I'm being attacked by a Chinese IP multiple times a day

artins90 · September 20, 2012

Hi everybody, as the title says my firewall, the one included in ESET Smart Security detects attacks from the same IP 5 or 6 times a day. My provider gives me a dynamic IP so every time I connect I get always different IPs that's why I think that there has to be something on my PC that reports my IP to the attacker, I did a full scan using ESET but it doesn't find any infected file so I ran HijackThis I attached the log, I hope you can help me and thanks for reading this.

This is the IP that attacks me http://www.ipillion.com/ip/58.218.199.227 it looks like I'm not the only one there are many people complaining about that IP, sorry for the double post but I can't find the edit button

hijackthis.log

TheDarkKnight · September 21, 2012

:welcome: I am TheDarkKnight and will be assisting you. Please ask questions if anything is unclear.

Please follow these instructions to run ComboFix.exe. Please visit this webpage for download links and instructions for running this tool:

http://www.bleepingc...to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix (CF).

Please go here to see a list of programs that need to be disabled.

**Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall.**

**Note 2: If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.**

Please include the C:\ComboFix.txt in your next reply for further review.

artins90 · September 21, 2012

Thanks for your reply, I ran combofix here is the report.

ComboFix.txt

TheDarkKnight · September 21, 2012

ComboFix 12-09-20.03 - Artins90 21/09/2012 9:22.1.4 - x64

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.39.1033.18.8096.6721 [GMT 2:00]

Eseguito da: c:\users\Artins90\Downloads\ComboFix.exe

AV: ESET Smart Security 5.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

SP: ESET Smart Security 5.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Creato nuovo punto di ripristino

.

((((((((((((((((((((((((( Files Creati Da 2012-08-21 al 2012-09-21 )))))))))))))))))))))))))))))))))))

.

2012-09-21 07:25 . 2012-09-21 07:25 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-09-18 21:43 . 2012-09-18 21:43 -------- d-----w- c:\programdata\AMD

2012-09-18 21:43 . 2012-09-18 21:43 -------- d-----w- c:\program files (x86)\AMD AVT

2012-09-13 09:26 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll

2012-09-13 09:26 . 2012-09-13 09:26 -------- d-----w- c:\program files (x86)\Microsoft Corporation

2012-09-12 07:13 . 2012-09-12 07:13 -------- d-----w- c:\programdata\Codemasters

2012-09-12 07:00 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys

2012-09-12 07:00 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys

2012-09-12 07:00 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS

2012-09-12 07:00 . 2012-08-02 17:58 574464 ----a-w- c:\windows\system32\d3d10level9.dll

2012-09-12 07:00 . 2012-08-02 16:57 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll

2012-09-12 07:00 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys

2012-09-12 07:00 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys

2012-09-11 14:39 . 2012-09-11 14:39 -------- d-sh--w- c:\programdata\DSS

2012-09-11 14:38 . 2012-09-11 14:38 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller

2012-09-11 13:39 . 2012-09-11 13:39 -------- d-----w- c:\program files (x86)\Origin Games

2012-09-11 13:29 . 2012-09-11 13:29 -------- d-----w- c:\programdata\Electronic Arts

2012-09-11 13:27 . 2012-09-11 14:33 -------- d-----w- c:\programdata\Origin

2012-09-10 23:31 . 2012-09-10 23:55 -------- d-----w- c:\program files (x86)\foobar2000

2012-09-10 20:00 . 2012-09-10 20:00 -------- d-----w- c:\programdata\Malwarebytes

2012-09-10 19:10 . 2012-09-10 19:10 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

2012-09-10 10:14 . 2012-09-10 10:14 -------- d-----w- c:\program files (x86)\Mp3tag

2012-09-08 21:55 . 2012-09-08 21:55 -------- d-----w- c:\programdata\regid.1986-12.com.adobe

2012-09-05 14:16 . 2012-09-05 14:16 -------- d-----w- c:\programdata\Apple Computer

2012-09-05 14:16 . 2010-11-29 17:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx

2012-09-05 14:16 . 2010-11-29 17:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts

2012-09-05 14:16 . 2010-11-29 17:38 180224 ----a-w- c:\windows\SysWow64\QTCF.dll

2012-09-05 14:16 . 2012-09-05 14:16 -------- d-----w- c:\program files (x86)\QT Lite

2012-09-01 21:17 . 2012-07-13 12:08 504136 ----a-w- c:\windows\system32\EasyRedirect64.dll

2012-09-01 21:17 . 2012-07-13 12:08 364360 ----a-w- c:\windows\SysWow64\EasyRedirect.dll

2012-08-31 14:43 . 2012-09-21 07:05 -------- d-sha-r- c:\programdata\Key-Base

2012-08-31 14:42 . 2012-03-25 15:55 66336 ----a-w- c:\windows\system32\drivers\VirtuWDDM.sys

2012-08-31 14:42 . 2012-08-31 14:42 -------- d-----w- c:\program files\Lucidlogix Technologies

2012-08-31 14:42 . 2012-03-25 15:55 171808 ----a-w- c:\windows\system32\appinit_dll.dll

2012-08-31 14:42 . 2012-03-25 15:53 147744 ----a-w- c:\windows\SysWow64\appinit_dll.dll

2012-08-31 00:08 . 2012-08-31 00:08 -------- d-----w- c:\windows\system32\appmgmt

2012-08-29 17:53 . 2012-09-12 22:28 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr

2012-08-29 01:07 . 2012-09-12 22:28 283032 ----a-w- c:\windows\SysWow64\PnkBstrB.exe

2012-08-29 01:07 . 2012-09-12 22:27 298016 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0

2012-08-29 01:06 . 2012-08-29 01:06 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe

2012-08-29 01:06 . 2012-08-29 01:06 840264 ----a-w- c:\windows\SysWow64\pbsvc.exe

2012-08-29 00:32 . 2012-08-29 00:32 -------- d-----w- c:\program files\Microsoft Silverlight

2012-08-29 00:32 . 2012-08-29 00:32 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2012-08-29 00:30 . 2012-08-28 14:36 -------- d-----w- c:\windows\Panther

2012-08-29 00:28 . 2012-08-29 00:28 -------- d-----w- c:\programdata\Office Genuine Advantage

2012-08-28 22:00 . 2012-08-28 22:00 -------- d-----w- c:\windows\SysWow64\xlive

2012-08-28 22:00 . 2012-08-28 22:00 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE

2012-08-28 21:59 . 2008-10-15 04:22 519000 ----a-w- c:\windows\system32\d3dx10_40.dll

2012-08-28 21:59 . 2008-10-15 04:22 452440 ----a-w- c:\windows\SysWow64\d3dx10_40.dll

2012-08-28 21:59 . 2008-10-15 04:22 2605920 ----a-w- c:\windows\system32\D3DCompiler_40.dll

2012-08-28 21:59 . 2008-10-15 04:22 2036576 ----a-w- c:\windows\SysWow64\D3DCompiler_40.dll

2012-08-28 21:59 . 2008-10-15 04:22 5631312 ----a-w- c:\windows\system32\D3DX9_40.dll

2012-08-28 21:59 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll

2012-08-28 21:41 . 2012-08-28 21:41 -------- d-----w- c:\program files (x86)\Common Files\Java

2012-08-28 21:41 . 2012-09-10 19:10 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll

2012-08-28 21:41 . 2012-09-10 19:10 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll

2012-08-28 21:41 . 2012-08-28 21:41 -------- d-----w- c:\program files (x86)\Java

2012-08-28 21:31 . 2012-08-28 21:31 -------- d-----w- c:\program files (x86)\Disktrix

2012-08-28 19:07 . 2012-08-28 19:33 -------- d-----w- c:\program files (x86)\Common Files\Steam

2012-08-28 18:51 . 2012-08-28 18:51 -------- d-----w- c:\program files\CPUID

2012-08-28 18:19 . 2012-08-28 18:19 -------- d-----w- c:\program files\Icaros

2012-08-28 18:17 . 2012-08-28 18:17 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys

2012-08-28 18:17 . 2012-08-28 18:17 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite

2012-08-28 18:16 . 2012-08-28 18:56 -------- d-----w- c:\programdata\DAEMON Tools Lite

2012-08-28 18:00 . 2012-08-28 18:00 -------- d-----w- c:\program files (x86)\madFlac-1.10

2012-08-28 18:00 . 2012-08-28 18:07 -------- d-----w- c:\program files (x86)\madVR

2012-08-28 17:58 . 2012-08-28 17:58 -------- d-----w- c:\program files (x86)\LAV Filters

2012-08-28 17:58 . 2012-08-28 17:58 -------- d-----w- c:\program files (x86)\Haali

2012-08-28 17:57 . 2012-08-28 17:57 -------- d-----w- c:\program files (x86)\MPC-HC

2012-08-28 17:39 . 2012-08-28 17:39 -------- d-----w- c:\program files\FLAC Property Handler

2012-08-28 17:37 . 2012-08-28 17:37 -------- d-----w- c:\program files (x86)\Microsoft.NET

2012-08-28 17:37 . 2012-09-18 21:43 -------- d-sh--w- c:\windows\Installer

2012-08-28 17:20 . 2012-08-28 17:28 -------- d--h--w- c:\windows\msdownld.tmp

2012-08-28 16:47 . 2012-08-28 16:47 -------- d-----w- c:\windows\SysWow64\Wat

2012-08-28 16:47 . 2012-08-28 16:47 -------- d-----w- c:\windows\system32\Wat

2012-08-28 16:41 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe

2012-08-28 16:34 . 2012-08-28 16:35 -------- d-----w- c:\program files (x86)\Internet Download Manager

2012-08-28 16:33 . 2012-08-28 16:33 -------- d-----w- c:\program files\WinRAR

2012-08-28 16:22 . 2012-08-28 16:22 -------- d-----w- c:\program files\LatencyMon

2012-08-28 16:22 . 2012-07-22 17:41 24672 ----a-w- c:\windows\system32\drivers\rspLLL64.sys

2012-08-28 16:14 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys

2012-08-28 16:14 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll

2012-08-28 16:14 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll

2012-08-28 16:14 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll

2012-08-28 16:14 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll

2012-08-28 16:14 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll

2012-08-28 16:14 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll

2012-08-28 16:12 . 2012-09-12 07:00 64462936 ----a-w- c:\windows\system32\MRT.exe

2012-08-28 16:12 . 2012-04-24 05:37 184320 ----a-w- c:\windows\system32\cryptsvc.dll

2012-08-28 16:12 . 2012-04-24 05:37 140288 ----a-w- c:\windows\system32\cryptnet.dll

2012-08-28 16:12 . 2012-04-24 05:37 1462272 ----a-w- c:\windows\system32\crypt32.dll

2012-08-28 16:12 . 2012-04-24 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll

2012-08-28 16:12 . 2012-04-24 04:36 1158656 ----a-w- c:\windows\SysWow64\crypt32.dll

2012-08-28 16:12 . 2012-04-24 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll

2012-08-28 16:12 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll

2012-08-28 16:12 . 2012-01-04 08:58 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll

2012-08-28 16:10 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe

2012-08-28 16:09 . 2011-08-27 05:37 861696 ----a-w- c:\windows\system32\oleaut32.dll

2012-08-28 16:09 . 2011-08-27 05:37 331776 ----a-w- c:\windows\system32\oleacc.dll

2012-08-28 16:09 . 2011-08-27 04:26 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll

2012-08-28 16:09 . 2011-08-27 04:26 233472 ----a-w- c:\windows\SysWow64\oleacc.dll

2012-08-28 16:06 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll

2012-08-28 16:06 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll

2012-08-28 16:06 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys

2012-08-28 16:05 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll

2012-08-28 16:05 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe

2012-08-28 16:05 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll

2012-08-28 16:05 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll

2012-08-28 16:04 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll

2012-08-28 16:04 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll

2012-08-28 16:04 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll

2012-08-28 16:04 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll

2012-08-28 16:04 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe

2012-08-28 15:58 . 2012-08-28 15:58 -------- d-----w- c:\program files\7-Zip

2012-08-28 15:55 . 2012-08-28 15:55 -------- d-----w- c:\program files\ESET

2012-08-28 15:51 . 2012-08-28 15:51 -------- d-----w- c:\programdata\ATI

2012-08-28 15:51 . 2012-08-28 15:51 0 ----a-w- c:\windows\ativpsrm.bin

2012-08-28 15:48 . 2012-08-28 15:48 -------- d-----w- c:\program files (x86)\ASM104xUSB3

2012-08-28 15:47 . 2012-08-28 15:47 -------- d-----w- c:\programdata\Intel

2012-08-28 15:47 . 2012-03-21 21:39 121344 ----a-w- c:\windows\system32\IntelOpenCL64.dll

2012-08-28 15:47 . 2012-03-21 21:33 86528 ----a-w- c:\windows\SysWow64\IntelOpenCL32.dll

2012-08-28 15:47 . 2012-08-28 15:47 -------- d-----w- c:\program files\Common Files\Intel

2012-08-28 15:47 . 2012-08-28 15:47 -------- d-----w- c:\program files (x86)\Common Files\Intel

2012-08-28 15:45 . 2012-08-28 15:45 -------- d-----w- c:\program files (x86)\AMD APP

2012-08-28 15:45 . 2012-08-28 15:45 -------- d-----w- c:\program files\Common Files\ATI Technologies

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-09-13 09:11 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll

2012-09-13 09:10 . 2009-08-18 09:24 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2012-09-05 01:40 . 2012-07-28 02:13 1120256 ----a-w- c:\windows\system32\aticfx64.dll

2012-09-05 01:27 . 2012-07-28 01:41 3127296 ----a-w- c:\windows\system32\atiumd6a.dll

2012-09-05 01:21 . 2012-07-28 01:51 7107072 ----a-w- c:\windows\system32\atidxx64.dll

2012-09-05 01:19 . 2012-07-28 01:25 6703616 ----a-w- c:\windows\system32\atiumd64.dll

2012-09-05 01:08 . 2012-07-28 01:15 595456 ----a-w- c:\windows\system32\atiadlxx.dll

2012-09-05 01:05 . 2012-07-28 01:13 129536 ----a-w- c:\windows\system32\atiuxp64.dll

2012-09-05 01:05 . 2012-07-28 01:13 103424 ----a-w- c:\windows\system32\atiu9p64.dll

2012-07-28 02:10 . 2012-07-28 02:10 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll

2012-07-27 20:47 . 2012-07-27 20:47 187392 ----a-w- c:\windows\system32\clinfo.exe

2012-07-27 20:47 . 2012-07-27 20:47 75776 ----a-w- c:\windows\system32\OpenVideo64.dll

2012-07-27 20:47 . 2012-07-27 20:47 65024 ----a-w- c:\windows\SysWow64\OpenVideo.dll

2012-07-27 20:47 . 2012-07-27 20:47 63488 ----a-w- c:\windows\system32\OVDecode64.dll

2012-07-27 20:47 . 2012-07-27 20:47 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll

2012-07-27 20:46 . 2012-07-27 20:46 16464896 ----a-w- c:\windows\system32\amdocl64.dll

2012-07-27 20:46 . 2012-07-27 20:46 13013504 ----a-w- c:\windows\SysWow64\amdocl.dll

2012-07-27 20:44 . 2012-07-27 20:44 54784 ----a-w- c:\windows\system32\OpenCL.dll

2012-07-27 20:44 . 2012-07-27 20:44 50176 ----a-w- c:\windows\SysWow64\OpenCL.dll

2012-07-03 15:32 . 2012-07-03 15:32 106344 ----a-w- c:\windows\system32\UDBDef.exe

2012-07-02 10:51 . 2012-07-02 10:51 844600 ----a-w- c:\windows\system32\ncs2dmix.dll

2012-07-02 10:51 . 2012-07-02 10:51 798520 ----a-w- c:\windows\system32\accesor.dll

2012-07-02 10:40 . 2012-07-02 10:40 217912 ----a-w- c:\windows\system32\ncs2instutility.dll

2012-07-02 10:35 . 2012-07-02 10:35 3110200 ----a-w- c:\windows\system32\ncscolib.dll

2012-06-27 15:26 . 2012-06-27 15:26 203264 ----a-w- c:\windows\system32\Ncs2Setp.dll

.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))

.

*Nota* i valori vuoti & legittimi/default non sono visualizzati.

REGEDIT4

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" [2012-06-07 56128]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-06 642216]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=c:\windows\SysWOW64\appinit_dll.dll

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-05-30 13632]

R3 ALSysIO;ALSysIO;c:\users\Artins90\AppData\Local\Temp\ALSysIO64.sys [x]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]

R3 cphs;Intel® Content Protection HECI Service;c:\windows\SysWow64\IntelCpHeciSvc.exe [2012-05-21 276288]

R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]

R3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-21 20992]

R3 rspLLL;rspLLL;c:\windows\system32\DRIVERS\rspLLL64.sys [2012-07-22 24672]

R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]

R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-21 34816]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]

R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-08-28 1255736]

S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-28 283200]

S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]

S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]

S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-05 239616]

S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]

S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2012-08-02 158944]

S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-09-05 10692096]

S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-09-05 459264]

S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-09-14 129000]

S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-09-14 394216]

S3 e1cexpress;Intel® PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\DRIVERS\e1c62x64.sys [2012-03-16 514736]

S3 MEIx64;Intel® Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]

S3 VirtuWDDM;VirtuWDDM;c:\windows\system32\DRIVERS\VirtuWDDM.sys [2012-03-25 66336]

.

