Center Localization All "{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding "{E2F52AC2-B925-C18F-E1AE-42FBD46ECAC7}" = CCC Help Czech "{E649AC39-69C0-C6FE-0A54-4752DB5D1FD2}" = Catalyst Control Center Graphics Previews Common "{E9463114-898C-7C2A-2C47-E9ABC63F5D43}" = CCC Help Finnish "{FF10AC4D-3349-99DA-3E58-5197CEA1D833}" = CCC Help Italian "{FFEC93FF-C162-C0C3-B5E7-01214B0E5F2D}" = CCC Help Turkish "Driver Genius Professional Edition_is1" = Driver Genius Professional Edition "Google Chrome" = Google Chrome "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.75.0.1300 "PunkBusterSvc" = PunkBuster Services "Steam App 10500" = Empire: Total War "Steam App 108800" = Crysis 2 Maximum Edition "Steam App 1250" = Killing Floor "Steam App 224780" = Rising Storm Beta "Steam App 33930" = Arma 2: Operation Arrowhead "Steam App 35450" = Red Orchestra 2: Heroes of Stalingrad "Steam App 550" = Left 4 Dead 2 "Steam App 570" = Dota 2 "Steam App 64000" = Men of War: Assault Squad "TuneUp Utilities 2013" = TuneUp Utilities 2013 "WinRAR archiver" = WinRAR 4.20 (32-bit) ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 20/05/2013 18.54.40 | Computer Name = BarneyPC | Source = VSS | ID = 13 Description = Error - 20/05/2013 18.54.40 | Computer Name = BarneyPC | Source = VSS | ID = 12292 Description = Error - 20/05/2013 18.54.40 | Computer Name = BarneyPC | Source = VSS | ID = 13 Description = Error - 20/05/2013 18.54.40 | Computer Name = BarneyPC | Source = VSS | ID = 12292 Description = Error - 20/05/2013 18.54.40 | Computer Name = BarneyPC | Source = VSS | ID = 13 Description = Error - 20/05/2013 18.54.40 | Computer Name = BarneyPC | Source = VSS | ID = 12292 Description = Error - 23/05/2013 13.13.01 | Computer Name = BarneyPC | Source = TSNxGService | ID = 131074 Description = Cassaforte dati G Data Errore durante l'inizializzazione del modulo di protezione file (AFP) Codice di errore: 1 Error - 23/05/2013 13.57.46 | Computer Name = BarneyPC | Source = COM | ID = 18221 Description = Error - 24/05/2013 01.37.35 | Computer Name = BarneyPC | Source = TSNxGService | ID = 131074 Description = Cassaforte dati G Data Errore durante l'inizializzazione del modulo di protezione file (AFP) Codice di errore: 1 Error - 24/05/2013 13.24.27 | Computer Name = BarneyPC | Source = TSNxGService | ID = 131074 Description = Cassaforte dati G Data Errore durante l'inizializzazione del modulo di protezione file (AFP) Codice di errore: 1 [ System Events ] Error - 19/05/2013 16.55.02 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 19/05/2013 16.55.02 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.40 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.40 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.40 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.40 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.41 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.41 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.46.41 | Computer Name = BarneyPC | Source = DCOM | ID = 10016 Description = Error - 20/05/2013 15.57.07 | Computer Name = BarneyPC | Source = EventLog | ID = 6008 Description = Precedente arresto del sistema inatteso a 21.31.40 su ?20/?05/?2013. < End of report >

Here it is RKreport[1]: RogueKiller V8.5.4 [Mar 18 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 8 (6.2.9200 ) 64 bits version Started in : Normal mode User : Barbara [Admin rights] Mode : Scan -- Date : 05/24/2013 19:30:22 | ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 2 ¤¤¤ [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> Trovato [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> Trovato ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: SAMSUNG SSD 830 Series +++++ --- User --- [MBR] c45802e293b8547020d76d1933a8a7f4 [bSP] 4a10953d11fc0385eee519dff5ac9137 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 109916 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[1]_S_05242013_02d1930.txt >> RKreport[1]_S_05242013_02d1930.txt

OTL 2/2 [2013/05/11 18.19.32 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll [2013/05/11 18.19.32 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll [2013/05/11 18.19.32 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll [2013/05/11 18.19.32 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll [2013/05/11 18.14.25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation [2013/05/11 18.13.52 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Intel Corporation [2013/05/11 18.11.25 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel [2013/05/11 18.09.42 | 000,652,344 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStorA.sys [2013/05/11 18.09.39 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2013/05/11 18.09.38 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\InstallShield [2013/05/11 11.57.51 | 000,106,648 | ---- | C] (G Data Software) -- C:\Windows\SysNative\drivers\GRD.sys [2013/05/11 11.45.52 | 000,000,000 | ---D | C] -- C:\Users\Barbara\Intel [2013/05/11 11.31.59 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1 [2013/05/11 11.31.52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3 [2013/05/11 11.31.26 | 000,000,000 | ---D | C] -- C:\Users\Barbara\Desktop\OpenOffice.org 3.4.1 (it) Installation Files [2013/05/11 11.16.49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam [2013/05/11 11.16.48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam [2013/05/11 11.16.48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam [2013/05/11 10.59.41 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2013/05/11 10.59.40 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\ATI [2013/05/11 10.59.40 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\ATI [2013/05/11 10.52.54 | 000,035,104 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe [2013/05/11 10.52.54 | 000,026,400 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll [2013/05/11 10.52.54 | 000,021,792 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll [2013/05/11 10.52.53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013 [2013/05/11 10.52.52 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\TuneUp Software [2013/05/11 10.52.51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2013 [2013/05/11 10.52.46 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2013/05/11 10.49.47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician [2013/05/11 10.49.43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung Magician [2013/05/11 10.49.43 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung [2013/05/11 10.49.15 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Programs [2013/05/11 10.44.36 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2013/05/11 10.38.07 | 000,000,000 | ---D | C] -- C:\Windows.old.000 [2013/05/11 10.36.50 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll [2013/05/11 10.36.50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2013/05/11 10.35.36 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD [2013/05/11 10.35.35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies [2013/05/11 10.35.35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT [2013/05/11 10.35.34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center [2013/05/11 10.35.24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies [2013/05/11 10.34.59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2013/05/11 10.34.46 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2013/05/11 10.34.44 | 000,000,000 | ---D | C] -- C:\Program Files\ATI [2013/05/11 10.30.08 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DriverGenius [2013/05/11 10.29.14 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius [2013/05/11 10.29.02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition [2013/05/11 10.29.00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft [2013/05/11 10.26.45 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquota.dll [2013/05/11 10.26.44 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquota.dll [2013/05/11 10.26.37 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll [2013/05/11 10.26.36 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetsrc.dll [2013/05/11 10.26.35 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetsrc.dll [2013/05/11 10.26.35 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll [2013/05/11 10.26.35 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmpeg2srcsnk.dll [2013/05/11 10.26.35 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll [2013/05/11 10.26.35 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmpeg2srcsnk.dll [2013/05/11 10.26.22 | 002,380,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013/05/11 10.26.22 | 002,206,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll [2013/05/11 10.26.21 | 002,115,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2013/05/11 10.26.21 | 001,841,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll [2013/05/11 10.26.21 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll [2013/05/11 10.26.21 | 001,265,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2013/05/11 10.26.20 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll [2013/05/11 10.26.20 | 000,793,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll [2013/05/11 10.26.20 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll [2013/05/11 10.26.20 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2013/05/11 10.26.19 | 000,612,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll [2013/05/11 10.26.19 | 000,561,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll [2013/05/11 10.26.19 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll [2013/05/11 10.26.18 | 001,045,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll [2013/05/11 10.26.18 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe [2013/05/11 10.26.18 | 000,441,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys [2013/05/11 10.26.18 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll [2013/05/11 10.26.18 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys [2013/05/11 10.26.18 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Storage.Compression.dll [2013/05/11 10.26.18 | 000,058,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dam.sys [2013/05/11 10.26.17 | 000,962,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll [2013/05/11 10.26.17 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SpaceControl.dll [2013/05/11 10.26.17 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll [2013/05/11 10.26.17 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll [2013/05/11 10.26.16 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\input.dll [2013/05/11 10.26.16 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll [2013/05/11 10.26.16 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Storage.Compression.dll [2013/05/11 10.26.16 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll [2013/05/11 10.26.16 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdstor.sys [2013/05/11 10.26.16 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-pdc.dll [2013/05/11 10.26.16 | 000,033,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\battc.sys [2013/05/11 10.26.15 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll [2013/05/11 10.26.15 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallAPI.dll [2013/05/11 10.26.15 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxSip.dll [2013/05/11 10.26.15 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxSip.dll [2013/05/11 10.26.15 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PCPKsp.dll [2013/05/11 10.26.14 | 001,836,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2013/05/11 10.26.14 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SysFxUI.dll [2013/05/11 10.26.14 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll [2013/05/11 10.26.14 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys [2013/05/11 10.26.14 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icfupgd.dll [2013/05/11 10.26.14 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssitlb.dll [2013/05/11 10.26.14 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssitlb.dll [2013/05/11 10.26.14 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PCPKsp.dll [2013/05/11 10.26.14 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BdeUISrv.exe [2013/05/11 10.26.14 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll [2013/05/11 10.26.14 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfapigp.dll [2013/05/11 10.26.14 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfapigp.dll [2013/05/11 10.26.14 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdhebl3.dll [2013/05/11 10.26.14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdhebl3.dll [2013/05/11 10.26.08 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\newdev.dll [2013/05/11 10.26.07 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\newdev.dll [2013/05/11 10.26.07 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\newdev.exe [2013/05/11 10.26.07 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ndadmin.exe [2013/05/11 10.26.07 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\newdev.exe [2013/05/11 10.26.07 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ndadmin.exe [2013/05/11 10.26.06 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll [2013/05/11 10.26.05 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll [2013/05/11 10.26.05 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll [2013/05/11 10.26.05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDKURD.DLL [2013/05/11 10.26.05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDKURD.DLL [2013/05/11 10.26.04 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll [2013/05/11 10.26.04 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll [2013/05/11 10.26.04 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll [2013/05/11 10.26.04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2013/05/11 10.26.04 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll [2013/05/11 10.26.04 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2013/05/11 10.25.57 | 011,459,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\glcndFilter.dll [2013/05/11 10.25.55 | 008,552,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\glcndFilter.dll [2013/05/11 10.25.54 | 001,566,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2013/05/11 10.25.54 | 001,526,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll [2013/05/11 10.25.54 | 001,451,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll [2013/05/11 10.25.54 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll [2013/05/11 10.25.53 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll [2013/05/11 10.25.52 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe [2013/05/11 10.25.49 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll [2013/05/11 10.25.49 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll [2013/05/11 10.25.49 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll [2013/05/11 10.25.49 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll [2013/05/11 10.25.49 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWCN.dll [2013/05/11 10.25.48 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll [2013/05/11 10.25.48 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll [2013/05/11 10.25.48 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll [2013/05/11 10.25.48 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll [2013/05/11 10.25.48 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlansec.dll [2013/05/11 10.25.48 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe [2013/05/11 10.25.48 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl [2013/05/11 10.25.48 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl [2013/05/11 10.25.48 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll [2013/05/11 10.25.47 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll [2013/05/11 10.25.47 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnApi.dll [2013/05/11 10.25.47 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll [2013/05/11 10.25.47 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WcnApi.dll [2013/05/11 10.25.46 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll [2013/05/11 10.25.46 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdWCN.dll [2013/05/11 10.25.46 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfdprov.dll [2013/05/11 10.25.46 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapPeerProxy.dll [2013/05/11 10.25.46 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapAuthProxy.dll [2013/05/11 10.25.46 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfdprov.dll [2013/05/11 10.25.46 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fxppm.sys [2013/05/11 10.25.46 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsilog.dll [2013/05/11 10.25.46 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanhlp.dll [2013/05/11 10.25.46 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanhlp.dll [2013/05/11 10.25.37 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll [2013/05/11 10.25.37 | 000,707,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll [2013/05/11 10.25.33 | 003,245,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll [2013/05/11 10.25.32 | 001,536,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storagewmi.dll [2013/05/11 10.25.32 | 001,122,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Taskmgr.exe [2013/05/11 10.25.32 | 001,027,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Taskmgr.exe [2013/05/11 10.25.31 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebcamUi.dll [2013/05/11 10.25.31 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WebcamUi.dll [2013/05/11 10.25.31 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserLanguagesCpl.dll [2013/05/11 10.25.31 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserLanguagesCpl.dll [2013/05/11 10.25.31 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll [2013/05/11 10.25.31 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll [2013/05/11 10.25.31 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll [2013/05/11 10.25.31 | 000,027,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys [2013/05/11 10.25.30 | 001,217,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\storagewmi.dll [2013/05/11 10.25.30 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe [2013/05/11 10.25.30 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe [2013/05/11 10.25.30 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll [2013/05/11 10.25.30 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll [2013/05/11 10.25.30 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL [2013/05/11 10.25.30 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL [2013/05/11 10.25.30 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll [2013/05/11 10.25.30 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vds_ps.dll [2013/05/11 10.25.30 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vds_ps.dll [2013/05/11 10.25.30 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rfxvmt.dll [2013/05/11 10.25.30 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsldr.exe [2013/05/11 10.25.28 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll [2013/05/11 10.25.16 | 002,367,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSService.dll [2013/05/11 10.25.12 | 003,265,256 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\evbda.sys [2013/05/11 10.25.07 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcMon.exe [2013/05/11 10.25.05 | 003,847,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll [2013/05/11 10.25.04 | 003,964,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe [2013/05/11 10.25.03 | 000,533,224 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bxvbda.sys [2013/05/11 10.25.02 | 