Problem sa tabovima u mozzili

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 02 Sep 2014 18:56

Zoek.exe v5.0.0.0 Updated 06-August-2014
Tool run by Blue on 02-Sep-14 at 18:47:43.86.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Blue\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

02-Sep-14 6:48:19 PM Zoek.exe System Restore Point Created Succesfully.

Dopuna: 02 Sep 2014 18:58

Zoek.exe v5.0.0.0 Updated 06-August-2014
Tool run by Blue on 02-Sep-14 at 18:47:43.86.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Blue\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

02-Sep-14 6:48:19 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-09-01 07:47:24 357CEBBCD99C8928A2D1A61A6CACC168 43152 ----a-w- C:\Windows\avastSS.scr
2014-09-01 07:33:17 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\ativpsrm.bin
2014-09-01 07:30:58 1FE28F3CCC50948EE65B45B23DA2F65F 33342 ----a-w- C:\Windows\atiogl.xml
2014-09-01 07:24:21 E9BF58E95AF5E1D1BED4A84F092AECEB 1698408 ------r- C:\Windows\RtlExUpd.dll
2014-09-01 07:22:28 718FECF22BF4BD4FC05B79AA4BEC75D0 1769 ----a-w- C:\Windows\Language_trs.ini
2014-09-01 07:22:21 7A092F0946C6909619709AEA718CB281 27174 ----a-w- C:\Windows\Ascd_tmp.ini
====== C:\Users\Blue\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-09-02 06:03:48 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll
2014-09-02 06:03:48 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL
2014-09-02 05:46:49 907281ED4AD35D41B29FFDC211EBAD80 5120 ----a-w- C:\Windows\SysWOW64\wmi.dll
2014-09-02 05:43:39 EDF2A5E96BEC469DA3F64E9BDD386111 180224 ----a-w- C:\Windows\SysWOW64\xmllite.dll
2014-09-02 05:43:28 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll
2014-09-02 05:43:26 EF37EDC20412A01DDD9A42E8D939A5A3 163840 ----a-w- C:\Windows\SysWOW64\odbctrac.dll
2014-09-02 05:43:26 E2D83DAA6A229CFDAF129189A9245889 86016 ----a-w- C:\Windows\SysWOW64\odbccu32.dll
2014-09-02 05:43:26 66ABBF38123D3113BB55EBAFCF37AB92 122880 ----a-w- C:\Windows\SysWOW64\odbccp32.dll
2014-09-02 05:43:26 534BF06B2DEE965A1389A9312545AE03 81920 ----a-w- C:\Windows\SysWOW64\odbccr32.dll
2014-09-02 05:43:26 3FDB77D0BBEEB36AE35077ABC0BF80EC 319488 ----a-w- C:\Windows\SysWOW64\odbcjt32.dll
2014-09-02 05:43:19 75F5E1FE8D55CF8E577E0EC5F2290D3F 530432 ----a-w- C:\Windows\SysWOW64\comctl32.dll
2014-09-02 05:43:14 20104EA66332D24D7C65BBB087C56737 123904 ----a-w- C:\Windows\SysWOW64\poqexec.exe
2014-09-02 05:43:12 EF71BA5DF59034962B0C62314A71351A 193536 ----a-w- C:\Windows\SysWOW64\dhcpcore6.dll
2014-09-02 05:43:12 81F6C1AE23B1C493D9E996C3103915D7 44032 ----a-w- C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-09-02 05:43:02 52D33A22DE04BD9F40E1B1A28B46A95C 3217408 ----a-w- C:\Windows\SysWOW64\mstscax.dll
2014-09-02 05:43:01 F5562EFA9E4867D30EC2330B80FCB25C 131584 ----a-w- C:\Windows\SysWOW64\aaclient.dll
2014-09-02 05:43:01 2A6BFDEDF2C57923E78F970BB15D7E7D 36864 ----a-w- C:\Windows\SysWOW64\tsgqec.dll
2014-09-02 05:42:39 68EAAEDF0365168B804E8728368FA946 175104 ----a-w- C:\Windows\SysWOW64\wintrust.dll
2014-09-02 05:42:25 92FB57D9D865019D26346EB13E15CD75 642048 ----a-w- C:\Windows\SysWOW64\CPFilters.dll
2014-09-02 05:42:25 4D05D7A79E970398D8C687712E65A9B0 850944 ----a-w- C:\Windows\SysWOW64\sbe.dll
2014-09-02 05:42:25 246560C5B7995489F25BF9175F2B6380 199680 ----a-w- C:\Windows\SysWOW64\mpg2splt.ax
2014-09-02 05:42:15 68783E77D401E6392EA6579EBCEF16C8 514560 ----a-w- C:\Windows\SysWOW64\qdvd.dll
2014-09-02 05:42:15 0AE0C4955E1DE29CCDC9DA1B816FE5EE 1328128 ----a-w- C:\Windows\SysWOW64\quartz.dll
2014-09-02 05:42:12 03F3B770DFBED6131653CEDA8CA780F0 442880 ----a-w- C:\Windows\SysWOW64\ntshrui.dll
2014-09-02 05:42:09 465DBF63A5049E4DB4BC5C12FFE781CB 1549312 ----a-w- C:\Windows\SysWOW64\tquery.dll
2014-09-02 05:42:09 236F286E103FD44BD85FDD93097FD5DD 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
2014-09-02 05:42:09 0241CB16136B9A4939CA0395768AE286 1401344 ----a-w- C:\Windows\SysWOW64\mssrch.dll
2014-09-02 05:42:08 E1AC89F6C5252057E6062843E36A6701 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-09-02 05:42:08 DB67C7C62038BDE813CB6486581A7611 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll
2014-09-02 05:42:08 A6CD6B3F71E13E2E45B727FB8A47EA87 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
2014-09-02 05:42:08 987323F0247D023AD1AE52195540ECE0 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll
2014-09-02 05:42:08 5BDF8B0B9A3EADE3A2A6F2ED8D44E36D 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll
2014-09-02 05:42:08 2DC6285EC4F902BE08E7C5FA6D3FD017 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll
2014-09-02 05:41:23 A5F833506BF6A1B5D693E1499DEE2444 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll
2014-09-02 05:41:17 FB19FC5951A88F3C523E35C2C98D23C0 314880 ----a-w- C:\Windows\SysWOW64\webio.dll
2014-09-02 05:40:44 EA093130471090037BB70A4AF86FAD1B 420008 ----a-w- C:\Windows\SysWOW64\locale.nls
2014-09-02 05:40:42 6EADF240080A2CC69E70C13672385D71 428032 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-09-02 05:40:38 CC09E0C9A2D89C6E71D093DC8BD121B7 1168384 ----a-w- C:\Windows\SysWOW64\crypt32.dll
2014-09-02 05:40:37 7CA1BECEA5DE2643ADDAD32670E7A4C9 140288 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll
2014-09-02 05:40:37 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\SysWOW64\cryptnet.dll
2014-09-02 05:40:23 4F8CCD3E7D9F17A7C60FA0AE2466CACF 381440 ----a-w- C:\Windows\SysWOW64\wer.dll
2014-09-02 05:40:19 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll
2014-09-02 05:40:14 7E9917D5309A90E7576653BFE39F80D8 478720 ----a-w- C:\Windows\SysWOW64\timedate.cpl
2014-09-02 05:40:13 E227B810296AA27E6C69307A7B6456E5 1389056 ----a-w- C:\Windows\SysWOW64\msxml6.dll
2014-09-02 05:40:12 8B8D1CEF498678CAB9DF17145D34BC64 1237504 ----a-w- C:\Windows\SysWOW64\msxml3.dll
2014-09-02 05:40:12 2E673E776136354ECFB57BFD62E7EC3D 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll
2014-09-02 05:40:12 0789F82BAE171323F74B8F175D406AB8 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll
2014-09-02 05:39:49 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\SysWOW64\osk.exe
2014-09-02 05:39:38 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\SysWOW64\credui.dll
2014-09-02 05:39:38 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-09-02 05:39:37 AF6655214DEBB2C8446DE843A02AAEBA 99480 ----a-w- C:\Windows\SysWOW64\infocardapi.dll
2014-09-02 05:39:36 8D466B36076BCD7997838C0DDB69764C 619672 ----a-w- C:\Windows\SysWOW64\icardagt.exe
2014-09-02 05:39:35 370FC4421ADE62FC89AC93B345570388 8856 ----a-w- C:\Windows\SysWOW64\icardres.dll
2014-09-02 05:39:27 CC23295DA8F7B5C53F93804D2F5D30EB 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2014-09-02 05:39:27 8CC4638FA7B5B921B9080CF962582C0B 70656 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2014-09-02 05:39:27 7D27E63B54DB093BB0D9E95F81094D75 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2014-09-02 05:39:27 5C6B44F9CAAC475B7B9EBBC29CB7F065 295424 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2014-09-02 05:39:27 2342EC9254F4C60CA98441BD65C89E12 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2014-09-02 05:39:24 DC6612A9EE015A36BA2A27BC9CC12537 1137664 ----a-w- C:\Windows\SysWOW64\mfc42.dll
2014-09-02 05:39:24 24CAEDCD73B5B0E22226283B7B2468C7 1164288 ----a-w- C:\Windows\SysWOW64\mfc42u.dll
2014-09-02 05:39:15 28A8B99DE70F376B18709E6B07D6A352 35480 ----a-w- C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-02 05:38:58 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\SysWOW64\RMActivate_isv.exe
2014-09-02 05:38:58 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\SysWOW64\RMActivate.exe
2014-09-02 05:38:58 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-09-02 05:38:57 BBCE3E9E74C7CEA47FA4115B360AC2C6 423936 ----a-w- C:\Windows\SysWOW64\secproc_isv.dll
2014-09-02 05:38:57 12A9F24DC9F465DA79AC2272D829A81E 428032 ----a-w- C:\Windows\SysWOW64\secproc.dll
2014-09-02 05:38:57 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-09-02 05:38:56 9158DBE2F8483434FC72F320690C9DB8 87040 ----a-w- C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-09-02 05:38:56 7FA485555BF802FE3DB5598004DBDFAC 390144 ----a-w- C:\Windows\SysWOW64\msdrm.dll
2014-09-02 05:38:56 58712A48D31B40EBCB35B47205F87771 87040 ----a-w- C:\Windows\SysWOW64\secproc_ssp.dll
2014-09-02 05:38:36 492FF9C530EC0352B3C904CE9898269D 509440 ----a-w- C:\Windows\SysWOW64\qedit.dll
2014-09-02 05:38:13 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\SysWOW64\WMVDECOD.DLL
2014-09-02 05:37:04 140D9F911182357626165EA0BEB98C4F 156672 ----a-w- C:\Windows\SysWOW64\ncsi.dll
2014-09-02 05:37:03 5078492B9CAC9CB721698DB51F039035 175104 ----a-w- C:\Windows\SysWOW64\netcorehc.dll
2014-09-02 05:37:03 23FC8068953C9BE2D63AE4EF1129112A 18944 ----a-w- C:\Windows\SysWOW64\netevent.dll
2014-09-02 05:37:03 0BA65122FFA7E37564EE86422DBF7AE8 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll
2014-09-02 05:36:57 D08819FEE0CDB8A8A58E2B34D05E7A11 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll
2014-09-02 05:36:49 B40420876B9288E0A1C8CCA8A84E5DC9 270336 ----a-w- C:\Windows\SysWOW64\dnsapi.dll
2014-09-02 05:36:49 ACBC1FB1950AC0C41944A6C8917032EF 28672 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe
2014-09-02 05:36:15 EAF4712B706936C0B10D3B5319B37E81 81920 ----a-w- C:\Windows\SysWOW64\davclnt.dll
2014-09-02 05:36:15 75E8EBD7040CE238684333F97014762A 205824 ----a-w- C:\Windows\SysWOW64\WebClnt.dll
2014-09-02 05:36:08 310F6F492A3B4B1020ED9BF9CCBBE6B6 376832 ----a-w- C:\Windows\SysWOW64\dpnet.dll
2014-09-02 05:36:05 C212A43AA83A717AD38505F23ACDCB33 2363392 ----a-w- C:\Windows\SysWOW64\msi.dll
2014-09-02 05:36:05 9DA1CCDBBF8136AC2383C2624CA8CD14 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2014-09-02 05:36:05 43CD23B65CBF04D6F8ACA984B0EF93FE 1805824 ----a-w- C:\Windows\SysWOW64\authui.dll
2014-09-02 05:35:53 4D59F470985D08139E42D15842816C47 3969984 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2014-09-02 05:35:53 31FA2485DFC773F1E718A4D19F443FA9 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2014-09-02 05:35:51 FBC78B5D12A4F5A62D9C91E0E0E46D46 49664 ----a-w- C:\Windows\SysWOW64\adprovider.dll
2014-09-02 05:35:51 995B39A08421C7725D1DF8DACEBBFC89 538112 ----a-w- C:\Windows\SysWOW64\objsel.dll
2014-09-02 05:35:51 62C0798CC68EBF42F29C92E6CD6DC3D6 36864 ----a-w- C:\Windows\SysWOW64\dimsroam.dll
2014-09-02 05:35:51 461B713DE7F353C6447B744F1A049930 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2014-09-02 05:35:51 335FA669FC952BC4888CEDBDB42607E2 51200 ----a-w- C:\Windows\SysWOW64\cngprovider.dll
2014-09-02 05:35:50 834A859BB331B0B2CCAE25BB1986F80D 47616 ----a-w- C:\Windows\SysWOW64\dpapiprovider.dll
2014-09-02 05:35:50 5E11C55CC4D9330E55CCB22B1F20BB33 35328 ----a-w- C:\Windows\SysWOW64\wincredprovider.dll
2014-09-02 05:35:50 38A30B8E4216BE24D30F766EF3BAC2C7 48128 ----a-w- C:\Windows\SysWOW64\capiprovider.dll
2014-09-02 05:35:49 812A161FC470FA832C3F0CC3D7ACA2F9 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
2014-09-02 05:31:00 E94C583CDE2348950155F2AF2876F34D 231424 ----a-w- C:\Windows\SysWOW64\mswsock.dll
2014-09-02 05:30:58 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\SysWOW64\oflc-nz.rs
2014-09-02 05:30:57 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\SysWOW64\fpb.rs
2014-09-02 05:30:57 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\SysWOW64\grb.rs
2014-09-02 05:30:57 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\SysWOW64\usk.rs
2014-09-02 05:30:57 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\SysWOW64\pegibbfc.rs
2014-09-02 05:30:57 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\SysWOW64\csrr.rs
2014-09-02 05:30:57 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\SysWOW64\pegi.rs
2014-09-02 05:30:57 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\SysWOW64\pegi-pt.rs
2014-09-02 05:30:57 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\SysWOW64\cob-au.rs
2014-09-02 05:30:57 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\SysWOW64\djctq.rs
2014-09-02 05:30:56 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\SysWOW64\esrb.rs
2014-09-02 05:30:56 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\SysWOW64\gameux.dll
2014-09-02 05:30:56 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\SysWOW64\Wpc.dll
2014-09-02 05:30:55 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\SysWOW64\oflc.rs
2014-09-02 05:30:55 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\SysWOW64\cero.rs
2014-09-02 05:30:55 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\SysWOW64\pegi-fi.rs
2014-09-02 05:30:33 68DCA1777D7224A79A9DC3D47BED6D32 75776 ----a-w- C:\Windows\SysWOW64\psisrndr.ax
2014-09-02 05:30:33 00ADF21DE55AA97297FAC65E4F3A0256 465408 ----a-w- C:\Windows\SysWOW64\psisdecd.dll
2014-09-02 05:29:49 D67472125471784DE7147946EDA25FEB 640512 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2014-09-02 05:29:49 A2B0924D50F4435FD389499047CE553A 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2014-09-02 05:29:49 401D25136E26B237D77DA1BF1198B3BD 619520 ----a-w- C:\Windows\SysWOW64\tdh.dll
2014-09-02 05:28:52 DE77619A32EB97C9ED6BE61A2AB18B07 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll
2014-09-02 05:28:46 D23E615E0969AECC1134E372B0B295D1 78336 ----a-w- C:\Windows\SysWOW64\synceng.dll
2014-09-02 05:28:43 1A0BE0092646F564FAF204E678AF8E03 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2014-09-02 05:28:42 F95E1E9D97D25C11F29CA34C843A6F4D 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll
2014-09-02 05:28:42 E3ECF5FFE3DEDF61DC6877B6A99ACBBF 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2014-09-02 05:28:42 C71CC796F0E2E9BD542C87532706FCFE 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2014-09-02 05:28:42 C61DDFE40204F3BE3DF111981D91560E 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2014-09-02 05:28:42 8BA721F76C97A219599E88722AA48875 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2014-09-02 05:28:42 6CB2616152ADCDF39F05B08E4858F476 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2014-09-02 05:28:25 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll
2014-09-02 05:28:17 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\SysWOW64\win32spl.dll
2014-09-02 05:28:10 386BF6FD9FC562B1A5558C49E1C3A6FB 12874240 ----a-w- C:\Windows\SysWOW64\shell32.dll
2014-09-02 05:28:07 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\SysWOW64\cryptdlg.dll
2014-09-02 05:27:59 2A01B40C8334A8124001CFAC256FCA83 102608 ----a-w- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-09-02 05:27:58 72910F1DEB838E6E08A9017BFB7D4F0B 41984 ----a-w- C:\Windows\SysWOW64\browcli.dll
2014-09-02 05:27:58 2FCA0D2C59A855C54BAFA22AA329DF0F 57344 ----a-w- C:\Windows\SysWOW64\netapi32.dll
2014-09-02 05:27:56 9F3D88540DB73F5213D5044CB50006DF 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2014-09-02 05:27:56 76161B9D78A275F8F28DD67436013110 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
2014-09-02 05:27:56 2E1D6624EE2C3F454CADF09DC59E78B0 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2014-09-02 05:27:56 1F76F7CB3C690ACB985C2FD419383B49 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2014-09-02 05:27:56 1E886E327F37F34CC7465F1605D1F3CD 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2014-09-02 05:27:53 A30AB03E7C837A17AC70E67E63B8E2F6 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2014-09-02 05:27:41 A81331D7EB6C5D1F7B1E4E4FC15F3EC0 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
2014-09-02 05:27:22 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx
2014-09-02 05:27:21 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll
2014-09-02 05:27:21 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe
2014-09-02 05:27:21 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe
2014-09-02 05:27:20 F50EC0B39521D098373137E5E3CB4405 1077760 ----a-w- C:\Windows\SysWOW64\DWrite.dll
2014-09-02 05:27:17 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\SysWOW64\certutil.exe
2014-09-02 05:27:16 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\SysWOW64\certenc.dll
2014-09-02 05:27:04 A0E053D8D97ED0F913D56E6AF21DD26F 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2014-09-02 05:27:04 230AAF45031E87638CA4053C0399C1E6 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2014-09-02 05:26:43 980305AC3AF53C1964A11190451ABB32 311808 ----a-w- C:\Windows\SysWOW64\gdi32.dll
2014-09-02 05:26:42 ED27D1D75BF5E683AD3EDD9E3123520A 741376 ----a-w- C:\Windows\SysWOW64\inetcomm.dll
2014-09-02 05:26:38 F436E847FA799ECD75AD8C313673F450 145920 ----a-w- C:\Windows\SysWOW64\cfgmgr32.dll
2014-09-02 05:26:38 B28BD86791468F427321458985F6A0E3 252928 ----a-w- C:\Windows\SysWOW64\drvinst.exe
2014-09-02 05:26:38 2EEFF4502F5E13B1BED4A04CCAD64C08 64512 ----a-w- C:\Windows\SysWOW64\devobj.dll
2014-09-02 05:26:38 162D247E995EAEBF3EF4289069E1111C 44544 ----a-w- C:\Windows\SysWOW64\devrtl.dll
2014-09-02 05:26:37 5D1BFF0FCE80F9E2E539F436710D4A79 31232 ----a-w- C:\Windows\SysWOW64\prevhost.exe
2014-09-02 05:26:35 9DC80A8AAAAAC397BDAB3C67165A824E 690688 ----a-w- C:\Windows\SysWOW64\msvcrt.dll
2014-09-02 05:05:28 813845D5C5D8325CA5E8B1F547016378 534528 ----a-w- C:\Windows\SysWOW64\EncDec.dll