Contenuto della cartella 'Scheduled Tasks'

.

2012-09-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2471622516-2608444709-4184588894-1000Core.job

- c:\users\Artins90\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-28 16:06]

.

2012-09-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2471622516-2608444709-4184588894-1000UA.job

- c:\users\Artins90\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-28 16:06]

.

--------- X64 Entries -----------

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]

@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"

[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]

2012-02-08 00:49 23432 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-05-21 170304]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-05-21 398656]

"Persistence"="c:\windows\system32\igfxpers.exe" [2012-05-21 440128]

"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]

"VIRTU MVP"="c:\program files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe" [2012-03-25 3008288]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x1

"AppInit_DLLs"=c:\windows\System32\appinit_dll.dll

.

------- Scansione supplementare -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.it/

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: Download all links with IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm

IE: Download with IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm

TCP: DhcpNameServer = 192.168.1.1

.

- - - - CHIAVI ORFANE RIMOSSE - - - -

.

HKLM-Run-Windows Defender - c:\program files (x86)\Windows Defender\MSASCui.exe

AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe

.

--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_265_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_265_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_265_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_265_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_265.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Altri processi in esecuzione ------------------------

.

c:\program files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE

c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

.

**************************************************************************

.

Ora fine scansione: 2012-09-21 09:27:50 - Il pc è stato riavviato

ComboFix-quarantined-files.txt 2012-09-21 07:27

.

Pre-Run: 861.144.444.928 bytes free

Post-Run: 861.332.946.944 bytes free

.

- - End Of File - - AF212B7A6D253671B3CBD28B0E00FF7B

TheDarkKnight · September 21, 2012

Hello artins90.

Please post the contents of the logs, rather than attaching them. Thanks!

Please download to your Desktop:

TDSSKiller.zip from here and extract it (right click on it => "Extract here").

>>> TDSSKiller: Double-click on TDSSKiller.exe to run the application.

Click on the Start Scan button and wait for the scan and disinfection process to be over.
If an infected file is detected, the default action will be Cure. Instead, choose SKIP, then click on Continue
If a suspicious file is detected, the default action will be Skip, click on Continue
If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.

Then, please download MBRCheck by a_d_13 to your Desktop from one of these locations:

http://ad13.geekstogo.com/MBRCheck.exe

http://download.blee...al/MBRCheck.exe

http://www.kernelmod...fo/MBRCheck.exe

Close all opened programs/ windows and double-click on MBRCheck.exe.

It will produce a log file saved automatically on your Desktop as "MBRCheck_[Date]_[Time].txt".

Press the "Enter" key to close the MBRCheck window and post the contents of the log file.

==========

In your reply please post the logs from TDSSKiller and MBRCheck.

artins90 · September 21, 2012

The TDSS killer didn't find anything here are the reports

TDSS

11:15:00.0202 4660 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24

11:15:02.0215 4660 ============================================================

11:15:02.0215 4660 Current date / time: 2012/09/21 11:15:02.0215

11:15:02.0215 4660 SystemInfo:

11:15:02.0215 4660

11:15:02.0215 4660 OS Version: 6.1.7601 ServicePack: 1.0

11:15:02.0215 4660 Product type: Workstation

11:15:02.0215 4660 ComputerName: ARTINS90-PC

11:15:02.0215 4660 UserName: Artins90

11:15:02.0215 4660 Windows directory: C:\Windows

11:15:02.0215 4660 System windows directory: C:\Windows

11:15:02.0215 4660 Running under WOW64

11:15:02.0215 4660 Processor architecture: Intel x64

11:15:02.0215 4660 Number of processors: 4

11:15:02.0215 4660 Page size: 0x1000

11:15:02.0215 4660 Boot type: Normal boot

11:15:02.0215 4660 ============================================================

11:15:02.0589 4660 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

11:15:02.0589 4660 ============================================================

11:15:02.0589 4660 \Device\Harddisk0\DR0:

11:15:02.0589 4660 MBR partitions:

11:15:02.0589 4660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

11:15:02.0589 4660 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000

11:15:02.0589 4660 ============================================================

11:15:02.0620 4660 C: <-> \Device\Harddisk0\DR0\Partition2

11:15:02.0620 4660 ============================================================

11:15:02.0620 4660 Initialize success

11:15:02.0620 4660 ============================================================

11:15:11.0163 4784 ============================================================

11:15:11.0163 4784 Scan started

11:15:11.0163 4784 Mode: Manual;

11:15:11.0163 4784 ============================================================

11:15:11.0319 4784 ================ Scan system memory ========================

11:15:11.0319 4784 System memory - ok

11:15:11.0319 4784 ================ Scan services =============================

11:15:11.0429 4784 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

11:15:11.0429 4784 1394ohci - ok

11:15:11.0444 4784 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys

11:15:11.0444 4784 ACPI - ok

11:15:11.0444 4784 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

11:15:11.0444 4784 AcpiPmi - ok

11:15:11.0460 4784 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

11:15:11.0460 4784 adp94xx - ok

11:15:11.0475 4784 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys

11:15:11.0475 4784 adpahci - ok

11:15:11.0491 4784 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

11:15:11.0491 4784 adpu320 - ok

11:15:11.0507 4784 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

11:15:11.0507 4784 AeLookupSvc - ok

11:15:11.0553 4784 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys

11:15:11.0553 4784 AFD - ok

11:15:11.0569 4784 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys

11:15:11.0569 4784 agp440 - ok

11:15:11.0585 4784 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe

11:15:11.0585 4784 ALG - ok

11:15:11.0600 4784 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys

11:15:11.0600 4784 aliide - ok

11:15:11.0631 4784 ALSysIO - ok

11:15:11.0647 4784 [ 7DAC7E6DB763DAE2A9FC87580F7AFD1C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

11:15:11.0663 4784 AMD External Events Utility - ok

11:15:11.0663 4784 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys

11:15:11.0663 4784 amdide - ok

11:15:11.0663 4784 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

11:15:11.0663 4784 AmdK8 - ok

11:15:11.0787 4784 [ CF0E8460FA9943ADED7265A329810A28 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys

11:15:11.0834 4784 amdkmdag - ok

11:15:11.0850 4784 [ BD682672DEA28500F8A3AEF88D455656 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys

11:15:11.0850 4784 amdkmdap - ok

11:15:11.0865 4784 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys

11:15:11.0865 4784 AmdPPM - ok

11:15:11.0912 4784 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys

11:15:11.0912 4784 amdsata - ok

11:15:11.0912 4784 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys

11:15:11.0928 4784 amdsbs - ok

11:15:11.0928 4784 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys

11:15:11.0928 4784 amdxata - ok

11:15:11.0943 4784 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys

11:15:11.0943 4784 AppID - ok

11:15:11.0943 4784 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll

11:15:11.0943 4784 AppIDSvc - ok

11:15:11.0959 4784 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll

11:15:11.0959 4784 Appinfo - ok

11:15:11.0990 4784 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll

11:15:11.0990 4784 AppMgmt - ok

11:15:12.0006 4784 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys

11:15:12.0006 4784 arc - ok

11:15:12.0006 4784 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys

11:15:12.0006 4784 arcsas - ok

11:15:12.0021 4784 [ 6D9C024AA8F24065A6DBEAB1F431D854 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys

11:15:12.0021 4784 asmthub3 - ok

11:15:12.0053 4784 [ ECAD22F15D8F17CC04F24E9A6FB00F2F ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys

11:15:12.0053 4784 asmtxhci - ok

11:15:12.0115 4784 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

11:15:12.0115 4784 aspnet_state - ok

11:15:12.0162 4784 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

11:15:12.0162 4784 AsyncMac - ok

11:15:12.0177 4784 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys

11:15:12.0177 4784 atapi - ok

11:15:12.0193 4784 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys

11:15:12.0193 4784 AtiHDAudioService - ok

11:15:12.0209 4784 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

11:15:12.0209 4784 AudioEndpointBuilder - ok

11:15:12.0224 4784 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll

11:15:12.0224 4784 AudioSrv - ok

11:15:12.0240 4784 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll

11:15:12.0240 4784 AxInstSV - ok

11:15:12.0271 4784 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys

11:15:12.0271 4784 b06bdrv - ok

11:15:12.0287 4784 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

11:15:12.0302 4784 b57nd60a - ok

11:15:12.0318 4784 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll

11:15:12.0318 4784 BDESVC - ok

11:15:12.0333 4784 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys

11:15:12.0333 4784 Beep - ok

11:15:12.0365 4784 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll

11:15:12.0365 4784 BFE - ok

11:15:12.0443 4784 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll

11:15:12.0458 4784 BITS - ok

11:15:12.0474 4784 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

11:15:12.0474 4784 blbdrive - ok

11:15:12.0505 4784 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

11:15:12.0505 4784 bowser - ok

11:15:12.0505 4784 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys

11:15:12.0505 4784 BrFiltLo - ok

11:15:12.0505 4784 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys

11:15:12.0505 4784 BrFiltUp - ok

11:15:12.0583 4784 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys

11:15:12.0583 4784 BridgeMP - ok

11:15:12.0614 4784 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll

11:15:12.0614 4784 Browser - ok

11:15:12.0630 4784 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys

11:15:12.0630 4784 Brserid - ok

11:15:12.0645 4784 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

11:15:12.0645 4784 BrSerWdm - ok

11:15:12.0645 4784 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

11:15:12.0645 4784 BrUsbMdm - ok

11:15:12.0645 4784 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

11:15:12.0645 4784 BrUsbSer - ok

11:15:12.0645 4784 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys

11:15:12.0645 4784 BTHMODEM - ok

11:15:12.0661 4784 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll

11:15:12.0661 4784 bthserv - ok

11:15:12.0677 4784 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

11:15:12.0677 4784 cdfs - ok

11:15:12.0677 4784 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

11:15:12.0677 4784 cdrom - ok

11:15:12.0692 4784 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll

11:15:12.0692 4784 CertPropSvc - ok

11:15:12.0708 4784 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys

11:15:12.0708 4784 circlass - ok

11:15:12.0723 4784 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys

11:15:12.0723 4784 CLFS - ok

11:15:12.0739 4784 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

11:15:12.0739 4784 clr_optimization_v2.0.50727_32 - ok

11:15:12.0770 4784 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

11:15:12.0770 4784 clr_optimization_v2.0.50727_64 - ok

11:15:12.0817 4784 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

11:15:12.0817 4784 clr_optimization_v4.0.30319_32 - ok

11:15:12.0833 4784 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

11:15:12.0833 4784 clr_optimization_v4.0.30319_64 - ok

11:15:12.0833 4784 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys

11:15:12.0833 4784 CmBatt - ok

11:15:12.0848 4784 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys

11:15:12.0848 4784 cmdide - ok

11:15:12.0879 4784 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys

11:15:12.0879 4784 CNG - ok

11:15:12.0879 4784 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys

11:15:12.0879 4784 Compbatt - ok

11:15:12.0879 4784 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys

11:15:12.0879 4784 CompositeBus - ok

11:15:12.0879 4784 COMSysApp - ok

11:15:12.0957 4784 [ 474425A857CD259222F649922DB45870 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe

11:15:12.0957 4784 cphs - ok

11:15:12.0973 4784 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

11:15:12.0973 4784 crcdisk - ok

11:15:12.0973 4784 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll

11:15:12.0973 4784 CryptSvc - ok

11:15:13.0020 4784 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys

11:15:13.0020 4784 CSC - ok

11:15:13.0035 4784 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll

11:15:13.0035 4784 CscService - ok

11:15:13.0051 4784 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll

11:15:13.0051 4784 DcomLaunch - ok

11:15:13.0067 4784 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll

11:15:13.0067 4784 defragsvc - ok

11:15:13.0082 4784 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

11:15:13.0082 4784 DfsC - ok

11:15:13.0098 4784 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll

11:15:13.0098 4784 Dhcp - ok

11:15:13.0098 4784 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys

11:15:13.0098 4784 discache - ok

11:15:13.0098 4784 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys

11:15:13.0098 4784 Disk - ok

11:15:13.0129 4784 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys

11:15:13.0129 4784 dmvsc - ok

11:15:13.0145 4784 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll

11:15:13.0145 4784 Dnscache - ok

11:15:13.0191 4784 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll

11:15:13.0191 4784 dot3svc - ok

11:15:13.0191 4784 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll

11:15:13.0207 4784 DPS - ok

11:15:13.0223 4784 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

11:15:13.0223 4784 drmkaud - ok

11:15:13.0269 4784 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys

11:15:13.0269 4784 dtsoftbus01 - ok

11:15:13.0301 4784 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

11:15:13.0301 4784 DXGKrnl - ok

11:15:13.0347 4784 [ E53D32044F4A03D64D6C91CF0A22A77E ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys

11:15:13.0347 4784 e1cexpress - ok

11:15:13.0363 4784 [ D00EAE9C735A7DEE8049E50D73D25434 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys

11:15:13.0363 4784 eamonm - ok

11:15:13.0379 4784 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll

11:15:13.0379 4784 EapHost - ok

11:15:13.0441 4784 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys

11:15:13.0457 4784 ebdrv - ok

11:15:13.0472 4784 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe

11:15:13.0472 4784 EFS - ok

11:15:13.0488 4784 [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys

11:15:13.0488 4784 ehdrv - ok

11:15:13.0535 4784 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

11:15:13.0535 4784 ehRecvr - ok

11:15:13.0550 4784 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe

11:15:13.0550 4784 ehSched - ok

11:15:13.0613 4784 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe

11:15:13.0613 4784 ekrn - ok

11:15:13.0659 4784 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys

11:15:13.0659 4784 elxstor - ok

11:15:13.0706 4784 [ 587F0F4145A1536A6E37EFD769B7665F ] epfw C:\Windows\system32\DRIVERS\epfw.sys

11:15:13.0706 4784 epfw - ok

11:15:13.0722 4784 [ D2F812358EE8EE23CBB5C4DAFFB5B819 ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys

11:15:13.0722 4784 EpfwLWF - ok

11:15:13.0737 4784 [ 34BF55D69AB74D14C7E7A17259CB7DF8 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys

11:15:13.0737 4784 epfwwfp - ok

11:15:13.0753 4784 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys

11:15:13.0753 4784 ErrDev - ok

11:15:13.0769 4784 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll

11:15:13.0769 4784 EventSystem - ok

11:15:13.0784 4784 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys

11:15:13.0784 4784 exfat - ok

11:15:13.0784 4784 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys

11:15:13.0784 4784 fastfat - ok

11:15:13.0800 4784 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys

11:15:13.0800 4784 fdc - ok

11:15:13.0815 4784 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll

11:15:13.0815 4784 fdPHost - ok

11:15:13.0815 4784 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll

11:15:13.0815 4784 FDResPub - ok

11:15:13.0831 4784 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

11:15:13.0831 4784 FileInfo - ok

11:15:13.0831 4784 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

11:15:13.0831 4784 Filetrace - ok

11:15:13.0847 4784 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys

11:15:13.0847 4784 flpydisk - ok

11:15:13.0862 4784 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

11:15:13.0862 4784 FltMgr - ok

11:15:13.0893 4784 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll

11:15:13.0909 4784 FontCache - ok

11:15:13.0940 4784 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

11:15:13.0940 4784 FontCache3.0.0.0 - ok

11:15:13.0956 4784 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

11:15:13.0956 4784 FsDepends - ok

11:15:13.0987 4784 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

11:15:13.0987 4784 Fs_Rec - ok

11:15:13.0987 4784 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

11:15:13.0987 4784 fvevol - ok

11:15:14.0003 4784 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

11:15:14.0003 4784 gagp30kx - ok

11:15:14.0018 4784 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll

11:15:14.0018 4784 gpsvc - ok

11:15:14.0049 4784 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

11:15:14.0049 4784 hcw85cir - ok

11:15:14.0065 4784 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

11:15:14.0065 4784 HdAudAddService - ok

11:15:14.0065 4784 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

11:15:14.0065 4784 HDAudBus - ok

11:15:14.0081 4784 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys

11:15:14.0081 4784 HidBatt - ok

11:15:14.0081 4784 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys

11:15:14.0081 4784 HidBth - ok

11:15:14.0096 4784 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys

11:15:14.0096 4784 HidIr - ok

11:15:14.0096 4784 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll

11:15:14.0096 4784 hidserv - ok

11:15:14.0112 4784 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

11:15:14.0112 4784 HidUsb - ok

11:15:14.0127 4784 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll

11:15:14.0127 4784 hkmsvc - ok

11:15:14.0143 4784 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

11:15:14.0143 4784 HomeGroupListener - ok

11:15:14.0159 4784 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

11:15:14.0159 4784 HomeGroupProvider - ok

11:15:14.0174 4784 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

11:15:14.0174 4784 HpSAMD - ok

11:15:14.0190 4784 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys

11:15:14.0205 4784 HTTP - ok

11:15:14.0205 4784 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

11:15:14.0205 4784 hwpolicy - ok

11:15:14.0221 4784 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

11:15:14.0221 4784 i8042prt - ok

11:15:14.0252 4784 [ CCFA835960E35F30D28A868E0B3B8722 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys

11:15:14.0252 4784 iaStor - ok

11:15:14.0299 4784 [ 1F35EFEC56CD1BF62435EAF97EABC3B3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

11:15:14.0299 4784 IAStorDataMgrSvc - ok

11:15:14.0330 4784 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

11:15:14.0330 4784 iaStorV - ok

11:15:14.0361 4784 [ F1458110073AD3B6C5DC3C592A36D1D0 ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys

11:15:14.0361 4784 IDMWFP - ok

11:15:14.0408 4784 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

11:15:14.0408 4784 idsvc - ok

11:15:14.0595 4784 [ 72A89FFAB63239771DEE03C15AE7CAFD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys

11:15:14.0642 4784 igfx - ok

11:15:14.0658 4784 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys

11:15:14.0658 4784 iirsp - ok

11:15:14.0673 4784 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll

11:15:14.0673 4784 IKEEXT - ok

11:15:14.0736 4784 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

11:15:14.0751 4784 IntcAzAudAddService - ok

11:15:14.0783 4784 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys

11:15:14.0783 4784 IntcDAud - ok

11:15:14.0798 4784 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys

11:15:14.0798 4784 intelide - ok

11:15:14.0798 4784 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

11:15:14.0814 4784 intelppm - ok

11:15:14.0814 4784 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll

11:15:14.0814 4784 IPBusEnum - ok

11:15:14.0829 4784 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

11:15:14.0829 4784 IpFilterDriver - ok

11:15:14.0845 4784 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

11:15:14.0845 4784 iphlpsvc - ok

11:15:14.0845 4784 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

11:15:14.0845 4784 IPMIDRV - ok

11:15:14.0845 4784 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys

11:15:14.0845 4784 IPNAT - ok

11:15:14.0845 4784 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys

11:15:14.0845 4784 IRENUM - ok

11:15:14.0861 4784 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys

11:15:14.0861 4784 isapnp - ok

11:15:14.0876 4784 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

11:15:14.0876 4784 iScsiPrt - ok

11:15:14.0892 4784 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

11:15:14.0892 4784 kbdclass - ok

11:15:14.0907 4784 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

11:15:14.0907 4784 kbdhid - ok

11:15:14.0939 4784 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe

11:15:14.0939 4784 KeyIso - ok

11:15:14.0970 4784 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

11:15:14.0970 4784 KSecDD - ok

11:15:14.0985 4784 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

11:15:14.0985 4784 KSecPkg - ok

11:15:15.0001 4784 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

11:15:15.0001 4784 ksthunk - ok

11:15:15.0017 4784 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll

11:15:15.0017 4784 KtmRm - ok

11:15:15.0048 4784 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll

11:15:15.0048 4784 LanmanServer - ok

11:15:15.0079 4784 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

11:15:15.0079 4784 LanmanWorkstation - ok

11:15:15.0095 4784 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

11:15:15.0095 4784 lltdio - ok

11:15:15.0110 4784 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll

11:15:15.0110 4784 lltdsvc - ok

11:15:15.0126 4784 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll

11:15:15.0126 4784 lmhosts - ok

11:15:15.0157 4784 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

11:15:15.0157 4784 LSI_FC - ok

11:15:15.0157 4784 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

11:15:15.0157 4784 LSI_SAS - ok

11:15:15.0173 4784 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys

11:15:15.0173 4784 LSI_SAS2 - ok

11:15:15.0188 4784 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

11:15:15.0188 4784 LSI_SCSI - ok

11:15:15.0204 4784 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys

11:15:15.0204 4784 luafv - ok

11:15:15.0219 4784 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

11:15:15.0219 4784 Mcx2Svc - ok

11:15:15.0235 4784 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys

11:15:15.0235 4784 megasas - ok

11:15:15.0251 4784 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys

11:15:15.0251 4784 MegaSR - ok

11:15:15.0266 4784 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys

11:15:15.0266 4784 MEIx64 - ok

11:15:15.0297 4784 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll

11:15:15.0297 4784 MMCSS - ok

11:15:15.0313 4784 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys

11:15:15.0313 4784 Modem - ok

11:15:15.0329 4784 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys

11:15:15.0329 4784 monitor - ok

11:15:15.0329 4784 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

11:15:15.0329 4784 mouclass - ok

11:15:15.0344 4784 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

11:15:15.0344 4784 mouhid - ok

11:15:15.0360 4784 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

11:15:15.0360 4784 mountmgr - ok

11:15:15.0375 4784 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys

11:15:15.0375 4784 mpio - ok

11:15:15.0391 4784 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

11:15:15.0391 4784 mpsdrv - ok

11:15:15.0407 4784 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll

11:15:15.0422 4784 MpsSvc - ok

11:15:15.0438 4784 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

11:15:15.0438 4784 MRxDAV - ok

11:15:15.0453 4784 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

11:15:15.0453 4784 mrxsmb - ok

11:15:15.0469 4784 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

11:15:15.0469 4784 mrxsmb10 - ok

11:15:15.0485 4784 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

11:15:15.0485 4784 mrxsmb20 - ok

11:15:15.0485 4784 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys

11:15:15.0500 4784 msahci - ok

11:15:15.0500 4784 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys

11:15:15.0500 4784 msdsm - ok

11:15:15.0516 4784 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe

11:15:15.0516 4784 MSDTC - ok

11:15:15.0547 4784 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys

11:15:15.0547 4784 Msfs - ok

11:15:15.0547 4784 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

11:15:15.0547 4784 mshidkmdf - ok

11:15:15.0563 4784 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

11:15:15.0563 4784 msisadrv - ok

11:15:15.0594 4784 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

11:15:15.0594 4784 MSiSCSI - ok

11:15:15.0594 4784 msiserver - ok

11:15:15.0625 4784 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

11:15:15.0625 4784 MSKSSRV - ok

11:15:15.0625 4784 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

11:15:15.0625 4784 MSPCLOCK - ok

11:15:15.0625 4784 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

11:15:15.0625 4784 MSPQM - ok

11:15:15.0641 4784 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

11:15:15.0641 4784 MsRPC - ok

11:15:15.0656 4784 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

11:15:15.0656 4784 mssmbios - ok

11:15:15.0672 4784 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

11:15:15.0672 4784 MSTEE - ok

11:15:15.0672 4784 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys

11:15:15.0672 4784 MTConfig - ok

11:15:15.0687 4784 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys

11:15:15.0687 4784 Mup - ok

11:15:15.0719 4784 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll

11:15:15.0719 4784 napagent - ok

11:15:15.0734 4784 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

11:15:15.0734 4784 NativeWifiP - ok

11:15:15.0781 4784 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys

11:15:15.0781 4784 NDIS - ok

11:15:15.0797 4784 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

11:15:15.0797 4784 NdisCap - ok

11:15:15.0812 4784 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

11:15:15.0812 4784 NdisTapi - ok

11:15:15.0828 4784 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

11:15:15.0828 4784 Ndisuio - ok

11:15:15.0843 4784 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

11:15:15.0843 4784 NdisWan - ok

11:15:15.0843 4784 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

11:15:15.0843 4784 NDProxy - ok

11:15:15.0859 4784 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

11:15:15.0859 4784 NetBIOS - ok

11:15:15.0859 4784 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

11:15:15.0875 4784 NetBT - ok

11:15:15.0890 4784 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe

11:15:15.0890 4784 Netlogon - ok

11:15:15.0921 4784 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll

11:15:15.0921 4784 Netman - ok

11:15:15.0953 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

11:15:15.0953 4784 NetMsmqActivator - ok

11:15:15.0968 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

11:15:15.0968 4784 NetPipeActivator - ok

11:15:15.0999 4784 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll

11:15:15.0999 4784 netprofm - ok

11:15:15.0999 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

11:15:15.0999 4784 NetTcpActivator - ok

11:15:16.0015 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

11:15:16.0015 4784 NetTcpPortSharing - ok

11:15:16.0031 4784 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

11:15:16.0031 4784 nfrd960 - ok

11:15:16.0046 4784 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll

11:15:16.0046 4784 NlaSvc - ok

11:15:16.0062 4784 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys

11:15:16.0062 4784 Npfs - ok

11:15:16.0077 4784 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll

11:15:16.0077 4784 nsi - ok

11:15:16.0093 4784 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

11:15:16.0093 4784 nsiproxy - ok

11:15:16.0124 4784 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

11:15:16.0140 4784 Ntfs - ok

11:15:16.0155 4784 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys

11:15:16.0155 4784 Null - ok

11:15:16.0202 4784 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys

11:15:16.0202 4784 nvraid - ok

11:15:16.0218 4784 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys

11:15:16.0218 4784 nvstor - ok

11:15:16.0218 4784 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

11:15:16.0233 4784 nv_agp - ok

11:15:16.0233 4784 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

11:15:16.0233 4784 ohci1394 - ok

11:15:16.0249 4784 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

11:15:16.0249 4784 p2pimsvc - ok

11:15:16.0265 4784 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll

11:15:16.0280 4784 p2psvc - ok

11:15:16.0280 4784 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys

11:15:16.0280 4784 Parport - ok

11:15:16.0296 4784 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys

11:15:16.0296 4784 partmgr - ok

11:15:16.0311 4784 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll

11:15:16.0311 4784 PcaSvc - ok

11:15:16.0327 4784 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys

11:15:16.0327 4784 pci - ok

11:15:16.0343 4784 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys

11:15:16.0343 4784 pciide - ok

11:15:16.0358 4784 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

11:15:16.0358 4784 pcmcia - ok

11:15:16.0374 4784 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys

11:15:16.0374 4784 pcw - ok

11:15:16.0405 4784 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys

11:15:16.0421 4784 PEAUTH - ok

11:15:16.0452 4784 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll

11:15:16.0467 4784 PeerDistSvc - ok

11:15:16.0514 4784 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe

11:15:16.0514 4784 PerfHost - ok

11:15:16.0545 4784 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll

11:15:16.0561 4784 pla - ok

11:15:16.0592 4784 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

11:15:16.0592 4784 PlugPlay - ok

11:15:16.0623 4784 PnkBstrA - ok

11:15:16.0623 4784 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

11:15:16.0639 4784 PNRPAutoReg - ok

11:15:16.0639 4784 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

11:15:16.0639 4784 PNRPsvc - ok

11:15:16.0686 4784 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

11:15:16.0686 4784 PolicyAgent - ok

11:15:16.0701 4784 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll

11:15:16.0701 4784 Power - ok

11:15:16.0733 4784 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

11:15:16.0733 4784 PptpMiniport - ok

11:15:16.0733 4784 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys

11:15:16.0733 4784 Processor - ok

11:15:16.0764 4784 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll

11:15:16.0764 4784 ProfSvc - ok

11:15:16.0779 4784 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe

11:15:16.0779 4784 ProtectedStorage - ok

11:15:16.0795 4784 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys

11:15:16.0795 4784 Psched - ok

11:15:16.0826 4784 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys

11:15:16.0842 4784 ql2300 - ok

11:15:16.0857 4784 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

11:15:16.0857 4784 ql40xx - ok

11:15:16.0873 4784 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll

11:15:16.0873 4784 QWAVE - ok

11:15:16.0889 4784 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

11:15:16.0889 4784 QWAVEdrv - ok

11:15:16.0904 4784 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

11:15:16.0904 4784 RasAcd - ok

11:15:16.0920 4784 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

11:15:16.0920 4784 RasAgileVpn - ok

11:15:16.0935 4784 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll

11:15:16.0935 4784 RasAuto - ok

11:15:16.0935 4784 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

11:15:16.0935 4784 Rasl2tp - ok

11:15:16.0951 4784 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll

11:15:16.0951 4784 RasMan - ok

11:15:16.0967 4784 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

11:15:16.0967 4784 RasPppoe - ok

11:15:16.0982 4784 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

11:15:16.0982 4784 RasSstp - ok

11:15:16.0982 4784 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

11:15:16.0982 4784 rdbss - ok

11:15:16.0982 4784 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

11:15:16.0998 4784 rdpbus - ok

11:15:16.0998 4784 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

11:15:16.0998 4784 RDPCDD - ok

11:15:17.0013 4784 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

11:15:17.0013 4784 RDPDR - ok

11:15:17.0045 4784 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

11:15:17.0045 4784 RDPENCDD - ok

11:15:17.0045 4784 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

11:15:17.0045 4784 RDPREFMP - ok

11:15:17.0076 4784 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

11:15:17.0076 4784 RdpVideoMiniport - ok

11:15:17.0091 4784 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

11:15:17.0091 4784 RDPWD - ok

11:15:17.0091 4784 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

11:15:17.0107 4784 rdyboost - ok

11:15:17.0107 4784 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll

11:15:17.0107 4784 RemoteAccess - ok

11:15:17.0138 4784 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll

11:15:17.0154 4784 RemoteRegistry - ok

11:15:17.0169 4784 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

11:15:17.0169 4784 RpcEptMapper - ok

11:15:17.0201 4784 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe

11:15:17.0201 4784 RpcLocator - ok

11:15:17.0216 4784 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll

11:15:17.0216 4784 RpcSs - ok

11:15:17.0232 4784 [ 67E0DC50C7F5BB34491DB6B474A672FE ] rspLLL C:\Windows\system32\DRIVERS\rspLLL64.sys