001,513,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll [2013/05/11 10.25.00 | 001,739,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll [2013/05/11 10.25.00 | 001,019,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.dll [2013/05/11 10.24.59 | 002,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll [2013/05/11 10.24.59 | 001,304,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Streaming.dll [2013/05/11 10.24.59 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll [2013/05/11 10.24.58 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provcore.dll [2013/05/11 10.24.58 | 000,389,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MMDevAPI.dll [2013/05/11 10.24.56 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll [2013/05/11 10.24.55 | 000,995,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Streaming.dll [2013/05/11 10.24.54 | 001,743,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\combase.dll [2013/05/11 10.24.54 | 000,709,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsSpellCheckingFacility.dll [2013/05/11 10.24.54 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll [2013/05/11 10.24.54 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll [2013/05/11 10.24.54 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL [2013/05/11 10.24.53 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll [2013/05/11 10.24.53 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe [2013/05/11 10.24.52 | 000,866,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinTypes.dll [2013/05/11 10.24.52 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll [2013/05/11 10.24.52 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe [2013/05/11 10.24.52 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll [2013/05/11 10.24.52 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidcredprov.dll [2013/05/11 10.24.52 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rascfg.dll [2013/05/11 10.24.51 | 001,400,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll [2013/05/11 10.24.51 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsrcsnk.dll [2013/05/11 10.24.51 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2013/05/11 10.24.51 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnprv.dll [2013/05/11 10.24.51 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll [2013/05/11 10.24.51 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascfg.dll [2013/05/11 10.24.50 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll [2013/05/11 10.24.50 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe [2013/05/11 10.24.50 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll [2013/05/11 10.24.50 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapibase.dll [2013/05/11 10.24.50 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSClient.dll [2013/05/11 10.24.49 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl [2013/05/11 10.24.49 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll [2013/05/11 10.24.49 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll [2013/05/11 10.24.48 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSSync.dll [2013/05/11 10.24.48 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSClient.dll [2013/05/11 10.24.47 | 001,369,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll [2013/05/11 10.24.47 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl [2013/05/11 10.24.47 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe [2013/05/11 10.24.47 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll [2013/05/11 10.24.47 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSSync.dll [2013/05/11 10.24.47 | 000,120,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpioclx.sys [2013/05/11 10.24.47 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PackageStateRoaming.dll [2013/05/11 10.24.47 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TpmTasks.dll [2013/05/11 10.24.46 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\provcore.dll [2013/05/11 10.24.46 | 000,256,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll [2013/05/11 10.24.46 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ProximityService.dll [2013/05/11 10.24.46 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PackageStateRoaming.dll [2013/05/11 10.24.46 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll [2013/05/11 10.24.45 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll [2013/05/11 10.24.45 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.dll [2013/05/11 10.24.45 | 000,480,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll [2013/05/11 10.24.45 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsrcsnk.dll [2013/05/11 10.24.45 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-kernel-power-events.dll [2013/05/11 10.24.45 | 000,062,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpfve.sys [2013/05/11 10.24.45 | 000,027,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\avrt.dll [2013/05/11 10.24.44 | 002,016,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll [2013/05/11 10.24.44 | 002,007,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll [2013/05/11 10.24.44 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinTypes.dll [2013/05/11 10.24.44 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll [2013/05/11 10.24.44 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncHost.exe [2013/05/11 10.24.44 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfdisk.dll [2013/05/11 10.24.44 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfdisk.dll [2013/05/11 10.24.44 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\svchost.exe [2013/05/11 10.24.43 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll [2013/05/11 10.24.43 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlidcredprov.dll [2013/05/11 10.24.43 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll [2013/05/11 10.24.43 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2013/05/11 10.24.43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhevents.dll [2013/05/11 10.24.43 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfnet.dll [2013/05/11 10.24.42 | 000,699,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.dll [2013/05/11 10.24.42 | 000,627,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe [2013/05/11 10.24.42 | 000,437,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfh264enc.dll [2013/05/11 10.24.42 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfh264enc.dll [2013/05/11 10.24.42 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcfg.dll [2013/05/11 10.24.42 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevPropMgr.dll [2013/05/11 10.24.42 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwm.exe [2013/05/11 10.24.42 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvinst.exe [2013/05/11 10.24.42 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncHost.exe [2013/05/11 10.24.42 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe [2013/05/11 10.24.41 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll [2013/05/11 10.24.41 | 001,701,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll [2013/05/11 10.24.41 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll [2013/05/11 10.24.41 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll [2013/05/11 10.24.41 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll [2013/05/11 10.24.41 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfos.dll [2013/05/11 10.24.41 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DAFWSD.dll [2013/05/11 10.24.41 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsrchapi.dll [2013/05/11 10.24.41 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfnet.dll [2013/05/11 10.24.40 | 000,280,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcat.dll [2013/05/11 10.24.40 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll [2013/05/11 10.24.40 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhmanagew.exe [2013/05/11 10.24.40 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhshl.dll [2013/05/11 10.24.40 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CscMig.dll [2013/05/11 10.24.40 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsvc.dll [2013/05/11 10.24.40 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpremove.exe [2013/05/11 10.24.40 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasdiag.dll [2013/05/11 10.24.40 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vsstrace.dll [2013/05/11 10.24.40 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsrchph.dll [2013/05/11 10.24.40 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhlisten.dll [2013/05/11 10.24.40 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdiag.dll [2013/05/11 10.24.40 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcleanup.dll [2013/05/11 10.24.40 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ndptsp.tsp [2013/05/11 10.24.40 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasmxs.dll [2013/05/11 10.24.40 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhtask.dll [2013/05/11 10.24.40 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll [2013/05/11 10.24.40 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdbinst.exe [2013/05/11 10.24.40 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll [2013/05/11 10.24.40 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sdbinst.exe [2013/05/11 10.24.39 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhautoplay.dll [2013/05/11 10.24.39 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ndptsp.tsp [2013/05/11 10.24.39 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kmddsp.tsp [2013/05/11 10.24.39 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfctrs.dll [2013/05/11 10.24.39 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfctrs.dll [2013/05/11 10.24.39 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kmddsp.tsp [2013/05/11 10.24.39 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfproc.dll [2013/05/11 10.24.39 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LangCleanupSysprepAction.dll [2013/05/11 10.24.39 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfproc.dll [2013/05/11 10.24.39 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfos.dll [2013/05/11 10.24.39 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasmxs.dll [2013/05/11 10.24.39 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasser.dll [2013/05/11 10.24.39 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll [2013/05/11 10.24.39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasser.dll [2013/05/11 10.24.39 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsvcctl.dll [2013/05/11 10.24.39 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eventcls.dll [2013/05/11 10.24.39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eventcls.dll [2013/05/11 10.24.39 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MUILanguageCleanup.dll [2013/05/11 10.24.39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll [2013/05/11 10.24.39 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll [2013/05/11 10.24.39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetupproxyserv.dll [2013/05/11 10.24.39 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimeng.dll [2013/05/11 10.24.39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx [2013/05/11 10.24.39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll [2013/05/11 10.24.39 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx [2013/05/11 10.24.39 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll [2013/05/11 10.24.38 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2013/05/11 10.24.38 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2013/05/11 10.20.43 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013/05/11 10.20.43 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2013/05/11 10.14.07 | 000,000,000 | R--D | C] -- C:\Windows\BrowserChoice [2013/05/11 10.10.21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013/05/11 10.09.23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2013/05/11 10.09.21 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Google [2013/05/11 10.07.05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data TotalProtection 2013 [2013/05/11 10.06.59 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\BioAPIFFDB [2013/05/11 10.06.56 | 000,098,760 | ---- | C] (G Data Software) -- C:\Windows\SysNative\drivers\TS4nt.sys [2013/05/11 10.06.51 | 000,059,768 | ---- | C] (G Data Software AG) -- C:\Windows\SysNative\drivers\PktIcpt.sys [2013/05/11 10.06.43 | 000,122,744 | ---- | C] (G Data Software AG) -- C:\Windows\SysNative\drivers\MiniIcpt.sys [2013/05/11 10.06.43 | 000,064,376 | ---- | C] (G Data Software AG) -- C:\Windows\SysNative\drivers\HookCentre.sys [2013/05/11 10.06.43 | 000,054,136 | ---- | C] (G Data Software AG) -- C:\Windows\SysNative\drivers\GDBehave.sys [2013/05/11 10.06.41 | 000,065,912 | ---- | C] (G Data Software AG) -- C:\Windows\SysNative\drivers\gdwfpcd64.sys [2013/05/11 10.06.27 | 000,000,000 | ---D | C] -- C:\ProgramData\G DATA Software [2013/05/11 10.06.23 | 000,000,000 | ---D | C] -- C:\ProgramData\G DATA [2013/05/11 10.06.23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\G Data [2013/05/11 10.06.23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\G Data [2013/05/11 10.05.28 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Downloaded Installations [2013/05/11 10.04.03 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll [2013/05/11 10.03.55 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll [2013/05/11 10.03.06 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013/05/11 10.03.05 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013/05/11 10.03.05 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013/05/11 10.03.05 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013/05/11 10.03.05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013/05/11 10.03.05 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013/05/11 10.02.48 | 001,161,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll [2013/05/11 10.02.45 | 001,627,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013/05/11 10.02.44 | 005,978,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll [2013/05/11 10.02.43 | 001,149,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll [2013/05/11 10.02.43 | 001,101,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll [2013/05/11 10.02.43 | 001,048,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll [2013/05/11 10.02.43 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll [2013/05/11 10.02.43 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BCP47Langs.dll [2013/05/11 10.02.43 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll [2013/05/11 10.02.43 | 000,327,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys [2013/05/11 10.02.43 | 000,246,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll [2013/05/11 10.02.42 | 005,091,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll [2013/05/11 10.02.42 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll [2013/05/11 10.02.42 | 000,951,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Globalization.dll [2013/05/11 10.02.42 | 000,760,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll [2013/05/11 10.02.42 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll [2013/05/11 10.02.42 | 000,411,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS [2013/05/11 10.02.42 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll [2013/05/11 10.02.42 | 000,332,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys [2013/05/11 10.02.42 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BCP47Langs.dll [2013/05/11 10.02.42 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll [2013/05/11 10.02.42 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerServer.dll [2013/05/11 10.02.41 | 000,893,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll [2013/05/11 10.02.41 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll [2013/05/11 10.02.41 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll [2013/05/11 10.02.41 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Globalization.dll [2013/05/11 10.02.41 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll [2013/05/11 10.02.41 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll [2013/05/11 10.02.41 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll [2013/05/11 10.02.41 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usbmon.dll [2013/05/11 10.02.40 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll [2013/05/11 10.02.40 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll [2013/05/11 10.02.40 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.OnlineId.dll [2013/05/11 10.02.40 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll [2013/05/11 10.02.40 | 000,337,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS [2013/05/11 10.02.40 | 000,194,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys [2013/05/11 10.02.40 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\discan.dll [2013/05/11 10.02.40 | 000,125,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys [2013/05/11 10.02.40 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NdisImPlatform.dll [2013/05/11 10.02.40 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe [2013/05/11 10.02.40 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhostex.exe [2013/05/11 10.02.40 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys [2013/05/11 10.02.40 | 000,058,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe [2013/05/11 10.02.40 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll [2013/05/11 10.02.39 | 000,212,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS [2013/05/11 10.02.39 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll [2013/05/11 10.02.39 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl [2013/05/11 10.02.39 | 000,148,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys [2013/05/11 10.02.39 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl [2013/05/11 10.02.39 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll [2013/05/11 10.02.39 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncInfo.dll [2013/05/11 10.02.39 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll [2013/05/11 10.02.39 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncInfo.dll [2013/05/11 10.02.39 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll [2013/05/11 10.02.39 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll [2013/05/11 10.02.39 | 000,077,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storahci.sys [2013/05/11 10.02.39 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDPrintProxy.DLL [2013/05/11 10.02.39 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevDispItemProvider.dll [2013/05/11 10.02.39 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll [2013/05/11 10.02.39 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe [2013/05/11 10.02.39 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevDispItemProvider.dll [2013/05/11 10.02.39 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe [2013/05/11 10.02.39 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll [2013/05/11 10.02.39 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuaext.dll [2013/05/11 10.02.38 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wushareduxresources.dll [2013/05/11 10.01.28 | 002,094,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmc.exe [2013/05/11 10.01.28 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidsvc.dll [2013/05/11 10.01.28 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll [2013/05/11 10.01.27 | 001,886,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll [2013/05/11 10.01.27 | 001,611,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmc.exe [2013/05/11 10.01.27 | 000,820,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll [2013/05/11 10.01.27 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmstormod.dll [2013/05/11 10.01.26 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll [2013/05/11 10.01.26 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.dll [2013/05/11 10.01.26 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll [2013/05/11 10.01.26 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll [2013/05/11 10.01.26 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmstormod.dll [2013/05/11 10.01.26 | 000,028,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpiowin32.sys [2013/05/11 10.01.25 | 001,347,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmclient.dll [2013/05/11 10.01.25 | 000,987,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmclient.dll [2013/05/11 10.01.25 | 000,728,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll [2013/05/11 10.01.25 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP4SDECD.DLL [2013/05/11 10.01.25 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmscan.dll [2013/05/11 10.01.25 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmscan.dll [2013/05/11 10.01.25 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP4SDECD.DLL [2013/05/11 10.01.25 | 000,303,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys [2013/05/11 10.01.25 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll [2013/05/11 10.01.25 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmshell.dll [2013/05/11 10.01.25 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncbservice.dll [2013/05/11 10.01.25 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll [2013/05/11 10.01.25 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adrclient.dll [2013/05/11 10.01.25 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmshell.dll [2013/05/11 10.01.25 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxm.dll [2013/05/11 10.01.25 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adrclient.dll [2013/05/11 10.01.25 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiaacmgr.exe [2013/05/11 10.01.25 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmtrace.dll [2013/05/11 10.01.25 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiaacmgr.exe [2013/05/11 10.01.25 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmtrace.dll [2013/05/11 10.01.25 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhsvc.dll [2013/05/11 10.01.25 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhapi.dll [2013/05/11 10.01.25 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxp.dll [2013/05/11 10.01.25 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\keepaliveprovider.dll [2013/05/11 10.01.24 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm.dll [2013/05/11 10.01.24 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm.dll [2013/05/11 10.01.24 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm_ps.dll [2013/05/11 10.01.24 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm_ps.dll [2013/05/11 10.01.10 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\duser.dll [2013/05/11 10.01.10 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlroamextension.dll [2013/05/11 10.01.10 | 000,488,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys [2013/05/11 10.01.10 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWanAPI.dll [2013/05/11 10.01.10 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netprofmsvc.dll [2013/05/11 10.01.10 | 000,446,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS [2013/05/11 10.01.10 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlroamextension.dll [2013/05/11 10.01.10 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll [2013/05/11 10.01.10 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Connectivity.dll [2013/05/11 10.01.10 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hotspotauth.dll [2013/05/11 10.01.10 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll [2013/05/11 10.01.10 | 000,037,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys [2013/05/11 10.01.09 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll [2013/05/11 10.01.09 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll [2013/05/11 10.01.09 | 000,370,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWanAPI.dll [2013/05/11 10.01.09 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mbsmsapi.dll [2013/05/11 10.01.09 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Connectivity.dll [2013/05/11 10.01.09 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mbsmsapi.dll [2013/05/11 10.01.09 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll [2013/05/11 10.01.09 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskkill.exe [2013/05/11 10.01.09 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tasklist.exe [2013/05/11 10.01.09 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tasklist.exe [2013/05/11 10.01.09 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskkill.exe [2013/05/11 10.01.09 | 000,061,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crashdmp.sys [2013/05/11 10.01.09 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidi2c.sys [2013/05/11 10.01.09 | 000,021,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys [2013/05/11 10.01.08 | 000,029,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthhfHid.sys [2013/05/11 10.01.08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BtaMPM.sys [2013/05/11 10.01.08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlmproxy.dll [2013/05/11 10.01.08 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlmsprep.dll [2013/05/11 10.01.06 | 000,230,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdFilter.sys [2013/05/11 10.01.06 | 000,035,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdBoot.sys [2013/05/11 10.01.04 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tssdisai.dll [2013/05/11 10.01.04 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appserverai.dll [2013/05/11 10.01.04 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDWebAI.dll [2013/05/11 10.01.04 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VmHostAI.dll [2013/05/11 10.01.03 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe [2013/05/11 10.01.03 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe [2013/05/11 10.00.57 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll [2013/05/11 10.00.57 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll [2013/05/11 10.00.57 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcadm.dll [2013/05/11 10.00.56 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcalua.exe [2013/05/11 10.00.56 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcaevts.dll [2013/05/11 10.00.55 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptsslp.dll [2013/05/11 10.00.55 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptsslp.dll [2013/05/11 10.00.54 | 001,690,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll [2013/05/11 10.00.54 | 001,437,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll [2013/05/11 10.00.54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys [2013/05/11 10.00.40 | 002,893,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll [2013/05/11 10.00.40 | 002,400,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll [2013/05/11 10.00.20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgentc.exe [2013/05/11 10.00.20 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe [2013/05/11 10.00.19 | 001,011,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reseteng.dll [2013/05/11 10.00.19 | 000,945,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\resetengmig.dll [2013/05/11 10.00.19 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll [2013/05/11 10.00.19 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll [2013/05/11 10.00.19 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysreset.exe [2013/05/11 10.00.04 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll [2013/05/11 10.00.04 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll [2013/05/11 10.00.04 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnathlp.dll [2013/05/11 10.00.04 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnathlp.dll [2013/05/11 10.00.04 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnsvr.exe [2013/05/11 10.00.04 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnsvr.exe [2013/05/11 10.00.04 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnhupnp.dll [2013/05/11 10.00.04 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnhpast.dll [2013/05/11 10.00.04 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnhupnp.dll [2013/05/11 10.00.04 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnhpast.dll [2013/05/11 10.00.04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnlobby.dll [2013/05/11 10.00.04 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll [2013/05/11 10.00.04 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnlobby.dll [2013/05/11 10.00.04 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll [2013/05/11 09.59.44 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2013/05/11 09.59.44 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2013/05/11 09.59.44 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll [2013/05/11 09.59.44 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll [2013/05/11 09.59.44 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2013/05/11 09.59.44 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2013/05/11 09.59.44 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll [2013/05/11 09.59.44 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll [2013/05/11 09.59.32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml6r.dll [2013/05/11 09.59.32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml6r.dll [2013/05/11 09.59.32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll [2013/05/11 09.59.32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll [2013/05/11 09.50.45 | 000,000,000 | R--D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013/05/11 09.50.45 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Searches [2013/05/11 09.50.45 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Contacts [2013/05/11 09.50.45 | 000,000,000 | R--D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013/05/11 09.50.45 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Adobe [2013/05/11 09.50.32 | 000,000,000 | ---D | C] -- C:\Windows\CSC [2013/05/11 09.50.28 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\VirtualStore [2013/05/11 09.50.25 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache [2013/05/11 09.50.25 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Packages [2013/05/11 09.50.21 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013/05/11 09.50.14 | 000,000,000 | --SD | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Videos [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Saved Games [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Pictures [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Music [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Links [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Favorites [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Downloads [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Documents [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Desktop [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013/05/11 09.50.14 | 000,000,000 | R--D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Documents\Video [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\AppData\Local\Temporary Internet Files [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\SendTo [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Risorse di stampa [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Risorse di rete [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Recenti [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Documents\Musica [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Modelli [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Menu Avvio [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Impostazioni locali [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Documents\Immagini [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Documenti [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Dati applicazioni [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\AppData\Local\Dati applicazioni [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\AppData\Local\Cronologia [2013/05/11 09.50.14 | 000,000,000 | -HSD | C] -- C:\Users\Barbara\Cookies [2013/05/11 09.50.14 | 000,000,000 | -H-D | C] -- C:\Users\Barbara\AppData [2013/05/11 09.50.14 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Temp [2013/05/11 09.50.14 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Microsoft [2013/05/11 09.50.14 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Video [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Musica [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modelli [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Avvio [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Immagini [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\Program Files\File comuni [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documenti [2013/05/11 09.48.45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dati applicazioni [2013/05/11 09.45.52 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch ========== Files - Modified Within 30 Days ========== [2013/05/24 19.30.39 | 000,791,176 | ---- | M] () -- C:\Windows\SysNative\perfh010.dat [2013/05/24 19.30.39 | 000,153,544 | ---- | M] () -- C:\Windows\SysNative\perfc010.dat [2013/05/24 19.30.38 | 001,785,262 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013/05/24 19.30.38 | 000,711,084 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013/05/24 19.30.38 | 000,132,952 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013/05/24 19.29.24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Barbara\Desktop\OTL.exe [2013/05/24 19.26.55 | 000,816,128 | ---- | M] () -- C:\Users\Barbara\Desktop\RogueKiller.exe [2013/05/24 19.26.25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013/05/24 19.24.23 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013/05/24 07.37.33 | 000,309,400 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013/05/23 19.20.51 | 001,080,627 | ---- | M] () -- C:\Windows\SysWow64\sig.bin [2013/05/23 19.20.51 | 000,055,217 | ---- | M] () -- C:\Windows\SysWow64\nmp.map [2013/05/20 23.27.51 | 000,280,792 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013/05/20 23.27.51 | 000,280,792 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013/05/20 22.03.18 | 000,280,792 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013/05/20 21.58.35 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Barbara\Desktop\tdsskiller.exe [2013/05/20 00.04.49 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\Barbara\Desktop\aswMBR.exe [2013/05/19 22.10.01 | 000,000,954 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-998324891-904564694-1887333963-1001UA.job [2013/05/19 22.10.01 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-998324891-904564694-1887333963-1001Core.job [2013/05/17 18.16.24 | 000,002,165 | ---- | M] () -- C:\Users\Barbara\Documents\mazzo magic - collegamento.lnk [2013/05/17 18.14.46 | 000,210,951 | ---- | M] () -- C:\Users\Barbara\Documents\mazzo magic.oxps [2013/05/17 17.37.12 | 000,001,243 | ---- | M] () -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2013/05/13 07.44.51 | 000,681,472 | ---- | M] () -- C:\Users\Barbara\Desktop\CKScanner.exe [2013/05/13 00.12.31 | 000,688,992 | R--- | M] (Swearware) -- C:\Users\Barbara\Desktop\dds.com [2013/05/12 22.17.35 | 001,650,044 | ---- | M] () -- C:\Users\Barbara\Desktop\wrar420it.exe [2013/05/12 20.01.33 | 000,000,975 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk [2013/05/12 15.00.45 | 000,001,170 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013/05/12 15.00.45 | 000,001,166 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013/05/11 19.48.40 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013/05/11 19.15.58 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013/05/11 18.14.24 | 001,719,648 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013/05/11 11.57.51 | 000,106,648 | ---- | M] (G Data Software) -- C:\Windows\SysNative\drivers\GRD.sys [2013/05/11 11.31.59 | 000,001,196 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk [2013/05/11 11.19.27 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf [2013/05/11 11.16.49 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk [2013/05/11 10.52.54 | 000,002,233 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Manutenzione in 1 clic.lnk [2013/05/11 10.52.54 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk [2013/05/11 10.49.47 | 000,001,169 | ---- | M] () -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2013/05/11 10.49.47 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Magician.lnk [2013/05/11 10.44.25 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2013/05/11 10.29.02 | 000,001,215 | ---- | M] () -- C:\Users\Barbara\Desktop\Driver Genius Professional Edition.lnk [2013/05/11 10.10.21 | 000,002,263 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013/05/11 10.06.56 | 000,098,760 | ---- | M] (G Data Software) -- C:\Windows\SysNative\drivers\TS4nt.sys [2013/05/11 10.06.51 | 000,059,768 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\PktIcpt.sys [2013/05/11 10.06.43 | 000,122,744 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\MiniIcpt.sys [2013/05/11 10.06.43 | 000,064,376 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\HookCentre.sys [2013/05/11 10.06.43 | 000,054,136 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\GDBehave.sys [2013/05/11 10.06.41 | 000,065,912 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\gdwfpcd64.sys [2013/05/11 10.06.40 | 000,002,139 | ---- | M] () -- C:\Users\Public\Desktop\G Data TotalProtection.lnk [2013/05/11 09.46.28 | 000,052,889 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2013/05/11 09.46.28 | 000,052,889 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2013/05/11 09.46.23 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2013/05/11 09.45.59 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin [2013/05/07 22.07.50 | 000,693,112 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013/05/07 22.07.50 | 000,078,200 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl ========== Files Created - No Company Name ========== [2013/05/24 19.26.54 | 000,816,128 | ---- | C] () -- C:\Users\Barbara\Desktop\RogueKiller.exe [2013/05/24 07.37.30 | 000,309,400 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013/05/19 12.45.05 | 000,387,688 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml [2013/05/17 21.13.53 | 000,000,954 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-998324891-904564694-1887333963-1001UA.job [2013/05/17 21.13.52 | 000,000,932 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-998324891-904564694-1887333963-1001Core.job [2013/05/17 18.16.24 | 000,002,165 | ---- | C] () -- C:\Users\Barbara\Documents\mazzo magic - collegamento.lnk [2013/05/17 18.13.09 | 000,210,951 | ---- | C] () -- C:\Users\Barbara\Documents\mazzo magic.oxps [2013/05/17 17.37.12 | 000,001,243 | ---- | C] () -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2013/05/13 07.44.50 | 000,681,472 | ---- | C] () -- C:\Users\Barbara\Desktop\CKScanner.exe [2013/05/12 22.17.21 | 001,650,044 | ---- | C] () -- C:\Users\Barbara\Desktop\wrar420it.exe [2013/05/12 20.01.33 | 000,000,975 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk [2013/05/12 00.16.28 | 001,080,627 | ---- | C] () -- C:\Windows\SysWow64\sig.bin [2013/05/12 00.16.28 | 000,055,217 | ---- | C] () -- C:\Windows\SysWow64\nmp.map [2013/05/11 19.15.04 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013/05/11 