2014-09-02 05:00:36 3B7C1A53047FF6ACEFD9BA6E281DEBB7 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll
2014-09-02 05:00:33 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-09-02 05:00:33 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\SysWOW64\nshwfp.dll
2014-09-02 04:59:43 D8BED6BA298DBAAF6F3D746739FCD333 664064 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2014-09-02 04:59:13 7B90C5F0A510852036822EE860CABF26 67072 ----a-w- C:\Windows\SysWOW64\packager.dll
2014-09-02 04:57:38 A929495721C1105EBD36DDEDF0F5B5E4 64512 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll
2014-09-02 04:57:38 901CC8AB9E7CB35380C338D30A006C5D 16384 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe
2014-09-02 04:57:38 81237A794334CF5EB5DE08C3C3F644E1 50176 ----a-w- C:\Windows\SysWOW64\mshta.exe
2014-09-02 04:57:38 6CA73DA8E3917625AA3E8E2B0AB75C9D 48640 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-09-02 04:57:38 0634B401600D31D00F2F5323E8BF6AC0 1265664 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-09-02 04:57:37 7E9A4FADEF0D3181E789618B70B5F757 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-09-02 04:57:37 56C33D3EEC0DCA5672363A375F648417 1466368 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2014-09-02 04:57:37 52F1A0EFFE241F2E6BFB04DA80C27F0B 627712 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-09-02 04:57:37 42A73F0843D89A52A4D6E72A3D84EDFB 215552 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2014-09-02 04:57:37 3759CBF8BCEF96A51D32C6CF06015DCD 2085888 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-09-02 04:57:37 31CAF12C3D34416A856C028794CA888E 11018240 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-09-02 04:57:36 74F427C05F0D0C575539B52BE01DA035 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll
2014-09-02 04:57:36 3CC254FE705F0FE6D14EA790DFDFE386 981504 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-09-02 04:57:35 B456222759D0EC46B4B610F1F47E6489 67584 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-09-02 04:57:35 944E81AFF8C64A7A56C998BA9A5242B5 1638912 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-09-02 04:57:35 2955BDCAEF1B8B90470A14A1704C38A5 132096 ----a-w- C:\Windows\SysWOW64\url.dll
2014-09-02 04:57:35 174BA1DA8BB4D0B786E55602FB167228 345600 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2014-09-02 04:57:34 226DE11C847DA31E010E91B19225227D 6046720 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-09-02 04:57:04 8E01332CC4B68BC6B5B7EFFE374442AA 233472 ----a-w- C:\Windows\SysWOW64\oleacc.dll
2014-09-02 04:57:04 6C765E82B57F2E66CE9C54AC238471D9 571904 ----a-w- C:\Windows\SysWOW64\oleaut32.dll
2014-09-01 18:14:23 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\Windows\SysWOW64\sqlite3.dll
2014-09-01 10:35:19 FE61D1F8B825BC7A329A18A6CDB2A12B 71344 ----a-w- C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-01 10:35:19 5ECA7197CC7C56C353AE941CE1186666 699568 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-01 09:02:51 73E055AF78A64F9B2779D44407CA2AB6 267272 ----a-w- C:\Windows\SysWOW64\xactengine2_10.dll
2014-09-01 09:02:50 FB4299688A0D3A37687C015AC2B9922D 1374232 ----a-w- C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-09-01 09:02:50 F3764552E45880DC49B82F38699AA87C 444776 ----a-w- C:\Windows\SysWOW64\d3dx10_35.dll
2014-09-01 09:02:50 D9158E78A368B08D9133043EB3058C12 444776 ----a-w- C:\Windows\SysWOW64\d3dx10_36.dll
2014-09-01 09:02:50 5B441670A4F5F8BCCE76741902B8AF56 1358192 ----a-w- C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-09-01 09:02:50 46EE68F04A75A1CCF40235EA6F1CBA05 267112 ----a-w- C:\Windows\SysWOW64\xactengine2_9.dll
2014-09-01 09:02:50 44BFEC5C9C82A2EE9871D88FD3B9A0E2 3734536 ----a-w- C:\Windows\SysWOW64\d3dx9_36.dll
2014-09-01 09:02:49 F6A9FC2AD2F9111372B5AB3BBA3707EC 17928 ----a-w- C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-09-01 09:02:49 77F595DEE5FFACEA72B135B1FCE1312E 81768 ----a-w- C:\Windows\SysWOW64\xinput1_3.dll
2014-09-01 09:02:49 75F206C195BBACA6EF28565B1C0CD75C 1124720 ----a-w- C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-09-01 09:02:49 5AA9987F2E62B56D7661B6901901F927 443752 ----a-w- C:\Windows\SysWOW64\d3dx10_34.dll
2014-09-01 09:02:49 499210C45AFEAADEE8CF4DCF7D5E570B 266088 ----a-w- C:\Windows\SysWOW64\xactengine2_8.dll
2014-09-01 09:02:49 3EF18B78D17C962F2B71AC1CB7757684 3727720 ----a-w- C:\Windows\SysWOW64\d3dx9_35.dll
2014-09-01 09:02:49 1CA939918ED1B930059B3A882DE6F648 3497832 ----a-w- C:\Windows\SysWOW64\d3dx9_34.dll
2014-09-01 09:02:48 FAE7E1D578C42A7C3D9D61A99D178BD5 1123696 ----a-w- C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-09-01 09:02:48 CDB1CD22BAFF21F48606B3C1A18B000B 3495784 ----a-w- C:\Windows\SysWOW64\d3dx9_33.dll
2014-09-01 09:02:48 86C93789E9006F1AC47ED9DD47D4C8A1 251672 ----a-w- C:\Windows\SysWOW64\xactengine2_5.dll
2014-09-01 09:02:48 7FEBB8CE2233CBAE738B16D42ED29674 261480 ----a-w- C:\Windows\SysWOW64\xactengine2_7.dll
2014-09-01 09:02:48 6F34F7405807DCBF0B9BF6811C94C6D9 440080 ----a-w- C:\Windows\SysWOW64\d3dx10.dll
2014-09-01 09:02:48 39000E033D39D19CCCE21AEAFCCE2476 255848 ----a-w- C:\Windows\SysWOW64\xactengine2_6.dll
2014-09-01 09:02:48 37A8171ACCF46A9C196054066C28827F 443752 ----a-w- C:\Windows\SysWOW64\d3dx10_33.dll
2014-09-01 09:02:47 69D841744B2BAE38FBB2D40A230A549C 236824 ----a-w- C:\Windows\SysWOW64\xactengine2_3.dll
2014-09-01 09:02:47 6550E1A0A7BE611592C31222FCB981FB 237848 ----a-w- C:\Windows\SysWOW64\xactengine2_4.dll
2014-09-01 09:02:47 33B62BE226934E1B01F5043870C70427 62744 ----a-w- C:\Windows\SysWOW64\xinput1_2.dll
2014-09-01 09:02:47 26AF232140C88B42D92A88F2198EDF6A 3426072 ----a-w- C:\Windows\SysWOW64\d3dx9_32.dll
2014-09-01 09:02:47 121B131EAA369D8F58DACC5C39A77D80 15128 ----a-w- C:\Windows\SysWOW64\x3daudio1_1.dll
2014-09-01 09:02:46 F1726346E583442541FE73429F8E9C10 62672 ----a-w- C:\Windows\SysWOW64\xinput1_1.dll
2014-09-01 09:02:46 7C9952111F4C743B9F0D8B68B6ED93C9 229584 ----a-w- C:\Windows\SysWOW64\xactengine2_1.dll
2014-09-01 09:02:46 5C4D3843B491C047B7A619901FBD2EC1 230168 ----a-w- C:\Windows\SysWOW64\xactengine2_2.dll
2014-09-01 09:02:44 E415862612E65F10D7D888443ECD7594 2388176 ----a-w- C:\Windows\SysWOW64\d3dx9_30.dll
2014-09-01 09:02:43 99F4FC172A5ACE36CF00AA7038D23F2C 2332368 ----a-w- C:\Windows\SysWOW64\d3dx9_29.dll
2014-09-01 09:02:43 4E961525CC7FF0E5D7DA19E170B7C14C 14032 ----a-w- C:\Windows\SysWOW64\x3daudio1_0.dll
2014-09-01 09:02:43 2112FE0C46662D429347A7D7B49E3ECE 230096 ----a-w- C:\Windows\SysWOW64\xactengine2_0.dll
2014-09-01 09:02:42 BE19B603DFBAA829EE5B7749B3BA97DB 2323664 ----a-w- C:\Windows\SysWOW64\d3dx9_28.dll
2014-09-01 09:02:42 852EDC778A7A50077694F84D8E601234 2319568 ----a-w- C:\Windows\SysWOW64\d3dx9_27.dll
2014-09-01 09:02:42 523AB607EEF81CC4D909E7FEBD8A788E 2297552 ----a-w- C:\Windows\SysWOW64\d3dx9_26.dll
2014-09-01 09:02:41 BC831661963763AC4D504C5CABB1FDD9 2222800 ----a-w- C:\Windows\SysWOW64\d3dx9_24.dll
2014-09-01 09:02:41 5B48FE9D6686F0D54B26A005ACE24D1D 2337488 ----a-w- C:\Windows\SysWOW64\d3dx9_25.dll
2014-09-01 07:51:55 C6A44FC3CF2F5801561804272217B14D 1892184 ----a-w- C:\Windows\SysWOW64\D3DX9_42.dll
2014-09-01 07:51:55 797E24743937D67D69F28F2CF5052EE8 2414360 ----a-w- C:\Windows\SysWOW64\d3dx9_31.dll
2014-09-01 07:46:51 86F34E7288DA428E38E2D8C7E806A871 826880 ----a-w- C:\Windows\SysWOW64\rdpcore.dll
2014-09-01 07:38:58 867148EBF47E7E7E7B21C07B4A981929 581600 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2014-09-01 07:38:58 372218B80DEF827063049EBEE76B7501 92672 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2014-09-01 07:38:58 255F0417EC31C71585824269522EC8E9 36320 ----a-w- C:\Windows\SysWOW64\wups.dll
2014-09-01 07:38:52 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2014-09-01 07:38:52 5AA2CAD923E9E647276A61387E83DDD0 179656 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2014-09-01 07:30:58 CF0CF87FDA9A64E1EE3EAD69969F1868 3929 ----a-w- C:\Windows\SysWOW64\atipblag.dat
2014-09-01 07:24:52 FDDC4D6EC3B2BD3B5A04C22881305621 74064 ----a-w- C:\Windows\SysWOW64\SFCOM.dll
2014-09-01 07:23:20 E3F9DA68FE296EACBB2F4432351B481C 53248 ----a-r- C:\Windows\SysWOW64\CSVer.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-09-02 06:03:49 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL
2014-09-02 06:03:47 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll
2014-09-02 05:52:04 B20F051B03A966392364C83F009F7D17 84992 ----a-w- C:\Windows\Sysnative\WUDFSvc.dll
2014-09-02 05:52:04 B1DF2D87DC8BF6072699AC8301B37796 194048 ----a-w- C:\Windows\Sysnative\WUDFPlatform.dll
2014-09-02 05:52:03 F1617F1014D51987D517A4C37A7C733B 45056 ----a-w- C:\Windows\Sysnative\WUDFCoinstaller.dll
2014-09-02 05:52:03 8ABFE00F213F2571498F1B8FD7939A98 229888 ----a-w- C:\Windows\Sysnative\WUDFHost.exe
2014-09-02 05:52:03 25AE683DCB4AE7E6F1B193A0CB9DB35F 744448 ----a-w- C:\Windows\Sysnative\WUDFx.dll
2014-09-02 05:46:49 C00DB14550E4BD49737F311C644E45FF 5120 ----a-w- C:\Windows\Sysnative\wmi.dll
2014-09-02 05:43:39 6F8B48F3D343E4B186AB6A9E302B7E16 199680 ----a-w- C:\Windows\Sysnative\xmllite.dll
2014-09-02 05:43:28 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll
2014-09-02 05:43:26 F4F36FEABB4F86ACA6FFD8819D7642C5 106496 ----a-w- C:\Windows\Sysnative\odbccr32.dll
2014-09-02 05:43:26 D10E13E494C5B4437549BE6A4987125E 163840 ----a-w- C:\Windows\Sysnative\odbccp32.dll
2014-09-02 05:43:26 97DC40842B54AD4E961DECC9345F16FC 106496 ----a-w- C:\Windows\Sysnative\odbccu32.dll
2014-09-02 05:43:26 935AE3DFF21465D600185305479A03F7 212992 ----a-w- C:\Windows\Sysnative\odbctrac.dll
2014-09-02 05:43:24 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll
2014-09-02 05:43:24 04F82965C09CBDF646B487E145060301 228864 ----a-w- C:\Windows\Sysnative\wwansvc.dll
2014-09-02 05:43:19 9028D1621C43DF8DFBD1C76860412A11 633856 ----a-w- C:\Windows\Sysnative\comctl32.dll
2014-09-02 05:43:15 F28D6538F76DC6ECFABF6176DBDD2664 142336 ----a-w- C:\Windows\Sysnative\poqexec.exe
2014-09-02 05:43:12 3CC16A849E6092E43909F48EF0E60306 226816 ----a-w- C:\Windows\Sysnative\dhcpcore6.dll
2014-09-02 05:43:12 3C06D5A929B798D0B13F6481242A0FD2 55296 ----a-w- C:\Windows\Sysnative\dhcpcsvc6.dll
2014-09-02 05:43:02 F4C640E85DB6450CB221E5224AA2AB51 3717632 ----a-w- C:\Windows\Sysnative\mstscax.dll
2014-09-02 05:43:01 CE4157E4B1E5041D252EF38EB61E9F0C 44032 ----a-w- C:\Windows\Sysnative\tsgqec.dll
2014-09-02 05:43:01 9F5C2F0CFEF95B4653E21443CDC0D587 158720 ----a-w- C:\Windows\Sysnative\aaclient.dll
2014-09-02 05:42:39 959041D7014C97133D859B45BCA0FC58 224256 ----a-w- C:\Windows\Sysnative\wintrust.dll
2014-09-02 05:42:26 5A83C43DE44546370CAC4CD05B304F09 961024 ----a-w- C:\Windows\Sysnative\CPFilters.dll
2014-09-02 05:42:25 A5AE40808B72A25379A5499AD9977743 1118720 ----a-w- C:\Windows\Sysnative\sbe.dll
2014-09-02 05:42:25 1E452D8F44D82BFC256E02D0D6FD9608 259072 ----a-w- C:\Windows\Sysnative\mpg2splt.ax
2014-09-02 05:42:15 E44AFEA3C13A96FC79ABA67E5F0DC3AD 366592 ----a-w- C:\Windows\Sysnative\qdvd.dll
2014-09-02 05:42:15 44A8B9185030EA57F7999383643ADFFB 1572864 ----a-w- C:\Windows\Sysnative\quartz.dll
2014-09-02 05:42:12 037A719DAD50603202C978CD802623E4 509952 ----a-w- C:\Windows\Sysnative\ntshrui.dll
2014-09-02 05:42:09 E0B340996A41C9A75DFA3B99BBA9C500 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe
2014-09-02 05:42:09 D9E21CBF9E6A87847AFFD39EA3FA28EE 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe
2014-09-02 05:42:09 7568CC720ACE4D03B84AF97817E745EF 2223616 ----a-w- C:\Windows\Sysnative\mssrch.dll
2014-09-02 05:42:09 589DF683A6C81424A6CECE52ABF98A50 2315776 ----a-w- C:\Windows\Sysnative\tquery.dll
2014-09-02 05:42:08 E503E15C88B4BBDA3F6345E34FED3E92 778752 ----a-w- C:\Windows\Sysnative\mssvp.dll
2014-09-02 05:42:08 4C219239ED8CC35CA41AD26B33A15624 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll
2014-09-02 05:42:08 49A3AD5CE578CD77F445F3D244AEAB2D 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe
2014-09-02 05:42:08 48041BAEB60CE5F34F13CC2A1361E49C 491520 ----a-w- C:\Windows\Sysnative\mssph.dll
2014-09-02 05:42:08 093747DAE1C1A7F6DEA8D16E26D4F648 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll
2014-09-02 05:41:23 088CF6AFCD5CDD44E40C0ACDE3C1A5E0 801280 ----a-w- C:\Windows\Sysnative\usp10.dll
2014-09-02 05:41:17 603EBD34E216C5654A2D774EAC98D278 395776 ----a-w- C:\Windows\Sysnative\webio.dll
2014-09-02 05:40:44 EA093130471090037BB70A4AF86FAD1B 420008 ----a-w- C:\Windows\Sysnative\locale.nls
2014-09-02 05:40:42 512F3333B1233D9275B021C105DF26CB 610304 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-09-02 05:40:38 A6B726DCA228F7878E38368A1BDC68BE 139776 ----a-w- C:\Windows\Sysnative\cryptnet.dll
2014-09-02 05:40:38 780F6ECC4F55D76C9730E6B6C9B31913 1474048 ----a-w- C:\Windows\Sysnative\crypt32.dll
2014-09-02 05:40:38 6B400F211BEE880A37A1ED0368776BF4 184320 ----a-w- C:\Windows\Sysnative\cryptsvc.dll
2014-09-02 05:40:23 1075AB2C077B415760C0E948856B5126 484864 ----a-w- C:\Windows\Sysnative\wer.dll
2014-09-02 05:40:20 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll
2014-09-02 05:40:15 FB10715E4099AF9FA389C71873245226 515584 ----a-w- C:\Windows\Sysnative\timedate.cpl
2014-09-02 05:40:13 ECA6AC33BD9E441F7B47D173D715D268 1882112 ----a-w- C:\Windows\Sysnative\msxml3.dll
2014-09-02 05:40:13 0E3A7EC2B9590EA7767BBB1823630DEA 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll
2014-09-02 05:40:12 3408DD8081DC22858AE2E6ABD2594C02 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll
2014-09-02 05:40:12 0465A8CFDDB4FFDB569802A70B9443D5 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll
2014-09-02 05:39:49 A064A1D9CBD7F6959AAEAEAFF96DB2E9 692736 ----a-w- C:\Windows\Sysnative\osk.exe
2014-09-02 05:39:43 1E3E97D2C0E630F11EDDD03056B12ED1 1112064 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2014-09-02 05:39:38 8563BA40DF4F1E93A61B70E2C8B60CF8 190464 ----a-w- C:\Windows\Sysnative\SmartcardCredentialProvider.dll
2014-09-02 05:39:38 4403D5ECE7D8323CAF1207D1AA38FA01 197120 ----a-w- C:\Windows\Sysnative\credui.dll
2014-09-02 05:39:37 9C44FB5B3A8A192FCE1103AC9BA4E576 171160 ----a-w- C:\Windows\Sysnative\infocardapi.dll
2014-09-02 05:39:36 8A08BB0D12BE40DC09632CD5D04A48A0 1389208 ----a-w- C:\Windows\Sysnative\icardagt.exe
2014-09-02 05:39:35 EE415EC9288182BCFB6E6896A376EA53 8856 ----a-w- C:\Windows\Sysnative\icardres.dll
2014-09-02 05:39:27 E1BB958681BE311E7CFF06CFEC5F1F2B 368128 ----a-w- C:\Windows\Sysnative\atmfd.dll
2014-09-02 05:39:27 D6BAE9B4B210D71CDDADC224CEFCDB5F 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2014-09-02 05:39:27 A5ED9421B8D09ED4F57CDA386307713E 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2014-09-02 05:39:27 796B47A4B82EF1C39F13435B88834C48 41472 ----a-w- C:\Windows\Sysnative\lpk.dll
2014-09-02 05:39:27 142671F462619CB64BA74F5B70136CB4 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2014-09-02 05:39:25 7E1CF52C347D8755E5CA5ED0E99B401E 1395712 ----a-w- C:\Windows\Sysnative\mfc42.dll
2014-09-02 05:39:25 19F9B524A525D202194247E96656CB88 1359872 ----a-w- C:\Windows\Sysnative\mfc42u.dll
2014-09-02 05:39:15 E4312738B500577BABC232A49F67A67D 35480 ----a-w- C:\Windows\Sysnative\TsWpfWrp.exe
2014-09-02 05:38:58 297926B15AE5390409F1007EB28A8EFB 552960 ----a-w- C:\Windows\Sysnative\RMActivate_ssp_isv.exe
2014-09-02 05:38:58 1B3741488AA7E237961A29D1E7A44C0A 626176 ----a-w- C:\Windows\Sysnative\RMActivate.exe
2014-09-02 05:38:58 17CF3B3F68272BD40C878D4DBAB0EBC9 658432 ----a-w- C:\Windows\Sysnative\RMActivate_isv.exe
2014-09-02 05:38:58 03F8F411F118CFDA508E77C747BB05EA 553984 ----a-w- C:\Windows\Sysnative\RMActivate_ssp.exe
2014-09-02 05:38:57 C6AC2C91541D24F9E236A670C0CA793D 528384 ----a-w- C:\Windows\Sysnative\msdrm.dll
2014-09-02 05:38:57 5693212AB2EBCACBBE05EC3A642113E2 485888 ----a-w- C:\Windows\Sysnative\secproc_isv.dll
2014-09-02 05:38:57 399FC1B75790EE606A6FD9F2FB4C891C 488448 ----a-w- C:\Windows\Sysnative\secproc.dll
2014-09-02 05:38:56 DC6DD779F35BB42E2E76FDFEC565C251 123392 ----a-w- C:\Windows\Sysnative\secproc_ssp_isv.dll
2014-09-02 05:38:56 B41B1FEDEBBD955B4E25676B42087885 123392 ----a-w- C:\Windows\Sysnative\secproc_ssp.dll
2014-09-02 05:38:36 D6AFBAA93169E6772565A1BC896D666B 624128 ----a-w- C:\Windows\Sysnative\qedit.dll
2014-09-02 05:38:13 D29200AB0B37B7293C6942EAF755295E 1888768 ----a-w- C:\Windows\Sysnative\WMVDECOD.DLL
2014-09-02 05:37:14 9E5D9177660A76FC8DECDC37A91A5B0D 9216 ----a-w- C:\Windows\Sysnative\rdrmemptylst.exe
2014-09-02 05:37:14 6D5DCC1579B3961D791ABDE286A1CB5E 77312 ----a-w- C:\Windows\Sysnative\rdpwsx.dll
2014-09-02 05:37:14 5B236296E233CAA6BF86BE0C6501A224 149504 ----a-w- C:\Windows\Sysnative\rdpcorekmts.dll
2014-09-02 05:37:10 51DFBD18A435BAEC1F71A692373ECE4F 9728 ----a-w- C:\Windows\Sysnative\Wdfres.dll
2014-09-02 05:37:04 D4FAC263861BAE06971C7F7D0A8EBF15 216576 ----a-w- C:\Windows\Sysnative\ncsi.dll
2014-09-02 05:37:03 DC4382E93770B3BF0774DB7FE46C8239 18944 ----a-w- C:\Windows\Sysnative\netevent.dll
2014-09-02 05:37:03 8AD77806D336673F270DB31645267293 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll
2014-09-02 05:37:03 59B3BE37BAFBD40715F45D580783738B 246272 ----a-w- C:\Windows\Sysnative\netcorehc.dll
2014-09-02 05:37:03 46BB91A169B9B31FF44EB04C48EC1D41 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll
2014-09-02 05:37:03 08C2957BB30058E663720C5606885653 569344 ----a-w- C:\Windows\Sysnative\iphlpsvc.dll
2014-09-02 05:36:57 EBFEF789E32279C2ED7C81260B186AD7 2048 ----a-w- C:\Windows\Sysnative\tzres.dll
2014-09-02 05:36:50 53E83F1F6CF9D62F32801CF66D8352A8 209920 ----a-w- C:\Windows\Sysnative\profsvc.dll
2014-09-02 05:36:49 C7AC9A4D827774B19221D5FE068BF190 30208 ----a-w- C:\Windows\Sysnative\dnscacheugc.exe
2014-09-02 05:36:49 492D07D79E7024CA310867B526D9636D 357888 ----a-w- C:\Windows\Sysnative\dnsapi.dll
2014-09-02 05:36:49 16835866AAA693C7D7FCEBA8FFF706E4 183296 ----a-w- C:\Windows\Sysnative\dnsrslvr.dll
2014-09-02 05:36:15 B32AB94A432289AC2DF77A3DCAD32EED 102400 ----a-w- C:\Windows\Sysnative\davclnt.dll
2014-09-02 05:36:15 0EB0E5D22B1760F2DBCE632F2DD7A54D 259584 ----a-w- C:\Windows\Sysnative\WebClnt.dll
2014-09-02 05:36:08 374CE9DAB2F0CB173B8FCF3AB8DB5D1B 478208 ----a-w- C:\Windows\Sysnative\dpnet.dll
2014-09-02 05:36:06 3B39F9D51E4D8BAABDA6518955B58C13 3241984 ----a-w- C:\Windows\Sysnative\msi.dll
2014-09-02 05:36:05 B0F8CCA08DBC392442E27377B98DD0CD 112064 ----a-w- C:\Windows\Sysnative\consent.exe
2014-09-02 05:36:05 A6D0DC3B30F6BB1421DAA92537424822 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll
2014-09-02 05:36:05 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll
2014-09-02 05:36:05 5DFFC12BF7DB53BDB401804A3C3A475E 1941504 ----a-w- C:\Windows\Sysnative\authui.dll
2014-09-02 05:35:54 6B47CF5C27865DDF6680E4D834FBE34F 5550016 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2014-09-02 05:35:52 89EF1CE0CE43AB8F55247D746739A321 722944 ----a-w- C:\Windows\Sysnative\objsel.dll
2014-09-02 05:35:52 851BB346CD59D9B3BC8854384C7DD5C3 424960 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2014-09-02 05:35:51 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\Sysnative\smss.exe
2014-09-02 05:35:51 CF13522172342AD8196B329C15D68E23 44544 ----a-w- C:\Windows\Sysnative\dimsroam.dll
2014-09-02 05:35:51 9D942180B5B6CE1C882B9CC54EA1F275 57344 ----a-w- C:\Windows\Sysnative\cngprovider.dll
2014-09-02 05:35:51 692E9886B2A475684F7E3294BF66E97D 56832 ----a-w- C:\Windows\Sysnative\adprovider.dll
2014-09-02 05:35:50 BDA8B14AFE99A0C52BFEA64C5AC62171 52736 ----a-w- C:\Windows\Sysnative\dpapiprovider.dll
2014-09-02 05:35:50 9A3C6D8593F29A9F66744A3D4E6309B2 39936 ----a-w- C:\Windows\Sysnative\wincredprovider.dll
2014-09-02 05:35:50 4959DE74643CBC4B83E5BC99486A4FC9 53760 ----a-w- C:\Windows\Sysnative\capiprovider.dll
2014-09-02 05:35:50 216BABD555BC550952320EEA89C25DDF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll
2014-09-02 05:35:49 70A1D465390C393AA118D9764E065B06 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
2014-09-02 05:34:38 A236B1646E96AB06BE0F8D592B6D9A0D 245760 ----a-w- C:\Windows\Sysnative\OxpsConverter.exe
2014-09-02 05:31:07 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll
2014-09-02 05:31:00 9A9F9F1A77D6A80EE28B57664F00013E 327168 ----a-w- C:\Windows\Sysnative\mswsock.dll
2014-09-02 05:30:58 EBB73E4E8CA01089CF74ECE506EB7607 43520 ----a-w- C:\Windows\Sysnative\csrr.rs
2014-09-02 05:30:58 997938D423CE830161CB6059434E3C9F 45568 ----a-w- C:\Windows\Sysnative\oflc-nz.rs
2014-09-02 05:30:57 C4B0793E4B97AA36A2A8C81A7AA1979A 44544 ----a-w- C:\Windows\Sysnative\pegibbfc.rs
2014-09-02 05:30:57 A2E0F1E01A0983E9C94565BBEC862BF7 40960 ----a-w- C:\Windows\Sysnative\cob-au.rs
2014-09-02 05:30:57 6D540AF9B183FC97DC4CC54369561548 20480 ----a-w- C:\Windows\Sysnative\pegi-pt.rs
2014-09-02 05:30:57 661AE5EAC62C4598DD01795CEB915BAE 20480 ----a-w- C:\Windows\Sysnative\pegi.rs
2014-09-02 05:30:57 65A8302C7551CFE45FAA2BC085C9E7E2 15360 ----a-w- C:\Windows\Sysnative\djctq.rs
2014-09-02 05:30:57 5C48A43FC30FC61ECB1335DC646686BC 30720 ----a-w- C:\Windows\Sysnative\usk.rs
2014-09-02 05:30:57 54B11BB2AFBC3D5EBA9C96F0C1820B9B 46592 ----a-w- C:\Windows\Sysnative\fpb.rs
2014-09-02 05:30:57 4489D5D2CB4BA0799F3FB4625DE181CF 21504 ----a-w- C:\Windows\Sysnative\grb.rs
2014-09-02 05:30:57 2BCBA6052374959A30BD7948444DBB79 2746368 ----a-w- C:\Windows\Sysnative\gameux.dll
2014-09-02 05:30:57 027675ED9B34EE1B91505C3B8752649F 441856 ----a-w- C:\Windows\Sysnative\Wpc.dll
2014-09-02 05:30:56 51D25C805A01A2C4F930F9720CF51FFE 51712 ----a-w- C:\Windows\Sysnative\esrb.rs
2014-09-02 05:30:55 D0C01412FBF59C1C25630C49F0C1B803 55296 ----a-w- C:\Windows\Sysnative\cero.rs
2014-09-02 05:30:55 9BB05674E013C35F4DAED51F5015355D 20480 ----a-w- C:\Windows\Sysnative\pegi-fi.rs
2014-09-02 05:30:55 4773EB5962548068547214A620E9ACC3 23552 ----a-w- C:\Windows\Sysnative\oflc.rs
2014-09-02 05:30:33 78394F2B354BDC28C5C61837872DD132 108032 ----a-w- C:\Windows\Sysnative\psisrndr.ax
2014-09-02 05:30:33 050AF06F8B0463417E4AED9DA5816A65 613888 ----a-w- C:\Windows\Sysnative\psisdecd.dll
2014-09-02 05:29:49 CAAAC014C5C56A69F710B5F1B836DE22 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll
2014-09-02 05:29:49 A3FCC4F97551087D65F8FEE879FEF736 859648 ----a-w- C:\Windows\Sysnative\tdh.dll
2014-09-02 05:29:49 63A580C88CFAF72A92550940054569EF 878080 ----a-w- C:\Windows\Sysnative\advapi32.dll
2014-09-02 05:28:52 25B50D384D3B6EBC782DC544502AB373 911360 ----a-w- C:\Windows\Sysnative\jscript.dll
2014-09-02 05:28:46 8699D17DFCFCD327784034DB6BD3A422 95744 ----a-w- C:\Windows\Sysnative\synceng.dll
2014-09-02 05:28:43 E8E98B3B7A6E1250F4AA7AF8FA17D5BB 340992 ----a-w- C:\Windows\Sysnative\schannel.dll
2014-09-02 05:28:43 A805B5E68262302D1A60BE3DED5846C9 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll
2014-09-02 05:28:42 E23BA7A7BD97FC6B8AB5EA32A46D05CD 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2014-09-02 05:28:42 C9DD5C0D5AF2D7A54BA32E8FBD3B67F1 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2014-09-02 05:28:42 BFC98590EAB40C785D6134B1FA818A62 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll
2014-09-02 05:28:42 7D1017ED11B7C3B162628069742B5E58 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2014-09-02 05:28:42 79EE13A5A406E4603874686B8005DA72 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2014-09-02 05:28:25 23B001185B7C3CB1F4BDEB143E6B45B7 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll
2014-09-02 05:28:17 67CF11E00D026A5C0C88EA5F84D501E5 751104 ----a-w- C:\Windows\Sysnative\win32spl.dll
2014-09-02 05:28:16 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\Sysnative\taskhost.exe
2014-09-02 05:28:11 AE57F6C7AB3ED244B5F14151C4EA0057 14175744 ----a-w- C:\Windows\Sysnative\shell32.dll
2014-09-02 05:28:08 C06FAAF13E37CE482F612AFF2D2331F3 30720 ----a-w- C:\Windows\Sysnative\cryptdlg.dll
2014-09-02 05:27:59 764DF431D13537A575752009E7740F18 124112 ----a-w- C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2014-09-02 05:27:58 EEEA40F0EDB0A6E5359E539E15D0BC77 73216 ----a-w- C:\Windows\Sysnative\netapi32.dll
2014-09-02 05:27:58 05F5A0D14A2EE1D8255C2AA0E9E8E694 136704 ----a-w- C:\Windows\Sysnative\browser.dll
2014-09-02 05:27:58 012787CEB35505EB78DF82E0A0072888 59392 ----a-w- C:\Windows\Sysnative\browcli.dll
2014-09-02 05:27:57 D2A513EE880D71BDE7F0257F38B9D019 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
2014-09-02 05:27:57 7434E01FBCA3CB86539C39412A31D5E1 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll
2014-09-02 05:27:57 2A107B611C91CD256466C58C0D776E9D 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2014-09-02 05:27:56 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
2014-09-02 05:27:56 88EDD0B34EED542745931E581AD21A32 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll
2014-09-02 05:27:56 74959C718FF4594369645F35B7DF19C4 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
2014-09-02 05:27:56 0F090A77E664CB0F70AB8D3B230B760C 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
2014-09-02 05:27:41 D5164131D596A070FF9C82BC4A488F1F 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
2014-09-02 05:27:22 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe
2014-09-02 05:27:22 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll
2014-09-02 05:27:22 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx
2014-09-02 05:27:21 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe
2014-09-02 05:27:20 79BEC88D21DB3611C2A0B453D4846A8E 1545728 ----a-w- C:\Windows\Sysnative\DWrite.dll
2014-09-02 05:27:20 76C196B109E4BFA50132EF50AF6A1C1B 1143296 ----a-w- C:\Windows\Sysnative\FntCache.dll
2014-09-02 05:27:17 4586B77B18FA9A8518AF76CA8FD247D9 1192448 ----a-w- C:\Windows\Sysnative\certutil.exe
2014-09-02 05:27:17 189B0BAE1B0EDD51CEF1CD3F4CDEE02E 52224 ----a-w- C:\Windows\Sysnative\certenc.dll
2014-09-02 05:27:05 D4CCE15190269486A5E6D4D4E597F798 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2014-09-02 05:27:04 C072064F95579C0D6D86AF5B3DC53192 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll
2014-09-02 05:27:04 8098627D0AA1706D69C5AF3F74332ABB 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2014-09-02 05:27:04 39312B37C5FE5138F99680A49ACD3AEA 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2014-09-02 05:27:04 204F3F58212B3E422C90BD9691A2DF28 31232 ----a-w- C:\Windows\Sysnative\lsass.exe
2014-09-02 05:26:45 45CFBFA8EDC3DF4E2B7FB0D0260FE051 956928 ----a-w- C:\Windows\Sysnative\localspl.dll
2014-09-02 05:26:43 A347EF56B7CD8360B3EF7772FEA597B9 3163648 ----a-w- C:\Windows\Sysnative\win32k.sys
2014-09-02 05:26:43 860528C9E50AB84935843B23A80E665E 404480 ----a-w- C:\Windows\Sysnative\gdi32.dll
2014-09-02 05:26:42 142E90CF1A4C5B6E7505810E38B07B9F 976896 ----a-w- C:\Windows\Sysnative\inetcomm.dll
2014-09-02 05:26:40 81A85BA8B536B70E035A9976F9D42873 267776 ----a-w- C:\Windows\Sysnative\FXSCOVER.exe
2014-09-02 05:26:38 25FBDEF06C4D92815B353F6E792C8129 404480 ----a-w- C:\Windows\Sysnative\umpnpmgr.dll
2014-09-02 05:26:37 5FAC5F264D61D99EE8961480818B9DEF 31232 ----a-w- C:\Windows\Sysnative\prevhost.exe
2014-09-02 05:26:35 C391FC68282A000CDF953F8B6B55D2EF 634880 ----a-w- C:\Windows\Sysnative\msvcrt.dll
2014-09-02 05:26:33 CDD0C92A653CAC881D780003E0C4E813 17792 ----a-w- C:\Windows\Sysnative\kdcom.dll
2014-09-02 05:26:33 8AE1C98D96EF1E63FB00A1BB3D14C959 642944 ----a-w- C:\Windows\Sysnative\winload.efi
2014-09-02 05:26:33 78C918D3612FE5937D32E488F053F10A 605552 ----a-w- C:\Windows\Sysnative\winload.exe
2014-09-02 05:26:33 722258D597A0CC4EEFF3AF338681E5B6 19328 ----a-w- C:\Windows\Sysnative\kd1394.dll
2014-09-02 05:26:33 5EF94FF9210ED73B9488C460D1FE173C 566208 ----a-w- C:\Windows\Sysnative\winresume.efi
2014-09-02 05:26:33 5A76F4B8D9D5D9D4C1153DFF4972C196 518672 ----a-w- C:\Windows\Sysnative\winresume.exe
2014-09-02 05:26:33 539AA23C29FAC72FB29D58F33E6931B1 20352 ----a-w- C:\Windows\Sysnative\kdusb.dll
2014-09-02 05:05:28 1392A9F9E56A876C616D8A33FE272C78 723456 ----a-w- C:\Windows\Sysnative\EncDec.dll
2014-09-02 05:00:36 1FEB1694B13247A451B274E114AFAC45 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll
2014-09-02 05:00:33 D07EB640618F96490DB88C3CE58DB608 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL
2014-09-02 05:00:33 660C06F663F27760F565FD567B57625C 830464 ----a-w- C:\Windows\Sysnative\nshwfp.dll
2014-09-02 05:00:33 344789398EC3EE5A4E00C52B31847946 859648 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL
2014-09-02 05:00:32 56661BB55AE4633677F846FFCD080ECA 461312 ----a-w- C:\Windows\Sysnative\scavengeui.dll
2014-09-02 04:59:43 F947D57534E01E3CA597BCF2AD8AE65B 1216000 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2014-09-02 04:59:41 9D455E3049B7F93483D7165422B7D0AF 529920 ----a-w- C:\Windows\Sysnative\aepdu.dll
2014-09-02 04:59:41 349CF386805783D2E6810A767642F1B8 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll
2014-09-02 04:59:13 BACE7F36D65968FD07757B239B01F4E2 77312 ----a-w- C:\Windows\Sysnative\packager.dll
2014-09-02 04:57:38 69139856255B456BD0F4D53B162AEC20 47616 ----a-w- C:\Windows\Sysnative\mshta.exe
2014-09-02 04:57:38 30CF294669A9C545C2662CBBEC9E77FD 2466816 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-09-02 04:57:37 A68595072D5927A695F4D79A0AEC37B8 134144 ----a-w- C:\Windows\Sysnative\url.dll
2014-09-02 04:57:37 6909FB26A2A86413AE09AD988F05CA42 82944 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll
2014-09-02 04:57:37 2308DF582BEF383C06DAA6E12327002A 735232 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-09-02 04:57:36 FF9B64C67B8E14F5C2D3404952301349 1638912 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-09-02 04:57:36 F3077104D330110B904D105586B7506F 1538048 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2014-09-02 04:57:36 E8888EB3C1E26E621CD19395583B5ECD 1537024 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-09-02 04:57:36 1A155D91AA414457A7F0A69672EBD683 65024 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-09-02 04:57:35 DDF8463FA8C82923FC14BC78042EF247 247808 ----a-w- C:\Windows\Sysnative\ieui.dll
2014-09-02 04:57:35 DBB48ABF9286EEA87D0A1E74CCFAF072 16896 ----a-w- C:\Windows\Sysnative\msfeedssync.exe
2014-09-02 04:57:35 3722A70E859E61783E455F3B5EBBAA8B 315904 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2014-09-02 04:57:35 16149D5375B31ED67F8F273F5F08B821 1188864 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-09-02 04:57:34 A8BAEDD5F89489FDCFE05A3289C6A246 174592 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2014-09-02 04:57:33 C1647FB4B319AB845F653D55419AC1CC 12288000 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-09-02 04:57:33 3EA4896601D9CB43B5234F16EDC5758D 497664 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2014-09-02 04:57:33 222006265EA17D09CB8A07F8CD0A8D62 97792 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-09-02 04:57:32 48AB3205BA3A28D1E3C817CE8F8C2739 9080832 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-09-02 04:57:04 CF636C92B762B26F0B39B38E92380A09 331776 ----a-w- C:\Windows\Sysnative\oleacc.dll
2014-09-02 04:57:04 C06B32165E23A72A898B7A89679AD754 861696 ----a-w- C:\Windows\Sysnative\oleaut32.dll
2014-09-01 09:45:54 E9739AE8B2FA28DCD6F2EF5525DA8827 77656 ----a-w- C:\Windows\Sysnative\XAPOFX1_5.dll
2014-09-01 09:45:54 4F7513FF4DE6303088DB28DCBCEF372C 518488 ----a-w- C:\Windows\Sysnative\XAudio2_7.dll
2014-09-01 09:45:53 BDEC09A032DB44D9CDB3A0D97224D64E 176984 ----a-w- C:\Windows\Sysnative\xactengine3_7.dll
2014-09-01 09:45:53 ADA0C39D4EACDC81FD84163A95D62079 2526056 ----a-w- C:\Windows\Sysnative\D3DCompiler_43.dll
2014-09-01 09:45:53 AD7FA9485059F4DC53C98B49CAB13F0B 511328 ----a-w- C:\Windows\Sysnative\d3dx10_43.dll
2014-09-01 09:45:53 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\Windows\Sysnative\d3dx11_43.dll
2014-09-01 09:45:53 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\Windows\Sysnative\D3DX9_43.dll
2014-09-01 09:45:53 5F1DA86286A2DFB01C4FED55C2DD1D61 1907552 ----a-w- C:\Windows\Sysnative\d3dcsx_43.dll
2014-09-01 09:45:52 B4FF2A39685C1A6D43F0E56EB350AF3A 24920 ----a-w- C:\Windows\Sysnative\X3DAudio1_7.dll
2014-09-01 09:45:52 A9724EB3D6CC032D0C4ECAFF4AD8C17F 78680 ----a-w- C:\Windows\Sysnative\XAPOFX1_4.dll
2014-09-01 09:45:52 936DCC640B2991905D909395E03B64F9 176984 ----a-w- C:\Windows\Sysnative\xactengine3_6.dll
2014-09-01 09:45:52 05E88C8D8E652DFF03B469331F474CCE 530776 ----a-w- C:\Windows\Sysnative\XAudio2_6.dll
2014-09-01 09:45:51 F13B90F5090EBA9041558BC6AAED79B8 5554512 ----a-w- C:\Windows\Sysnative\d3dcsx_42.dll
2014-09-01 09:45:51 E92D2E4AFA43CD39A8C1C2C2DB59667E 2582888 ----a-w- C:\Windows\Sysnative\D3DCompiler_42.dll
2014-09-01 09:45:51 C291AEFD47A587FF5F509E2F96613F7D 517960 ----a-w- C:\Windows\Sysnative\XAudio2_5.dll
2014-09-01 09:45:51 B739C423276AE62D7AC91773226EC13B 523088 ----a-w- C:\Windows\Sysnative\d3dx10_42.dll
2014-09-01 09:45:51 522749761B6CC69F8630F4B472DCA623 285024 ----a-w- C:\Windows\Sysnative\d3dx11_42.dll
2014-09-01 09:45:51 51D65BE2F794B944CADAF287B34EF603 176968 ----a-w- C:\Windows\Sysnative\xactengine3_5.dll
2014-09-01 09:45:50 ECDDB13BC805B9F3EF3A855E6FD85C69 5425496 ----a-w- C:\Windows\Sysnative\D3DX9_41.dll
2014-09-01 09:45:50 E730967811E3702499446FFC8A432607 520544 ----a-w- C:\Windows\Sysnative\d3dx10_41.dll
2014-09-01 09:45:50 B94F08069EFE2F8151DEF350E526E063 521560 ----a-w- C:\Windows\Sysnative\XAudio2_4.dll
2014-09-01 09:45:50 A59A5BADE4AF200C720D99EAE6E04E0E 2430312 ----a-w- C:\Windows\Sysnative\D3DCompiler_41.dll
2014-09-01 09:45:50 37B348A79C4C9B8AB925B18FFD241E96 73544 ----a-w- C:\Windows\Sysnative\XAPOFX1_3.dll
2014-09-01 09:45:50 1AF7AE1FDE027A30B9097280819A0A86 2475352 ----a-w- C:\Windows\Sysnative\D3DX9_42.dll
2014-09-01 09:45:49 EEE871CC4F5563FF8B3C8385B32B0C5F 24920 ----a-w- C:\Windows\Sysnative\X3DAudio1_6.dll
2014-09-01 09:45:49 862586AD4B1355F7DCDE111EE0AAF350 519000 ----a-w- C:\Windows\Sysnative\d3dx10_40.dll
2014-09-01 09:45:49 758139A39AECC1B512576275A27C1177 518480 ----a-w- C:\Windows\Sysnative\XAudio2_3.dll
2014-09-01 09:45:49 37309B833480DC69FDE7DB68F9B8BC20 2605920 ----a-w- C:\Windows\Sysnative\D3DCompiler_40.dll
2014-09-01 09:45:49 2F8F9B707FED2405A787380230CC6FA9 74576 ----a-w- C:\Windows\Sysnative\XAPOFX1_2.dll
2014-09-01 09:45:49 29A79F0B607FAF5722D7BAF2485F632A 5631312 ----a-w- C:\Windows\Sysnative\D3DX9_40.dll
2014-09-01 09:45:49 1BA01062450BD1F052C54C01C12248F6 174936 ----a-w- C:\Windows\Sysnative\xactengine3_4.dll
2014-09-01 09:45:48 EAA692FDC990ED0407DF957316DA33C2 540688 ----a-w- C:\Windows\Sysnative\d3dx10_39.dll