11:15:17.0232 4784 rspLLL - ok

11:15:17.0247 4784 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

11:15:17.0247 4784 rspndr - ok

11:15:17.0263 4784 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys

11:15:17.0263 4784 s3cap - ok

11:15:17.0263 4784 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe

11:15:17.0263 4784 SamSs - ok

11:15:17.0263 4784 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

11:15:17.0263 4784 sbp2port - ok

11:15:17.0279 4784 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll

11:15:17.0279 4784 SCardSvr - ok

11:15:17.0294 4784 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

11:15:17.0294 4784 scfilter - ok

11:15:17.0341 4784 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll

11:15:17.0357 4784 Schedule - ok

11:15:17.0419 4784 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll

11:15:17.0419 4784 SCPolicySvc - ok

11:15:17.0419 4784 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll

11:15:17.0435 4784 SDRSVC - ok

11:15:17.0450 4784 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys

11:15:17.0450 4784 secdrv - ok

11:15:17.0466 4784 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll

11:15:17.0466 4784 seclogon - ok

11:15:17.0466 4784 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll

11:15:17.0466 4784 SENS - ok

11:15:17.0481 4784 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll

11:15:17.0481 4784 SensrSvc - ok

11:15:17.0497 4784 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys

11:15:17.0497 4784 Serenum - ok

11:15:17.0497 4784 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys

11:15:17.0497 4784 Serial - ok

11:15:17.0497 4784 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys

11:15:17.0497 4784 sermouse - ok

11:15:17.0513 4784 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll

11:15:17.0513 4784 SessionEnv - ok

11:15:17.0513 4784 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

11:15:17.0513 4784 sffdisk - ok

11:15:17.0528 4784 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

11:15:17.0528 4784 sffp_mmc - ok

11:15:17.0528 4784 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

11:15:17.0528 4784 sffp_sd - ok

11:15:17.0528 4784 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

11:15:17.0528 4784 sfloppy - ok

11:15:17.0575 4784 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll

11:15:17.0575 4784 SharedAccess - ok

11:15:17.0653 4784 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll

11:15:17.0653 4784 ShellHWDetection - ok

11:15:17.0653 4784 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

11:15:17.0653 4784 SiSRaid2 - ok

11:15:17.0653 4784 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

11:15:17.0669 4784 SiSRaid4 - ok

11:15:17.0684 4784 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys

11:15:17.0684 4784 Smb - ok

11:15:17.0715 4784 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe

11:15:17.0731 4784 SNMPTRAP - ok

11:15:17.0731 4784 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys

11:15:17.0731 4784 spldr - ok

11:15:17.0762 4784 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe

11:15:17.0762 4784 Spooler - ok

11:15:17.0840 4784 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe

11:15:17.0840 4784 sppsvc - ok

11:15:17.0856 4784 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll

11:15:17.0856 4784 sppuinotify - ok

11:15:17.0871 4784 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys

11:15:17.0871 4784 srv - ok

11:15:17.0887 4784 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

11:15:17.0887 4784 srv2 - ok

11:15:17.0903 4784 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

11:15:17.0903 4784 srvnet - ok

11:15:17.0918 4784 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

11:15:17.0918 4784 SSDPSRV - ok

11:15:17.0918 4784 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll

11:15:17.0934 4784 SstpSvc - ok

11:15:17.0981 4784 Steam Client Service - ok

11:15:17.0981 4784 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys

11:15:17.0981 4784 stexstor - ok

11:15:17.0996 4784 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll

11:15:18.0012 4784 stisvc - ok

11:15:18.0012 4784 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys

11:15:18.0012 4784 storflt - ok

11:15:18.0027 4784 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys

11:15:18.0027 4784 storvsc - ok

11:15:18.0027 4784 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys

11:15:18.0027 4784 swenum - ok

11:15:18.0043 4784 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll

11:15:18.0043 4784 swprv - ok

11:15:18.0059 4784 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys

11:15:18.0059 4784 Synth3dVsc - ok

11:15:18.0090 4784 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll

11:15:18.0105 4784 SysMain - ok

11:15:18.0121 4784 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll

11:15:18.0121 4784 TabletInputService - ok

11:15:18.0137 4784 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll

11:15:18.0137 4784 TapiSrv - ok

11:15:18.0152 4784 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll

11:15:18.0152 4784 TBS - ok

11:15:18.0199 4784 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys

11:15:18.0215 4784 Tcpip - ok

11:15:18.0261 4784 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

11:15:18.0261 4784 TCPIP6 - ok

11:15:18.0277 4784 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

11:15:18.0277 4784 tcpipreg - ok

11:15:18.0277 4784 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

11:15:18.0277 4784 TDPIPE - ok

11:15:18.0308 4784 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

11:15:18.0308 4784 TDTCP - ok

11:15:18.0308 4784 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

11:15:18.0308 4784 tdx - ok

11:15:18.0308 4784 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

11:15:18.0308 4784 TermDD - ok

11:15:18.0324 4784 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys

11:15:18.0324 4784 terminpt - ok

11:15:18.0339 4784 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll

11:15:18.0339 4784 TermService - ok

11:15:18.0355 4784 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll

11:15:18.0355 4784 Themes - ok

11:15:18.0386 4784 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll

11:15:18.0386 4784 THREADORDER - ok

11:15:18.0402 4784 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll

11:15:18.0402 4784 TrkWks - ok

11:15:18.0433 4784 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

11:15:18.0433 4784 TrustedInstaller - ok

11:15:18.0449 4784 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

11:15:18.0449 4784 tssecsrv - ok

11:15:18.0449 4784 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

11:15:18.0449 4784 TsUsbFlt - ok

11:15:18.0464 4784 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys

11:15:18.0464 4784 TsUsbGD - ok

11:15:18.0464 4784 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys

11:15:18.0480 4784 tsusbhub - ok

11:15:18.0495 4784 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

11:15:18.0495 4784 tunnel - ok

11:15:18.0495 4784 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

11:15:18.0495 4784 uagp35 - ok

11:15:18.0511 4784 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

11:15:18.0511 4784 udfs - ok

11:15:18.0527 4784 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe

11:15:18.0527 4784 UI0Detect - ok

11:15:18.0542 4784 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

11:15:18.0542 4784 uliagpkx - ok

11:15:18.0542 4784 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys

11:15:18.0542 4784 umbus - ok

11:15:18.0542 4784 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys

11:15:18.0542 4784 UmPass - ok

11:15:18.0573 4784 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll

11:15:18.0573 4784 UmRdpService - ok

11:15:18.0573 4784 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll

11:15:18.0573 4784 upnphost - ok

11:15:18.0589 4784 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

11:15:18.0589 4784 usbccgp - ok

11:15:18.0589 4784 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys

11:15:18.0589 4784 usbcir - ok

11:15:18.0605 4784 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys

11:15:18.0605 4784 usbehci - ok

11:15:18.0620 4784 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

11:15:18.0620 4784 usbhub - ok

11:15:18.0636 4784 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys

11:15:18.0636 4784 usbohci - ok

11:15:18.0636 4784 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys

11:15:18.0636 4784 usbprint - ok

11:15:18.0651 4784 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

11:15:18.0651 4784 USBSTOR - ok

11:15:18.0667 4784 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

11:15:18.0667 4784 usbuhci - ok

11:15:18.0667 4784 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll

11:15:18.0667 4784 UxSms - ok

11:15:18.0683 4784 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe

11:15:18.0683 4784 VaultSvc - ok

11:15:18.0683 4784 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

11:15:18.0683 4784 vdrvroot - ok

11:15:18.0698 4784 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe

11:15:18.0714 4784 vds - ok

11:15:18.0714 4784 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

11:15:18.0714 4784 vga - ok

11:15:18.0714 4784 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys

11:15:18.0714 4784 VgaSave - ok

11:15:18.0714 4784 VGPU - ok

11:15:18.0714 4784 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

11:15:18.0714 4784 vhdmp - ok

11:15:18.0714 4784 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys

11:15:18.0714 4784 viaide - ok

11:15:18.0745 4784 [ AFB180438CA1705976AA4EA1DE7A32FA ] VirtuWDDM C:\Windows\system32\DRIVERS\VirtuWDDM.sys

11:15:18.0745 4784 VirtuWDDM - ok

11:15:18.0761 4784 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys

11:15:18.0761 4784 vmbus - ok

11:15:18.0761 4784 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys

11:15:18.0761 4784 VMBusHID - ok

11:15:18.0761 4784 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys

11:15:18.0761 4784 volmgr - ok

11:15:18.0776 4784 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

11:15:18.0776 4784 volmgrx - ok

11:15:18.0776 4784 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys

11:15:18.0776 4784 volsnap - ok

11:15:18.0776 4784 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

11:15:18.0776 4784 vsmraid - ok

11:15:18.0807 4784 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe

11:15:18.0807 4784 VSS - ok

11:15:18.0823 4784 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

11:15:18.0823 4784 vwifibus - ok

11:15:18.0854 4784 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll

11:15:18.0854 4784 W32Time - ok

11:15:18.0870 4784 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys

11:15:18.0870 4784 WacomPen - ok

11:15:18.0870 4784 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

11:15:18.0870 4784 WANARP - ok

11:15:18.0870 4784 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

11:15:18.0870 4784 Wanarpv6 - ok

11:15:18.0917 4784 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

11:15:18.0932 4784 WatAdminSvc - ok

11:15:18.0963 4784 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe

11:15:18.0963 4784 wbengine - ok

11:15:18.0979 4784 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

11:15:18.0979 4784 WbioSrvc - ok

11:15:18.0979 4784 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll

11:15:18.0979 4784 wcncsvc - ok

11:15:18.0995 4784 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

11:15:18.0995 4784 WcsPlugInService - ok

11:15:18.0995 4784 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys

11:15:18.0995 4784 Wd - ok

11:15:18.0995 4784 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

11:15:19.0010 4784 Wdf01000 - ok

11:15:19.0010 4784 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll

11:15:19.0010 4784 WdiServiceHost - ok

11:15:19.0010 4784 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll

11:15:19.0026 4784 WdiSystemHost - ok

11:15:19.0026 4784 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll

11:15:19.0026 4784 WebClient - ok

11:15:19.0026 4784 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll

11:15:19.0041 4784 Wecsvc - ok

11:15:19.0041 4784 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll

11:15:19.0041 4784 wercplsupport - ok

11:15:19.0057 4784 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll

11:15:19.0057 4784 WerSvc - ok

11:15:19.0073 4784 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

11:15:19.0073 4784 WfpLwf - ok

11:15:19.0073 4784 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys

11:15:19.0073 4784 WIMMount - ok

11:15:19.0088 4784 WinDefend - ok

11:15:19.0088 4784 WinHttpAutoProxySvc - ok

11:15:19.0104 4784 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

11:15:19.0104 4784 Winmgmt - ok

11:15:19.0135 4784 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll

11:15:19.0151 4784 WinRM - ok

11:15:19.0166 4784 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll

11:15:19.0182 4784 Wlansvc - ok

11:15:19.0260 4784 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

11:15:19.0275 4784 wlidsvc - ok

11:15:19.0291 4784 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys

11:15:19.0291 4784 WmiAcpi - ok

11:15:19.0291 4784 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

11:15:19.0291 4784 wmiApSrv - ok

11:15:19.0291 4784 WMPNetworkSvc - ok

11:15:19.0307 4784 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll

11:15:19.0307 4784 WPCSvc - ok

11:15:19.0322 4784 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

11:15:19.0322 4784 WPDBusEnum - ok

11:15:19.0322 4784 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

11:15:19.0322 4784 ws2ifsl - ok

11:15:19.0338 4784 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll

11:15:19.0338 4784 wscsvc - ok

11:15:19.0338 4784 WSearch - ok

11:15:19.0400 4784 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll

11:15:19.0400 4784 wuauserv - ok

11:15:19.0431 4784 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

11:15:19.0431 4784 WudfPf - ok

11:15:19.0431 4784 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

11:15:19.0431 4784 WUDFRd - ok

11:15:19.0447 4784 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

11:15:19.0447 4784 wudfsvc - ok

11:15:19.0447 4784 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll

11:15:19.0447 4784 WwanSvc - ok

11:15:19.0494 4784 [ 4A5CE13408945E525503B5F73D29B9C5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys

11:15:19.0494 4784 xnacc - ok

11:15:19.0525 4784 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys

11:15:19.0525 4784 xusb21 - ok

11:15:19.0541 4784 ================ Scan global ===============================

11:15:19.0572 4784 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll

11:15:19.0587 4784 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll

11:15:19.0603 4784 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll

11:15:19.0603 4784 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll

11:15:19.0634 4784 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe

11:15:19.0634 4784 [Global] - ok

11:15:19.0634 4784 ================ Scan MBR ==================================

11:15:19.0665 4784 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

11:15:19.0899 4784 \Device\Harddisk0\DR0 - ok

11:15:19.0899 4784 ================ Scan VBR ==================================

11:15:19.0946 4784 [ 41EA6168D84D378393A8EDB9B64E5BB8 ] \Device\Harddisk0\DR0\Partition1

11:15:19.0946 4784 \Device\Harddisk0\DR0\Partition1 - ok

11:15:19.0962 4784 [ FF4BE32C5FC236D94A53B3F7F8B7E252 ] \Device\Harddisk0\DR0\Partition2

11:15:19.0962 4784 \Device\Harddisk0\DR0\Partition2 - ok

11:15:19.0962 4784 ============================================================

11:15:19.0962 4784 Scan finished

11:15:19.0962 4784 ============================================================

11:15:19.0962 4772 Detected object count: 0

11:15:19.0962 4772 Actual detected object count: 0

11:15:21.0849 4648 Deinitialize success

MBR check

MBRCheck, version 1.2.3

Command-line:

Windows Version: Windows 7 Ultimate Edition

Windows Information: Service Pack 1 (build 7601), 64-bit

Base Board Manufacturer: ASUSTeK Computer INC.

BIOS Manufacturer: American Megatrends Inc.

System Manufacturer: System manufacturer

System Product Name: System Product Name

Logical Drives Mask: 0x0000000c

Kernel Drivers (total 154):