18.33.11 | 000,280,792 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013/05/11 18.32.09 | 000,280,792 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013/05/11 18.32.09 | 000,280,792 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013/05/11 18.32.07 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013/05/11 18.14.24 | 001,719,648 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013/05/11 11.31.59 | 000,001,196 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk [2013/05/11 11.19.27 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf [2013/05/11 11.16.49 | 000,000,925 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk [2013/05/11 10.52.54 | 000,002,233 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Manutenzione in 1 clic.lnk [2013/05/11 10.52.54 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk [2013/05/11 10.52.53 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk [2013/05/11 10.49.47 | 000,001,169 | ---- | C] () -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2013/05/11 10.49.47 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Magician.lnk [2013/05/11 10.29.02 | 000,001,215 | ---- | C] () -- C:\Users\Barbara\Desktop\Driver Genius Professional Edition.lnk [2013/05/11 10.24.40 | 000,110,592 | ---- | C] () -- C:\Windows\SysNative\OEMLicense.dll [2013/05/11 10.24.40 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll [2013/05/11 10.10.21 | 000,002,263 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013/05/11 10.09.25 | 000,001,170 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013/05/11 10.09.24 | 000,001,166 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013/05/11 10.06.39 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\G Data TotalProtection.lnk [2013/05/11 09.50.45 | 000,001,418 | ---- | C] () -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013/05/11 09.46.23 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2013/05/11 09.45.59 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2013/03/29 04.13.14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe [2013/03/29 04.13.12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe [2013/03/29 03.38.08 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat [2013/03/29 03.38.08 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat [2012/11/27 01.18.46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll [2012/07/26 10.13.10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2012/07/26 10.13.09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2012/07/26 09.21.26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2012/07/26 03.17.42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2012/07/25 22.37.29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2012/07/25 22.28.31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2012/06/02 16.31.19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2011/09/13 00.06.16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013/03/06 08.31.28 | 019,758,592 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013/03/06 07.03.37 | 017,561,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 05.05.38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 05.18.27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 05.07.41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2013/05/17 17.37.07 | 000,000,000 | ---D | M] -- C:\Users\Barbara\AppData\Roaming\OpenOffice.org [2013/05/20 22.16.25 | 000,000,000 | ---D | M] -- C:\Users\Barbara\AppData\Roaming\TS3Client [2013/05/11 10.52.52 | 000,000,000 | ---D | M] -- C:\Users\Barbara\AppData\Roaming\TuneUp Software ========== Purity Check ========== < End of report >

Here it is: OTL 1/2: OTL logfile created on: 24/05/2013 19.33.18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Barbara\Desktop 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16580) Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy 4,00 Gb Total Physical Memory | 2,57 Gb Available Physical Memory | 64,24% Memory free 4,38 Gb Paging File | 2,58 Gb Available in Paging File | 58,86% Paging File free Paging file location(s): c:\pagefile.sys 100 1024 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 107,34 Gb Total Space | 10,34 Gb Free Space | 9,63% Space Free | Partition Type: NTFS Computer Name: BARNEYPC | User Name: Barbara | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013/05/24 19.29.24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Barbara\Desktop\OTL.exe PRC - [2013/05/11 19.48.40 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2013/05/04 01.35.30 | 001,635,752 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe PRC - [2013/05/04 01.35.30 | 000,543,656 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe PRC - [2013/04/09 10.57.09 | 001,312,720 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2013/04/04 14.50.32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013/04/04 14.50.32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013/04/04 14.50.32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2012/03/15 12.02.30 | 000,306,184 | ---- | M] (G Data Software) -- C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe PRC - [2012/03/13 12.01.14 | 001,609,208 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe PRC - [2012/02/02 12.21.36 | 001,524,728 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe PRC - [2012/01/27 15.01.06 | 000,471,048 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe PRC - [2012/01/27 05.18.28 | 000,985,080 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe PRC - [2012/01/27 05.13.02 | 001,470,968 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe PRC - [2012/01/27 04.43.34 | 000,468,472 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe ========== Modules (No Company Name) ========== MOD - [2013/05/04 01.35.30 | 001,114,536 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.DLL MOD - [2013/04/24 04.30.08 | 000,652,800 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll MOD - [2013/04/09 10.57.07 | 000,390,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll MOD - [2013/04/09 10.57.05 | 004,050,896 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll MOD - [2013/04/09 10.56.15 | 000,598,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll MOD - [2013/04/09 10.56.14 | 000,124,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll MOD - [2013/04/09 10.56.13 | 001,606,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll MOD - [2013/03/27 02.16.40 | 020,341,672 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll MOD - [2012/12/11 19.51.10 | 001,100,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll MOD - [2012/12/11 19.51.10 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll MOD - [2012/12/11 19.51.10 | 000,124,416 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll ========== Services (SafeList) ========== SRV:64bit: - [2013/04/09 06.48.42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2013/03/29 03.34.18 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2013/03/02 04.45.07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2013/03/02 04.45.05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2013/02/02 10.21.45 | 000,467,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2013/01/10 01.23.16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2013/01/10 01.22.35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2012/09/20 11.10.47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2012/09/20 08.31.18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2012/09/20 08.30.41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2012/07/26 05.30.05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2012/07/26 05.07.47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2012/07/26 05.07.42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2012/07/26 05.07.40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2012/07/26 05.07.25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2012/07/26 05.06.34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2012/07/26 05.06.33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2012/07/26 05.06.33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2012/07/26 05.05.55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2012/07/26 05.05.34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2012/07/26 05.05.28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2012/07/26 05.05.24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2012/07/26 05.05.08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:64bit: - [2012/07/26 05.05.04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2012/07/26 02.24.02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2012/07/26 02.24.02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2012/07/26 02.24.02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2012/07/26 02.24.02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2012/07/26 02.24.02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2012/07/26 02.24.02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV - [2013/05/11 19.48.40 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2013/05/04 01.35.30 | 000,543,656 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2013/04/04 14.50.32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013/04/04 14.50.32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2013/01/31 10.57.24 | 002,402,080 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc) SRV - [2012/11/19 12.15.20 | 000,014,904 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2012/07/26 05.30.05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2012/07/26 05.20.04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) SRV - [2012/03/15 12.02.30 | 000,306,184 | ---- | M] (G Data Software) [Auto | Running] -- C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe -- (TSNxGService) SRV - [2012/03/13 12.01.14 | 001,609,208 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe -- (GDBackupSvc) SRV - [2012/03/08 12.59.20 | 001,218,040 | ---- | M] (G Data Software AG) [On_Demand | Stopped] -- C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe -- (GDTunerSvc) SRV - [2012/02/02 12.21.36 | 001,524,728 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe -- (AVKProxy) SRV - [2012/01/27 15.01.06 | 000,471,048 | ---- | M] (G Data Software AG) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe -- (GDScan) SRV - [2012/01/27 05.07.28 | 001,765,352 | ---- | M] (G Data Software AG) [On_Demand | Running] -- C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe -- (GDFwSvc) SRV - [2012/01/27 05.01.08 | 002,006,872 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe -- (AVKWCtl) SRV - [2012/01/27 04.43.34 | 000,468,472 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe -- (AVKService) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013/05/11 11.57.51 | 000,106,648 | ---- | M] (G Data Software) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\GRD.sys -- (GRD) DRV:64bit: - [2013/05/11 10.06.56 | 000,098,760 | ---- | M] (G Data Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\TS4nt.sys -- (TS4NT) DRV:64bit: - [2013/05/11 10.06.51 | 000,059,768 | ---- | M] (G Data Software AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\PktIcpt.sys -- (GDPkIcpt) DRV:64bit: - [2013/05/11 10.06.43 | 000,122,744 | ---- | M] (G Data Software AG) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\MiniIcpt.sys -- (GDMnIcpt) DRV:64bit: - [2013/05/11 10.06.43 | 000,064,376 | ---- | M] (G Data Software AG) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\HookCentre.sys -- (HookCentre) DRV:64bit: - [2013/05/11 10.06.43 | 000,054,136 | ---- | M] (G Data Software AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\GDBehave.sys -- (GDBehave) DRV:64bit: - [2013/05/11 10.06.41 | 000,065,912 | ---- | M] (G Data Software AG) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\gdwfpcd64.sys -- (gdwfpcd) DRV:64bit: - [2013/04/09 07.27.43 | 000,284,424 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport) DRV:64bit: - [2013/04/04 14.50.32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2013/03/29 04.35.28 | 000,021,600 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdkmafd.sys -- (amdkmafd) DRV:64bit: - [2013/03/29 04.35.02 | 011,658,752 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2013/03/29 03.09.44 | 000,581,120 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2013/03/02 12.57.48 | 000,337,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI) DRV:64bit: - [2013/03/02 12.57.46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci) DRV:64bit: - [2013/03/02 12.45.20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM) DRV:64bit: - [2013/03/02 12.45.19 | 000,194,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2013/03/02 12.39.38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc) DRV:64bit: - [2013/02/14 13.41.14 | 000,094,208 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AtihdW86.sys -- (AtiHDAudioService) DRV:64bit: - [2013/02/02 13.19.44 | 000,446,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3) DRV:64bit: - [2013/02/02 09.25.23 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:64bit: - [2013/01/29 03.57.05 | 000,035,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot) DRV:64bit: - [2013/01/29 01.08.22 | 000,230,904 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter) DRV:64bit: - [2013/01/10 03.53.32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32) DRV:64bit: - [2012/11/27 05.55.44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid) DRV:64bit: - [2012/11/20 06.54.31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c) DRV:64bit: - [2012/11/19 12.10.38 | 000,652,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA) DRV:64bit: - [2012/11/06 05.55.44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM) DRV:64bit: - [2012/10/12 10.08.01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012/10/11 09.25.48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor) DRV:64bit: - [2012/10/11 09.13.49 | 000,058,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam) DRV:64bit: - [2012/09/20 09.55.33 | 000,212,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000) DRV:64bit: - [2012/09/20 09.55.30 | 000,120,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101) DRV:64bit: - [2012/09/20 09.55.27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2012/09/20 09.55.24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2012/07/26 07.26.46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012/07/26 07.26.45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv) DRV:64bit: - [2012/07/26 07.00.58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:64bit: - [2012/07/26 07.00.58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt) DRV:64bit: - [2012/07/26 07.00.58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor) DRV:64bit: - [2012/07/26 07.00.57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex) DRV:64bit: - [2012/07/26 07.00.55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis) DRV:64bit: - [2012/07/26 07.00.55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2012/07/26 07.00.52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2012/07/26 07.00.52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS) DRV:64bit: - [2012/07/26 07.00.52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2012/07/26 07.00.51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:64bit: - [2012/07/26 07.00.51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass) DRV:64bit: - [2012/07/26 07.00.49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2012/07/26 07.00.49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware) DRV:64bit: - [2012/07/26 07.00.49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2012/07/26 07.00.48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2012/07/26 06.57.54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS) DRV:64bit: - [2012/07/26 06.54.34 | 000,096,496 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS) DRV:64bit: - [2012/07/26 06.53.16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci) DRV:64bit: - [2012/07/26 05.17.38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2012/07/26 04.29.14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf) DRV:64bit: - [2012/07/26 04.29.08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay) DRV:64bit: - [2012/07/26 04.29.03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo) DRV:64bit: - [2012/07/26 04.28.52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender) DRV:64bit: - [2012/07/26 04.27.58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter) DRV:64bit: - [2012/07/26 04.27.41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic) DRV:64bit: - [2012/07/26 04.27.37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime) DRV:64bit: - [2012/07/26 04.27.33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig) DRV:64bit: - [2012/07/26 04.27.29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:64bit: - [2012/07/26 04.27.16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr) DRV:64bit: - [2012/07/26 04.27.01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd) DRV:64bit: - [2012/07/26 04.26.46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx) DRV:64bit: - [2012/07/26 04.26.43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx) DRV:64bit: - [2012/07/26 04.26.34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2012/07/26 04.26.13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum) DRV:64bit: - [2012/07/26 04.25.57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2012/07/26 04.25.56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012/07/26 04.25.26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid) DRV:64bit: - [2012/07/26 04.25.22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp) DRV:64bit: - [2012/07/26 04.25.13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr) DRV:64bit: - [2012/07/26 04.25.12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr) DRV:64bit: - [2012/07/26 04.25.12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp) DRV:64bit: - [2012/07/26 04.25.01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:64bit: - [2012/07/26 04.23.53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp) DRV:64bit: - [2012/07/26 04.23.42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu) DRV:64bit: - [2012/06/02 16.31.31 | 000,059,904 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\L1E62x64.sys -- (L1E) DRV:64bit: - [2005/03/29 01.30.38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ASACPI.sys -- (MTsensor) DRV - [2012/11/16 16.51.26 | 000,011,880 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.it.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it-IT IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 48 8E 37 BF 1E 4E CE 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Barbara\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter} CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll CHR - Extension: Documenti Google = C:\Users\Barbara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google Drive = C:\Users\Barbara\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Barbara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Ricerca Google = C:\Users\Barbara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Gmail = C:\Users\Barbara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012/07/26 07.26.49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O2 - BHO: (G Data BankGuard) - {BA3295CF-17ED-4F49-9E95-D999A0ADBFDC} - C:\Program Files (x86)\Common Files\G DATA\AVKProxy\BanksafeBHO.dll (G Data Software AG) O4 - HKLM..\Run: [G Data AntiVirus Tray Application] C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe (G Data Software AG) O4 - HKLM..\Run: [GDFirewallTray] C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe (G Data Software AG) O4 - HKLM..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation) O4 - HKLM..