2014-09-01 09:45:48 E335DF094836EE7030F1B9CE7429E884 513544 ----a-w- C:\Windows\Sysnative\XAudio2_2.dll
2014-09-01 09:45:48 CFF1C1F7B9F855DDEE431D7B5DCACDF8 25936 ----a-w- C:\Windows\Sysnative\X3DAudio1_5.dll
2014-09-01 09:45:48 CC8399A9E51B2AF1C2C20A26D85EB60E 177672 ----a-w- C:\Windows\Sysnative\xactengine3_2.dll
2014-09-01 09:45:48 84B41FD03CAFC5048346B3B2AB92D199 175440 ----a-w- C:\Windows\Sysnative\xactengine3_3.dll
2014-09-01 09:45:48 7741A0A6CED6C441B97D625B730D6075 1942552 ----a-w- C:\Windows\Sysnative\D3DCompiler_39.dll
2014-09-01 09:45:48 7505C133FC704B40CFDDFD38777BAAC3 4992520 ----a-w- C:\Windows\Sysnative\D3DX9_39.dll
2014-09-01 09:45:48 0F2DB378FBE2D124E4D3631B329688AE 72200 ----a-w- C:\Windows\Sysnative\XAPOFX1_1.dll
2014-09-01 09:45:47 E9C0F926D7C9082A805F4FEF81DEEB30 511496 ----a-w- C:\Windows\Sysnative\XAudio2_1.dll
2014-09-01 09:45:47 E5EC2AB7156A752F9614CDA4BE66EFE8 4991496 ----a-w- C:\Windows\Sysnative\D3DX9_38.dll
2014-09-01 09:45:47 DE6004D16DBACD781ED4596C4FEA7D14 28168 ----a-w- C:\Windows\Sysnative\X3DAudio1_4.dll
2014-09-01 09:45:47 A7E59BB6FAC119FABB83F18BD72AA1D7 1941528 ----a-w- C:\Windows\Sysnative\D3DCompiler_38.dll
2014-09-01 09:45:47 A2A098BF5A8C255A0090818AD8E87B0F 177672 ----a-w- C:\Windows\Sysnative\xactengine3_1.dll
2014-09-01 09:45:47 72CB653CECF4EA670E7F5A8D74358423 540688 ----a-w- C:\Windows\Sysnative\d3dx10_38.dll
2014-09-01 09:45:47 0E92D8C0ECA74B6D0A55ABAD53226113 68104 ----a-w- C:\Windows\Sysnative\XAPOFX1_0.dll
2014-09-01 09:45:46 C4C2ED69B18EE1C60026877FCC470FA7 28168 ----a-w- C:\Windows\Sysnative\X3DAudio1_3.dll
2014-09-01 09:45:46 A8C5688BBA00C1630550F26260AB5CAE 529424 ----a-w- C:\Windows\Sysnative\d3dx10_37.dll
2014-09-01 09:45:46 A8B5370B7B61D3777D840DA1C64A1C2D 177672 ----a-w- C:\Windows\Sysnative\xactengine3_0.dll
2014-09-01 09:45:46 8A10974DC6E1E42BDC635C2C2AFBD2CC 4910088 ----a-w- C:\Windows\Sysnative\D3DX9_37.dll
2014-09-01 09:45:46 31026CEA5AFA2798292179102C06FE40 1860120 ----a-w- C:\Windows\Sysnative\D3DCompiler_37.dll
2014-09-01 09:45:46 29AF48F6C894328A58DEFDC560A70CF3 489480 ----a-w- C:\Windows\Sysnative\XAudio2_0.dll
2014-09-01 09:02:51 E8932AF24786765859558CB79E385AC2 411656 ----a-w- C:\Windows\Sysnative\xactengine2_10.dll
2014-09-01 09:02:50 BBB6C6833C30E323B41860D6DF61972D 5081608 ----a-w- C:\Windows\Sysnative\d3dx9_36.dll
2014-09-01 09:02:50 B21427EDF0449E92000FF497DAAF89C9 1985904 ----a-w- C:\Windows\Sysnative\D3DCompiler_35.dll
2014-09-01 09:02:50 A69C32C2BD01522A088D254342826866 411496 ----a-w- C:\Windows\Sysnative\xactengine2_9.dll
2014-09-01 09:02:50 84116AA94672D623B95217648AE5B5B9 508264 ----a-w- C:\Windows\Sysnative\d3dx10_35.dll
2014-09-01 09:02:50 7299DF5CF81135934740211D9A946737 2006552 ----a-w- C:\Windows\Sysnative\D3DCompiler_36.dll
2014-09-01 09:02:50 570FDAE7041775DE0C67747BB7081939 508264 ----a-w- C:\Windows\Sysnative\d3dx10_36.dll
2014-09-01 09:02:49 FA485E76F94B7457767E372F47757733 409960 ----a-w- C:\Windows\Sysnative\xactengine2_8.dll
2014-09-01 09:02:49 BFB3091B167550EC6E6454813D3DB244 107368 ----a-w- C:\Windows\Sysnative\xinput1_3.dll
2014-09-01 09:02:49 BC78D5328541410510DDE06B9FA92024 21000 ----a-w- C:\Windows\Sysnative\X3DAudio1_2.dll
2014-09-01 09:02:49 AE5D5439525B4A4CBF206058D493685D 4496232 ----a-w- C:\Windows\Sysnative\d3dx9_34.dll
2014-09-01 09:02:49 9D9407F52B8E24E99358D9944B0D5FA3 1401200 ----a-w- C:\Windows\Sysnative\D3DCompiler_34.dll
2014-09-01 09:02:49 1ED4E7A82BD5C7DEED082F00E63BB7A0 506728 ----a-w- C:\Windows\Sysnative\d3dx10_34.dll
2014-09-01 09:02:49 1B3AF16A27D390096925576202A64037 5073256 ----a-w- C:\Windows\Sysnative\d3dx9_35.dll
2014-09-01 09:02:48 8C970509E0AE10061E3ED6D51E34FEB9 403304 ----a-w- C:\Windows\Sysnative\xactengine2_7.dll
2014-09-01 09:02:48 839C3921005BB41D441E3752C74F2292 506728 ----a-w- C:\Windows\Sysnative\d3dx10_33.dll
2014-09-01 09:02:48 8251826F04BA0822D08AD9B92C65A3D5 469264 ----a-w- C:\Windows\Sysnative\d3dx10.dll
2014-09-01 09:02:48 4837A54574A6105D404A8560984B93DD 393576 ----a-w- C:\Windows\Sysnative\xactengine2_6.dll
2014-09-01 09:02:48 3EBF620536A13CA343E52ECA4F0DE7F8 1400176 ----a-w- C:\Windows\Sysnative\D3DCompiler_33.dll
2014-09-01 09:02:48 398FF46FF7354FED2F0F1AECDB546866 390424 ----a-w- C:\Windows\Sysnative\xactengine2_5.dll
2014-09-01 09:02:48 3172C3CAC8EA7CA1B5D5AF6699C037D6 4494184 ----a-w- C:\Windows\Sysnative\d3dx9_33.dll
2014-09-01 09:02:47 FAAA0BB9CD2905B25334132E5BA093EB 3977496 ----a-w- C:\Windows\Sysnative\d3dx9_31.dll
2014-09-01 09:02:47 A4DDFE5DC4E73D1FED9B1B3A3D885612 4398360 ----a-w- C:\Windows\Sysnative\d3dx9_32.dll
2014-09-01 09:02:47 58BB51253427A834A8807B9245CC5965 364824 ----a-w- C:\Windows\Sysnative\xactengine2_4.dll
2014-09-01 09:02:47 489E5B8BB1BD1028FF1C798EAAEC65E4 17688 ----a-w- C:\Windows\Sysnative\x3daudio1_1.dll
2014-09-01 09:02:47 06F15D3CB1AE0EAFA50F595B3FF8D9F5 83736 ----a-w- C:\Windows\Sysnative\xinput1_2.dll
2014-09-01 09:02:47 0396D2A98B0CCD4419B572EBF618E81E 363288 ----a-w- C:\Windows\Sysnative\xactengine2_3.dll
2014-09-01 09:02:46 DC5A914C34EB12056531777D4DD0F44E 354072 ----a-w- C:\Windows\Sysnative\xactengine2_2.dll
2014-09-01 09:02:46 6F9D3289D8B166E478AFFF9EFA92C42C 83664 ----a-w- C:\Windows\Sysnative\xinput1_1.dll
2014-09-01 09:02:46 0CC809422AB40974DFF8078392E4D507 352464 ----a-w- C:\Windows\Sysnative\xactengine2_1.dll
2014-09-01 09:02:44 E09A9CF383ACF4A28038561E62277377 3927248 ----a-w- C:\Windows\Sysnative\d3dx9_30.dll
2014-09-01 09:02:43 F77D5AB654881E683CFF6650916C424E 16592 ----a-w- C:\Windows\Sysnative\x3daudio1_0.dll
2014-09-01 09:02:43 CE5753F9A27837259EB52F3F47F39593 355536 ----a-w- C:\Windows\Sysnative\xactengine2_0.dll
2014-09-01 09:02:43 68B35CBDB4A8CC424718BBCC894FEEEA 3830992 ----a-w- C:\Windows\Sysnative\d3dx9_29.dll
2014-09-01 09:02:42 914C3237E4D145A18DCD1D0D4C8659E1 3807440 ----a-w- C:\Windows\Sysnative\d3dx9_27.dll
2014-09-01 09:02:42 88BAC8306D4EC79A82B1FFA17DC8CF4A 3815120 ----a-w- C:\Windows\Sysnative\d3dx9_28.dll
2014-09-01 09:02:42 44F5C5E27D6825E4E62420BC29B8B533 3767504 ----a-w- C:\Windows\Sysnative\d3dx9_26.dll
2014-09-01 09:02:41 B165DF72E13E6AF74D47013504319921 3544272 ----a-w- C:\Windows\Sysnative\d3dx9_24.dll
2014-09-01 09:02:41 4C56E7C5B2A61353E534C7D15D05856D 3823312 ----a-w- C:\Windows\Sysnative\d3dx9_25.dll
2014-09-01 07:46:51 4474A8AEABD056DF636FD4FBEF49353B 1031680 ----a-w- C:\Windows\Sysnative\rdpcore.dll
2014-09-01 07:42:59 B46B41CE922CE5B7B055A28226DE2D79 307344 ----a-w- C:\Windows\Sysnative\aswBoot.exe
2014-09-01 07:39:03 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2014-09-01 07:39:03 E76F105AD039B9E4DA9ECE839298C4A2 44512 ----a-w- C:\Windows\Sysnative\wups2.dll
2014-09-01 07:39:03 6335F8B4B89F002A3801473C1A799237 2620928 ----a-w- C:\Windows\Sysnative\wucltux.dll
2014-09-01 07:39:03 61FF576450CCC80564B850BC3FB6713A 2477536 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2014-09-01 07:38:58 7EC6617005F76714C7E16605E7A8AB06 38880 ----a-w- C:\Windows\Sysnative\wups.dll
2014-09-01 07:38:58 1180B5ADFB507258DA10F51B46681A33 97792 ----a-w- C:\Windows\Sysnative\wudriver.dll
2014-09-01 07:38:58 0DB2758CF1BAFE22E0970FDA0785B74C 700384 ----a-w- C:\Windows\Sysnative\wuapi.dll
2014-09-01 07:38:52 45D4BDEA136E72E75CF008D3C38D949A 198600 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2014-09-01 07:38:52 29FE783F75362AD6D2D9C0555BA83BD2 36864 ----a-w- C:\Windows\Sysnative\wuapp.exe
2014-09-01 07:35:38 724F2A9CDE88FE5FECE1959CBBC75F56 17326 ----a-r- C:\Windows\Sysnative\netathurx.inf
2014-09-01 07:35:38 63EC9C6D0198E5528B90AA59C7FDE898 7484 ----a-w- C:\Windows\Sysnative\athurextx.cat
2014-09-01 07:35:38 36322190763845975E0D001E90687BF2 1847296 ----a-r- C:\Windows\Sysnative\athurx.sys
2014-09-01 07:30:58 D5A4D2662D26A8C0881892F15076CFBE 58880 ----a-w- C:\Windows\Sysnative\coinst.dll
2014-09-01 07:30:58 CF0CF87FDA9A64E1EE3EAD69969F1868 3929 ----a-w- C:\Windows\Sysnative\atipblag.dat
2014-09-01 07:30:58 873DF5C30431E55E5F520BC1FB5B803A 462848 ----a-w- C:\Windows\Sysnative\ATIDEMGX.dll
2014-09-01 07:30:58 166B4EAEECFCD0D82DD1EA0639F9D793 172040 ----a-w- C:\Windows\Sysnative\atiapfxx.blb
2014-09-01 07:25:48 92C704590FCEDDA971B7A77945DCCDA4 74272 ----a-w- C:\Windows\Sysnative\RtNicProp64.dll
2014-09-01 07:25:48 49A88E6CD77939F5F7D443628A18A317 107552 ----a-w- C:\Windows\Sysnative\RTNUninst64.dll
2014-09-01 07:24:53 C93EF8EE4A8D85FA39C8C5F9F2885648 2604376 ----a-w- C:\Windows\Sysnative\WavesGUILib.dll
2014-09-01 07:24:52 ED27D943336C2956DCE43A7B777FAEFE 81248 ----a-w- C:\Windows\Sysnative\SFCOM64.dll
2014-09-01 07:24:52 D95A37963E504EBE32693F3C2946C4C9 220512 ----a-w- C:\Windows\Sysnative\SFNHK64.dll
2014-09-01 07:24:52 A88BE9A6C4E646A2B2A1BD3A7F4B58E7 198896 ----a-w- C:\Windows\Sysnative\SRSHP64.dll
2014-09-01 07:24:52 A028717B791416182959B325D5B40679 211184 ----a-w- C:\Windows\Sysnative\SRSTSH64.dll
2014-09-01 07:24:52 9C4CF2E875035DBA252A736E424BF37D 78176 ----a-w- C:\Windows\Sysnative\SFAPO64.dll
2014-09-01 07:24:52 2FCADCC14F8E540F6ADE4BF92BD8AEDD 155888 ----a-w- C:\Windows\Sysnative\SRSWOW64.dll
2014-09-01 07:24:52 03E343EECFC59323AAD97AACC1BDB275 121744 ----a-w- C:\Windows\Sysnative\SFSS_APO.dll
2014-09-01 07:24:52 018D3D2478754AA411DE6DA6DE5F8F21 518896 ----a-w- C:\Windows\Sysnative\SRSTSX64.dll
2014-09-01 07:24:51 4A73114B2BEE7AC77AA7703EB58DD393 332392 ----a-w- C:\Windows\Sysnative\RtlCPAPI64.dll
2014-09-01 07:24:50 0805289E121F3E3C458C970B08314EB2 149608 ----a-w- C:\Windows\Sysnative\RtkCfg64.dll
2014-09-01 07:24:49 9D4123000AA5B75D3869F4531C9BA81B 1805928 ----a-w- C:\Windows\Sysnative\RtkApi64.dll
2014-09-01 07:24:48 F576CD3F6028807DF148815FA3DCFE94 2428520 ----a-w- C:\Windows\Sysnative\RtPgEx64.dll
2014-09-01 07:24:48 706B9A55E4B1EDD2F6C2D7A1CF37E197 3115112 ----a-w- C:\Windows\Sysnative\RtkAPO64.dll
2014-09-01 07:24:47 A81248F30E62963E737DC26A32C8CDD4 1560680 ----a-w- C:\Windows\Sysnative\RTSnMg64.cpl
2014-09-01 07:24:47 10936CD08C1830F95497E4ACB26E7019 1245288 ----a-w- C:\Windows\Sysnative\RTCOM64.dll
2014-09-01 07:24:46 ECAEC5FBBBEF8612AF0A866AFA5F7EF2 101208 ----a-w- C:\Windows\Sysnative\RTEEL64A.dll
2014-09-01 07:24:46 E9D4A333DF15D06C68AC4BFB9B6581CB 310104 ----a-w- C:\Windows\Sysnative\RP3DAA64.dll
2014-09-01 07:24:46 D0D0D82B7366E691275E433CD34F89B2 375128 ----a-w- C:\Windows\Sysnative\RTEEP64A.dll
2014-09-01 07:24:46 B6FE01558CC03F3866C9AD0ED19261D8 310104 ----a-w- C:\Windows\Sysnative\RP3DHT64.dll
2014-09-01 07:24:46 A6286A6C7A1BBFCBA17AA54384A21D1C 204120 ----a-w- C:\Windows\Sysnative\RTEED64A.dll
2014-09-01 07:24:46 6F4CD493196100EEF349D7132CECAFD9 78680 ----a-w- C:\Windows\Sysnative\RTEEG64A.dll
2014-09-01 07:24:45 AF0BCCFF260A187F76AE12E216030E4F 1474048 ----a-w- C:\Windows\Sysnative\RCoRes64.dat
2014-09-01 07:24:45 50E80B67745AEA3AFE88FD48C4C023B9 92264 ----a-w- C:\Windows\Sysnative\RCoInst64.dll
2014-09-01 07:24:41 E0B4052B55114ACD0BFE627AE050E751 136024 ----a-w- C:\Windows\Sysnative\R4EEL64A.dll
2014-09-01 07:24:41 E05E98B73A089BC6DDADE5577B64D1E6 74072 ----a-w- C:\Windows\Sysnative\R4EEG64A.dll
2014-09-01 07:24:41 CF171618F3999FEB4F95C77A8C376C92 334680 ----a-w- C:\Windows\Sysnative\MaxxVolumeSDAPO.dll
2014-09-01 07:24:41 B90443404596E62B2E60A9EEA5FAF5CA 426328 ----a-w- C:\Windows\Sysnative\R4EED64A.dll
2014-09-01 07:24:41 8D2AF770C4781E11A2AEC2089D5154C5 3308376 ----a-w- C:\Windows\Sysnative\R4EEP64A.dll
2014-09-01 07:24:41 8B211FFCCC2C08DDC0FD023E70A13DD8 118104 ----a-w- C:\Windows\Sysnative\R4EEA64A.dll
2014-09-01 07:24:40 8F982624FFFE2779B2965E03A67FE511 3768152 ----a-w- C:\Windows\Sysnative\MaxxAudioRealtek.dll
2014-09-01 07:24:39 87B5AB256A5A068EDDA0F4B4FAC728CC 2197264 ----a-w- C:\Windows\Sysnative\MaxxAudioEQ.dll
2014-09-01 07:24:39 75616F8DB5C092A8A50AFEC273859DD7 318808 ----a-w- C:\Windows\Sysnative\MaxxAudioAPO20.dll
2014-09-01 07:24:39 03E0955A7D8E5E74E7F6986A56A66196 341336 ----a-w- C:\Windows\Sysnative\MaxxAudioAPO30.dll
2014-09-01 07:24:37 8E50E3BA76CCD8868EF0415F2C388129 603472 ----a-w- C:\Windows\Sysnative\KAAPORT64.dll
2014-09-01 07:24:32 973D8D0843F65B69DE13B649F5570975 2085440 ----a-w- C:\Windows\Sysnative\FMAPO64.dll
2014-09-01 07:24:31 F7C357462077156DC211AC2112FC8C53 1568360 ----a-w- C:\Windows\Sysnative\DTSS2HeadphoneDLL64.dll
2014-09-01 07:24:31 F132C08BD8C58579B400DFAA71F34CFB 1756264 ----a-w- C:\Windows\Sysnative\DTSS2SpeakerDLL64.dll
2014-09-01 07:24:31 DE32448E6B40141C80DAABFF6FBE1744 693352 ----a-w- C:\Windows\Sysnative\DTSVoiceClarityDLL64.dll
2014-09-01 07:24:31 9948969B2C1987B1D64789EFEB284A84 712296 ----a-w- C:\Windows\Sysnative\DTSSymmetryDLL64.dll
2014-09-01 07:24:30 FF31A2F57AAAB58DB78FCC961A58B206 428648 ----a-w- C:\Windows\Sysnative\DTSGainCompensatorDLL64.dll
2014-09-01 07:24:30 BC0474E5476E5EA0D0E1AA5AC41E2061 242792 ----a-w- C:\Windows\Sysnative\DTSGFXAPO64.dll
2014-09-01 07:24:30 B3977C8BA77559F4F8752AE8EB724C87 242792 ----a-w- C:\Windows\Sysnative\DTSLFXAPO64.dll
2014-09-01 07:24:30 3B8FB5376F5431C0101747D5138BCB9B 241768 ----a-w- C:\Windows\Sysnative\DTSGFXAPONS64.dll
2014-09-01 07:24:30 2EF5442E8E7ED20F7634EEFB09640C8F 491112 ----a-w- C:\Windows\Sysnative\DTSNeoPCDLL64.dll
2014-09-01 07:24:30 21B38D4D86A87909491F690883AE6D1E 1486952 ----a-w- C:\Windows\Sysnative\DTSBoostDLL64.dll
2014-09-01 07:24:30 192A03A21636D3775CEE4C049C3BEB2A 432744 ----a-w- C:\Windows\Sysnative\DTSLimiterDLL64.dll
2014-09-01 07:24:29 8B5A737AD11EF45D9B1AEB4ED6884968 728680 ----a-w- C:\Windows\Sysnative\DTSBassEnhancementDLL64.dll
2014-09-01 07:24:28 A7138E6FFA25D5281A0E35ABF60D60A9 200800 ----a-w- C:\Windows\Sysnative\AERTAC64.dll
2014-09-01 07:24:28 973ADB6AD47AC047F900C0D760AB6BE2 108960 ----a-w- C:\Windows\Sysnative\AERTAR64.dll
====== C:\Windows\Sysnative\drivers =====
2014-09-02 05:52:05 DDA4CAF29D8C0A297F886BFE561E6659 198656 ----a-w- C:\Windows\Sysnative\drivers\WUDFRd.sys
2014-09-02 05:52:05 AB886378EEB55C6C75B4F2D14B6C869F 87040 ----a-w- C:\Windows\Sysnative\drivers\WUDFPf.sys
2014-09-02 05:52:03 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-09-02 05:46:49 6BD9295CC032DD3077C671FCCF579A7B 23408 ----a-w- C:\Windows\Sysnative\drivers\fs_rec.sys
2014-09-02 05:41:26 D711B3C1D5F42C0C2415687BE09FC163 288768 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2014-09-02 05:41:26 A5D9106A73DC88564C825D317CAC68AC 158208 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
2014-09-02 05:41:26 9423E9D355C8D303E76B8CFBD8A5C30C 128000 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
2014-09-02 05:40:18 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys
2014-09-02 05:40:18 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-09-02 05:40:18 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-09-02 05:39:57 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys
2014-09-02 05:39:57 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys
2014-09-02 05:39:41 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys
2014-09-02 05:39:15 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys
2014-09-02 05:39:15 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys
2014-09-02 05:39:15 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys
2014-09-02 05:39:15 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys
2014-09-02 05:39:15 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys
2014-09-02 05:38:43 760E38053BF56E501D562B70AD796B88 950128 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys
2014-09-02 05:38:43 0E01641D96889BDEB22DE12D30575B08 41472 ----a-w- C:\Windows\Sysnative\drivers\RNDISMP.sys
2014-09-02 05:38:10 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys
2014-09-02 05:37:11 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2014-09-02 05:37:10 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\Sysnative\drivers\Wdf01000.sys
2014-09-02 05:37:10 AEA0A67275CFBA0E463E00C6E9A1DDAE 54376 ----a-w- C:\Windows\Sysnative\drivers\WdfLdr.sys
2014-09-02 05:37:09 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-09-02 05:37:07 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\Sysnative\drivers\usbcir.sys
2014-09-02 05:37:07 1F775DA4CF1A3A1834207E975A72E9D7 185344 ----a-w- C:\Windows\Sysnative\drivers\usbvideo.sys
2014-09-02 05:37:03 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 ----a-w- C:\Windows\Sysnative\drivers\tcpipreg.sys
2014-09-02 05:36:51 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2014-09-02 05:36:51 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2014-09-02 05:36:14 1A4F75E63C9FB84B85DFFC6B63FD5404 140800 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys
2014-09-02 05:31:11 B4ADEBBF5E3677CCE9651E0F01F7CC28 410112 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys
2014-09-02 05:31:11 441FBA48BFF01FDB9D5969EBC1838F0B 467456 ----a-w- C:\Windows\Sysnative\drivers\srv.sys
2014-09-02 05:31:10 27E461F0BE5BFF5FC737328F749538C3 168448 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys
2014-09-02 05:31:07 87CE5C8965E101CCCED1F4675557E868 985536 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2014-09-02 05:31:07 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys
2014-09-02 05:31:02 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys
2014-09-02 05:30:32 E61608AA35E98999AF9AAEEEA6114B0A 210944 ----a-w- C:\Windows\Sysnative\drivers\rdpwd.sys
2014-09-02 05:29:45 E9766131EEADE40A27DC27D2D68FBA9C 75120 ----a-w- C:\Windows\Sysnative\drivers\partmgr.sys