0x02E52000 \SystemRoot\system32\ntoskrnl.exe

0x02E09000 \SystemRoot\system32\hal.dll

0x00BAA000 \SystemRoot\system32\kdcom.dll

0x00C12000 \SystemRoot\system32\mcupdate_GenuineIntel.dll

0x00C61000 \SystemRoot\system32\PSHED.dll

0x00C75000 \SystemRoot\system32\CLFS.SYS

0x00CD3000 \SystemRoot\system32\CI.dll

0x00EC9000 \SystemRoot\system32\drivers\Wdf01000.sys

0x00F6D000 \SystemRoot\system32\drivers\WDFLDR.SYS

0x00F7C000 \SystemRoot\system32\drivers\ACPI.sys

0x00FD3000 \SystemRoot\system32\drivers\WMILIB.SYS

0x00FDC000 \SystemRoot\system32\drivers\msisadrv.sys

0x00E00000 \SystemRoot\system32\drivers\pci.sys

0x00E33000 \SystemRoot\system32\drivers\vdrvroot.sys

0x00E40000 \SystemRoot\System32\drivers\partmgr.sys

0x00E55000 \SystemRoot\system32\drivers\volmgr.sys

0x00E6A000 \SystemRoot\System32\drivers\volmgrx.sys

0x00FE6000 \SystemRoot\system32\drivers\pciide.sys

0x00FED000 \SystemRoot\system32\drivers\PCIIDEX.SYS

0x00D93000 \SystemRoot\System32\drivers\mountmgr.sys

0x0101C000 \SystemRoot\system32\DRIVERS\iaStor.sys

0x013C0000 \SystemRoot\system32\drivers\atapi.sys

0x013C9000 \SystemRoot\system32\drivers\ataport.SYS

0x013F3000 \SystemRoot\system32\drivers\msahci.sys

0x01000000 \SystemRoot\system32\drivers\amdxata.sys

0x00DAD000 \SystemRoot\system32\drivers\fltmgr.sys

0x01484000 \SystemRoot\system32\drivers\fileinfo.sys

0x01644000 \SystemRoot\System32\Drivers\Ntfs.sys

0x01498000 \SystemRoot\System32\Drivers\msrpc.sys

0x01600000 \SystemRoot\System32\Drivers\ksecdd.sys

0x014F6000 \SystemRoot\System32\Drivers\cng.sys

0x0161B000 \SystemRoot\System32\drivers\pcw.sys

0x0162C000 \SystemRoot\System32\Drivers\Fs_Rec.sys

0x018E9000 \SystemRoot\system32\drivers\ndis.sys

0x01800000 \SystemRoot\system32\drivers\NETIO.SYS

0x01860000 \SystemRoot\System32\Drivers\ksecpkg.sys

0x01A00000 \SystemRoot\System32\drivers\tcpip.sys

0x0188A000 \SystemRoot\System32\drivers\fwpkclnt.sys

0x018D4000 \SystemRoot\system32\DRIVERS\epfwwfp.sys

0x019DB000 \SystemRoot\system32\drivers\vmstorfl.sys

0x01568000 \SystemRoot\system32\drivers\volsnap.sys

0x019EB000 \SystemRoot\System32\Drivers\spldr.sys

0x015B4000 \SystemRoot\System32\drivers\rdyboost.sys

0x017E7000 \SystemRoot\System32\Drivers\mup.sys

0x019F3000 \SystemRoot\System32\drivers\hwpolicy.sys

0x01400000 \SystemRoot\System32\DRIVERS\fvevol.sys

0x0143A000 \SystemRoot\system32\drivers\disk.sys

0x01450000 \SystemRoot\system32\drivers\CLASSPNP.SYS

0x046E2000 \SystemRoot\system32\DRIVERS\dtsoftbus01.sys

0x04420000 \SystemRoot\system32\DRIVERS\eamonm.sys

0x04504000 \SystemRoot\System32\Drivers\Null.SYS

0x0450D000 \SystemRoot\System32\Drivers\Beep.SYS

0x04514000 \SystemRoot\system32\DRIVERS\ehdrv.sys

0x0453D000 \SystemRoot\System32\drivers\vga.sys

0x0454B000 \SystemRoot\System32\drivers\VIDEOPRT.SYS

0x04570000 \SystemRoot\System32\drivers\watchdog.sys

0x04580000 \SystemRoot\System32\DRIVERS\RDPCDD.sys

0x04589000 \SystemRoot\system32\drivers\rdpencdd.sys

0x04592000 \SystemRoot\system32\drivers\rdprefmp.sys

0x0459B000 \SystemRoot\System32\Drivers\Msfs.SYS

0x045A6000 \SystemRoot\System32\Drivers\Npfs.SYS

0x045B7000 \SystemRoot\system32\DRIVERS\tdx.sys

0x045D9000 \SystemRoot\system32\DRIVERS\TDI.SYS

0x04755000 \SystemRoot\system32\drivers\afd.sys

0x04600000 \SystemRoot\System32\DRIVERS\netbt.sys

0x045E6000 \SystemRoot\system32\drivers\ws2ifsl.sys

0x045F1000 \SystemRoot\system32\DRIVERS\wfplwf.sys

0x04645000 \SystemRoot\system32\DRIVERS\pacer.sys

0x04400000 \SystemRoot\system32\DRIVERS\EpfwLWF.sys

0x0440D000 \SystemRoot\system32\DRIVERS\netbios.sys

0x0466B000 \SystemRoot\system32\DRIVERS\wanarp.sys

0x04686000 \SystemRoot\system32\DRIVERS\termdd.sys

0x074EA000 \SystemRoot\system32\DRIVERS\rdbss.sys

0x0753B000 \SystemRoot\system32\drivers\nsiproxy.sys

0x07547000 \SystemRoot\system32\DRIVERS\mssmbios.sys

0x07552000 \SystemRoot\System32\drivers\discache.sys

0x07561000 \SystemRoot\system32\drivers\csc.sys

0x07400000 \SystemRoot\System32\Drivers\dfsc.sys

0x0741E000 \SystemRoot\system32\DRIVERS\blbdrive.sys

0x0742F000 \SystemRoot\system32\DRIVERS\tunnel.sys

0x07455000 \SystemRoot\system32\DRIVERS\VirtuWDDM.sys

0x02E95000 \SystemRoot\System32\drivers\dxgkrnl.sys

0x02F89000 \SystemRoot\System32\drivers\dxgmms1.sys

0x02E00000 \SystemRoot\system32\DRIVERS\atikmpag.sys

0x0821B000 \SystemRoot\system32\DRIVERS\atikmdag.sys

0x08CA3000 \SystemRoot\system32\DRIVERS\HDAudBus.sys

0x0F23D000 \SystemRoot\system32\DRIVERS\igdkmd64.sys

0x10051000 \SystemRoot\system32\DRIVERS\HECIx64.sys

0x10062000 \SystemRoot\system32\DRIVERS\e1c62x64.sys

0x100E3000 \SystemRoot\system32\drivers\usbehci.sys

0x100F4000 \SystemRoot\system32\drivers\USBPORT.SYS

0x1014A000 \SystemRoot\system32\DRIVERS\asmtxhci.sys

0x101AE000 \SystemRoot\system32\DRIVERS\wmiacpi.sys

0x101B7000 \SystemRoot\system32\DRIVERS\intelppm.sys

0x101CD000 \SystemRoot\system32\DRIVERS\CompositeBus.sys

0x101DD000 \SystemRoot\system32\DRIVERS\AgileVpn.sys

0x0F200000 \SystemRoot\system32\DRIVERS\rasl2tp.sys

0x0F224000 \SystemRoot\system32\DRIVERS\ndistapi.sys

0x08CC7000 \SystemRoot\system32\DRIVERS\ndiswan.sys

0x08CF6000 \SystemRoot\system32\DRIVERS\raspppoe.sys

0x08D11000 \SystemRoot\system32\DRIVERS\raspptp.sys

0x08D32000 \SystemRoot\system32\DRIVERS\rassstp.sys

0x0F230000 \SystemRoot\system32\DRIVERS\rdpbus.sys

0x08D4C000 \SystemRoot\system32\DRIVERS\kbdclass.sys

0x08D5B000 \SystemRoot\system32\DRIVERS\mouclass.sys

0x0F23B000 \SystemRoot\system32\DRIVERS\swenum.sys

0x08D6A000 \SystemRoot\system32\DRIVERS\ks.sys

0x08DAD000 \SystemRoot\system32\DRIVERS\umbus.sys

0x0746A000 \SystemRoot\system32\DRIVERS\usbhub.sys

0x08DBF000 \SystemRoot\System32\Drivers\NDProxy.SYS

0x08DD4000 \SystemRoot\system32\DRIVERS\cdrom.sys

0x07C17000 \SystemRoot\system32\drivers\RTKVHD64.sys

0x0469A000 \SystemRoot\system32\drivers\portcls.sys

0x02FCF000 \SystemRoot\system32\drivers\drmk.sys

0x07FF6000 \SystemRoot\system32\drivers\ksthunk.sys

0x07C00000 \SystemRoot\System32\Drivers\crashdmp.sys

0x074C4000 \SystemRoot\system32\DRIVERS\asmthub3.sys

0x0401A000 \SystemRoot\System32\Drivers\dump_iaStor.sys

0x043BE000 \SystemRoot\System32\Drivers\dump_dumpfve.sys

0x043D1000 \SystemRoot\system32\DRIVERS\xusb21.sys

0x043E4000 \SystemRoot\system32\DRIVERS\hidusb.sys

0x04000000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS

0x043F2000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS

0x043FB000 \SystemRoot\system32\DRIVERS\USBD.SYS

0x02E76000 \SystemRoot\system32\DRIVERS\usbccgp.sys

0x08200000 \SystemRoot\system32\DRIVERS\kbdhid.sys

0x101F3000 \SystemRoot\system32\DRIVERS\mouhid.sys

0x000B0000 \SystemRoot\System32\win32k.sys

0x0820E000 \SystemRoot\System32\drivers\Dxapi.sys

0x02FF1000 \SystemRoot\system32\DRIVERS\monitor.sys

0x00410000 \SystemRoot\System32\TSDDD.dll

0x00730000 \SystemRoot\System32\cdd.dll

0x0472B000 \SystemRoot\system32\drivers\luafv.sys

0x047DE000 \SystemRoot\system32\drivers\WudfPf.sys

0x06466000 \SystemRoot\system32\DRIVERS\epfw.sys

0x06497000 \SystemRoot\system32\DRIVERS\lltdio.sys

0x064AC000 \SystemRoot\system32\DRIVERS\rspndr.sys

0x064C4000 \SystemRoot\system32\drivers\HTTP.sys

0x0658D000 \SystemRoot\system32\DRIVERS\bowser.sys

0x065AB000 \SystemRoot\system32\DRIVERS\mrxsmb.sys

0x06400000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys

0x065D8000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys

0x09451000 \SystemRoot\system32\DRIVERS\idmwfp.sys

0x0947B000 \SystemRoot\system32\drivers\peauth.sys

0x09521000 \SystemRoot\System32\Drivers\secdrv.SYS

0x0952C000 \SystemRoot\System32\DRIVERS\srvnet.sys

0x0955D000 \SystemRoot\System32\drivers\tcpipreg.sys

0x0956F000 \SystemRoot\System32\DRIVERS\srv2.sys

0x09825000 \SystemRoot\System32\DRIVERS\srv.sys

0x09939000 \??\C:\Windows\system32\Drivers\PROCEXP113.SYS

0x00830000 \SystemRoot\System32\ATMFD.DLL

0x76EF0000 \Windows\System32\ntdll.dll

0x47DB0000 \Windows\System32\smss.exe

0xFF210000 \Windows\System32\apisetschema.dll

Processes (total 46):

0 System Idle Process

4 System

324 C:\Windows\System32\smss.exe

512 csrss.exe

596 csrss.exe

604 C:\Windows\System32\wininit.exe

660 C:\Windows\System32\winlogon.exe

700 C:\Windows\System32\services.exe

712 C:\Windows\System32\lsass.exe

720 C:\Windows\System32\lsm.exe

824 C:\Windows\System32\svchost.exe

908 C:\Windows\System32\svchost.exe

972 C:\Windows\System32\atiesrxx.exe

296 C:\Windows\System32\svchost.exe

448 C:\Windows\System32\svchost.exe

424 C:\Windows\System32\svchost.exe

1028 C:\Windows\System32\svchost.exe

1120 C:\Windows\System32\svchost.exe

1276 C:\Windows\System32\svchost.exe

1396 C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe

1428 C:\Windows\System32\atieclxx.exe

1624 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

1784 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

1872 C:\Windows\System32\taskhost.exe

1884 C:\Windows\System32\SearchIndexer.exe

2144 C:\Windows\System32\dwm.exe

2180 C:\Windows\explorer.exe

2692 C:\Windows\System32\igfxpers.exe

2740 C:\Program Files\ESET\ESET Smart Security\egui.exe

2892 C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exe

2424 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

1548 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

3024 C:\Program Files\Lucidlogix Technologies\VIRTU MVP\Ekag20nt.exe

3552 C:\Windows\System32\svchost.exe

3824 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

3712 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

1732 C:\Windows\System32\audiodg.exe

2500 C:\Program Files (x86)\Internet Download Manager\IDMan.exe

3560 C:\Program Files (x86)\Internet Explorer\ielowutil.exe

5012 C:\Windows\System32\SearchProtocolHost.exe

5036 C:\Windows\System32\SearchFilterHost.exe

5104 taskhost.exe

4216 dllhost.exe

4308 dllhost.exe

4408 C:\Users\Artins90\Desktop\MBRCheck.exe

4416 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000 (NTFS)

PhysicalDrive0 Model Number: ST1000DM003-9YN162, Rev: CC4C

Size Device Name MBR Status

--------------------------------------------

931 GB \\.\PhysicalDrive0 Windows 7 MBR code detected

SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79

Done!

TheDarkKnight · September 21, 2012

Hello artins90.

Nothing in your logs so far.

Please download OTL.exe by OldTimer to your Desktop.

Close all windows and double click OTL.exe.
In the "Custom Scans/Fixes" window (under the light green bar) paste the following in bold:

netsvcs
drivers32
%SYSTEMDRIVE%\*.*
%systemroot%\*. /mp /s
CREATERESTOREPOINT
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
Click Run Scan and let the program run uninterrupted.
When the scan completes, it will open two Notepad windows. OTL.txt and Extras.txt. These are saved in the same location as OTL. Post both logs in this thread.
You may need to use two posts to get it all.

artins90 · September 21, 2012

OTL logfile created on: 21/09/2012 16:01:13 - Run 1

OTL by OldTimer - Version 3.2.65.1 Folder = C:\Users\Artins90\Desktop

64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 9.0.8112.16421)

Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

7,91 Gb Total Physical Memory | 6,57 Gb Available Physical Memory | 83,13% Memory free

8,90 Gb Paging File | 7,34 Gb Available in Paging File | 82,42% Paging File free

Paging file location(s): c:\pagefile.sys 1024 1024 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 931,41 Gb Total Space | 805,10 Gb Free Space | 86,44% Space Free | Partition Type: NTFS

Computer Name: ARTINS90-PC | User Name: Artins90 | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/21 15:59:49 | 000,600,576 | ---- | M] (OldTimer Tools) -- C:\Users\Artins90\Desktop\OTL.exe

PRC - [2012/05/30 14:00:02 | 000,013,632 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

PRC - [2012/05/30 14:00:00 | 000,284,480 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

PRC - [2012/03/25 17:40:40 | 001,763,328 | ---- | M] (Software Security System) -- C:\Program Files\Lucidlogix Technologies\VIRTU MVP\Ekag20nt.exe

PRC - [2012/03/07 15:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe

========== Modules (No Company Name) ==========

MOD - [2012/08/28 22:07:58 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\5ec07328aedf81cf5aad194ff474df73\IAStorCommon.ni.dll

MOD - [2012/08/28 22:07:46 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll

MOD - [2012/08/28 22:07:45 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll

MOD - [2012/08/28 22:07:44 | 000,489,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3e69dbe6f9b555749bd3a85191510075\IAStorUtil.ni.dll

MOD - [2012/08/28 22:07:43 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll

MOD - [2012/08/28 22:07:39 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll

MOD - [2012/08/28 22:01:38 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll

MOD - [2012/08/28 22:01:36 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll

MOD - [2012/08/28 22:01:35 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll

MOD - [2012/08/28 22:01:32 | 011,492,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll

========== Services (SafeList) ==========

SRV:64bit: - [2012/09/05 03:32:16 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)

SRV:64bit: - [2012/03/07 15:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)

SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)

SRV - [2012/09/08 12:54:50 | 000,529,744 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2012/08/29 03:06:51 | 000,076,888 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)

SRV - [2012/05/30 14:00:02 | 000,013,632 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)

SRV - [2012/05/21 12:17:56 | 000,276,288 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)

SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)

SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/09/05 04:17:50 | 010,692,096 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)

DRV:64bit: - [2012/09/05 03:07:18 | 000,459,264 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)

DRV:64bit: - [2012/08/28 20:17:23 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)

DRV:64bit: - [2012/08/02 02:23:14 | 000,158,944 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)

DRV:64bit: - [2012/07/22 19:41:38 | 000,024,672 | ---- | M] (Resplendence Software Projects Sp.) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rspLLL64.sys -- (rspLLL)

DRV:64bit: - [2012/05/30 13:42:10 | 000,569,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)

DRV:64bit: - [2012/05/21 12:04:20 | 014,759,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)

DRV:64bit: - [2012/05/14 08:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)

DRV:64bit: - [2012/03/25 17:55:22 | 000,066,336 | ---- | M] (Lucidlogix Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VirtuWDDM.sys -- (VirtuWDDM)

DRV:64bit: - [2012/03/16 05:57:29 | 000,514,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress)

DRV:64bit: - [2012/03/14 08:40:04 | 000,187,632 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)

DRV:64bit: - [2012/03/14 08:40:04 | 000,062,496 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)

DRV:64bit: - [2012/03/14 08:40:04 | 000,038,288 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)

DRV:64bit: - [2012/03/14 08:40:02 | 000,209,768 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)

DRV:64bit: - [2012/03/14 08:40:02 | 000,148,528 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)

DRV:64bit: - [2012/03/01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)

DRV:64bit: - [2011/12/06 04:23:10 | 000,331,264 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)

DRV:64bit: - [2011/09/14 17:05:34 | 000,394,216 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)

DRV:64bit: - [2011/09/14 17:05:34 | 000,129,000 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)

DRV:64bit: - [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)

DRV:64bit: - [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)

DRV:64bit: - [2010/11/21 05:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)

DRV:64bit: - [2010/11/21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)

DRV:64bit: - [2010/11/21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)

DRV:64bit: - [2010/11/21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)

DRV:64bit: - [2010/11/21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)

DRV:64bit: - [2010/11/21 05:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)

DRV:64bit: - [2010/11/21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)

DRV:64bit: - [2010/11/21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)

DRV:64bit: - [2010/10/19 23:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)

DRV:64bit: - [2009/08/13 22:10:18 | 000,073,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)

DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)

DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)

DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)

DRV:64bit: - [2009/07/14 02:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc)

DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)

DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)

DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)

DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)

DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://it.msn.com/?ocid=iehp

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = it

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F1 CA A0 24 2D 85 CD 01 [binary data]

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Artins90\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Artins90\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2012/08/28 17:55:18 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012/08/28 17:55:18 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Artins90\AppData\Roaming\IDM\idmmzcc5 [2012/08/28 18:34:36 | 000,000,000 | ---D | M]

========== Chrome ==========

CHR - homepage: http://www.google.com/webhp?hl=en

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},

CHR - homepage: http://www.google.com/webhp?hl=en

CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Artins90\AppData\Local\Google\Chrome\Application\22.0.1229.14\PepperFlash\pepflashplayer.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Artins90\AppData\Local\Google\Chrome\Application\22.0.1229.64\gcswf32.dll

CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Users\Artins90\AppData\Local\Google\Chrome\Application\22.0.1229.64\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Artins90\AppData\Local\Google\Chrome\Application\22.0.1229.64\pdf.dll

CHR - plugin: Google Update (Enabled) = C:\Users\Artins90\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll

CHR - Extension: Google Drive = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\

CHR - Extension: Adblock Plus (Beta) = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\

CHR - Extension: Bulbapedia/Serebii Pokemon Search = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnhlpcaofdfmmndakdbhncafjhjlponp\1.1.2_0\

CHR - Extension: Dark Vibe = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkckeanhmkjaechlhllmapjaaglgpcbj\1.1_0\

CHR - Extension: BackUP Cookies Premium = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbapkdkkdiagoekedlglccfpcobfnfb\2.7_0\

CHR - Extension: Kanji Plus = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\hamegjfmkdfedhjnpojefpfmogfckojb\0.3_0\

CHR - Extension: rikaikun = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.5_0\

CHR - Extension: KanjiTest_Z. = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkjdlakkjfhninaekjeceoaloadjeced\4_0\

CHR - Extension: JAPANESE 1 = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbpipicjdmcoocdcnjlijbgclebahlno\1.0.8_0\

CHR - Extension: Google Maps = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.5_0\

CHR - Extension: Google Mail Checker = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.3.6_0\

CHR - Extension: Docs PDF/PowerPoint Viewer (by Google) = C:\Users\Artins90\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn\3.9_0\

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts

O2:64bit: - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)

O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)

O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [igfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [VIRTU MVP] C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe ()

O4:64bit: - HKLM..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide File not found

O4 - HKLM..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)

O4 - HKLM..\Run: [startCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1

O8:64bit: - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()

O8:64bit: - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()

O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()

O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()

O1364bit: - gopher Prefix: missing

O13 - gopher Prefix: missing

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D3AD2BBB-4345-4DFA-83ED-32FF9CD3EA62}: DhcpNameServer = 192.168.1.1

O20:64bit: - AppInit_DLLs: (C:\Windows\system32\appinit_dll.dll) - C:\Windows\SysNative\appinit_dll.dll (Lucidlogix Inc.)

O20 - AppInit_DLLs: (C:\Windows\SysWOW64\appinit_dll.dll) - C:\Windows\SysWOW64\appinit_dll.dll (Lucidlogix Inc.)