\Run: [startCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [Facebook Update] C:\Users\Barbara\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKCU..\Run: [steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) O4 - Startup: C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () O4 - Startup: C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk = C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Samsung Electronics.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4F26A0E8-41C0-49E6-9670-69ECD9E52163}: DhcpNameServer = 192.168.1.1 O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (c:\program files (x86)\g data\totalprotection\avkkid\avkcks.exe) - c:\program files (x86)\g data\totalprotection\avkkid\avkcks.exe () O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O27:64bit: - HKLM IFEO\iastorui.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\quickstart.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\sbase.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\scalc.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\sdraw.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\simpress.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\smath.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\soffice.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27:64bit: - HKLM IFEO\swriter.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\iastorui.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\quickstart.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\sbase.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\scalc.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\sdraw.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\simpress.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\smath.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\soffice.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O27 - HKLM IFEO\swriter.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software) O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013/05/24 19.29.23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Barbara\Desktop\OTL.exe [2013/05/24 19.28.08 | 000,000,000 | ---D | C] -- C:\Users\Barbara\Desktop\RK_Quarantine [2013/05/20 21.58.28 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Barbara\Desktop\tdsskiller.exe [2013/05/20 00.03.19 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\Barbara\Desktop\aswMBR.exe [2013/05/19 12.45.25 | 013,648,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll [2013/05/19 12.45.24 | 003,552,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll [2013/05/19 12.45.23 | 014,267,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2013/05/19 12.45.22 | 011,878,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2013/05/19 12.45.21 | 010,789,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll [2013/05/19 12.45.21 | 002,107,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll [2013/05/19 12.45.20 | 002,767,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll [2013/05/19 12.45.20 | 001,593,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll [2013/05/19 12.45.19 | 001,829,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2013/05/19 12.45.18 | 001,444,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll [2013/05/19 12.45.13 | 010,116,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll [2013/05/19 12.45.12 | 001,113,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll [2013/05/19 12.45.11 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll [2013/05/19 12.45.11 | 000,306,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_10ec.dll [2013/05/19 12.45.11 | 000,298,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll [2013/05/19 12.45.10 | 008,857,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll [2013/05/19 12.45.10 | 000,489,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll [2013/05/19 12.45.10 | 000,446,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll [2013/05/19 12.45.10 | 000,435,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll [2013/05/19 12.45.10 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe [2013/05/19 12.45.10 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe [2013/05/19 12.45.10 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll [2013/05/19 12.45.09 | 002,303,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll [2013/05/19 12.45.09 | 001,403,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi [2013/05/19 12.45.09 | 000,804,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RecoveryDrive.exe [2013/05/19 12.45.09 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll [2013/05/19 12.45.09 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll [2013/05/19 12.45.09 | 000,253,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe [2013/05/19 12.45.08 | 002,035,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll [2013/05/19 12.45.08 | 001,267,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe [2013/05/19 12.45.08 | 001,217,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi [2013/05/19 12.45.08 | 001,093,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe [2013/05/19 12.45.08 | 000,523,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013/05/19 12.45.08 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.dll [2013/05/19 12.45.08 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmvdsitf.dll [2013/05/19 12.45.07 | 000,659,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll [2013/05/19 12.45.07 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll [2013/05/19 12.45.07 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll [2013/05/19 12.45.07 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl [2013/05/19 12.45.07 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll [2013/05/19 12.45.07 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll [2013/05/19 12.45.07 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.BackgroundTransfer.dll [2013/05/19 12.45.07 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhengine.dll [2013/05/19 12.45.07 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iuilp.dll [2013/05/19 12.45.07 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe [2013/05/19 12.45.07 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll [2013/05/19 12.45.07 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Robocopy.exe [2013/05/19 12.45.07 | 000,123,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll [2013/05/19 12.45.07 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Robocopy.exe [2013/05/19 12.45.07 | 000,077,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdvm.dll [2013/05/19 12.45.06 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll [2013/05/19 12.45.06 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GenuineCenter.dll [2013/05/19 12.45.06 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl [2013/05/19 12.45.06 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013/05/19 12.45.06 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll [2013/05/19 12.45.06 | 000,284,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spaceport.sys [2013/05/19 12.45.06 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll [2013/05/19 12.45.06 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmvdsitf.dll [2013/05/19 12.45.06 | 000,086,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdnet.dll [2013/05/19 12.45.06 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys [2013/05/19 12.45.06 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fmifs.dll [2013/05/19 12.45.05 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll [2013/05/19 12.45.05 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll [2013/05/19 12.45.05 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fmifs.dll [2013/05/19 12.45.05 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshooks.dll [2013/05/19 12.45.05 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshooks.dll [2013/05/19 12.07.46 | 000,000,000 | R--D | C] -- C:\Users\Barbara\Documents\Scanned Documents [2013/05/19 12.07.46 | 000,000,000 | ---D | C] -- C:\Users\Barbara\Documents\Fax [2013/05/18 16.00.50 | 000,000,000 | ---D | C] -- C:\FRST [2013/05/17 21.12.00 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\Facebook [2013/05/17 18.15.43 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013/05/17 18.15.41 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll [2013/05/17 18.15.41 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013/05/17 18.15.41 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013/05/17 18.15.41 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013/05/17 18.15.41 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll [2013/05/17 18.15.41 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013/05/17 18.15.41 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll [2013/05/17 18.15.37 | 006,987,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013/05/17 18.15.30 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll [2013/05/17 18.15.30 | 000,112,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe [2013/05/17 18.15.29 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll [2013/05/17 18.15.29 | 002,382,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll [2013/05/17 18.13.17 | 000,000,000 | ---D | C] -- C:\ProgramData\HP [2013/05/17 17.37.07 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\OpenOffice.org [2013/05/13 00.12.30 | 000,688,992 | R--- | C] (Swearware) -- C:\Users\Barbara\Desktop\dds.com [2013/05/12 22.18.06 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Nosibay [2013/05/12 22.17.50 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\WinRAR [2013/05/12 22.17.50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013/05/12 22.17.49 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013/05/12 22.17.47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR [2013/05/12 22.16.39 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Macromedia [2013/05/12 20.02.00 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\TS3Client [2013/05/12 20.01.33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client [2013/05/12 20.01.25 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client [2013/05/11 19.47.27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Chart Controls [2013/05/11 19.15.06 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Roaming\Malwarebytes [2013/05/11 19.15.04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013/05/11 19.15.04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013/05/11 19.15.03 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2013/05/11 19.15.03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2013/05/11 18.33.06 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\PunkBuster [2013/05/11 18.32.57 | 000,000,000 | ---D | C] -- C:\Users\Barbara\AppData\Local\CrashRpt [2013/05/11 18.31.48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2013/05/11 18.31.48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2013/05/11 18.31.42 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer [2013/05/11 18.31.42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013/05/11 18.31.42 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013/05/11 18.30.10 | 001,166,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll [2013/05/11 18.30.10 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll [2013/05/11 18.30.10 | 000,124,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll [2013/05/11 18.30.10 | 000,102,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2013/05/11 18.30.10 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe [2013/05/11 18.30.10 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe [2013/05/11 18.20.17 | 000,000,000 | ---D | C] -- C:\Users\Barbara\Documents\my games [2013/05/11 18.20.14 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll [2013/05/11 18.20.14 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll [2013/05/11 18.20.14 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll [2013/05/11 18.20.14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll [2013/05/11 18.20.13 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll [2013/05/11 18.20.13 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll [2013/05/11 18.20.12 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll [2013/05/11 18.20.12 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll [2013/05/11 18.20.12 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll [2013/05/11 18.20.12 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll [2013/05/11 18.20.11 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll [2013/05/11 18.20.11 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll [2013/05/11 18.20.10 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll [2013/05/11 18.20.10 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll [2013/05/11 18.20.10 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll [2013/05/11 18.20.10 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll [2013/05/11 18.20.09 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll [2013/05/11 18.20.09 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll [2013/05/11 18.20.09 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll [2013/05/11 18.20.09 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll [2013/05/11 18.20.08 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll [2013/05/11 18.20.08 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll [2013/05/11 18.20.07 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll [2013/05/11 18.20.07 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll [2013/05/11 18.20.07 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll [2013/05/11 18.20.07 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll [2013/05/11 18.20.06 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll [2013/05/11 18.20.06 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll [2013/05/11 18.20.06 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll [2013/05/11 18.20.06 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll [2013/05/11 18.20.05 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll [2013/05/11 18.20.05 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll [2013/05/11 18.20.04 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll [2013/05/11 18.20.04 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll [2013/05/11 18.20.04 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll [2013/05/11 18.20.04 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll [2013/05/11 18.20.04 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll [2013/05/11 18.20.04 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll [2013/05/11 18.20.03 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll [2013/05/11 18.20.03 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll [2013/05/11 18.20.03 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll [2013/05/11 18.20.03 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll [2013/05/11 18.20.02 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll [2013/05/11 18.20.02 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll [2013/05/11 18.20.01 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll [2013/05/11 18.20.01 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll [2013/05/11 18.20.01 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll [2013/05/11 18.20.01 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll [2013/05/11 18.20.00 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll [2013/05/11 18.20.00 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll [2013/05/11 18.19.58 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll [2013/05/11 18.19.58 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll [2013/05/11 18.19.58 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll [2013/05/11 18.19.58 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll [2013/05/11 18.19.58 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll [2013/05/11 18.19.58 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll [2013/05/11 18.19.57 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll [2013/05/11 18.19.57 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll [2013/05/11 18.19.56 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll [2013/05/11 18.19.56 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll [2013/05/11 18.19.56 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll [2013/05/11 18.19.56 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll [2013/05/11 18.19.55 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll [2013/05/11 18.19.55 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll [2013/05/11 18.19.55 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll [2013/05/11 18.19.55 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll [2013/05/11 18.19.54 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll [2013/05/11 18.19.54 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll [2013/05/11 18.19.54 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll [2013/05/11 18.19.54 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll [2013/05/11 18.19.53 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll [2013/05/11 18.19.53 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll [2013/05/11 18.19.53 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll [2013/05/11 18.19.53 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll [2013/05/11 18.19.53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll [2013/05/11 18.19.53 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll [2013/05/11 18.19.52 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll [2013/05/11 18.19.52 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll [2013/05/11 18.19.52 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll [2013/05/11 18.19.52 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll [2013/05/11 18.19.52 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll [2013/05/11 18.19.52 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll [2013/05/11 18.19.51 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll [2013/05/11 18.19.51 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll [2013/05/11 18.19.51 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll [2013/05/11 18.19.51 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll [2013/05/11 18.19.51 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll [2013/05/11 18.19.51 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll [2013/05/11 18.19.51 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll [2013/05/11 18.19.51 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll [2013/05/11 18.19.50 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll [2013/05/11 18.19.50 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll [2013/05/11 18.19.50 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll [2013/05/11 18.19.50 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll [2013/05/11 18.19.49 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll [2013/05/11 18.19.49 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll [2013/05/11 18.19.49 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll [2013/05/11 18.19.49 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll [2013/05/11 18.19.49 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll [2013/05/11 18.19.49 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll [2013/05/11 18.19.49 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll [2013/05/11 18.19.49 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll [2013/05/11 18.19.48 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll [2013/05/11 18.19.48 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll [2013/05/11 18.19.48 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll [2013/05/11 18.19.48 