2014-09-02 05:28:49 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys
2014-09-02 05:28:49 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys
2014-09-02 05:28:49 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys
2014-09-02 05:27:44 8F6322049018354F45F05A2FD2D4E5E0 223752 ----a-w- C:\Windows\Sysnative\drivers\fvevol.sys
2014-09-02 05:27:35 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
2014-09-02 05:27:05 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2014-09-02 05:27:05 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-09-02 05:27:04 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2014-09-02 04:57:40 6C02A83164F5CC0A262F4199F0871CF5 90624 ----a-w- C:\Windows\Sysnative\drivers\bowser.sys
2014-09-01 09:20:47 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-09-01 08:14:15 E25632DF954CE70928946BB36F829CF4 126944 ----a-w- C:\Windows\Sysnative\drivers\scdemu.sys
2014-09-01 08:07:17 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-09-01 08:06:19 46571ED73AE84469DCA53081D33CF3C8 283200 ----a-w- C:\Windows\Sysnative\drivers\dtsoftbus01.sys
2014-09-01 07:47:32 48DED912CDE54FC0923B9858512366E1 92008 ----a-w- C:\Windows\Sysnative\drivers\aswStm.sys
2014-09-01 07:47:30 D95E64416A4A3ED6986E0F474DA934BD 29208 ----a-w- C:\Windows\Sysnative\drivers\aswHwid.sys
2014-09-01 07:46:51 51C5ECEB1CDEE2468A1748BE550CFBC8 23552 ----a-w- C:\Windows\Sysnative\drivers\tdtcp.sys
2014-09-01 07:43:04 645D97385F3F284FB5604F9B970F4D24 65776 ----a-w- C:\Windows\Sysnative\drivers\aswRvrt.sys
2014-09-01 07:43:04 471A311745848B80339436688A8286E6 224896 ----a-w- C:\Windows\Sysnative\drivers\aswVmm.sys
2014-09-01 07:43:03 FF1E537A3632CBB9A0BF72B9FD0878D5 79184 ----a-w- C:\Windows\Sysnative\drivers\aswMonFlt.sys
2014-09-01 07:43:03 B8FDEDE963B82CFD23B3A53A3084666D 1041168 ----a-w- C:\Windows\Sysnative\drivers\aswSnx.sys
2014-09-01 07:43:03 511595FFE2E06D6E1947E0A0C8C7AD27 409832 ----a-w- C:\Windows\Sysnative\drivers\aswsp.sys.1409557444
2014-09-01 07:43:03 0DEDC041DF594AEC2C3BD00417CFAF60 427360 ----a-w- C:\Windows\Sysnative\drivers\aswsp.sys
2014-09-01 07:43:02 A5757DE5F9C83AB40667A53D5126EA40 93568 ----a-w- C:\Windows\Sysnative\drivers\aswRdr2.sys
2014-09-01 07:35:38 36322190763845975E0D001E90687BF2 1847296 ----a-w- C:\Windows\Sysnative\drivers\athurx.sys
2014-09-01 07:31:05 CBD14F698DEF12EE3557604B726CB8EB 114704 ----a-w- C:\Windows\Sysnative\drivers\AtihdW76.sys
2014-09-01 07:25:49 EE082E06A82FF630351D1E0EBBD3D8D0 539240 ----a-w- C:\Windows\Sysnative\drivers\Rt64win7.sys
2014-09-01 07:24:46 EB5FA493A4B6EA290200AE39EBA2FBC6 2905832 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys
====== C:\Windows\Tasks ======
2014-09-01 18:27:13 9C633E1BEA158A81253629F34D23CA8F 4944 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user
2014-09-01 18:27:11 F9887B1395EDEAF20A099295C2D4E8AE 1922 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user.job
2014-09-01 18:27:09 F972F16103E51103C497B9C07A29E92C 4932 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5
2014-09-01 18:27:09 CDF7C66154CA8A19AF13E328652E1E04 1902 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5.job
2014-09-01 18:26:50 3B52DBD947765AEC63D2B31D59CE68A2 2070 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-1.job
2014-09-01 18:26:50 11D315DA50232F2711ECA5465200B330 5100 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-1
2014-09-01 18:26:18 A1E4BAD13CC242426366BB18038B38D6 7156 ----a-w- C:\Windows\Sysnative\Tasks\bbf69886-f4be-45b2-82d8-995b820eb06e
2014-09-01 18:26:17 5D122E64554896F624011FBD733CAB8C 4126 ----a-w- C:\Windows\Tasks\bbf69886-f4be-45b2-82d8-995b820eb06e.job
2014-09-01 18:26:16 97E8C48854D76E823407ECBCEBD2361E 5628 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-4
2014-09-01 18:26:16 83EACF2F85D20E52E67DE9C99CAC14D1 2598 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-4.job
2014-09-01 18:25:44 9646E0F204BCB0B3361822FA2D3498CC 5668 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-6
2014-09-01 18:25:44 5A32551DAE35019A052A7FF1DE4FFA81 2640 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-6.job
2014-09-01 18:25:43 CC045938C81F9658167029BB6606A32A 5546 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-7
2014-09-01 18:25:43 C0864929BF65C528C264AA664E7D0283 2516 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-7.job
2014-09-01 18:25:42 B9EDC2E5ECD6ADF64FC17C1744BE6E4F 906 ----a-w- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-09-01 18:25:42 9A91F600C24C14B2ACF779C66FE3240C 3650 ----a-w- C:\Windows\Sysnative\Tasks\globalUpdateUpdateTaskMachineCore
2014-09-01 18:25:42 84C6ED301A67D77AC3E95B63C68D14F1 902 ----a-w- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-09-01 18:25:42 4E890A6AC589771A10EFB6625B98904F 3904 ----a-w- C:\Windows\Sysnative\Tasks\globalUpdateUpdateTaskMachineUA
2014-09-01 18:25:32 863E6B790B82401161BF1817113DE016 7838 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-11
2014-09-01 18:25:32 170322B22317511A8D8FA28D6E30E4ED 4808 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-11.job
2014-09-01 18:25:17 977E1D713DE69094F7DF9E8CD0734828 6132 ----a-w- C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-3
2014-09-01 18:25:13 B5B58C43BEF8A8FBAE7267DA2DA9BDDC 3102 ----a-w- C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-3.job
2014-09-01 10:35:20 8F57E147D8A51B964BF0B5CA23855814 3768 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater
2014-09-01 10:35:20 25CBB2336415B2A9C0AF8088959DE4A6 830 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-01 08:03:23 F43B6A8DBCD8A55BEBEFF5EEFA272F8E 3146 ----a-w- C:\Windows\Sysnative\Tasks\{9845D512-608E-441E-AFBB-7BC1AB881B8E}
2014-09-01 07:45:22 3E907925C5494AE9D50EDFBA71FAA609 4182 ----a-w- C:\Windows\Sysnative\Tasks\avast! Emergency Update
2014-09-01 07:43:19 F8C39368F47C97714F2E04AF93A2F247 3890 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-09-01 07:43:19 7FCE8599DBC7141A60787B5823650917 894 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-01 07:43:17 A61171D6BEE4B42D7D2CB42EF5B5545C 3638 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2014-09-01 07:43:17 415042E50D728054A4F8F49AA26605B9 890 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-09-01 09:16:35 -------- d-----w- C:\Program Files\Corel
2014-09-01 08:17:07 -------- d-----w- C:\Program Files\WinRAR
2014-09-01 08:07:47 -------- d-----w- C:\Program Files\Microsoft Office
2014-09-01 07:29:44 -------- d-----w- C:\Program Files\ATI
2014-09-01 07:25:05 -------- d-----w- C:\Program Files\Realtek
======= C:\PROGRA~2 =====
2014-09-01 18:25:02 -------- d-----w- C:\PROGRA~2\globalUpdate
2014-09-01 17:08:06 -------- d-----w- C:\PROGRA~2\Photo DVD Slideshow Professional
2014-09-01 09:46:12 -------- d-----w- C:\PROGRA~2\Ubisoft
2014-09-01 09:33:39 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe
2014-09-01 09:33:39 -------- d-----w- C:\PROGRA~2\Adobe
2014-09-01 09:07:28 -------- d-----w- C:\PROGRA~2\COMMON~1\Apple
2014-09-01 09:07:27 -------- d-----w- C:\PROGRA~2\QuickTime
2014-09-01 09:04:44 -------- d-----w- C:\PROGRA~2\COMMON~1\Protexis
2014-09-01 09:03:27 -------- d-----w- C:\PROGRA~2\COMMON~1\Corel
2014-09-01 09:03:04 -------- d-----w- C:\PROGRA~2\Windows Media Components
2014-09-01 09:03:00 -------- d-----w- C:\PROGRA~2\COMMON~1\Ulead Systems
2014-09-01 09:02:56 -------- d-----w- C:\PROGRA~2\Corel
2014-09-01 08:50:14 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype
2014-09-01 08:50:14 -------- d-----r- C:\PROGRA~2\Skype
2014-09-01 08:16:27 -------- d-----w- C:\PROGRA~2\FreeTime
2014-09-01 08:14:13 -------- d-----w- C:\PROGRA~2\PowerISO
2014-09-01 08:09:25 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio
2014-09-01 08:09:25 -------- d-----w- C:\PROGRA~2\COMMON~1\DESIGNER
2014-09-01 08:09:20 -------- d-----w- C:\PROGRA~2\Microsoft.NET
2014-09-01 08:06:55 -------- d-----w- C:\PROGRA~2\Microsoft Office
2014-09-01 08:06:13 -------- d-----w- C:\PROGRA~2\DAEMON Tools Pro
2014-09-01 07:59:11 -------- d-----w- C:\PROGRA~2\Webteh
2014-09-01 07:51:29 -------- d-----w- C:\PROGRA~2\COMMON~1\PX Storage Engine
2014-09-01 07:51:24 -------- d-----w- C:\PROGRA~2\Winamp
2014-09-01 07:46:16 -------- d-----w- C:\PROGRA~2\MCShield
2014-09-01 07:43:12 -------- d-----w- C:\PROGRA~2\Google
2014-09-01 07:42:14 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service
2014-09-01 07:39:05 -------- d-----w- C:\PROGRA~2\BitLord
2014-09-01 07:32:26 -------- d-----w- C:\PROGRA~2\AMD APP
2014-09-01 07:24:28 -------- d-----w- C:\PROGRA~2\Realtek
2014-09-01 07:24:27 -------- d--h--w- C:\PROGRA~2\InstallShield Installation Information
2014-09-01 07:24:22 -------- d--h--w- C:\PROGRA~2\Temp
2014-09-01 07:24:18 -------- d-----w- C:\PROGRA~2\COMMON~1\InstallShield
2014-09-01 07:23:20 -------- d-----w- C:\PROGRA~2\Intel
======= C: =====
====== C:\Users\Blue\AppData\Roaming ======
2014-09-02 12:37:21 -------- d-----w- C:\Users\Blue\AppData\Local\Programs
2014-09-01 18:25:01 -------- d-----w- C:\Users\Blue\AppData\Local\globalUpdate
2014-09-01 18:05:50 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\CrashDumps
2014-09-01 17:23:26 -------- d-----w- C:\Users\Blue\AppData\Local\Adobe
2014-09-01 17:21:27 -------- d-----w- C:\Users\Blue\AppData\Local\CrashDumps
2014-09-01 17:08:25 -------- d-----w- C:\Users\Blue\AppData\Roaming\Photo DVD Slideshow
2014-09-01 17:08:06 -------- d-----w- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Photo DVD Slideshow Professional
2014-09-01 09:46:17 -------- d-----w- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-09-01 09:46:15 -------- d-----w- C:\Users\Blue\AppData\Local\Ubisoft Game Launcher
2014-09-01 09:35:38 -------- d-----w- C:\Users\Blue\AppData\Roaming\Adobe
2014-09-01 09:29:36 -------- d-----w- C:\Users\Blue\AppData\Local\Installer
2014-09-01 09:29:02 -------- d-----w- C:\Users\Blue\AppData\Local\CrashRpt
2014-09-01 09:17:48 -------- d-----w- C:\Users\Blue\AppData\Local\Corel PaintShop Pro
2014-09-01 09:08:32 72BF7E62DD89990926BA156ABD03F36D 3584 ----a-w- C:\Users\Blue\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-01 09:08:28 -------- d-----w- C:\Users\Blue\AppData\Local\Corel
2014-09-01 09:07:37 -------- d-----w- C:\Users\Blue\AppData\Roaming\Ulead Systems
2014-09-01 09:07:24 -------- d-----w- C:\Users\Blue\AppData\Locallow\Apple Computer
2014-09-01 09:06:04 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2014-09-01 09:03:57 -------- d-----w- C:\Users\Blue\AppData\Roaming\Corel
2014-09-01 08:49:07 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google
2014-09-01 08:23:18 -------- d-----w- C:\Users\Blue\AppData\Roaming\Skype
2014-09-01 08:17:19 -------- d-----w- C:\Users\Blue\AppData\Roaming\WinRAR
2014-09-01 08:17:13 -------- d-----w- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-01 08:16:40 -------- d-----w- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-09-01 08:10:41 -------- d-----w- C:\Users\Blue\AppData\Local\Skype
2014-09-01 08:06:56 -------- d-----w- C:\Users\Blue\AppData\Local\Microsoft Help
2014-09-01 07:59:11 -------- d-----w- C:\Users\Blue\AppData\Roaming\BSplayer PRO
2014-09-01 07:51:46 -------- d-----w- C:\Users\Blue\AppData\Roaming\DropboxMaster
2014-09-01 07:51:39 -------- d-----w- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-01 07:51:24 -------- d-----w- C:\Users\Blue\AppData\Roaming\Winamp
2014-09-01 07:51:02 -------- d-----w- C:\Users\Blue\AppData\Roaming\Dropbox
2014-09-01 07:47:58 E68EB7E7B51C8F4D65A57784307CA413 717424 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
2014-09-01 07:43:12 -------- d-----w- C:\Users\Blue\AppData\Local\Google
2014-09-01 07:42:23 -------- d-----w- C:\Users\Blue\AppData\Roaming\Mozilla
2014-09-01 07:42:23 -------- d-----w- C:\Users\Blue\AppData\Local\Mozilla
2014-09-01 07:39:41 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-09-01 07:39:05 -------- d-----w- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
2014-09-01 07:38:32 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2014-09-01 07:33:48 1C68A58E8AAB155FFC74EBFB60D4B1F1 77488 ----a-w- C:\Users\Blue\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-01 07:33:38 -------- d-----w- C:\Users\Blue\AppData\Roaming\ATI
2014-09-01 07:33:38 -------- d-----w- C:\Users\Blue\AppData\Local\ATI
2014-09-01 07:28:48 -------- d-----w- C:\Users\Blue\AppData\Locallow\Microsoft
2014-09-01 07:26:53 -------- d-----w- C:\Users\Blue\AppData\Roaming\DAEMON Tools Pro
2014-09-01 07:17:52 -------- d-----r- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-09-01 07:17:52 -------- d-----r- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-09-01 07:17:44 -------- d-----w- C:\Users\Blue\AppData\Roaming\Identities
2014-09-01 07:17:41 -------- d-----w- C:\Users\Blue\AppData\Local\VirtualStore
2014-09-01 07:17:33 -------- d-s---w- C:\Users\Blue\AppData\Roaming\Microsoft
2014-09-01 07:17:33 -------- d-----w- C:\Users\Blue\AppData\Roaming\Media Center Programs
2014-09-01 07:17:33 -------- d-----w- C:\Users\Blue\AppData\Local\Temp
2014-09-01 07:17:33 -------- d-----w- C:\Users\Blue\AppData\Local\Microsoft
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
====== C:\Users\Blue ======
2014-09-01 18:03:50 2EBC0AB478ED94F2443319AF48176A04 2104832 ----a-w- C:\Users\Blue\Downloads\FRST64.exe
2014-09-01 18:02:45 9DED4724D695CFB01960426DA011ABAE 1364531 ----a-w- C:\Users\Blue\Desktop\AdwCleaner.exe
2014-09-01 17:08:25 -------- d-----w- C:\ProgramData\Anvsoft
2014-09-01 16:58:44 BA5F6C97EDE9D05D282E24CDC2524760 895120 ----a-w- C:\Users\Blue\Downloads\googleupdatesetup.exe
2014-09-01 10:39:19 -------- d-----w- C:\ProgramData\Orbit
2014-09-01 09:35:39 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2014-09-01 09:33:39 -------- d-----w- C:\ProgramData\Adobe
2014-09-01 09:29:50 -------- d---a-w- C:\ProgramData\TEMP
2014-09-01 09:28:11 75B3E9D89B9AA77A54AC1AAEDC1BA420 163392 ----a-w- C:\Users\Blue\Downloads\MSNWeather.gadget.exe
2014-09-01 09:15:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro X7
2014-09-01 09:14:51 -------- d-----w- C:\ProgramData\Package Cache
2014-09-01 09:08:06 F1B7AD5465F618DC38963EDF0F558C9F 88 --sh--r- C:\ProgramData\BEE01D9537.sys
2014-09-01 09:08:06 6CC66AEA30AF603A2A651473F4C5412E 6266 --sha-w- C:\ProgramData\KGyGaAvL.sys
2014-09-01 09:07:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-09-01 09:07:27 -------- d-----w- C:\ProgramData\Apple Computer
2014-09-01 09:07:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
2014-09-01 09:07:14 -------- d-----w- C:\ProgramData\InterVideo
2014-09-01 09:05:59 -------- d-----w- C:\ProgramData\Corel
2014-09-01 09:03:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Photo Pro X3
2014-09-01 09:03:01 -------- d-----w- C:\ProgramData\Ulead Systems
2014-09-01 08:50:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-01 08:17:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-01 08:14:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2014-09-01 08:10:41 -------- d-----w- C:\ProgramData\Skype
2014-09-01 08:10:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-09-01 08:06:54 -------- d-----w- C:\ProgramData\Microsoft Help
2014-09-01 08:06:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
2014-09-01 08:03:40 A2AB2217A3286F4A90E0403A1412D5DA 35595360 ----a-w- C:\Users\Blue\Downloads\SkypeSetupFull.exe
2014-09-01 08:01:53 FEC17D5FB09A03376D3AA204C65562A7 362029 ----a-w- C:\Users\Blue\Downloads\sqlite3.dll
2014-09-01 08:01:42 82901D6179D63704B923B2CE1E8887C7 1677928 ----a-w- C:\Users\Blue\Downloads\SkypeSetup.exe
2014-09-01 08:00:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2014-09-01 07:51:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2014-09-01 07:46:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
2014-09-01 07:46:17 -------- d-----w- C:\ProgramData\MCShield
2014-09-01 07:46:01 6E44C49039E696991D2DB54B5C81E2F5 2856736 ----a-w- C:\Users\Blue\Downloads\MCShield-Setup.exe
2014-09-01 07:44:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-01 07:42:14 -------- d-----w- C:\ProgramData\Mozilla
2014-09-01 07:39:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitLord
2014-09-01 07:35:05 -------- d-----w- C:\ProgramData\TP-LINK
2014-09-01 07:33:38 -------- d-----w- C:\ProgramData\ATI
2014-09-01 07:32:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-09-01 07:26:53 -------- d-----w- C:\ProgramData\DAEMON Tools Pro
2014-09-01 07:17:52 -------- d-----r- C:\Users\Blue\Searches
2014-09-01 07:17:42 -------- d-----r- C:\Users\Blue\Contacts
2014-09-01 07:17:34 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Blue\ntuser.ini
2014-09-01 07:17:33 -------- d--h--w- C:\Users\Blue\AppData
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Videos
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Saved Games
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Pictures
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Music
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Links
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Favorites
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Downloads
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Documents
2014-09-01 07:17:33 -------- d-----r- C:\Users\Blue\Desktop