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)

O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)

O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O32 - HKLM CDRom: AutoRun - 1

O34 - HKLM BootExecute: (autocheck autochk *)

O35:64bit: - HKLM\..comfile [open] -- "%1" %*

O35:64bit: - HKLM\..exefile [open] -- "%1" %*

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*

O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)

Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)

Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)

CREATERESTOREPOINT

Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/09/21 15:59:48 | 000,600,576 | ---- | C] (OldTimer Tools) -- C:\Users\Artins90\Desktop\OTL.exe

[2012/09/21 09:42:00 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN

[2012/09/21 09:27:52 | 000,000,000 | ---D | C] -- C:\Windows\temp

[2012/09/21 09:21:20 | 000,000,000 | ---D | C] -- C:\Windows\erdnt

[2012/09/18 23:43:18 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD

[2012/09/18 23:43:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT

[2012/09/18 23:43:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center

[2012/09/18 23:41:43 | 023,823,872 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll

[2012/09/18 23:41:43 | 019,622,912 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll

[2012/09/18 23:41:43 | 016,082,432 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll

[2012/09/18 23:41:43 | 013,703,168 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll

[2012/09/18 23:41:43 | 010,692,096 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys

[2012/09/18 23:41:43 | 006,477,824 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll

[2012/09/18 23:41:43 | 005,556,904 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll

[2012/09/18 23:41:43 | 002,691,584 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll

[2012/09/18 23:41:43 | 000,934,912 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll

[2012/09/18 23:41:43 | 000,536,064 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe

[2012/09/18 23:41:43 | 000,459,264 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys

[2012/09/18 23:41:43 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atidemgy.dll

[2012/09/18 23:41:43 | 000,405,504 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll

[2012/09/18 23:41:43 | 000,239,616 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe

[2012/09/18 23:41:43 | 000,163,840 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe

[2012/09/18 23:41:43 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll

[2012/09/18 23:41:43 | 000,109,568 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll

[2012/09/18 23:41:43 | 000,082,944 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll

[2012/09/18 23:41:43 | 000,070,144 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_9.001.dll

[2012/09/18 23:41:43 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll

[2012/09/18 23:41:43 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll

[2012/09/18 23:41:43 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll

[2012/09/18 23:41:43 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll

[2012/09/18 23:41:43 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll

[2012/09/18 23:41:43 | 000,053,248 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll

[2012/09/18 23:41:43 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll

[2012/09/18 23:41:43 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll

[2012/09/18 23:41:43 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll

[2012/09/18 23:41:43 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll

[2012/09/18 23:41:43 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll

[2012/09/18 23:41:43 | 000,041,984 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll

[2012/09/18 23:41:43 | 000,033,280 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll

[2012/09/18 23:41:43 | 000,021,504 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll

[2012/09/18 23:41:43 | 000,017,920 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll

[2012/09/18 23:41:43 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll

[2012/09/18 23:41:43 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll

[2012/09/18 18:10:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2K Games

[2012/09/13 11:26:30 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll

[2012/09/13 11:26:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Corporation

[2012/09/13 11:12:59 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Games for Windows - LIVE Demos

[2012/09/12 10:47:28 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\ElevatedDiagnostics

[2012/09/12 09:13:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Codemasters

[2012/09/12 09:00:28 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll

[2012/09/12 09:00:28 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys

[2012/09/12 09:00:28 | 000,288,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS

[2012/09/12 09:00:15 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys

[2012/09/11 16:39:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\DSS

[2012/09/11 16:38:36 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller

[2012/09/11 15:39:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games

[2012/09/11 15:39:55 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Origin

[2012/09/11 15:39:49 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Origin

[2012/09/11 15:29:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin

[2012/09/11 15:29:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts

[2012/09/11 15:27:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\FIFA 13

[2012/09/11 15:27:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin

[2012/09/11 14:12:09 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\FIFA 13 Demo

[2012/09/11 01:35:34 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\foobar2000

[2012/09/11 01:31:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\foobar2000

[2012/09/10 22:00:35 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Malwarebytes

[2012/09/10 22:00:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes

[2012/09/10 21:11:01 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe

[2012/09/10 21:10:59 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe

[2012/09/10 21:10:59 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe

[2012/09/10 21:10:59 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

[2012/09/10 12:14:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag

[2012/09/10 12:14:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mp3tag

[2012/09/08 23:55:25 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe

[2012/09/08 19:46:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\gd.sos.McPixel

[2012/09/08 19:00:13 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\MW3 FoV Changer

[2012/09/07 15:11:55 | 000,000,000 | ---D | C] -- C:\Users\Artins90\temp

[2012/09/07 15:11:53 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\TeamViewer

[2012/09/05 16:16:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite

[2012/09/05 16:16:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer

[2012/09/05 16:16:09 | 000,180,224 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QTCF.dll

[2012/09/05 16:16:09 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QuickTimeVR.qtx

[2012/09/05 16:16:09 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QuickTime.qts

[2012/09/05 16:16:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QT Lite

[2012/09/04 21:42:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\FLiNGTrainer

[2012/09/02 22:34:26 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Iron Brigade

[2012/09/01 23:17:57 | 000,504,136 | ---- | C] (EasyTech) -- C:\Windows\SysNative\EasyRedirect64.dll

[2012/09/01 23:17:57 | 000,364,360 | ---- | C] (EasyTech) -- C:\Windows\SysWow64\EasyRedirect.dll

[2012/08/31 16:43:04 | 000,000,000 | RHSD | C] -- C:\ProgramData\Key-Base

[2012/08/31 16:42:02 | 000,066,336 | ---- | C] (Lucidlogix Inc.) -- C:\Windows\SysNative\drivers\VirtuWDDM.sys

[2012/08/31 16:42:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIRTU MVP

[2012/08/31 16:42:01 | 000,171,808 | ---- | C] (Lucidlogix Inc.) -- C:\Windows\SysNative\appinit_dll.dll

[2012/08/31 16:42:01 | 000,147,744 | ---- | C] (Lucidlogix Inc.) -- C:\Windows\SysWow64\appinit_dll.dll

[2012/08/31 16:42:01 | 000,000,000 | ---D | C] -- C:\Program Files\Lucidlogix Technologies

[2012/08/31 16:42:01 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Lucidlogix

[2012/08/31 02:09:22 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\SlimWare Utilities Inc

[2012/08/31 02:09:20 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers

[2012/08/31 02:08:19 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt

[2012/08/29 02:32:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

[2012/08/29 02:32:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight

[2012/08/29 02:32:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight

[2012/08/29 02:30:53 | 000,000,000 | ---D | C] -- C:\Windows\Panther

[2012/08/29 02:28:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Office Genuine Advantage

[2012/08/29 00:00:48 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive

[2012/08/29 00:00:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace

[2012/08/29 00:00:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE

[2012/08/28 23:59:56 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll

[2012/08/28 23:59:56 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll

[2012/08/28 23:59:56 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll

[2012/08/28 23:59:56 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll

[2012/08/28 23:59:55 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll

[2012/08/28 23:59:55 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll

[2012/08/28 23:41:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun

[2012/08/28 23:41:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java

[2012/08/28 23:41:17 | 000,821,736 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll

[2012/08/28 23:41:17 | 000,746,984 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll

[2012/08/28 23:41:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java

[2012/08/28 23:31:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disktrix

[2012/08/28 23:31:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Disktrix

[2012/08/28 21:07:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

[2012/08/28 21:07:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam

[2012/08/28 20:51:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID

[2012/08/28 20:51:27 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID

[2012/08/28 20:19:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icaros

[2012/08/28 20:19:11 | 000,000,000 | ---D | C] -- C:\Program Files\Icaros

[2012/08/28 20:17:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite

[2012/08/28 20:17:23 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys

[2012/08/28 20:17:20 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\DAEMON Tools Lite

[2012/08/28 20:17:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite

[2012/08/28 20:16:43 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite

[2012/08/28 20:00:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\madFlac-1.10

[2012/08/28 20:00:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\madVR

[2012/08/28 19:58:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters

[2012/08/28 19:58:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LAV Filters

[2012/08/28 19:58:03 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter

[2012/08/28 19:58:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter

[2012/08/28 19:58:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Haali

[2012/08/28 19:57:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC

[2012/08/28 19:57:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MPC-HC

[2012/08/28 19:49:39 | 000,000,000 | ---D | C] -- C:\Windows\pss

[2012/08/28 19:39:56 | 000,000,000 | ---D | C] -- C:\Program Files\FLAC Property Handler

[2012/08/28 19:37:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET

[2012/08/28 19:37:03 | 000,000,000 | -HSD | C] -- C:\Windows\Installer

[2012/08/28 19:29:51 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll

[2012/08/28 19:29:51 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll

[2012/08/28 19:29:51 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll

[2012/08/28 19:29:51 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll

[2012/08/28 19:29:51 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll

[2012/08/28 19:29:51 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll

[2012/08/28 19:29:51 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll

[2012/08/28 19:29:51 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll

[2012/08/28 19:29:51 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll

[2012/08/28 19:29:51 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll

[2012/08/28 19:29:51 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll

[2012/08/28 19:29:51 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll

[2012/08/28 19:29:50 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll

[2012/08/28 19:29:50 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll

[2012/08/28 19:29:50 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll

[2012/08/28 19:29:50 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll

[2012/08/28 19:29:50 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll

[2012/08/28 19:29:50 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll

[2012/08/28 19:29:50 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll

[2012/08/28 19:29:50 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll

[2012/08/28 19:29:50 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll

[2012/08/28 19:29:50 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll

[2012/08/28 19:29:50 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll

[2012/08/28 19:29:50 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll

[2012/08/28 19:29:49 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll

[2012/08/28 19:29:49 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll

[2012/08/28 19:29:49 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll

[2012/08/28 19:29:49 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll

[2012/08/28 19:29:49 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll

[2012/08/28 19:29:49 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll

[2012/08/28 19:29:49 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll

[2012/08/28 19:29:49 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll

[2012/08/28 19:29:49 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll

[2012/08/28 19:29:49 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll

[2012/08/28 19:29:49 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll

[2012/08/28 19:29:49 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll

[2012/08/28 19:29:49 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll

[2012/08/28 19:29:49 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll

[2012/08/28 19:29:48 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll

[2012/08/28 19:29:48 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll

[2012/08/28 19:29:48 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll

[2012/08/28 19:29:48 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll

[2012/08/28 19:29:48 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll

[2012/08/28 19:29:48 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll

[2012/08/28 19:29:48 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll

[2012/08/28 19:29:48 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll

[2012/08/28 19:29:48 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll

[2012/08/28 19:29:48 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll

[2012/08/28 19:29:48 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll

[2012/08/28 19:29:48 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll

[2012/08/28 19:29:48 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll

[2012/08/28 19:29:48 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll

[2012/08/28 19:29:46 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll

[2012/08/28 19:29:46 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll

[2012/08/28 19:29:46 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll

[2012/08/28 19:29:46 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll

[2012/08/28 19:29:45 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll

[2012/08/28 19:29:45 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll

[2012/08/28 19:29:45 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll

[2012/08/28 19:29:45 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll

[2012/08/28 19:29:45 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll

[2012/08/28 19:29:45 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll

[2012/08/28 19:29:45 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll

[2012/08/28 19:29:45 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll

[2012/08/28 19:29:44 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll

[2012/08/28 19:29:44 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll

[2012/08/28 19:29:44 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll

[2012/08/28 19:29:44 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll

[2012/08/28 19:29:44 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll

[2012/08/28 19:29:44 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll

[2012/08/28 19:29:44 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll

[2012/08/28 19:29:43 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll

[2012/08/28 19:29:43 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll

[2012/08/28 19:29:43 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll

[2012/08/28 19:29:43 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll

[2012/08/28 19:29:43 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll

[2012/08/28 19:29:43 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll

[2012/08/28 19:29:43 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll

[2012/08/28 19:29:43 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll

[2012/08/28 19:29:43 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll

[2012/08/28 19:29:43 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll

[2012/08/28 19:29:43 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll

[2012/08/28 19:29:43 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll

[2012/08/28 19:29:43 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll

[2012/08/28 19:29:43 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll

[2012/08/28 19:29:42 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll

[2012/08/28 19:29:42 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll

[2012/08/28 19:29:41 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll

[2012/08/28 19:29:41 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll

[2012/08/28 19:29:41 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll

[2012/08/28 19:29:41 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll

[2012/08/28 19:29:40 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll

[2012/08/28 19:29:40 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll

[2012/08/28 19:29:40 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll

[2012/08/28 19:29:40 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll

[2012/08/28 19:29:40 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll

[2012/08/28 19:29:40 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll

[2012/08/28 19:29:40 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll

[2012/08/28 19:29:40 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll

[2012/08/28 19:29:38 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll

[2012/08/28 19:29:38 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll

[2012/08/28 19:29:38 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll

[2012/08/28 19:29:38 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll

[2012/08/28 19:29:37 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll

[2012/08/28 19:29:37 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll

[2012/08/28 19:29:36 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll

[2012/08/28 19:29:36 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll

[2012/08/28 19:29:36 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll

[2012/08/28 19:29:36 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll

[2012/08/28 19:29:36 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll

[2012/08/28 19:29:36 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll

[2012/08/28 19:29:36 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll

[2012/08/28 19:29:36 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll

[2012/08/28 19:29:36 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll

[2012/08/28 19:29:36 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll

[2012/08/28 19:29:36 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll

[2012/08/28 19:29:36 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll

[2012/08/28 19:29:36 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll

[2012/08/28 19:29:36 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll

[2012/08/28 19:29:36 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll

[2012/08/28 19:29:36 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll

[2012/08/28 19:29:35 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll

[2012/08/28 19:29:35 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll

[2012/08/28 19:29:35 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll

[2012/08/28 19:29:35 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll

[2012/08/28 19:29:34 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll

[2012/08/28 19:29:34 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll

[2012/08/28 19:29:33 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll

[2012/08/28 19:29:33 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll

[2012/08/28 19:29:33 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll

[2012/08/28 19:29:33 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll

[2012/08/28 19:29:33 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll

[2012/08/28 19:29:33 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll

[2012/08/28 19:29:33 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll

[2012/08/28 19:29:33 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll

[2012/08/28 19:29:32 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll

[2012/08/28 19:29:32 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll

[2012/08/28 19:29:32 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll

[2012/08/28 19:29:32 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll

[2012/08/28 19:29:32 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll

[2012/08/28 19:29:32 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll

[2012/08/28 19:29:31 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll

[2012/08/28 19:29:31 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll

[2012/08/28 19:29:31 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll

[2012/08/28 19:29:31 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll

[2012/08/28 19:29:30 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll

[2012/08/28 19:29:30 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll

[2012/08/28 19:29:29 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll

[2012/08/28 19:29:29 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll

[2012/08/28 19:29:29 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll

[2012/08/28 19:29:29 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll

[2012/08/28 19:29:28 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll

[2012/08/28 19:29:28 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll

[2012/08/28 19:29:27 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll

[2012/08/28 19:29:27 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll

[2012/08/28 19:29:26 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll

[2012/08/28 19:29:26 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll

[2012/08/28 19:29:22 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll

[2012/08/28 19:29:22 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll

[2012/08/28 19:29:21 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll

[2012/08/28 19:29:21 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll

[2012/08/28 19:29:21 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll

[2012/08/28 19:29:21 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll

[2012/08/28 19:29:20 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll

[2012/08/28 19:29:20 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll

[2012/08/28 19:29:20 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll

[2012/08/28 19:29:20 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll

[2012/08/28 19:29:19 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll

[2012/08/28 19:29:19 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll

[2012/08/28 19:29:19 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll

[2012/08/28 19:29:19 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll

[2012/08/28 19:29:18 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll

[2012/08/28 19:29:18 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll

[2012/08/28 19:29:18 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll

[2012/08/28 19:29:18 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll

[2012/08/28 19:20:47 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx

[2012/08/28 19:05:20 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys

[2012/08/28 19:05:20 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys

[2012/08/28 19:05:19 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll

[2012/08/28 19:05:19 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe

[2012/08/28 19:05:19 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys

[2012/08/28 19:05:18 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll

[2012/08/28 19:05:18 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys

[2012/08/28 19:05:18 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys

[2012/08/28 19:05:18 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe

[2012/08/28 18:47:37 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat

[2012/08/28 18:47:37 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat

[2012/08/28 18:41:16 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe

[2012/08/28 18:34:36 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\DMCache

[2012/08/28 18:34:34 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager

[2012/08/28 18:34:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager

[2012/08/28 18:34:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Download Manager

[2012/08/28 18:33:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

[2012/08/28 18:33:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

[2012/08/28 18:33:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2012/08/28 18:22:14 | 000,024,672 | ---- | C] (Resplendence Software Projects Sp.) -- C:\Windows\SysNative\drivers\rspLLL64.sys

[2012/08/28 18:22:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LatencyMon