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll [2013/05/11 18.19.47 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll [2013/05/11 18.19.47 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll [2013/05/11 18.19.47 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll [2013/05/11 18.19.47 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll [2013/05/11 18.19.46 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll [2013/05/11 18.19.46 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll [2013/05/11 18.19.46 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll [2013/05/11 18.19.46 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll [2013/05/11 18.19.45 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll [2013/05/11 18.19.45 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll [2013/05/11 18.19.45 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll [2013/05/11 18.19.45 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll [2013/05/11 18.19.44 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll [2013/05/11 18.19.44 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll [2013/05/11 18.19.44 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll [2013/05/11 18.19.44 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll [2013/05/11 18.19.44 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll [2013/05/11 18.19.44 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll [2013/05/11 18.19.43 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll [2013/05/11 18.19.43 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll [2013/05/11 18.19.43 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll [2013/05/11 18.19.43 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll [2013/05/11 18.19.42 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll [2013/05/11 18.19.42 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll [2013/05/11 18.19.41 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll [2013/05/11 18.19.41 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll [2013/05/11 18.19.41 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll [2013/05/11 18.19.41 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll [2013/05/11 18.19.40 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll [2013/05/11 18.19.40 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll [2013/05/11 18.19.40 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll [2013/05/11 18.19.40 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll [2013/05/11 18.19.40 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll [2013/05/11 18.19.40 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll [2013/05/11 18.19.39 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll [2013/05/11 18.19.39 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll [2013/05/11 18.19.38 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll [2013/05/11 18.19.38 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll [2013/05/11 18.19.38 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll [2013/05/11 18.19.38 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll [2013/05/11 18.19.38 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll [2013/05/11 18.19.38 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll [2013/05/11 18.19.37 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll [2013/05/11 18.19.37 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll [2013/05/11 18.19.37 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll [2013/05/11 18.19.37 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll [2013/05/11 18.19.37 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll [2013/05/11 18.19.37 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll [2013/05/11 18.19.36 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll [2013/05/11 18.19.36 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll [2013/05/11 18.19.36 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll [2013/05/11 18.19.36 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll [2013/05/11 18.19.36 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll [2013/05/11 18.19.36 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll [2013/05/11 18.19.36 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll [2013/05/11 18.19.36 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll [2013/05/11 18.19.35 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll [2013/05/11 18.19.35 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll [2013/05/11 18.19.35 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll [2013/05/11 18.19.35 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll [2013/05/11 18.19.35 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll [2013/05/11 18.19.35 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll [2013/05/11 18.19.35 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll [2013/05/11 18.19.35 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll [2013/05/11 18.19.34 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll [2013/05/11 18.19.34 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll [2013/05/11 18.19.34 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll [2013/05/11 18.19.34 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll [2013/05/11 18.19.33 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll [2013/05/11 18.19.33 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll [2013/05/11 18.19.33 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll [2013/05/11 18.19.33 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll

Any idea about unsufficient memory ? Thx once more !!

Here it is the log: 21:59:17.0676 5904 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 21:59:18.0771 5904 ============================================================ 21:59:18.0771 5904 Current date / time: 2013/05/20 21:59:18.0771 21:59:18.0771 5904 SystemInfo: 21:59:18.0771 5904 21:59:18.0771 5904 OS Version: 6.2.9200 ServicePack: 0.0 21:59:18.0771 5904 Product type: Workstation 21:59:18.0771 5904 ComputerName: BARNEYPC 21:59:18.0771 5904 UserName: Barbara 21:59:18.0771 5904 Windows directory: C:\Windows 21:59:18.0771 5904 System windows directory: C:\Windows 21:59:18.0771 5904 Running under WOW64 21:59:18.0771 5904 Processor architecture: Intel x64 21:59:18.0771 5904 Number of processors: 2 21:59:18.0771 5904 Page size: 0x1000 21:59:18.0771 5904 Boot type: Normal boot 21:59:18.0771 5904 ============================================================ 21:59:18.0987 5904 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 21:59:18.0991 5904 ============================================================ 21:59:18.0991 5904 \Device\Harddisk0\DR0: 21:59:18.0991 5904 MBR partitions: 21:59:18.0991 5904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xD6AE334 21:59:18.0991 5904 ============================================================ 21:59:18.0992 5904 C: <-> \Device\Harddisk0\DR0\Partition1 21:59:18.0992 5904 ============================================================ 21:59:18.0992 5904 Initialize success 21:59:18.0992 5904 ============================================================ 21:59:49.0290 6012 ============================================================ 21:59:49.0290 6012 Scan started 21:59:49.0290 6012 Mode: Manual; 21:59:49.0291 6012 ============================================================ 21:59:49.0479 6012 ================ Scan system memory ======================== 21:59:49.0479 6012 System memory - ok 21:59:49.0479 6012 ================ Scan services ============================= 21:59:49.0504 6012 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys 21:59:49.0505 6012 1394ohci - ok 21:59:49.0510 6012 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys 21:59:49.0512 6012 3ware - ok 21:59:49.0519 6012 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\Windows\system32\drivers\ACPI.sys 21:59:49.0523 6012 ACPI - ok 21:59:49.0526 6012 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys 21:59:49.0528 6012 acpiex - ok 21:59:49.0530 6012 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys 21:59:49.0531 6012 acpipagr - ok 21:59:49.0534 6012 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys 21:59:49.0536 6012 AcpiPmi - ok 21:59:49.0539 6012 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys 21:59:49.0540 6012 acpitime - ok 21:59:49.0547 6012 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 21:59:49.0552 6012 adp94xx - ok 21:59:49.0559 6012 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys 21:59:49.0563 6012 adpahci - ok 21:59:49.0568 6012 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 21:59:49.0570 6012 adpu320 - ok 21:59:49.0577 6012 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 21:59:49.0578 6012 AeLookupSvc - ok 21:59:49.0586 6012 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\Windows\system32\drivers\afd.sys 21:59:49.0592 6012 AFD - ok 21:59:49.0596 6012 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys 21:59:49.0597 6012 agp440 - ok 21:59:49.0600 6012 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe 21:59:49.0602 6012 ALG - ok 21:59:49.0606 6012 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll 21:59:49.0609 6012 AllUserInstallAgent - ok 21:59:49.0614 6012 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 21:59:49.0617 6012 AMD External Events Utility - ok 21:59:49.0621 6012 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys 21:59:49.0622 6012 AmdK8 - ok 21:59:49.0625 6012 [ 99DA2A5AF036F792CE0FFE3C1B2223BD ] amdkmafd C:\Windows\system32\drivers\amdkmafd.sys 21:59:49.0626 6012 amdkmafd - ok 21:59:49.0718 6012 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys 21:59:49.0817 6012 amdkmdag - ok 21:59:49.0827 6012 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys 21:59:49.0833 6012 amdkmdap - ok 21:59:49.0837 6012 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys 21:59:49.0839 6012 AmdPPM - ok 21:59:49.0843 6012 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys 21:59:49.0844 6012 amdsata - ok 21:59:49.0850 6012 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 21:59:49.0853 6012 amdsbs - ok 21:59:49.0857 6012 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys 21:59:49.0858 6012 amdxata - ok 21:59:49.0861 6012 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys 21:59:49.0863 6012 AppID - ok 21:59:49.0866 6012 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll 21:59:49.0867 6012 AppIDSvc - ok 21:59:49.0871 6012 [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo C:\Windows\System32\appinfo.dll 21:59:49.0871 6012 Appinfo - ok 21:59:49.0876 6012 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\Windows\System32\appmgmts.dll 21:59:49.0878 6012 AppMgmt - ok 21:59:49.0881 6012 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys 21:59:49.0883 6012 arc - ok 21:59:49.0888 6012 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys 21:59:49.0890 6012 arcsas - ok 21:59:49.0893 6012 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 21:59:49.0894 6012 AsyncMac - ok 21:59:49.0897 6012 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys 21:59:49.0898 6012 atapi - ok 21:59:49.0903 6012 [ 005D1AA28FFAA7FB327842B3CAFF726E ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys 21:59:49.0904 6012 AtiHDAudioService - ok 21:59:49.0909 6012 [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll 21:59:49.0911 6012 AudioEndpointBuilder - ok 21:59:49.0921 6012 [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv C:\Windows\System32\Audiosrv.dll 21:59:49.0925 6012 Audiosrv - ok 21:59:49.0942 6012 [ BF3B991E0E22F9E6A82CCF6512CB51D0 ] AVKProxy C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe 21:59:49.0947 6012 AVKProxy - ok 21:59:49.0956 6012 [ 29DA2D5958B352022A1BB5CE6FDB427C ] AVKService C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe 21:59:49.0958 6012 AVKService - ok 21:59:49.0977 6012 [ BD66948F382D077AC9833B6414D1F06E ] AVKWCtl C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe 21:59:49.0995 6012 AVKWCtl - ok 21:59:49.0999 6012 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll 21:59:50.0001 6012 AxInstSV - ok 21:59:50.0009 6012 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 21:59:50.0025 6012 b06bdrv - ok 21:59:50.0028 6012 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys 21:59:50.0029 6012 BasicDisplay - ok 21:59:50.0033 6012 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys 21:59:50.0034 6012 BasicRender - ok 21:59:50.0040 6012 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\Windows\System32\bdesvc.dll 21:59:50.0042 6012 BDESVC - ok 21:59:50.0045 6012 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys 21:59:50.0046 6012 Beep - ok 21:59:50.0056 6012 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\Windows\System32\bfe.dll 21:59:50.0064 6012 BFE - ok 21:59:50.0076 6012 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll 21:59:50.0092 6012 BITS - ok 21:59:50.0096 6012 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys 21:59:50.0097 6012 bowser - ok 21:59:50.0102 6012 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll 21:59:50.0103 6012 BrokerInfrastructure - ok 21:59:50.0107 6012 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll 21:59:50.0109 6012 Browser - ok 21:59:50.0112 6012 [ F17DEEAC7D51D44CF1BFF8DD4F0A2B6D ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys 21:59:50.0113 6012 BthAvrcpTg - ok 21:59:50.0116 6012 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys 21:59:50.0118 6012 BthHFEnum - ok 21:59:50.0121 6012 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys 21:59:50.0122 6012 bthhfhid - ok 21:59:50.0125 6012 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys 21:59:50.0127 6012 BTHMODEM - ok 21:59:50.0131 6012 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll 21:59:50.0133 6012 bthserv - ok 21:59:50.0137 6012 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 21:59:50.0138 6012 cdfs - ok 21:59:50.0143 6012 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys 21:59:50.0145 6012 cdrom - ok 21:59:50.0150 6012 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll 21:59:50.0152 6012 CertPropSvc - ok 21:59:50.0155 6012 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys 21:59:50.0156 6012 circlass - ok 21:59:50.0162 6012 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys 21:59:50.0166 6012 CLFS - ok 21:59:50.0174 6012 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys 21:59:50.0175 6012 CmBatt - ok 21:59:50.0183 6012 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\Windows\system32\Drivers\cng.sys 21:59:50.0189 6012 CNG - ok 21:59:50.0193 6012 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys 21:59:50.0194 6012 CompositeBus - ok 21:59:50.0196 6012 COMSysApp - ok 21:59:50.0200 6012 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys 21:59:50.0201 6012 condrv - ok 21:59:50.0206 6012 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll 21:59:50.0208 6012 CryptSvc - ok 21:59:50.0216 6012 [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC C:\Windows\system32\drivers\csc.sys 21:59:50.0222 6012 CSC - ok 21:59:50.0232 6012 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\Windows\System32\cscsvc.dll 21:59:50.0240 6012 CscService - ok 21:59:50.0243 6012 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\Windows\system32\drivers\dam.sys 21:59:50.0245 6012 dam - ok 21:59:50.0256 6012 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll 21:59:50.0260 6012 DcomLaunch - ok 21:59:50.0267 6012 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll 21:59:50.0270 6012 defragsvc - ok 21:59:50.0276 6012 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll 21:59:50.0280 6012 DeviceAssociationService - ok 21:59:50.0284 6012 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll 21:59:50.0286 6012 DeviceInstall - ok 21:59:50.0290 6012 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys 21:59:50.0292 6012 Dfsc - ok 21:59:50.0298 6012 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\Windows\system32\dhcpcore.dll 21:59:50.0300 6012 Dhcp - ok 21:59:50.0303 6012 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys 21:59:50.0304 6012 discache - ok 21:59:50.0308 6012 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys 21:59:50.0310 6012 disk - ok 21:59:50.0313 6012 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys 21:59:50.0314 6012 dmvsc - ok 21:59:50.0319 6012 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\Windows\System32\dnsrslvr.dll 21:59:50.0327 6012 Dnscache - ok 21:59:50.0332 6012 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll 21:59:50.0335 6012 dot3svc - ok 21:59:50.0340 6012 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll 21:59:50.0343 6012 DPS - ok 21:59:50.0346 6012 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 21:59:50.0347 6012 drmkaud - ok 21:59:50.0351 6012 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll 21:59:50.0353 6012 DsmSvc - ok 21:59:50.0369 6012 [ 6D1B8A9A2C0BD4851D8AF1AB43E67AD9 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 21:59:50.0402 6012 DXGKrnl - ok 21:59:50.0406 6012 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll 21:59:50.0408 6012 Eaphost - ok 21:59:50.0437 6012 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\Windows\system32\drivers\evbda.sys 21:59:50.0465 6012 ebdrv - ok 21:59:50.0469 6012 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\Windows\System32\lsass.exe 21:59:50.0471 6012 EFS - ok 21:59:50.0474 6012 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys 21:59:50.0476 6012 EhStorClass - ok 21:59:50.0479 6012 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys 21:59:50.0481 6012 EhStorTcgDrv - ok 21:59:50.0484 6012 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys 21:59:50.0485 6012 ErrDev - ok 21:59:50.0495 6012 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll 21:59:50.0498 6012 EventSystem - ok 21:59:50.0503 6012 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys 21:59:50.0505 6012 exfat - ok 21:59:50.0510 6012 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys 21:59:50.0513 6012 fastfat - ok 21:59:50.0522 6012 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe 21:59:50.0525 6012 Fax - ok 21:59:50.0528 6012 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys 21:59:50.0529 6012 fdc - ok 21:59:50.0532 6012 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll 21:59:50.0534 6012 fdPHost - ok 21:59:50.0536 6012 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll 21:59:50.0538 6012 FDResPub - ok 21:59:50.0542 6012 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\Windows\system32\fhsvc.dll 21:59:50.0544 6012 fhsvc - ok 21:59:50.0547 6012 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 21:59:50.0549 6012 FileInfo - ok 21:59:50.0552 6012 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 21:59:50.0553 6012 Filetrace - ok 21:59:50.0556 6012 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys 21:59:50.0557 6012 flpydisk - ok 21:59:50.0564 6012 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 21:59:50.0565 6012 FltMgr - ok 21:59:50.0580 6012 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\Windows\system32\FntCache.dll 21:59:50.0591 6012 FontCache - ok 21:59:50.0596 6012 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 21:59:50.0597 6012 FontCache3.0.0.0 - ok 21:59:50.0602 6012 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 21:59:50.0603 6012 FsDepends - ok 21:59:50.0607 6012 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 21:59:50.0608 6012 Fs_Rec - ok 21:59:50.0615 6012 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 21:59:50.0619 6012 fvevol - ok 21:59:50.0623 6012 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\Windows\System32\drivers\fxppm.sys 21:59:50.0624 6012 FxPPM - ok 21:59:50.0627 6012 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 21:59:50.0628 6012 gagp30kx - ok 21:59:50.0644 6012 [ 0A7B2688460070F4EE311E8F7D4D31B5 ] GDBackupSvc