====== C: exe-files ==
2014-09-02 12:37:31 B0E8D785EA386CCE804A2E9E878F4829 137744 ----a-w- C:\Program Files (x86)\Ubisoft\WATCH_DOGS\bin\watch_dogs.exe
2014-09-02 12:37:29 3D9C937922BD9F5B362DB29B44F85014 1198793 ----a-w- C:\Program Files (x86)\Ubisoft\WATCH_DOGS\unins000.exe
2014-09-02 06:03:49 D21DD7BFC81C8623DE48EBB17133D59C 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2014-09-02 06:03:49 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2014-09-02 05:52:03 8ABFE00F213F2571498F1B8FD7939A98 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2014-09-02 05:43:15 F28D6538F76DC6ECFABF6176DBDD2664 142336 ----a-w- C:\Windows\System32\poqexec.exe
2014-09-02 05:43:14 20104EA66332D24D7C65BBB087C56737 123904 ----a-w- C:\Windows\SysWOW64\poqexec.exe
2014-09-02 05:42:09 E0B340996A41C9A75DFA3B99BBA9C500 591872 ----a-w- C:\Windows\System32\SearchIndexer.exe
2014-09-02 05:42:09 D9E21CBF9E6A87847AFFD39EA3FA28EE 249856 ----a-w- C:\Windows\System32\SearchProtocolHost.exe
2014-09-02 05:42:09 236F286E103FD44BD85FDD93097FD5DD 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
2014-09-02 05:42:08 E1AC89F6C5252057E6062843E36A6701 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-09-02 05:42:08 A6CD6B3F71E13E2E45B727FB8A47EA87 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
2014-09-02 05:42:08 49A3AD5CE578CD77F445F3D244AEAB2D 113664 ----a-w- C:\Windows\System32\SearchFilterHost.exe
2014-09-02 05:40:05 A1CF92651A2274E887189DABD2929DEF 82944 ----a-w- C:\Windows\SysWOW64\Dism\DismHost.exe
2014-09-02 05:40:04 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Windows\System32\Dism\DismHost.exe
2014-09-02 05:39:50 20235ED4653CFDDCDEF721F5126A1C47 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-09-02 05:39:49 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\SysWOW64\osk.exe
2014-09-02 05:39:49 A064A1D9CBD7F6959AAEAEAFF96DB2E9 692736 ----a-w- C:\Windows\System32\osk.exe
2014-09-02 05:39:49 89D2706FCD45E33CECFBD46BCBAD7E16 10240 ----a-w- C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
2014-09-02 05:39:36 8D466B36076BCD7997838C0DDB69764C 619672 ----a-w- C:\Windows\SysWOW64\icardagt.exe
2014-09-02 05:39:36 8A08BB0D12BE40DC09632CD5D04A48A0 1389208 ----a-w- C:\Windows\System32\icardagt.exe
2014-09-02 05:39:15 E4312738B500577BABC232A49F67A67D 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe
2014-09-02 05:39:15 28A8B99DE70F376B18709E6B07D6A352 35480 ----a-w- C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-02 05:38:58 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\SysWOW64\RMActivate_isv.exe
2014-09-02 05:38:58 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\SysWOW64\RMActivate.exe
2014-09-02 05:38:58 297926B15AE5390409F1007EB28A8EFB 552960 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe
2014-09-02 05:38:58 1B3741488AA7E237961A29D1E7A44C0A 626176 ----a-w- C:\Windows\System32\RMActivate.exe
2014-09-02 05:38:58 17CF3B3F68272BD40C878D4DBAB0EBC9 658432 ----a-w- C:\Windows\System32\RMActivate_isv.exe
2014-09-02 05:38:58 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-09-02 05:38:58 03F8F411F118CFDA508E77C747BB05EA 553984 ----a-w- C:\Windows\System32\RMActivate_ssp.exe
2014-09-02 05:38:57 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-09-02 05:37:14 9E5D9177660A76FC8DECDC37A91A5B0D 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2014-09-02 05:36:57 37C7C89B03F9D39629EDA545A1645D68 49664 ----a-w- C:\Windows\servicing\GC64\tzupd.exe
2014-09-02 05:36:49 C7AC9A4D827774B19221D5FE068BF190 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2014-09-02 05:36:49 ACBC1FB1950AC0C41944A6C8917032EF 28672 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe
2014-09-02 05:36:05 B0F8CCA08DBC392442E27377B98DD0CD 112064 ----a-w- C:\Windows\System32\consent.exe
2014-09-02 05:35:54 6B47CF5C27865DDF6680E4D834FBE34F 5550016 ----a-w- C:\Windows\System32\ntoskrnl.exe
2014-09-02 05:35:53 4D59F470985D08139E42D15842816C47 3969984 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2014-09-02 05:35:53 31FA2485DFC773F1E718A4D19F443FA9 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2014-09-02 05:35:51 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\System32\smss.exe
2014-09-02 05:34:38 A236B1646E96AB06BE0F8D592B6D9A0D 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2014-09-02 05:28:16 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-09-02 05:27:56 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\System32\conhost.exe
2014-09-02 05:27:56 9F3D88540DB73F5213D5044CB50006DF 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2014-09-02 05:27:56 2E1D6624EE2C3F454CADF09DC59E78B0 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2014-09-02 05:27:53 A30AB03E7C837A17AC70E67E63B8E2F6 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2014-09-02 05:27:22 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-09-02 05:27:21 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe
2014-09-02 05:27:21 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe
2014-09-02 05:27:21 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-09-02 05:27:17 4586B77B18FA9A8518AF76CA8FD247D9 1192448 ----a-w- C:\Windows\System32\certutil.exe
2014-09-02 05:27:17 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\SysWOW64\certutil.exe
2014-09-02 05:27:04 204F3F58212B3E422C90BD9691A2DF28 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-09-02 05:26:40 81A85BA8B536B70E035A9976F9D42873 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2014-09-02 05:26:38 B28BD86791468F427321458985F6A0E3 252928 ----a-w- C:\Windows\SysWOW64\drvinst.exe
2014-09-02 05:26:37 5FAC5F264D61D99EE8961480818B9DEF 31232 ----a-w- C:\Windows\System32\prevhost.exe
2014-09-02 05:26:37 5D1BFF0FCE80F9E2E539F436710D4A79 31232 ----a-w- C:\Windows\SysWOW64\prevhost.exe
2014-09-02 05:26:33 78C918D3612FE5937D32E488F053F10A 605552 ----a-w- C:\Windows\System32\winload.exe
2014-09-02 05:26:33 78C918D3612FE5937D32E488F053F10A 605552 ----a-w- C:\Windows\System32\Boot\winload.exe
2014-09-02 05:26:33 5A76F4B8D9D5D9D4C1153DFF4972C196 518672 ----a-w- C:\Windows\System32\winresume.exe
2014-09-02 05:26:33 5A76F4B8D9D5D9D4C1153DFF4972C196 518672 ----a-w- C:\Windows\System32\Boot\winresume.exe
2014-09-02 04:59:41 5BB980114F9A3D750A5C827B69C8A13B 156672 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-09-02 04:59:41 1E3976298791F63775B64BE5B9C97618 31232 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe
2014-09-02 04:57:38 901CC8AB9E7CB35380C338D30A006C5D 16384 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe
2014-09-02 04:57:38 81237A794334CF5EB5DE08C3C3F644E1 50176 ----a-w- C:\Windows\SysWOW64\mshta.exe
2014-09-02 04:57:38 69139856255B456BD0F4D53B162AEC20 47616 ----a-w- C:\Windows\System32\mshta.exe
2014-09-02 04:57:38 3B8749772AC84D4859BAA881A00A9FB0 118784 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-09-02 04:57:37 FE3AD8EE79555C2C7DD0FF51B0B300F1 376832 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-09-02 04:57:37 7E9A4FADEF0D3181E789618B70B5F757 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-09-02 04:57:37 1B63BB1CA2F085FCA18BBBECFFBB4AC3 146944 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2014-09-02 04:57:37 0EBFB927D7B9037F861CA9378D1484DD 677016 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-09-02 04:57:36 05873DABEDE6249738A6FFF89B61F48A 699032 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2014-09-02 04:57:35 DBB48ABF9286EEA87D0A1E74CCFAF072 16896 ----a-w- C:\Windows\System32\msfeedssync.exe
2014-09-02 04:57:35 0402DCB04F6BFB652276BDE536D7E2A7 120320 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
2014-09-02 04:57:34 A8BAEDD5F89489FDCFE05A3289C6A246 174592 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-09-02 04:57:34 38A4CACA35C3D460A251624776CF8699 273408 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2014-09-01 18:25:12 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe
2014-09-01 18:25:12 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
2014-09-01 18:25:12 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe
2014-09-01 18:25:08 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe
2014-09-01 18:25:03 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe
2014-09-01 18:12:13 D7C8364203520C78A51DE2A81894B381 1133968 ----a-w- C:\Users\Blue\AppData\Local\Installer\Installsense_24910\delay.exe
2014-09-01 18:12:13 D7C8364203520C78A51DE2A81894B381 1133968 ----a-w- C:\Users\Blue\AppData\Local\Installer\Installiwebar_24910\delay.exe
2014-09-01 18:12:10 D7C8364203520C78A51DE2A81894B381 1133968 ----a-w- C:\FRST\Quarantine\C\Users\Blue\AppData\Local\Temp\Install_18943\delay.exe
2014-09-01 18:03:50 2EBC0AB478ED94F2443319AF48176A04 2104832 ----a-w- C:\Users\Blue\Downloads\FRST64.exe
2014-09-01 18:02:45 9DED4724D695CFB01960426DA011ABAE 1364531 ----a-w- C:\Users\Blue\Desktop\AdwCleaner.exe
2014-09-01 17:41:02 871AE3AAC3C5C58A46ED114AE19A51E0 512360 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-5.exe
2014-09-01 17:40:48 855E88F1A9A3B0CB752CDED866C213C7 1499496 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-4.exe
2014-09-01 17:40:31 62B73BDB8CC3DE140A244F8E1A18615F 591208 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-7.exe
2014-09-01 17:40:31 0799F4122D4A0477017850A63FED5894 864616 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-64.exe
2014-09-01 17:40:30 03C549EA11ED19C6577C2EB46A70A29A 707944 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-6.exe
2014-09-01 17:40:25 A572B2E14764CF21E0F180A448292F29 1989480 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-11.exe
2014-09-01 17:40:23 A572B2E14764CF21E0F180A448292F29 1989480 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-3.exe
2014-09-01 17:40:18 4866E90B401039247DFBEFC45AE19AFD 2425910 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\utils.exe
2014-09-01 17:28:29 D7C8364203520C78A51DE2A81894B381 1133968 ----a-w- C:\Users\Blue\AppData\Local\Installer\Installsense_26935\delay.exe
2014-09-01 17:28:28 D7C8364203520C78A51DE2A81894B381 1133968 ----a-w- C:\Users\Blue\AppData\Local\Installer\Installiwebar_26935\delay.exe
2014-09-01 17:08:15 3B46A945E6A1A14848F928D668C52784 82351 ----a-w- C:\Program Files (x86)\Photo DVD Slideshow Professional\uninst.exe
2014-09-01 16:58:44 BA5F6C97EDE9D05D282E24CDC2524760 895120 ----a-w- C:\Users\Blue\Downloads\googleupdatesetup.exe
2014-09-01 10:35:19 5ECA7197CC7C56C353AE941CE1186666 699568 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-01 09:29:36 10D2D1AA06814C3F45375601AD0DE708 1129872 ----a-w- C:\FRST\Quarantine\C\Users\Blue\AppData\Local\Installer\Install_31615\setup.exe
2014-09-01 09:28:11 75B3E9D89B9AA77A54AC1AAEDC1BA420 163392 ----a-w- C:\Users\Blue\Downloads\MSNWeather.gadget.exe
2014-09-01 09:28:02 342F79337765760AD4E392EB67D5ED2C 2585872 ----a-w- C:\Program Files (x86)\Adobe\Acrobat 11.0\Setup Files\{AC76BA86-1033-FFFF-7760-000000000006}\WindowsInstaller-KB893803-v2-x86.exe
2014-09-01 09:22:40 15E9F541B823488AD1E5426C16616A31 364224 ----a-w- C:\Program Files (x86)\Adobe\Acrobat 11.0\Setup Files\{AC76BA86-1033-FFFF-7760-000000000006}\Setup.exe
2014-09-01 09:15:17 2B48F69517044D82E1EE675B1690C08B 455576 ------w- C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
2014-09-01 09:14:51 1191BA2A9908EE79C0220221233E850A 455720 ----a-w- C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
2014-09-01 09:07:12 EE1342C184C075B129A758FA81544D27 40344 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}\Setup.exe
2014-09-01 08:53:23 B3FD01873BD5FD163AB465779271C58F 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
2014-09-01 08:49:16 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateBroker.exe
2014-09-01 08:49:16 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe
2014-09-01 08:49:15 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateSetup.exe
2014-09-01 08:49:10 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
2014-09-01 08:49:10 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe
2014-09-01 08:49:10 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
2014-09-01 08:49:08 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdate.exe
2014-09-01 08:49:00 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe
2014-09-01 08:17:07 C58A02814A539C4C262C0CF73169A47E 522840 ----a-w- C:\Program Files\WinRAR\Rar.exe
2014-09-01 08:17:07 C0E3B08163BBE94E9FBDE1259AD282AF 61528 ----a-w- C:\Program Files\WinRAR\Formats\ace32loader.exe
2014-09-01 08:17:07 A26F654B536EEEC5870BB0A92F934370 149592 ----a-w- C:\Program Files\WinRAR\Uninstall.exe
2014-09-01 08:17:07 2EAAE1A484A7D7DA5EAA658F8C734AD9 330328 ----a-w- C:\Program Files\WinRAR\UnRAR.exe
2014-09-01 08:17:07 167B0C13576CE31C32D1C53F1190DBB2 1315928 ----a-w- C:\Program Files\WinRAR\WinRAR.exe
2014-09-01 08:16:40 816C1EA2E64C649C35BE3558B17858C1 151859 ----a-w- C:\Program Files (x86)\FreeTime\FormatFactory\uninst.exe
2014-09-01 08:14:16 25A18712449A129E4DBE2D9D69EEFFEB 126575 ----a-w- C:\Program Files (x86)\PowerISO\uninstall.exe
2014-09-01 08:06:18 BD217B63289396563D8E1CE82E20C405 52032 ----a-w- C:\Program Files (x86)\DAEMON Tools Pro\dtsoftbusinst64.exe
2014-09-01 08:03:40 A2AB2217A3286F4A90E0403A1412D5DA 35595360 ----a-w- C:\Users\Blue\Downloads\SkypeSetupFull.exe
2014-09-01 08:01:42 82901D6179D63704B923B2CE1E8887C7 1677928 ----a-w- C:\Users\Blue\Downloads\SkypeSetup.exe
2014-09-01 08:00:31 CC127EE542BC41BFD7EB3CF6F6DBAA3B 697690 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\AC3 Filter\unins000.exe
2014-09-01 08:00:31 A6C9085DB29CEB92FA32D9EFBAB0471D 90112 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\AC3 Filter\spdif_test.exe
2014-09-01 08:00:31 8367988DC0585700CFA758F18A2EF1AC 87552 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\AC3 Filter\ac3config.exe
2014-09-01 08:00:24 AF4223C2577E752413784ECE83765354 137728 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\Haali media splitter\mkv2vfr.exe
2014-09-01 08:00:24 5DE59A417828FA4648D49EA0DAD6E5BE 358400 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\Haali media splitter\gdsmux.exe
2014-09-01 08:00:24 3C4D75D33CD2B3D53D0445C3594F881A 42305 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\Haali media splitter\uninstall.exe
2014-09-01 08:00:24 30AA0674FB6DA80F9480E11513D9661C 113152 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\Haali media splitter\dsmux.exe
2014-09-01 08:00:16 CF3CF034CFABA8AC68B6B502A1044F59 1175371 ----a-w- C:\Users\Blue\AppData\Roaming\BSplayer PRO\FFDShow\unins000.exe
2014-09-01 07:59:12 4F30D2868C666D891EFD820F18C7D22F 54468 ----a-w- C:\Program Files (x86)\Webteh\BSplayerPro\uninstall.EXE
2014-09-01 07:51:56 59D04DDB331049A071233A05343B7753 387441 ----a-w- C:\Program Files (x86)\Winamp\UninstWA.exe
2014-09-01 07:51:29 D2728A10CCD2A675638B016D47B1C254 72176 ------w- C:\Program Files (x86)\Common Files\PX Storage Engine\pxhpinst.exe
2014-09-01 07:51:29 94F95BE2A44C8291132D314582F141F8 126448 ------w- C:\Program Files (x86)\Common Files\PX Storage Engine\pxinsi64.exe
2014-09-01 07:51:29 6D3630B7F27B3643FDE05D1088F84F2F 68592 ------w- C:\Program Files (x86)\Common Files\PX Storage Engine\pxinsa64.exe
2014-09-01 07:51:29 50A76D2D5E4BE94556326C4BF748C758 123888 ------w- C:\Program Files (x86)\Common Files\PX Storage Engine\pxcpyi64.exe
2014-09-01 07:51:29 08D51E037F487F9CA9FD0B0388F4C15A 68080 ------w- C:\Program Files (x86)\Common Files\PX Storage Engine\pxcpya64.exe
2014-09-01 07:46:18 6E44C49039E696991D2DB54B5C81E2F5 2856736 ----a-w- C:\ProgramData\MCShield\MCShield-Setup.exe
2014-09-01 07:46:01 6E44C49039E696991D2DB54B5C81E2F5 2856736 ----a-w- C:\Users\Blue\Downloads\MCShield-Setup.exe
2014-09-01 07:43:50 3196386C09B35AD1421672ACCA0F8A24 39930960 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\37.0.2062.102\37.0.2062.102_chrome_installer.exe
2014-09-01 07:43:12 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2014-09-01 07:42:59 B46B41CE922CE5B7B055A28226DE2D79 307344 ----a-w- C:\Windows\System32\aswBoot.exe
2014-09-01 07:42:15 BC24422CC00B3A862C60F8E71AB24A9F 109886 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe
2014-09-01 07:42:14 4E9D8041D352A33332FD6F59A3A78B03 119408 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
2014-09-01 07:39:06 1C214826FC3603211DC9D9D79A877DB4 74172 ----a-w- C:\Program Files (x86)\BitLord\uninst.exe
2014-09-01 07:39:03 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 ----a-w- C:\Windows\System32\wuauclt.exe
2014-09-01 07:38:52 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2014-09-01 07:38:52 29FE783F75362AD6D2D9C0555BA83BD2 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-09-01 07:35:38 6F58A1D8E7B031C6F2A60BA04D1A0B7D 372736 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{3BD98AAF-61B5-46E0-A6C8-593C242C7C48}\setup.exe
2014-09-01 07:25:47 F7C04620A53469001EE657C5F8E5524F 172648 ------w- C:\Program Files (x86)\Realtek\NICDRV_8169\RTINSTALLER64.EXE
2014-09-01 07:25:43 A5CC8AB2AB0B9ED847C4B2CB0AF53492 399976 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe
2014-09-01 07:25:10 E15B4376791992B53BDA8FBA1B6DE712 1679976 ------r- C:\Program Files (x86)\Realtek\Audio\InstallShield\Rtkupd64.exe
2014-09-01 07:24:56 E15B4376791992B53BDA8FBA1B6DE712 1679976 ------w- C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe
2014-09-01 07:24:56 BDC5623C34851F5DBD682DE553E70B59 562792 ----a-w- C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
2014-09-01 07:24:52 9B0329BAB7B9C6702D4DFAEABBD370A6 1833576 ----a-w- C:\Program Files\Realtek\Audio\HDA\SkyTel.exe
2014-09-01 07:24:51 E15B4376791992B53BDA8FBA1B6DE712 1679976 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe
2014-09-01 07:24:50 3FFB9EB76E0286BED6F8A9319981F616 7233640 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
2014-09-01 07:24:49 5D63CCD46688B775382AA68EF844510C 199272 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
2014-09-01 07:24:42 BCFF8CD24809941E28C73185FC58CA39 11905128 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
2014-09-01 07:24:42 0BE126224273ACB0925C07B30A0E4209 2226280 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
2014-09-01 07:24:33 42361B4BD80768E82B80285851037665 49056 ----a-w- C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2014-09-01 07:24:29 D1E343BC00136CE03C4D403194D06A80 98208 ----a-w- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
2014-09-01 07:24:29 44BB65B1D3827043978FC8E11CA7C0B4 210024 ----a-w- C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
2014-09-01 07:24:28 49B3D2077199C44C1F3BBB16B4094AE6 121064 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe
2014-09-01 07:24:19 D87A2C80695F22C428BD4A64291D45E3 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2014-09-01 07:24:19 9B7E1DF9722AA964C973425FC449F46D 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
=== C: other files ==
2014-09-02 05:52:05 DDA4CAF29D8C0A297F886BFE561E6659 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2014-09-02 05:52:05 AB886378EEB55C6C75B4F2D14B6C869F 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2014-09-02 05:46:49 6BD9295CC032DD3077C671FCCF579A7B 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-09-02 05:41:26 D711B3C1D5F42C0C2415687BE09FC163 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2014-09-02 05:41:26 A5D9106A73DC88564C825D317CAC68AC 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2014-09-02 05:41:26 9423E9D355C8D303E76B8CFBD8A5C30C 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2014-09-02 05:40:18 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2014-09-02 05:40:18 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-09-02 05:40:18 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2014-09-02 05:39:57 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-09-02 05:39:57 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-09-02 05:39:41 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-09-02 05:39:15 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2014-09-02 05:39:15 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2014-09-02 05:39:15 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2014-09-02 05:39:15 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2014-09-02 05:39:15 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2014-09-02 05:38:43 760E38053BF56E501D562B70AD796B88 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2014-09-02 05:38:43 0E01641D96889BDEB22DE12D30575B08 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2014-09-02 05:38:10 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2014-09-02 05:37:11 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-09-02 05:37:10 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2014-09-02 05:37:10 AEA0A67275CFBA0E463E00C6E9A1DDAE 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2014-09-02 05:37:07 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-09-02 05:37:07 1F775DA4CF1A3A1834207E975A72E9D7 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2014-09-02 05:37:03 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2014-09-02 05:36:51 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2014-09-02 05:36:51 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2014-09-02 05:36:14 1A4F75E63C9FB84B85DFFC6B63FD5404 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-09-02 05:31:11 B4ADEBBF5E3677CCE9651E0F01F7CC28 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-09-02 05:31:11 441FBA48BFF01FDB9D5969EBC1838F0B 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-09-02 05:31:10 27E461F0BE5BFF5FC737328F749538C3 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-09-02 05:31:07 87CE5C8965E101CCCED1F4675557E868 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-09-02 05:31:07 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-09-02 05:31:02 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2014-09-02 05:30:32 E61608AA35E98999AF9AAEEEA6114B0A 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2014-09-02 05:29:45 E9766131EEADE40A27DC27D2D68FBA9C 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2014-09-02 05:28:49 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2014-09-02 05:28:49 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2014-09-02 05:28:49 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2014-09-02 05:27:44 8F6322049018354F45F05A2FD2D4E5E0 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2014-09-02 05:27:35 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2014-09-02 05:27:05 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\System32\drivers\cng.sys
2014-09-02 05:27:05 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-09-02 05:27:04 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-09-02 05:26:43 A347EF56B7CD8360B3EF7772FEA597B9 3163648 ----a-w- C:\Windows\System32\win32k.sys
2014-09-02 04:57:40 6C02A83164F5CC0A262F4199F0871CF5 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-09-01 17:40:48 C9134DFA5C8A3F4B01D0622F56A804EF 313857 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2.xpi
2014-09-01 17:40:25 6A5DF606BCA4CD01FED6289663F5B440 272757 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2.crx
2014-09-01 17:40:25 2B67F4729E949DC9B3158DD5E5C40C19 273953 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\a55be9d7-bc63-442f-ad95-e30983793c5a.crx
2014-09-01 17:40:21 6A5DF606BCA4CD01FED6289663F5B440 272757 ----a-w- C:\FRST\Quarantine\C\Program Files (x86)\Senses\6f12841f-c1c6-4c16-bc79-053577add1bf.crx
2014-09-01 09:08:06 F1B7AD5465F618DC38963EDF0F558C9F 88 --sh--r- C:\ProgramData\BEE01D9537.sys
2014-09-01 09:08:06 6CC66AEA30AF603A2A651473F4C5412E 6266 --sha-w- C:\ProgramData\KGyGaAvL.sys
2014-09-01 08:14:15 E25632DF954CE70928946BB36F829CF4 126944 ----a-w- C:\Windows\System32\drivers\scdemu.sys
2014-09-01 08:06:19 46571ED73AE84469DCA53081D33CF3C8 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2014-09-01 08:06:19 46571ED73AE84469DCA53081D33CF3C8 283200 ----a-w- C:\Program Files (x86)\DAEMON Tools Pro\dtsoftbus01.sys
2014-09-01 07:47:32 48DED912CDE54FC0923B9858512366E1 92008 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2014-09-01 07:47:30 D95E64416A4A3ED6986E0F474DA934BD 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-09-01 07:46:51 51C5ECEB1CDEE2468A1748BE550CFBC8 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-09-01 07:43:04 645D97385F3F284FB5604F9B970F4D24 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-09-01 07:43:04 471A311745848B80339436688A8286E6 224896 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-09-01 07:43:03 FF1E537A3632CBB9A0BF72B9FD0878D5 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-09-01 07:43:03 B8FDEDE963B82CFD23B3A53A3084666D 1041168 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2014-09-01 07:43:03 0DEDC041DF594AEC2C3BD00417CFAF60 427360 ----a-w- C:\Windows\System32\drivers\aswsp.sys
2014-09-01 07:43:02 A5757DE5F9C83AB40667A53D5126EA40 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-09-01 07:40:26 34E555D85EBD34A32530728246D3790B 85071390 ----a-w- C:\Program Files (x86)\BitLord\Downloads\Avast Antivirus 9-2014-Final+Serial-2095.zip
2014-09-01 07:35:38 36322190763845975E0D001E90687BF2 1847296 ----a-w- C:\Windows\System32\drivers\athurx.sys
2014-09-01 07:35:38 36322190763845975E0D001E90687BF2 1847296 ----a-r- C:\Windows\System32\athurx.sys
2014-09-01 07:31:05 CBD14F698DEF12EE3557604B726CB8EB 114704 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2014-09-01 07:25:49 EE082E06A82FF630351D1E0EBBD3D8D0 539240 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-09-01 07:25:49 EE082E06A82FF630351D1E0EBBD3D8D0 539240 ------w- C:\Program Files (x86)\Realtek\NICDRV_8169\WIN7\rt64win7.sys
2014-09-01 07:24:46 EB5FA493A4B6EA290200AE39EBA2FBC6 2905832 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1697143202-2978083806-735747886-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"MCShield Monitor"="C:\Program Files (x86)\MCShield\mcshieldrtm.exe"
"DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Corel Photo Downloader"="c:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe -startup"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"PWRISOVM.EXE"="C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup"
"Corel File Shell Monitor"="c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exe"
"Standby"="c:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe -START"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MCShield Monitor"="C:\Program Files (x86)\MCShield\mcshieldrtm.exe"
"DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Corel Photo Downloader"="c:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe -startup"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [01-Sep-14 12:35 PM]
C:\Windows\tasks\bbf69886-f4be-45b2-82d8-995b820eb06e.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-4.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-1.job --a------ C:\Program Files (x86)\Senses\Senses-codedownloader.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-11.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-11.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-3.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-3.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-4.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-4.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-5.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-5.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-5.exe []
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-6.job --a------ [Undetermined Task]
C:\Windows\tasks\f90c9618-f09e-4985-8220-238e954b38e2-7.job --a------ C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-7.exe []
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [01-Sep-14 08:42 PM]
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [01-Sep-14 08:42 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01-Sep-14 09:43 AM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01-Sep-14 09:43 AM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\bbf69886-f4be-45b2-82d8-995b820eb06e" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-4.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-1" [C:\Program Files (x86)\Senses\Senses-codedownloader.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-11" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-11.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-3" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-3.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-4" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-4.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-5" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-5.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-5.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-6" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-6.exe]
"C:\Windows\SysNative\tasks\f90c9618-f09e-4985-8220-238e954b38e2-7" [C:\Program Files (x86)\Senses\f90c9618-f09e-4985-8220-238e954b38e2-7.exe]
"C:\Windows\SysNative\tasks\globalUpdateUpdateTaskMachineCore" [C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\globalUpdateUpdateTaskMachineUA" [C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\{9845D512-608E-441E-AFBB-7BC1AB881B8E}" ["c:\program files (x86)\mozilla firefox\firefox.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [01-Sep-14 07:26 PM]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default
- iWebar - %ProfilePath%\extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com
- Senses - %ProfilePath%\extensions\warnerroberts@hotmail.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default
9EE20E6E2E3F94714D44F739B9A228F4 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll - Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[08-May-14 03:49 PM]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[01-Sep-14 09:47 AM]