[2012/08/28 18:22:14 | 000,000,000 | ---D | C] -- C:\Program Files\LatencyMon

[2012/08/28 18:19:22 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat

[2012/08/28 18:19:22 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat

[2012/08/28 18:19:22 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll

[2012/08/28 18:19:22 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl

[2012/08/28 18:19:22 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl

[2012/08/28 18:19:22 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll

[2012/08/28 18:19:22 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll

[2012/08/28 18:19:22 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll

[2012/08/28 18:19:22 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll

[2012/08/28 18:19:22 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll

[2012/08/28 18:19:22 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll

[2012/08/28 18:19:22 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec

[2012/08/28 18:19:22 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll

[2012/08/28 18:19:22 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec

[2012/08/28 18:19:22 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll

[2012/08/28 18:19:22 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll

[2012/08/28 18:19:22 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll

[2012/08/28 18:19:22 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll

[2012/08/28 18:19:22 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll

[2012/08/28 18:19:22 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll

[2012/08/28 18:19:22 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll

[2012/08/28 18:19:22 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll

[2012/08/28 18:19:22 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll

[2012/08/28 18:19:22 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe

[2012/08/28 18:19:22 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe

[2012/08/28 18:19:22 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll

[2012/08/28 18:19:22 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll

[2012/08/28 18:19:22 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll

[2012/08/28 18:19:22 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe

[2012/08/28 18:19:22 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll

[2012/08/28 18:19:22 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe

[2012/08/28 18:19:22 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe

[2012/08/28 18:19:22 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll

[2012/08/28 18:19:22 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll

[2012/08/28 18:19:22 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe

[2012/08/28 18:19:22 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll

[2012/08/28 18:19:22 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll

[2012/08/28 18:19:22 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll

[2012/08/28 18:19:22 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll

[2012/08/28 18:19:22 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll

[2012/08/28 18:19:22 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll

[2012/08/28 18:19:22 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll

[2012/08/28 18:19:22 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll

[2012/08/28 18:19:22 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll

[2012/08/28 18:19:22 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll

[2012/08/28 18:19:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe

[2012/08/28 18:19:22 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe

[2012/08/28 18:19:22 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe

[2012/08/28 18:19:22 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll

[2012/08/28 18:19:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll

[2012/08/28 18:19:22 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll

[2012/08/28 18:19:22 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll

[2012/08/28 18:19:22 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx

[2012/08/28 18:19:22 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe

[2012/08/28 18:19:22 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe

[2012/08/28 18:19:22 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll

[2012/08/28 18:19:22 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe

[2012/08/28 18:19:22 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll

[2012/08/28 18:19:22 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll

[2012/08/28 18:19:22 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll

[2012/08/28 18:19:22 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx

[2012/08/28 18:19:22 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll

[2012/08/28 18:19:22 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll

[2012/08/28 18:19:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll

[2012/08/28 18:19:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll

[2012/08/28 18:19:22 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll

[2012/08/28 18:19:22 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll

[2012/08/28 18:19:22 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll

[2012/08/28 18:19:22 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll

[2012/08/28 18:19:22 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe

[2012/08/28 18:19:22 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe

[2012/08/28 18:19:22 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe

[2012/08/28 18:14:03 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll

[2012/08/28 18:14:03 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll

[2012/08/28 18:14:03 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys

[2012/08/28 18:12:19 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll

[2012/08/28 18:12:19 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll

[2012/08/28 18:12:14 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll

[2012/08/28 18:11:55 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll

[2012/08/28 18:11:55 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll

[2012/08/28 18:11:55 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll

[2012/08/28 18:11:55 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe

[2012/08/28 18:11:55 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll

[2012/08/28 18:11:55 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll

[2012/08/28 18:11:55 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe

[2012/08/28 18:11:55 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll

[2012/08/28 18:11:54 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll

[2012/08/28 18:11:54 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll

[2012/08/28 18:11:54 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe

[2012/08/28 18:11:54 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll

[2012/08/28 18:11:54 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll

[2012/08/28 18:11:54 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll

[2012/08/28 18:11:54 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll

[2012/08/28 18:11:54 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll

[2012/08/28 18:11:54 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll

[2012/08/28 18:11:54 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll

[2012/08/28 18:11:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll

artins90 · September 21, 2012

[2012/08/28 18:11:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe

[2012/08/28 18:11:45 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe

[2012/08/28 18:11:45 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe

[2012/08/28 18:11:44 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe

[2012/08/28 18:11:43 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll

[2012/08/28 18:11:43 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll

[2012/08/28 18:11:42 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll

[2012/08/28 18:11:42 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll

[2012/08/28 18:11:42 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll

[2012/08/28 18:11:42 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll

[2012/08/28 18:11:42 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll

[2012/08/28 18:11:42 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll

[2012/08/28 18:11:42 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll

[2012/08/28 18:11:42 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe

[2012/08/28 18:11:42 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe

[2012/08/28 18:11:41 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll

[2012/08/28 18:11:41 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll

[2012/08/28 18:11:41 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll

[2012/08/28 18:11:41 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll

[2012/08/28 18:11:40 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll

[2012/08/28 18:11:40 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll

[2012/08/28 18:11:39 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll

[2012/08/28 18:11:39 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll

[2012/08/28 18:11:39 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax

[2012/08/28 18:11:39 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax

[2012/08/28 18:11:38 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll

[2012/08/28 18:11:38 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll

[2012/08/28 18:11:38 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll

[2012/08/28 18:11:38 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll

[2012/08/28 18:11:38 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll

[2012/08/28 18:11:34 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll

[2012/08/28 18:11:34 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll

[2012/08/28 18:11:34 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll

[2012/08/28 18:11:34 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll

[2012/08/28 18:11:33 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll

[2012/08/28 18:11:33 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll

[2012/08/28 18:11:33 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll

[2012/08/28 18:11:33 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll

[2012/08/28 18:11:33 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll

[2012/08/28 18:11:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll

[2012/08/28 18:11:31 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll

[2012/08/28 18:11:31 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll

[2012/08/28 18:11:30 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll

[2012/08/28 18:11:30 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll

[2012/08/28 18:11:28 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll

[2012/08/28 18:11:27 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll

[2012/08/28 18:11:27 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe

[2012/08/28 18:11:26 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi

[2012/08/28 18:11:26 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe

[2012/08/28 18:11:26 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi

[2012/08/28 18:11:26 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe

[2012/08/28 18:11:26 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll

[2012/08/28 18:11:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll

[2012/08/28 18:11:26 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll

[2012/08/28 18:11:26 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe

[2012/08/28 18:11:26 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll

[2012/08/28 18:11:26 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll

[2012/08/28 18:11:26 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll

[2012/08/28 18:11:25 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl

[2012/08/28 18:11:25 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl

[2012/08/28 18:11:25 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe

[2012/08/28 18:11:25 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll

[2012/08/28 18:11:19 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll

[2012/08/28 18:11:19 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll

[2012/08/28 18:11:19 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys

[2012/08/28 18:11:19 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe

[2012/08/28 18:11:18 | 001,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll

[2012/08/28 18:11:18 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll

[2012/08/28 18:11:17 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll

[2012/08/28 18:11:17 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll

[2012/08/28 18:11:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe

[2012/08/28 18:11:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe

[2012/08/28 18:10:59 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe

[2012/08/28 18:10:59 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe

[2012/08/28 18:10:57 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll

[2012/08/28 18:10:57 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll

[2012/08/28 18:10:57 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll

[2012/08/28 18:10:57 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax

[2012/08/28 18:10:57 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax

[2012/08/28 18:10:56 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll

[2012/08/28 18:10:56 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll

[2012/08/28 18:10:55 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe

[2012/08/28 18:10:55 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll

[2012/08/28 18:10:55 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll

[2012/08/28 18:10:55 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll

[2012/08/28 18:10:55 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll

[2012/08/28 18:10:55 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll

[2012/08/28 18:10:55 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll

[2012/08/28 18:10:55 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll

[2012/08/28 18:10:55 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll

[2012/08/28 18:10:55 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll

[2012/08/28 18:10:54 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe

[2012/08/28 18:10:54 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll

[2012/08/28 18:10:54 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll

[2012/08/28 18:10:54 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe

[2012/08/28 18:10:53 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll

[2012/08/28 18:10:53 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll

[2012/08/28 18:10:53 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll

[2012/08/28 18:10:53 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll

[2012/08/28 18:10:53 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll

[2012/08/28 18:10:52 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll

[2012/08/28 18:10:52 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll

[2012/08/28 18:10:51 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll

[2012/08/28 18:09:29 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll

[2012/08/28 18:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll

[2012/08/28 18:08:26 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll

[2012/08/28 18:08:26 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll

[2012/08/28 18:08:24 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll

[2012/08/28 18:08:24 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll

[2012/08/28 18:08:15 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll

[2012/08/28 18:08:15 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll

[2012/08/28 18:08:05 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll

[2012/08/28 18:06:41 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome

[2012/08/28 18:06:05 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll

[2012/08/28 18:06:05 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll

[2012/08/28 18:06:02 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Google

[2012/08/28 18:05:52 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Deployment

[2012/08/28 18:05:52 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Apps

[2012/08/28 18:05:04 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll

[2012/08/28 18:05:04 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe

[2012/08/28 18:05:04 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll

[2012/08/28 18:04:59 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll

[2012/08/28 18:04:59 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll

[2012/08/28 18:04:59 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll

[2012/08/28 18:04:55 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll

[2012/08/28 18:04:55 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe

[2012/08/28 17:58:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip

[2012/08/28 17:58:09 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip

[2012/08/28 17:55:48 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\ESET

[2012/08/28 17:55:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET

[2012/08/28 17:55:17 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET

[2012/08/28 17:55:17 | 000,000,000 | ---D | C] -- C:\Program Files\ESET

[2012/08/28 17:51:36 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\ATI

[2012/08/28 17:51:36 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\ATI

[2012/08/28 17:51:36 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI

[2012/08/28 17:48:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASM104xUSB3

[2012/08/28 17:47:25 | 000,121,344 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelOpenCL64.dll

[2012/08/28 17:47:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel

[2012/08/28 17:47:24 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\IntelOpenCL32.dll

[2012/08/28 17:47:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel

[2012/08/28 17:47:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel

[2012/08/28 17:46:24 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM

[2012/08/28 17:46:24 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek

[2012/08/28 17:46:19 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll

[2012/08/28 17:46:19 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll

[2012/08/28 17:46:19 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll

[2012/08/28 17:46:19 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll

[2012/08/28 17:46:19 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll

[2012/08/28 17:46:19 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl

[2012/08/28 17:46:19 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll

[2012/08/28 17:46:19 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll

[2012/08/28 17:46:19 | 000,897,152 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll

[2012/08/28 17:46:19 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll

[2012/08/28 17:46:19 | 000,753,280 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll

[2012/08/28 17:46:19 | 000,626,304 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBTHX64.dll

[2012/08/28 17:46:19 | 000,561,792 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBTHX32.dll

[2012/08/28 17:46:19 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll

[2012/08/28 17:46:19 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll

[2012/08/28 17:46:19 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll

[2012/08/28 17:46:19 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll

[2012/08/28 17:46:19 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll

[2012/08/28 17:46:19 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll

[2012/08/28 17:46:19 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll

[2012/08/28 17:46:19 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll

[2012/08/28 17:46:19 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll

[2012/08/28 17:46:19 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll

[2012/08/28 17:46:19 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll

[2012/08/28 17:46:19 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll

[2012/08/28 17:46:19 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll

[2012/08/28 17:46:19 | 000,083,072 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll

[2012/08/28 17:46:19 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll

[2012/08/28 17:46:19 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll

[2012/08/28 17:46:18 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll

[2012/08/28 17:46:18 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll

[2012/08/28 17:46:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek

[2012/08/28 17:46:17 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll

[2012/08/28 17:46:17 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp

[2012/08/28 17:46:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield

[2012/08/28 17:45:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP

[2012/08/28 17:45:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies

[2012/08/28 17:45:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies

[2012/08/28 17:45:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies

[2012/08/28 17:45:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI

[2012/08/28 17:45:07 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies

[2012/08/28 17:31:02 | 000,696,520 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe

[2012/08/28 17:31:02 | 000,073,416 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

[2012/08/28 17:31:02 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed

[2012/08/28 17:31:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed

[2012/08/28 17:24:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Rockstar Games

[2012/08/28 17:24:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Remedy

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\World in Conflict

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Wings of Prey

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\WBFSManager

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\WB Games

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Ubisoft Game Launcher

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\THQ

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\The Witcher 2

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\storage

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\SSDD

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\SniperV2

[2012/08/28 17:23:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Skyrim

[2012/08/28 17:23:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\signal studios

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Red 5 Studios

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\PunkBuster

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Packages

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\NBGI

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Microsoft Help

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Microsoft Games

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Insanely Twisted Shadow Planet

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Gas Powered Games

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\FalloutNV

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\ESET

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\EA Games

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\dxhr

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Demiurge Studios

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Darksiders2

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Darksiders

[2012/08/28 17:23:44 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Criterion Games

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Codemasters

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\CAPCOM

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\BladesOfTime

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\bizarre creations

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\bitComposer

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\BIT.TRIP RUNNER

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Bit.Trip Beat

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\BF3

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\BC

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Aspyr

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\AliensVsPredator

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\ALI213

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Activision

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\ABBYY

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\4A Games

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\3DMGAME

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\2K Games

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\28070

[2012/08/28 17:23:43 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\28050

[2012/08/28 17:23:32 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\YOUDONTKNOWJACK

[2012/08/28 17:23:32 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\WinRAR

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Ubisoft

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Trine2

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\TI3Parser

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\runic games

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Rovio

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\rigonauts

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Red Alert 3 Uprising

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Nicalis

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\NationRed

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Mp3tag

[2012/08/28 17:23:31 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Media Player Classic

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Macromedia

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\LolClient

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Lionhead Studios

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\IDM

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Gatling Gears

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Fatshark

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Doublefine

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Day 1 Studios

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\DarknessII

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Command and Conquer 4

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Command & Conquer 3 Tiberium Wars

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Capcom

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Bioshock2

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Bioshock

[2012/08/28 17:23:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Adobe

[2012/08/28 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\World in Conflict

[2012/08/28 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Witcher 2

[2012/08/28 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\WB Games

[2012/08/28 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Virtua Tennis 4

[2012/08/28 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Ubisoft

[2012/08/28 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Syndicate

[2012/08/28 17:18:13 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\StarCraft II

[2012/08/28 17:18:13 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Square Enix

[2012/08/28 17:18:13 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Singularity

[2012/08/28 17:18:13 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\SHIFT 2 UNLEASHED

[2012/08/28 17:18:13 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\SEGA

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Rockstar Games

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Remedy

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Prince of Persia - The Forgotten Sands

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Orcs Must Die

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\OnLive App

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\NinjaBlade

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\NFSTR

[2012/08/28 17:18:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\NBGI

[2012/08/28 17:17:51 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Documents\i68Backups

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\My Games

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\LucasArts

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\KONAMI

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Inversion Saves

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Hard Reset

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Giochi

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Front Mission Evolved

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\f

[2012/08/28 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\EXPLODEMON!