C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe 21:59:50.0652 6012 GDBackupSvc - ok 21:59:50.0657 6012 [ 116F4672A804DA33E1159C005AE88B9C ] GDBehave C:\Windows\system32\drivers\GDBehave.sys 21:59:50.0658 6012 GDBehave - ok 21:59:50.0675 6012 [ CC011FABE68CDC2EC9B0DEA07B8414C9 ] GDFwSvc C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe 21:59:50.0681 6012 GDFwSvc - ok 21:59:50.0686 6012 [ E02AC68F1FC31D38EAD729E00BD68C93 ] GDMnIcpt C:\Windows\system32\drivers\MiniIcpt.sys 21:59:50.0687 6012 GDMnIcpt - ok 21:59:50.0691 6012 [ 290DDB8C97249F99569B77E9DF2F76FC ] GDPkIcpt C:\Windows\system32\drivers\PktIcpt.sys 21:59:50.0692 6012 GDPkIcpt - ok 21:59:50.0698 6012 [ B7D4DF09A86A5DC98F74A2FA2875C154 ] GDScan C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe 21:59:50.0701 6012 GDScan - ok 21:59:50.0714 6012 [ 546BAE77CA5C147A222EB1A4B0E8D60D ] GDTunerSvc C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe 21:59:50.0726 6012 GDTunerSvc - ok 21:59:50.0730 6012 [ E64C471DBD91ADEB0B4C78C204326ECD ] gdwfpcd C:\Windows\system32\drivers\gdwfpcd64.sys 21:59:50.0731 6012 gdwfpcd - ok 21:59:50.0734 6012 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys 21:59:50.0736 6012 gencounter - ok 21:59:50.0738 6012 GLogin - ok 21:59:50.0742 6012 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys 21:59:50.0744 6012 GPIOClx0101 - ok 21:59:50.0759 6012 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll 21:59:50.0764 6012 gpsvc - ok 21:59:50.0769 6012 [ 9580CBF03D2EE08BD1C0D701AAE4092A ] GRD C:\Windows\system32\drivers\GRD.sys 21:59:50.0771 6012 GRD - ok 21:59:50.0775 6012 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 21:59:50.0776 6012 gupdate - ok 21:59:50.0778 6012 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 21:59:50.0779 6012 gupdatem - ok 21:59:50.0785 6012 [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 21:59:50.0788 6012 HdAudAddService - ok 21:59:50.0792 6012 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys 21:59:50.0793 6012 HDAudBus - ok 21:59:50.0796 6012 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys 21:59:50.0797 6012 HidBatt - ok 21:59:50.0800 6012 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys 21:59:50.0802 6012 HidBth - ok 21:59:50.0806 6012 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys 21:59:50.0807 6012 hidi2c - ok 21:59:50.0810 6012 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys 21:59:50.0811 6012 HidIr - ok 21:59:50.0814 6012 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll 21:59:50.0816 6012 hidserv - ok 21:59:50.0819 6012 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys 21:59:50.0820 6012 HidUsb - ok 21:59:50.0824 6012 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll 21:59:50.0826 6012 hkmsvc - ok 21:59:50.0831 6012 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll 21:59:50.0834 6012 HomeGroupListener - ok 21:59:50.0840 6012 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll 21:59:50.0843 6012 HomeGroupProvider - ok 21:59:50.0846 6012 [ 3CD18F0B3681FB267E67763CC3152D4E ] HookCentre C:\Windows\system32\drivers\HookCentre.sys 21:59:50.0847 6012 HookCentre - ok 21:59:50.0850 6012 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 21:59:50.0851 6012 HpSAMD - ok 21:59:50.0863 6012 [ F4A91D985EB9D1D2717D538F3424603C ] HTTP C:\Windows\system32\drivers\HTTP.sys 21:59:50.0871 6012 HTTP - ok 21:59:50.0875 6012 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 21:59:50.0875 6012 hwpolicy - ok 21:59:50.0878 6012 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys 21:59:50.0879 6012 hyperkbd - ok 21:59:50.0882 6012 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys 21:59:50.0883 6012 HyperVideo - ok 21:59:50.0886 6012 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys 21:59:50.0888 6012 i8042prt - ok 21:59:50.0898 6012 [ AE0C5DF7E7DA3E7AC29B64CFA8C4F044 ] iaStorA C:\Windows\system32\drivers\iaStorA.sys 21:59:50.0900 6012 iaStorA - ok 21:59:50.0904 6012 [ 777788D9B63CCEEEF2DB353BA4EDD454 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe 21:59:50.0905 6012 IAStorDataMgrSvc - ok 21:59:50.0912 6012 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 21:59:50.0916 6012 iaStorV - ok 21:59:50.0920 6012 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys 21:59:50.0921 6012 iirsp - ok 21:59:50.0934 6012 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\Windows\System32\ikeext.dll 21:59:50.0940 6012 IKEEXT - ok 21:59:50.0945 6012 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys 21:59:50.0946 6012 intelide - ok 21:59:50.0950 6012 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\Windows\System32\drivers\intelppm.sys 21:59:50.0951 6012 intelppm - ok 21:59:50.0954 6012 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 21:59:50.0956 6012 IpFilterDriver - ok 21:59:50.0967 6012 [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 21:59:50.0972 6012 iphlpsvc - ok 21:59:50.0976 6012 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys 21:59:50.0977 6012 IPMIDRV - ok 21:59:50.0982 6012 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 21:59:50.0984 6012 IPNAT - ok 21:59:50.0987 6012 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys 21:59:50.0988 6012 IRENUM - ok 21:59:50.0991 6012 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys 21:59:50.0992 6012 isapnp - ok 21:59:50.0997 6012 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys 21:59:51.0001 6012 iScsiPrt - ok 21:59:51.0005 6012 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys 21:59:51.0006 6012 kbdclass - ok 21:59:51.0009 6012 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys 21:59:51.0010 6012 kbdhid - ok 21:59:51.0013 6012 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys 21:59:51.0014 6012 kdnic - ok 21:59:51.0016 6012 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\Windows\system32\lsass.exe 21:59:51.0017 6012 KeyIso - ok 21:59:51.0021 6012 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 21:59:51.0023 6012 KSecDD - ok 21:59:51.0027 6012 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 21:59:51.0029 6012 KSecPkg - ok 21:59:51.0032 6012 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 21:59:51.0033 6012 ksthunk - ok 21:59:51.0040 6012 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll 21:59:51.0044 6012 KtmRm - ok 21:59:51.0048 6012 [ 028F31A7CC8231661A3C9C1F7EE7160D ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys 21:59:51.0049 6012 L1E - ok 21:59:51.0055 6012 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll 21:59:51.0058 6012 LanmanServer - ok 21:59:51.0063 6012 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 21:59:51.0065 6012 LanmanWorkstation - ok 21:59:51.0070 6012 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 21:59:51.0071 6012 lltdio - ok 21:59:51.0077 6012 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll 21:59:51.0080 6012 lltdsvc - ok 21:59:51.0083 6012 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll 21:59:51.0085 6012 lmhosts - ok 21:59:51.0090 6012 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 21:59:51.0092 6012 LSI_SAS - ok 21:59:51.0095 6012 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 21:59:51.0097 6012 LSI_SAS2 - ok 21:59:51.0101 6012 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 21:59:51.0103 6012 LSI_SCSI - ok 21:59:51.0107 6012 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys 21:59:51.0108 6012 LSI_SSS - ok 21:59:51.0115 6012 [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM C:\Windows\System32\lsm.dll 21:59:51.0118 6012 LSM - ok 21:59:51.0122 6012 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys 21:59:51.0124 6012 luafv - ok 21:59:51.0127 6012 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 21:59:51.0128 6012 MBAMProtector - ok 21:59:51.0135 6012 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 21:59:51.0139 6012 MBAMScheduler - ok 21:59:51.0148 6012 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 21:59:51.0152 6012 MBAMService - ok 21:59:51.0156 6012 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys 21:59:51.0157 6012 megasas - ok 21:59:51.0163 6012 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 21:59:51.0167 6012 MegaSR - ok 21:59:51.0170 6012 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\Windows\system32\mmcss.dll 21:59:51.0172 6012 MMCSS - ok 21:59:51.0175 6012 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys 21:59:51.0177 6012 Modem - ok 21:59:51.0179 6012 [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor C:\Windows\System32\drivers\monitor.sys 21:59:51.0180 6012 monitor - ok 21:59:51.0182 6012 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys 21:59:51.0184 6012 mouclass - ok 21:59:51.0187 6012 [ C0ADEBED913295803B579ED288936CBB ] mouhid C:\Windows\System32\drivers\mouhid.sys 21:59:51.0188 6012 mouhid - ok 21:59:51.0192 6012 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 21:59:51.0193 6012 mountmgr - ok 21:59:51.0197 6012 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 21:59:51.0198 6012 mpsdrv - ok 21:59:51.0210 6012 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\Windows\system32\mpssvc.dll 21:59:51.0219 6012 MpsSvc - ok 21:59:51.0224 6012 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 21:59:51.0226 6012 MRxDAV - ok 21:59:51.0232 6012 [ 93179D48066918323628CB016D8C94DC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 21:59:51.0244 6012 mrxsmb - ok 21:59:51.0250 6012 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 21:59:51.0253 6012 mrxsmb10 - ok 21:59:51.0258 6012 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 21:59:51.0261 6012 mrxsmb20 - ok 21:59:51.0265 6012 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys 21:59:51.0267 6012 MsBridge - ok 21:59:51.0271 6012 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe 21:59:51.0274 6012 MSDTC - ok 21:59:51.0279 6012 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys 21:59:51.0280 6012 Msfs - ok 21:59:51.0283 6012 [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys 21:59:51.0284 6012 msgpiowin32 - ok 21:59:51.0287 6012 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 21:59:51.0288 6012 mshidkmdf - ok 21:59:51.0291 6012 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys 21:59:51.0292 6012 mshidumdf - ok 21:59:51.0295 6012 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 21:59:51.0296 6012 msisadrv - ok 21:59:51.0300 6012 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll 21:59:51.0303 6012 MSiSCSI - ok 21:59:51.0306 6012 msiserver - ok 21:59:51.0309 6012 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 21:59:51.0310 6012 MSKSSRV - ok 21:59:51.0313 6012 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys 21:59:51.0319 6012 MsLldp - ok 21:59:51.0322 6012 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 21:59:51.0323 6012 MSPCLOCK - ok 21:59:51.0326 6012 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 21:59:51.0327 6012 MSPQM - ok 21:59:51.0333 6012 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 21:59:51.0337 6012 MsRPC - ok 21:59:51.0342 6012 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys 21:59:51.0343 6012 mssmbios - ok 21:59:51.0345 6012 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 21:59:51.0346 6012 MSTEE - ok 21:59:51.0349 6012 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys 21:59:51.0350 6012 MTConfig - ok 21:59:51.0353 6012 [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys 21:59:51.0354 6012 MTsensor - ok 21:59:51.0359 6012 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys 21:59:51.0360 6012 Mup - ok 21:59:51.0364 6012 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys 21:59:51.0365 6012 mvumis - ok 21:59:51.0373 6012 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll 21:59:51.0375 6012 napagent - ok 21:59:51.0382 6012 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 21:59:51.0387 6012 NativeWifiP - ok 21:59:51.0391 6012 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll 21:59:51.0394 6012 NcaSvc - ok 21:59:51.0397 6012 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll 21:59:51.0399 6012 NcdAutoSetup - ok 21:59:51.0410 6012 [ 03CFE4108D1DE16D6C59455B5C73319C ] NDIS C:\Windows\system32\drivers\ndis.sys 21:59:51.0419 6012 NDIS - ok 21:59:51.0425 6012 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 21:59:51.0426 6012 NdisCap - ok 21:59:51.0430 6012 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys 21:59:51.0432 6012 NdisImPlatform - ok 21:59:51.0435 6012 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 21:59:51.0436 6012 NdisTapi - ok 21:59:51.0439 6012 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 21:59:51.0441 6012 Ndisuio - ok 21:59:51.0445 6012 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 21:59:51.0447 6012 NdisWan - ok 21:59:51.0450 6012 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys 21:59:51.0451 6012 NDISWANLEGACY - ok 21:59:51.0454 6012 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 21:59:51.0456 6012 NDProxy - ok 21:59:51.0459 6012 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys 21:59:51.0461 6012 Ndu - ok 21:59:51.0464 6012 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 21:59:51.0465 6012 NetBIOS - ok 21:59:51.0470 6012 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 21:59:51.0474 6012 NetBT - ok 21:59:51.0477 6012 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\Windows\system32\lsass.exe 21:59:51.0478 6012 Netlogon - ok 21:59:51.0483 6012 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll 21:59:51.0486 6012 Netman - ok 21:59:51.0494 6012 [ 5FF52E13C72838D87DAF228EC9E92C89 ] netprofm C:\Windows\System32\netprofmsvc.dll 21:59:51.0499 6012 netprofm - ok 21:59:51.0504 6012 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 21:59:51.0509 6012 NetTcpPortSharing - ok 21:59:51.0512 6012 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 21:59:51.0514 6012 nfrd960 - ok 21:59:51.0519 6012 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\Windows\System32\nlasvc.dll 21:59:51.0524 6012 NlaSvc - ok 21:59:51.0527 6012 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys 21:59:51.0528 6012 Npfs - ok 21:59:51.0531 6012 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys 21:59:51.0532 6012 npsvctrig - ok 21:59:51.0535 6012 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll 21:59:51.0536 6012 nsi - ok 21:59:51.0539 6012 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 21:59:51.0541 6012 nsiproxy - ok 21:59:51.0561 6012 [ 76929F4A69E425911A63B407E26C2589 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 21:59:51.0568 6012 Ntfs - ok 21:59:51.0572 6012 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys 21:59:51.0573 6012 Null - ok 21:59:51.0578 6012 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys 21:59:51.0580 6012 nvraid - ok 21:59:51.0584 6012 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys 21:59:51.0586 6012 nvstor - ok 21:59:51.0591 6012 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 21:59:51.0593 6012 nv_agp - ok 21:59:51.0599 6012 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 21:59:51.0601 6012 p2pimsvc - ok 21:59:51.0608 6012 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll 21:59:51.0612 6012 p2psvc - ok 21:59:51.0616 6012 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys 21:59:51.0618 6012 Parport - ok 21:59:51.0621 6012 [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys 21:59:51.0623 6012 partmgr - ok 21:59:51.0629 6012 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll 21:59:51.0633 6012 PcaSvc - ok 21:59:51.0639 6012 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys 21:59:51.0640 6012 pci - ok 21:59:51.0643 6012 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys 21:59:51.0644 6012 pciide - ok 21:59:51.0649 6012 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 21:59:51.0651 6012 pcmcia - ok 21:59:51.0655 6012 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys 21:59:51.0656 6012 pcw - ok 21:59:51.0660 6012 [ 5253C826AD5C433CBF24E0A76F93C414 ] pdc C:\Windows\system32\drivers\pdc.sys 21:59:51.0666 6012 pdc - ok 21:59:51.0677 6012 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys 21:59:51.0684 6012 PEAUTH - ok 21:59:51.0708 6012 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 21:59:51.0730 6012 PeerDistSvc - ok 21:59:51.0741 6012 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe 21:59:51.0743 6012 PerfHost - ok 21:59:51.0761 6012 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll 21:59:51.0774 6012 pla - ok 21:59:51.0779 6012 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 21:59:51.0780 6012 PlugPlay - ok 21:59:51.0783 6012 PnkBstrA - ok 21:59:51.0786 6012 PnkBstrB - ok 21:59:51.0790 6012 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 21:59:51.0792 6012 PNRPAutoReg - ok 21:59:51.0798 6012 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 21:59:51.0800 6012 PNRPsvc - ok 21:59:51.0807 6012 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 21:59:51.0812 6012 PolicyAgent - ok 21:59:51.0817 6012 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\Windows\system32\umpo.dll 21:59:51.0819 6012 Power - ok 21:59:51.0823 6012 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 21:59:51.0825 6012 PptpMiniport - ok 21:59:51.0850 6012 [ 9D59831262CAD44E709D695FC9D5E7AB ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll 21:59:51.0897 6012 PrintNotify - ok 21:59:51.0902 6012 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\Windows\System32\drivers\processr.sys 21:59:51.0903 6012 Processor - ok 21:59:51.0908 6012 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll 21:59:51.0910 6012 ProfSvc - ok 21:59:51.0914 6012 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys 21:59:51.0916 6012 Psched - ok 21:59:51.0922 6012 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll 21:59:51.0926 6012 QWAVE - ok 21:59:51.0929 6012 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 21:59:51.0930 6012 QWAVEdrv - ok 21:59:51.0933 6012 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 21:59:51.0934 6012 RasAcd - ok 21:59:51.0937 6012 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 21:59:51.0938 6012 RasAgileVpn - ok 21:59:51.0943 6012 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll 21:59:51.0945 6012 RasAuto - ok 21:59:51.0949 6012 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 21:59:51.0950 6012 Rasl2tp - ok 21:59:51.0957 6012 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll 21:59:51.0960 6012 RasMan - ok 21:59:51.0964 6012 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 21:59:51.0965 6012 RasPppoe - ok 21:59:51.0969 6012 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 21:59:51.0970 6012 RasSstp - ok 21:59:51.0977 6012 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 21:59:51.0981 6012 rdbss - ok 21:59:51.0985 6012 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys 21:59:51.0986 6012 rdpbus - ok 21:59:51.0991 6012 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 21:59:51.0993 6012 RDPDR - ok 21:59:51.0998 6012 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 21:59:51.0999 6012 RdpVideoMiniport - ok 21:59:52.0004 6012 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 21:59:52.0007 6012 RDPWD - ok 21:59:52.0012 6012 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 21:59:52.0014 6012 rdyboost - ok 21:59:52.0018 6012 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll 21:59:52.0020 6012 RemoteAccess - ok 21:59:52.0025 6012 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll 21:59:52.0028 6012 RemoteRegistry - ok 21:59:52.0031 6012 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 21:59:52.0033 6012 RpcEptMapper - ok 21:59:52.0036 6012 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe 21:59:52.0037 6012 RpcLocator - ok 21:59:52.0048 6012 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll 21:59:52.0052 6012 RpcSs - ok 21:59:52.0056 6012 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 21:59:52.0057 6012 rspndr - ok 21:59:52.0060 6012 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys 21:59:52.0061 6012 s3cap - ok 21:59:52.0064 6012 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\Windows\system32\lsass.exe 21:59:52.0065 6012 SamSs - ok 21:59:52.0068 6012 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 21:59:52.0070 6012 sbp2port - ok 21:59:52.0075 6012 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll 21:59:52.0078 6012 SCardSvr - ok 21:59:52.0081 6012 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 21:59:52.0082 6012 scfilter - ok 21:59:52.0096 6012 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll 21:59:52.0104 6012 Schedule - ok 21:59:52.0109 6012 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll 21:59:52.0110 6012 SCPolicySvc - ok 21:59:52.0115 6012 [ 047315E75392CEA447ACC86257824C16 ] sdbus C:\Windows\System32\drivers\sdbus.sys 21:59:52.0117 6012 sdbus - ok 21:59:52.0121 6012 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll 21:59:52.0124 6012 SDRSVC - ok 21:59:52.0128 6012 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\Windows\System32\drivers\sdstor.sys 21:59:52.0129 6012 sdstor - ok 21:59:52.0132 6012 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 21:59:52.0133 6012 secdrv - ok 21:59:52.0136 6012 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll 21:59:52.0138 6012 seclogon - ok 21:59:52.0142 6012 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll 21:59:52.0144 6012 SENS - ok 21:59:52.0148 6012 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll 21:59:52.0151 6012 SensrSvc - ok 21:59:52.0154 6012 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys 21:59:52.0155 6012 SerCx - ok 21:59:52.0159 6012 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys 21:59:52.0160 6012 Serenum - ok 21:59:52.0163 6012 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys 21:59:52.0165 6012 Serial - ok 21:59:52.0168 6012 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys 21:59:52.0169 6012 sermouse - ok 21:59:52.0178 6012 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll 21:59:52.0182 6012 SessionEnv - ok 21:59:52.0185 6012 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys 21:59:52.0187 6012 sfloppy - ok 21:59:52.0194 6012 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll 21:59:52.0199 6012 SharedAccess - ok 21:59:52.0208 6012 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll 21:59:52.0212 6012 ShellHWDetection - ok 21:59:52.0215 6012 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 21:59:52.0217 6012 SiSRaid2 - ok 21:59:52.0220 6012 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 21:59:52.0222 6012 SiSRaid4 - ok 21:59:52.0227 6012 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 21:59:52.0229 6012 SNMPTRAP - ok 21:59:52.0235 6012 [ 739A739DCC5D02FE30EDEADEBD7B9898 ] spaceport C:\Windows\system32\drivers\spaceport.sys 21:59:52.0238 6012 spaceport - ok 21:59:52.0241 6012 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys 21:59:52.0242 6012 SpbCx - ok 21:59:52.0253 6012 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe 21:59:52.0268 6012 Spooler - ok 21:59:52.0309 6012 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe 21:59:52.0333 6012 sppsvc - ok 21:59:52.0341 6012 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys 21:59:52.0345 6012 srv - ok 21:59:52.0354 6012 [ 9912FDF63EC78E1977083E20DEAE4889 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 21:59:52.0360 6012 srv2 - ok 21:59:52.0366 6012 [ FD8B4F201B681C555A4AF41922C52557 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 21:59:52.0368 6012 srvnet - ok 21:59:52.0374 6012 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 21:59:52.0377 6012 SSDPSRV - ok 21:59:52.0381 6012 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll 21:59:52.0383 6012 SstpSvc - ok 21:59:52.0385 6012 Steam Client Service - ok 21:59:52.0389 6012 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys 21:59:52.0390 6012 stexstor - ok 21:59:52.0398 6012 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll 21:59:52.0405 6012 stisvc - ok 21:59:52.0409 6012 [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci C:\Windows\system32\drivers\storahci.sys 21:59:52.0410 6012 storahci - ok 21:59:52.0414 6012 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys 21:59:52.0415 6012 storflt - ok 21:59:52.0418 6012 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll 21:59:52.0419 6012 StorSvc - ok 21:59:52.0422 6012 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys 21:59:52.0424 6012 storvsc - ok 21:59:52.0428 6012 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\Windows\System32\drivers\storvsp.sys 21:59:52.0429 6012 storvsp - ok 21:59:52.0432 6012 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll 21:59:52.0434 6012 svsvc - ok 21:59:52.0437 6012 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys 21:59:52.0438 6012 swenum - ok 21:59:52.0445 6012 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll 21:59:52.0451 6012 swprv - ok 21:59:52.0466 6012 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll 21:59:52.0479 6012 SysMain - ok 21:59:52.0484 6012 [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll 21:59:52.0486 6012 SystemEventsBroker - ok 21:59:52.0489 6012 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll 21:59:52.0492 6012 TabletInputService - ok 21:59:52.0498 6012 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll 21:59:52.0502 6012 TapiSrv - ok 21:59:52.0523 6012 [ B6D52E2C38B49A156E58FF5B9C6CA8BE ] Tcpip C:\Windows\system32\drivers\tcpip.sys 21:59:52.0543 6012 Tcpip - ok 21:59:52.0565 6012 [ B6D52E2C38B49A156E58FF5B9C6CA8BE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 21:59:52.0573 6012 TCPIP6 - ok 21:59:52.0578 6012 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 21:59:52.0579 6012 tcpipreg - ok 21:59:52.0584 6012 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 21:59:52.0586 6012 tdx - ok 21:59:52.0589 6012 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys 21:59:52.0591 6012 terminpt - ok 21:59:52.0600 6012 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll 21:59:52.0608 6012 TermService - ok 21:59:52.0612 6012 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll 21:59:52.0614 6012 Themes - ok 21:59:52.0617 6012 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\Windows\system32\mmcss.dll 21:59:52.0618 6012 THREADORDER - ok 21:59:52.0622 6012 [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll 21:59:52.0625 6012 TimeBroker - ok 21:59:52.0629 6012 [ 6F0BFF80EE2A5BC841286A51F893CBAD ] TPM C:\Windows\system32\drivers\tpm.sys 21:59:52.0631 6012 TPM - ok 21:59:52.0635 6012 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll 21:59:52.0638 6012 TrkWks - ok 21:59:52.0641 6012 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 21:59:52.0647 6012 TrustedInstaller - ok 21:59:52.0651 6012 [ 59BD43714E1034A913F019413905D387 ] TS4NT C:\Windows\system32\Drivers\TS4nt.sys 21:59:52.0653 6012 TS4NT - ok 21:59:52.0660 6012 [ 85F364B166A2A66EEB022141EFF2651B ] TSNxGService C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe 21:59:52.0663 6012 TSNxGService - ok 21:59:52.0667 6012 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 21:59:52.0668 6012 TsUsbFlt - ok 21:59:52.0671 6012 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys 21:59:52.0672 6012 TsUsbGD - ok 21:59:52.0695 6012 [ 4550AC4C9320BB5AF3D46CF8D70C4B5D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe 21:59:52.0704 6012 TuneUp.UtilitiesSvc - ok 21:59:52.0707 6012 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys 21:59:52.0708 6012 TuneUpUtilitiesDrv - ok 21:59:52.0713 6012 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 21:59:52.0715 6012 tunnel - ok 21:59:52.0718 6012 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys 21:59:52.0720 6012 uagp35 - ok 21:59:52.0723 6012 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys 21:59:52.0725 6012 UASPStor - ok 21:59:52.0730 6012 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys 21:59:52.0733 6012 UCX01000 - ok 21:59:52.0739 6012 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 21:59:52.0743 6012 udfs - ok 21:59:52.0748 6012 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe 21:59:52.0750 6012 UI0Detect - ok 21:59:52.0754 6012 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 21:59:52.0755 6012 uliagpkx - ok 21:59:52.0758 6012 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys 21:59:52.0760 6012 umbus - ok 21:59:52.0763 6012 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys 21:59:52.0764 6012 UmPass - ok 21:59:52.0769 6012 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll 21:59:52.0773 6012 UmRdpService - ok 21:59:52.0781 6012 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll 21:59:52.0788 6012 upnphost - ok 21:59:52.0792 6012 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys 21:59:52.0794 6012 usbccgp - ok 21:59:52.0798 6012 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys 21:59:52.0799 6012 usbcir - ok 21:59:52.0803 6012 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\Windows\System32\drivers\usbehci.sys 21:59:52.0804 6012 usbehci - ok 21:59:52.0812 6012 [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub C:\Windows\System32\drivers\usbhub.sys 21:59:52.0816 6012 usbhub - ok 21:59:52.0824 6012 [ C5986337DE3BF63ABD9ED4D834D34B89 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys 21:59:52.0829 6012 USBHUB3 - ok 21:59:52.0832 6012 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\Windows\System32\drivers\usbohci.sys 21:59:52.0833 6012 usbohci - ok 21:59:52.0836 6012 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys 21:59:52.0837 6012 usbprint - ok 21:59:52.0840 6012 [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 21:59:52.0842 6012 usbscan - ok 21:59:52.0846 6012 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS 21:59:52.0848 6012 USBSTOR - ok 21:59:52.0851 6012 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\Windows\System32\drivers\usbuhci.sys 21:59:52.0852 6012 usbuhci - ok 21:59:52.0857 6012 [ 11C0CF143D246E2F0E9BDBF17A0CC70B ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS 21:59:52.0861 6012 USBXHCI - ok 21:59:52.0865 6012 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\Windows\system32\lsass.exe 21:59:52.0865 6012 VaultSvc - ok 21:59:52.0867 6012 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 21:59:52.0868 6012 vdrvroot - ok 21:59:52.0879 6012 [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds C:\Windows\System32\vds.exe 21:59:52.0883 6012 vds - ok 21:59:52.0887 6012 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys 21:59:52.0889 6012 VerifierExt - ok 21:59:52.0897 6012 [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys 21:59:52.0901 6012 vhdmp - ok 21:59:52.0905 6012 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys 21:59:52.0906 6012 viaide - ok 21:59:52.0911 6012 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\Windows\System32\drivers\Vid.sys 21:59:52.0914 6012 Vid - ok 21:59:52.0918 6012 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys 21:59:52.0920 6012 vmbus - ok 21:59:52.0923 6012 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys 21:59:52.0924 6012 VMBusHID - ok 21:59:52.0928 6012 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\Windows\System32\drivers\vmbusr.sys 21:59:52.0930 6012 vmbusr - ok 21:59:52.0936 6012 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll 21:59:52.0940 6012 vmicheartbeat - ok 21:59:52.0945 6012 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll 21:59:52.0947 6012 vmickvpexchange - ok 21:59:52.0952 6012 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll 21:59:52.0953 6012 vmicrdv - ok 21:59:52.0958 6012 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll 21:59:52.0960 6012 vmicshutdown - ok 21:59:52.0964 6012 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll 21:59:52.0966 6012 vmictimesync - ok 21:59:52.0970 6012 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll 21:59:52.0972 6012 vmicvss - ok 21:59:52.0976 6012 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys 21:59:52.0978 6012 volmgr - ok 21:59:52.0984 6012 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 21:59:52.0987 6012 volmgrx - ok 21:59:52.0994 6012 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys 21:59:52.0997 6012 volsnap - ok 21:59:53.0001 6012 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys 21:59:53.0002 6012 vpci - ok 21:59:53.0005 6012 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys 21:59:53.0006 6012 vpcivsp - ok 21:59:53.0011 6012 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 21:59:53.0013 6012 vsmraid - ok 21:59:53.0028 6012 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe 21:59:53.0043 6012 VSS - ok 21:59:53.0049 6012 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys 21:59:53.0052 6012 VSTXRAID - ok 21:59:53.0055 6012 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 21:59:53.0056 6012 vwifibus - ok 21:59:53.0064 6012 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll 21:59:53.0068 6012 W32Time - ok 21:59:53.0071 6012 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys 21:59:53.0072 6012 WacomPen - ok 21:59:53.0076 6012 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 21:59:53.0077 6012 Wanarp - ok 21:59:53.0080 6012 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 21:59:53.0080 6012 Wanarpv6 - ok 21:59:53.0097 6012 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe 21:59:53.0113 6012 wbengine - ok 21:59:53.0119 6012 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 21:59:53.0123 6012 WbioSrvc - ok 21:59:53.0129 6012 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll 21:59:53.0132 6012 Wcmsvc - ok 21:59:53.0139 6012 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\Windows\System32\wcncsvc.dll 21:59:53.0144 6012 wcncsvc - ok 21:59:53.0148 6012 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 21:59:53.0150 6012 WcsPlugInService - ok 21:59:53.0153 6012 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys 21:59:53.0154 6012 Wd - ok 21:59:53.0157 6012 [ 6F4B5DDDC3B86091E94BC47347A78AF7 ] WdBoot C:\Windows\system32\drivers\WdBoot.sys 21:59:53.0158 6012 WdBoot - ok 21:59:53.0169 6012 [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 21:59:53.0177 6012 Wdf01000 - ok 21:59:53.0182 6012 [ 99D404A9A0AFC4734E014EBEBAC13F8F ] WdFilter C:\Windows\system32\drivers\WdFilter.sys 21:59:53.0185 6012 WdFilter - ok 21:59:53.0189 6012 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll 21:59:53.0191 6012 WdiServiceHost - ok 21:59:53.0194 6012 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll 21:59:53.0196 6012 WdiSystemHost - ok 21:59:53.0201 6012 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll 21:59:53.0204 6012 WebClient - ok 21:59:53.0209 6012 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll 21:59:53.0213 6012 Wecsvc - ok 21:59:53.0216 6012 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll 21:59:53.0218 6012 wercplsupport - ok 21:59:53.0222 6012 [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc C:\Windows\System32\WerSvc.dll 21:59:53.0224 6012 WerSvc - ok 21:59:53.0228 6012 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys 21:59:53.0229 6012 WFPLWFS - ok 21:59:53.0233 6012 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll 21:59:53.0235 6012 WiaRpc - ok 21:59:53.0238 6012 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 21:59:53.0239 6012 WIMMount - ok 21:59:53.0241 6012 WinDefend - ok 21:59:53.0254 6012 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll 21:59:53.0258 6012 WinHttpAutoProxySvc - ok 21:59:53.0265 6012 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 21:59:53.0267 6012 Winmgmt - ok 21:59:53.0293 6012 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll 21:59:53.0319 6012 WinRM - ok 21:59:53.0338 6012 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\Windows\System32\wlansvc.dll 21:59:53.0352 6012 WlanSvc - ok 21:59:53.0372 6012 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc C:\Windows\system32\wlidsvc.dll 21:59:53.0382 6012 wlidsvc - ok 21:59:53.0386 6012 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys 21:59:53.0387 6012 WmiAcpi - ok 21:59:53.0393 6012 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 21:59:53.0396 6012 wmiApSrv - ok 21:59:53.0398 6012 WMPNetworkSvc - ok 21:59:53.0402 6012 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys 21:59:53.0404 6012 wpcfltr - ok 21:59:53.0406 6012 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll 21:59:53.0408 6012 WPCSvc - ok 21:59:53.0412 6012 [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 21:59:53.0415 6012 WPDBusEnum - ok 21:59:53.0418 6012 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys 21:59:53.0419 6012 WpdUpFltr - ok 21:59:53.0422 6012 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 21:59:53.0423 6012 ws2ifsl - ok 21:59:53.0427 6012 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\Windows\System32\wscsvc.dll 21:59:53.0429 6012 wscsvc - ok 21:59:53.0431 6012 WSearch - ok 21:59:53.0455 6012 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\Windows\System32\WSService.dll 21:59:53.0477 6012 WSService - ok 21:59:53.0506 6012 [ 79F95469604B77296346DE7DB463EA2A ] wuauserv C:\Windows\system32\wuaueng.dll 21:59:53.0524 6012 wuauserv - ok 21:59:53.0528 6012 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 21:59:53.0530 6012 WudfPf - ok 21:59:53.0534 6012 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys 21:59:53.0537 6012 WUDFRd - ok 21:59:53.0541 6012 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys 21:59:53.0541 6012 WUDFSensorLP - ok 21:59:53.0545 6012 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 21:59:53.0548 6012 wudfsvc - ok 21:59:53.0552 6012 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys 21:59:53.0553 6012 WUDFWpdFs - ok 21:59:53.0560 6012 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\Windows\System32\wwansvc.dll 21:59:53.0566 6012 WwanSvc - ok 21:59:53.0570 6012 ================ Scan global =============================== 21:59:53.0574 6012 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll 21:59:53.0579 6012 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll 21:59:53.0585 6012 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll 21:59:53.0592 6012 [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe 21:59:53.0595 6012 [Global] - ok 21:59:53.0596 6012 ================ Scan MBR ================================== 21:59:53.0598 6012 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 21:59:53.0665 6012 \Device\Harddisk0\DR0 - ok 21:59:53.0665 6012 ================ Scan VBR ================================== 21:59:53.0667 6012 [ FCA09CFF60105C83DA8E14CFA1CF0BCB ] \Device\Harddisk0\DR0\Partition1 21:59:53.0668 6012 \Device\Harddisk0\DR0\Partition1 - ok 21:59:53.0668 6012 ============================================================ 21:59:53.0668 6012 Scan finished 21:59:53.0668 6012 ============================================================ 21:59:53.0673 6008 Detected object count: 0 21:59:53.0673 6008 Actual detected object count: 0 How's going ? THX

Hello I've answered no to requested download by Antivirus. I'll try anyway your new procedure this evening ! THX !!

... ehm. I don't know if I translate right bu the above message appears in italian language (... because I'm italian) and would say something like: Avast! Antirootkit stops working. BTW ... How's going ? Thanks

Hello I've followed your procedure for frst64 and here it is log file: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-05-2013 Ran by SYSTEM at 2013-05-20 00:11:37 Run:1 Running from D:\ Boot Mode: Recovery ============================================== HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully. ==== End of Fixlog ==== Then I've tried with aswMBR.exe but after a very short while scanning stops and a message warns me AVK Anti vir stops working. Then I've to exit program !?!