[2012/08/28 17:17:50 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\EA Games

[2012/08/28 17:17:50 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Disney Interactive Studios

[2012/08/28 17:17:50 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Criterion Games

[2012/08/28 17:17:50 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Command and Conquer 4

[2012/08/28 17:17:50 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Codemasters

[2012/08/28 17:17:49 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\CAPCOM

[2012/08/28 17:17:49 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\BotaniculaSaves

[2012/08/28 17:17:48 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\BioWare

[2012/08/28 17:17:48 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Bioshock2

[2012/08/28 17:17:48 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Bioshock

[2012/08/28 17:17:48 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\BFBC2

[2012/08/28 17:17:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Battlefield Heroes

[2012/08/28 17:17:46 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Battlefield 3

[2012/08/28 17:17:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Aspyr

[2012/08/28 17:17:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Anki

[2012/08/28 17:17:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\ALI213

[2012/08/28 17:17:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\Activision

[2012/08/28 17:17:45 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Documents\4A Games

[2012/08/28 17:17:12 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Desktop\PhotoshopPortable

[2012/08/28 17:17:02 | 000,000,000 | ---D | C] -- C:\Users\Artins90\Desktop\Downloader

[2012/08/28 17:01:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation

[2012/08/28 17:00:31 | 000,000,000 | ---D | C] -- C:\Games

[2012/08/28 17:00:27 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Intel Corporation

[2012/08/28 16:58:03 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

[2012/08/28 16:57:49 | 000,569,152 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStor.sys

[2012/08/28 16:57:49 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information

[2012/08/28 16:57:48 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\InstallShield

[2012/08/28 16:54:35 | 000,000,000 | ---D | C] -- C:\Program Files\Intel

[2012/08/28 16:54:25 | 000,524,704 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\PROUnstl.exe

[2012/08/28 16:52:41 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll

[2012/08/28 16:52:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel

[2012/08/28 16:38:33 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Diagnostics

[2012/08/28 16:36:40 | 000,000,000 | R--D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

[2012/08/28 16:36:40 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Searches

[2012/08/28 16:36:40 | 000,000,000 | R--D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

[2012/08/28 16:36:40 | 000,000,000 | -H-D | C] -- C:\Users\Artins90\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned

[2012/08/28 16:36:33 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Identities

[2012/08/28 16:36:31 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Contacts

[2012/08/28 16:36:30 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\VirtualStore

[2012/08/28 16:36:22 | 000,000,000 | --SD | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Videos

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Saved Games

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Pictures

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Music

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Links

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Favorites

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Downloads

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Documents

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\Desktop

[2012/08/28 16:36:22 | 000,000,000 | R--D | C] -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\AppData\Local\Temporary Internet Files

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Templates

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Start Menu

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\SendTo

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Recent

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\PrintHood

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\NetHood

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Documents\My Videos

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Documents\My Pictures

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Documents\My Music

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\My Documents

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Local Settings

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\AppData\Local\History

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Cookies

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\Application Data

[2012/08/28 16:36:22 | 000,000,000 | -HSD | C] -- C:\Users\Artins90\AppData\Local\Application Data

[2012/08/28 16:36:22 | 000,000,000 | -H-D | C] -- C:\Users\Artins90\AppData

[2012/08/28 16:36:22 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\temp

[2012/08/28 16:36:22 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Local\Microsoft

[2012/08/28 16:36:22 | 000,000,000 | ---D | C] -- C:\Users\Artins90\AppData\Roaming\Media Center Programs

[2012/08/28 16:36:13 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution

[2012/08/28 16:32:04 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch

[2012/08/28 16:31:38 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[2012/08/28 15:54:42 | 000,000,000 | ---D | C] -- C:\Anime

[2012/08/24 11:04:00 | 000,158,944 | ---- | C] (Tonec Inc.) -- C:\Windows\SysNative\drivers\idmwfp.sys

[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/21 15:59:49 | 000,600,576 | ---- | M] (OldTimer Tools) -- C:\Users\Artins90\Desktop\OTL.exe

[2012/09/21 15:16:00 | 000,001,172 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2471622516-2608444709-4184588894-1000UA.job

[2012/09/21 14:16:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2471622516-2608444709-4184588894-1000Core.job

[2012/09/21 13:01:14 | 000,026,352 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

[2012/09/21 13:01:14 | 000,026,352 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

[2012/09/21 12:59:08 | 000,778,834 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI

[2012/09/21 12:59:08 | 000,651,938 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat

[2012/09/21 12:59:08 | 000,120,870 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat

[2012/09/21 12:53:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2012/09/21 12:53:52 | 2072,289,279 | -HS- | M] () -- C:\hiberfil.sys

[2012/09/18 23:36:27 | 000,001,536 | ---- | M] () -- C:\Users\Public\Desktop\F1 2012.lnk

[2012/09/18 18:10:11 | 000,001,878 | ---- | M] () -- C:\Users\Public\Desktop\Borderlands 2.lnk

[2012/09/13 00:28:16 | 000,283,032 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr

[2012/09/13 00:28:16 | 000,283,032 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe

[2012/09/13 00:27:27 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0

[2012/09/11 16:38:37 | 000,000,860 | ---- | M] () -- C:\Users\Public\Desktop\FIFA 13 Demo.lnk

[2012/09/10 21:10:57 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

[2012/09/10 21:10:56 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll

[2012/09/10 21:10:56 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll

[2012/09/10 21:10:56 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe

[2012/09/10 21:10:56 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe

[2012/09/10 21:10:56 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe

[2012/09/09 21:37:09 | 000,000,656 | ---- | M] () -- C:\Users\Artins90\Desktop\Closure.lnk

[2012/09/05 16:15:59 | 000,000,677 | ---- | M] () -- C:\Users\Public\Desktop\Shad'O.lnk

[2012/09/05 04:19:24 | 005,556,904 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll

[2012/09/05 04:17:50 | 010,692,096 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys

[2012/09/05 04:02:52 | 000,070,144 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst_9.001.dll

[2012/09/05 04:00:26 | 000,298,080 | ---- | M] () -- C:\Windows\SysWow64\atiapfxx.blb

[2012/09/05 04:00:26 | 000,298,080 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb

[2012/09/05 03:57:36 | 000,163,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe

[2012/09/05 03:56:32 | 023,823,872 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll

[2012/09/05 03:56:10 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll

[2012/09/05 03:56:08 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll

[2012/09/05 03:56:02 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll

[2012/09/05 03:56:00 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll

[2012/09/05 03:55:48 | 016,082,432 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll

[2012/09/05 03:51:08 | 013,703,168 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll

[2012/09/05 03:42:18 | 000,934,912 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll

[2012/09/05 03:40:28 | 001,120,256 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\aticfx64.dll

[2012/09/05 03:38:28 | 019,622,912 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll

[2012/09/05 03:38:24 | 006,477,824 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll

[2012/09/05 03:33:18 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atidemgy.dll

[2012/09/05 03:33:06 | 000,536,064 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe

[2012/09/05 03:32:16 | 000,239,616 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe

[2012/09/05 03:30:32 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll

[2012/09/05 03:30:16 | 000,021,504 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll

[2012/09/05 03:30:12 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll

[2012/09/05 03:30:06 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll

[2012/09/05 03:27:12 | 003,127,296 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll

[2012/09/05 03:25:44 | 002,886,016 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap

[2012/09/05 03:21:32 | 007,107,072 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atidxx64.dll

[2012/09/05 03:19:16 | 006,703,616 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll

[2012/09/05 03:18:12 | 002,691,584 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll

[2012/09/05 03:17:00 | 002,915,680 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap

[2012/09/05 03:08:18 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll

[2012/09/05 03:08:18 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll

[2012/09/05 03:08:08 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll

[2012/09/05 03:08:08 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll

[2012/09/05 03:08:06 | 000,595,456 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll

[2012/09/05 03:07:54 | 000,405,504 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll

[2012/09/05 03:07:40 | 000,017,920 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll

[2012/09/05 03:07:38 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll

[2012/09/05 03:07:38 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll

[2012/09/05 03:07:34 | 000,041,984 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll

[2012/09/05 03:07:26 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll

[2012/09/05 03:07:18 | 000,459,264 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys

[2012/09/05 03:05:54 | 000,129,536 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll

[2012/09/05 03:05:46 | 000,109,568 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll

[2012/09/05 03:05:40 | 000,103,424 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll

[2012/09/05 03:05:30 | 000,082,944 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll

[2012/09/05 03:05:14 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll

[2012/09/04 22:10:38 | 000,038,204 | ---- | M] () -- C:\Windows\atiogl.xml

[2012/09/02 22:34:26 | 000,000,755 | ---- | M] () -- C:\Users\Artins90\Desktop\Iron Brigade.lnk

[2012/09/01 23:20:56 | 000,003,608 | ---- | M] () -- C:\Windows\SysWow64\EasyRedirect.ini

[2012/09/01 23:20:56 | 000,002,152 | ---- | M] () -- C:\Windows\SysWow64\EasyRedirectOff.ini

[2012/09/01 23:20:56 | 000,002,152 | ---- | M] () -- C:\Windows\SysNative\EasyRedirectOff.ini

[2012/08/29 03:06:51 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe

[2012/08/29 03:06:37 | 000,840,264 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe

[2012/08/29 00:02:37 | 000,001,667 | ---- | M] () -- C:\Users\Public\Desktop\Dark Souls Prepare to Die Edition.lnk

[2012/08/28 21:05:48 | 000,001,180 | ---- | M] () -- C:\Users\Artins90\Desktop\Hitman Sniper Challenge.lnk

[2012/08/28 20:22:09 | 000,764,302 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI

[2012/08/28 20:17:23 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys

[2012/08/28 19:08:49 | 000,000,057 | ---- | M] () -- C:\Windows\SysWow64\mapisvc.inf

[2012/08/28 18:50:46 | 000,001,441 | ---- | M] () -- C:\Users\Artins90\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2012/08/28 18:49:50 | 000,274,568 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

[2012/08/28 18:25:29 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf

[2012/08/28 18:19:22 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat

[2012/08/28 18:19:22 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat

[2012/08/28 18:19:22 | 002,312,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll

[2012/08/28 18:19:22 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl

[2012/08/28 18:19:22 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl

[2012/08/28 18:19:22 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll

[2012/08/28 18:19:22 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll

[2012/08/28 18:19:22 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll

[2012/08/28 18:19:22 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll

[2012/08/28 18:19:22 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll

[2012/08/28 18:19:22 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll

[2012/08/28 18:19:22 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec

[2012/08/28 18:19:22 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll

[2012/08/28 18:19:22 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec

[2012/08/28 18:19:22 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll

[2012/08/28 18:19:22 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll

[2012/08/28 18:19:22 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll

[2012/08/28 18:19:22 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll

[2012/08/28 18:19:22 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll

[2012/08/28 18:19:22 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll

[2012/08/28 18:19:22 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll

[2012/08/28 18:19:22 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll

[2012/08/28 18:19:22 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll

[2012/08/28 18:19:22 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe

[2012/08/28 18:19:22 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe

[2012/08/28 18:19:22 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll

[2012/08/28 18:19:22 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll

[2012/08/28 18:19:22 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll

[2012/08/28 18:19:22 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe

[2012/08/28 18:19:22 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll

[2012/08/28 18:19:22 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe

[2012/08/28 18:19:22 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe

[2012/08/28 18:19:22 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll

[2012/08/28 18:19:22 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll

[2012/08/28 18:19:22 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe

[2012/08/28 18:19:22 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll

[2012/08/28 18:19:22 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll

[2012/08/28 18:19:22 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll

[2012/08/28 18:19:22 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll

[2012/08/28 18:19:22 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll

[2012/08/28 18:19:22 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll

[2012/08/28 18:19:22 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll

[2012/08/28 18:19:22 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll

[2012/08/28 18:19:22 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll

[2012/08/28 18:19:22 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll

[2012/08/28 18:19:22 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe

[2012/08/28 18:19:22 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe

[2012/08/28 18:19:22 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe

[2012/08/28 18:19:22 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll

[2012/08/28 18:19:22 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll

[2012/08/28 18:19:22 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll

[2012/08/28 18:19:22 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll

[2012/08/28 18:19:22 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx

[2012/08/28 18:19:22 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe

[2012/08/28 18:19:22 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe

[2012/08/28 18:19:22 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll

[2012/08/28 18:19:22 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe

[2012/08/28 18:19:22 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll

[2012/08/28 18:19:22 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf

[2012/08/28 18:19:22 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf

[2012/08/28 18:19:22 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll

[2012/08/28 18:19:22 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll

[2012/08/28 18:19:22 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx

[2012/08/28 18:19:22 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll

[2012/08/28 18:19:22 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll

[2012/08/28 18:19:22 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll

[2012/08/28 18:19:22 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll

[2012/08/28 18:19:22 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll

[2012/08/28 18:19:22 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll

[2012/08/28 18:19:22 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll

[2012/08/28 18:19:22 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll

[2012/08/28 18:19:22 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe

[2012/08/28 18:19:22 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe

[2012/08/28 18:19:22 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe

[2012/08/28 17:51:17 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin

[2012/08/28 17:31:02 | 000,696,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe

[2012/08/28 17:31:02 | 000,073,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

[2012/08/28 16:34:13 | 000,116,385 | ---- | M] () -- C:\Windows\SysWow64\license.rtf

[2012/08/28 16:34:13 | 000,116,385 | ---- | M] () -- C:\Windows\SysNative\license.rtf

[2012/08/28 16:32:35 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf

[2012/08/22 20:12:40 | 000,376,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys

[2012/08/22 20:12:33 | 000,288,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS

[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/18 23:41:43 | 002,915,680 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap

[2012/09/18 23:41:43 | 002,886,016 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap

[2012/09/18 23:41:43 | 000,632,252 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat

[2012/09/18 23:41:43 | 000,298,080 | ---- | C] () -- C:\Windows\SysWow64\atiapfxx.blb

[2012/09/18 23:41:43 | 000,298,080 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb

[2012/09/18 23:41:43 | 000,038,204 | ---- | C] () -- C:\Windows\atiogl.xml

[2012/09/18 23:36:27 | 000,001,536 | ---- | C] () -- C:\Users\Public\Desktop\F1 2012.lnk

[2012/09/18 18:10:11 | 000,001,878 | ---- | C] () -- C:\Users\Public\Desktop\Borderlands 2.lnk

[2012/09/11 16:38:37 | 000,000,860 | ---- | C] () -- C:\Users\Public\Desktop\FIFA 13 Demo.lnk

[2012/09/09 21:37:09 | 000,000,656 | ---- | C] () -- C:\Users\Artins90\Desktop\Closure.lnk

[2012/09/05 16:15:59 | 000,000,677 | ---- | C] () -- C:\Users\Public\Desktop\Shad'O.lnk

[2012/09/02 22:34:26 | 000,000,755 | ---- | C] () -- C:\Users\Artins90\Desktop\Iron Brigade.lnk

[2012/09/01 23:17:58 | 000,003,608 | ---- | C] () -- C:\Windows\SysWow64\EasyRedirect.ini

[2012/09/01 23:17:58 | 000,002,152 | ---- | C] () -- C:\Windows\SysWow64\EasyRedirectOff.ini

[2012/09/01 23:17:58 | 000,002,152 | ---- | C] () -- C:\Windows\SysNative\EasyRedirectOff.ini

[2012/08/29 19:53:50 | 000,283,032 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr

[2012/08/29 03:07:23 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0

[2012/08/29 03:07:23 | 000,283,032 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe

[2012/08/29 03:06:51 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe

[2012/08/29 03:06:50 | 000,840,264 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe

[2012/08/29 00:02:37 | 000,001,667 | ---- | C] () -- C:\Users\Public\Desktop\Dark Souls Prepare to Die Edition.lnk

[2012/08/29 00:00:39 | 000,001,338 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk

[2012/08/28 21:05:48 | 000,001,180 | ---- | C] () -- C:\Users\Artins90\Desktop\Hitman Sniper Challenge.lnk

[2012/08/28 19:39:05 | 000,764,302 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

[2012/08/28 18:25:29 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf

[2012/08/28 18:19:22 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf

[2012/08/28 18:19:22 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf

[2012/08/28 18:06:03 | 000,001,172 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2471622516-2608444709-4184588894-1000UA.job

[2012/08/28 18:06:02 | 000,001,120 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2471622516-2608444709-4184588894-1000Core.job

[2012/08/28 17:51:17 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin

[2012/08/28 17:46:19 | 000,293,889 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT

[2012/08/28 17:17:45 | 000,005,207 | ---- | C] () -- C:\Users\Artins90\Documents\StatementOfResult.pdf

[2012/08/28 17:17:45 | 000,001,656 | ---- | C] () -- C:\Users\Artins90\Documents\584109eb_Artins90.sav

[2012/08/28 17:17:02 | 000,001,335 | ---- | C] () -- C:\Users\Artins90\Desktop\Blacklight Retribution.lnk

[2012/08/28 17:17:02 | 000,001,259 | ---- | C] () -- C:\Users\Artins90\Desktop\The Binding of Isaac.lnk

[2012/08/28 17:17:02 | 000,001,180 | ---- | C] () -- C:\Users\Artins90\Desktop\Street Fighter X Tekken.lnk

[2012/08/28 17:17:02 | 000,000,853 | ---- | C] () -- C:\Users\Artins90\Desktop\Downloads.lnk

[2012/08/28 17:17:02 | 000,000,845 | ---- | C] () -- C:\Users\Artins90\Desktop\League Of Legends.lnk

[2012/08/28 17:17:02 | 000,000,684 | ---- | C] () -- C:\Users\Artins90\Desktop\Rigonauts.lnk

[2012/08/28 16:54:26 | 000,001,904 | ---- | C] () -- C:\Windows\SysNative\SetupBD.din

[2012/08/28 16:37:01 | 000,001,441 | ---- | C] () -- C:\Users\Artins90\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2012/08/28 16:36:43 | 000,001,413 | ---- | C] () -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk

[2012/08/28 16:36:41 | 000,001,447 | ---- | C] () -- C:\Users\Artins90\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

[2012/08/28 16:36:22 | 000,000,290 | ---- | C] () -- C:\Users\Artins90\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk

[2012/08/28 16:36:22 | 000,000,272 | ---- | C] () -- C:\Users\Artins90\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk

[2012/08/28 16:34:10 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

[2012/08/28 16:34:02 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

[2012/08/28 16:32:35 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf

[2012/08/28 16:31:38 | 2072,289,279 | -HS- | C] () -- C:\hiberfil.sys

[2012/07/28 03:39:50 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat

[2012/07/28 03:39:50 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat

[2012/05/21 12:03:36 | 000,963,912 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin

[2012/05/21 12:03:36 | 000,261,208 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin

[2012/05/21 12:03:36 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin

[2012/05/21 11:57:52 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll

[2012/05/21 10:47:36 | 013,214,720 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

[2012/05/02 14:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll

[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat

[2011/09/13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

========== ZeroAccess Check ==========

[2012/08/30 01:17:17 | 000,000,000 | ---D | M] -- C:\Users\Artins90\AppData\LocalLow\Microsoft\Silverlight\is\ae4cmlpu.zd5\wkbtucfw.pf5\1\l

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >

[2012/09/21 12:53:52 | 2072,289,279 | -HS- | M] () -- C:\hiberfil.sys

[2012/09/21 12:53:57 | 1073,741,824 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%\*. /mp /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >

< End of report >

artins90 · September 21, 2012