Google Slides - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Google Voice Search Hotword (Beta) - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
YouTube - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Adobe Acrobat - Create PDF - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
Google Sheets - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
avast Online Security - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on 02-Sep-14 at 18:53:04.67 ======================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Ponovo pokreni zoek ;


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;


U beli okvir prozora iskopiraj sledeći tekst:

C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user.job;f
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5.job;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-1.job;f
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-1;f
C:\Windows\Sysnative\Tasks\bbf69886-f4be-45b2-82d8-995b820eb06e;f
C:\Windows\Tasks\bbf69886-f4be-45b2-82d8-995b820eb06e.job;
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-4;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-4.job;f
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-6;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-6.job;f
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-7;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-7.job;f
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job;f
C:\Windows\Sysnative\Tasks\globalUpdateUpdateTaskMachineCore;f
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job;f
C:\Windows\Sysnative\Tasks\globalUpdateUpdateTaskMachineUA;f
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-11;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-11.job;f
C:\Windows\Sysnative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-3;f
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-3.job ;f
C:\Users\Blue\AppData\Local\globalUpdate;fs
C:\Program Files (x86)\globalUpdate;fs
C:\Program Files (x86)\Senses;fs
C:\Users\Blue\AppData\Local\Installer\Installsense_24910;fs
C:\Users\Blue\AppData\Local\Installer\Installiwebar_24910;fs
iWebar;ff
Senses;ff
C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com;f
C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com;f
autoclean;
emptyalltemp;



Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Kopiraj sadrzaj tog loga u poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zoek.exe v5.0.0.0 Updated 01-September-2014
Tool run by Blue on 02-Sep-14 at 20:28:07.63.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Blue\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-09-02-165304.log 127474 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\globalUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\globalUpdatem deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default

user.js not found
---- Lines iWebar removed from prefs.js ----
user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510.35510.description", "iWebar");
user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510.35510.name", "iWebar");
user_pref("extensions.a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510.35510.publisher", "iWebar");
---- FireFox user.js and prefs.js backups ----

prefs__0836_.backup

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Senses not found
C:\Users\Blue\AppData\Local\globalUpdate deleted
C:\Program Files (x86)\globalUpdate deleted
C:\Users\Blue\AppData\Local\Installer\Installsense_24910 deleted
C:\Users\Blue\AppData\Local\Installer\Installiwebar_24910 deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitLord deleted
C:\Users\Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-1.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-11.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-3.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-4.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-6.job deleted
C:\Windows\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-7.job deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-1 deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-11 deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-3 deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-4 deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5 deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-5_user deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-6 deleted
C:\windows\SysNative\Tasks\f90c9618-f09e-4985-8220-238e954b38e2-7 deleted
C:\Windows\tasks\bbf69886-f4be-45b2-82d8-995b820eb06e.job deleted
C:\windows\SysNative\tasks\bbf69886-f4be-45b2-82d8-995b820eb06e deleted
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job deleted
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job deleted
C:\windows\SysNative\tasks\globalUpdateUpdateTaskMachineCore deleted
C:\windows\SysNative\tasks\globalUpdateUpdateTaskMachineUA deleted
C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\chrome.manifest" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\install.rdf" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\manifest.xml" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins.json" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\defaults\preferences\prefs.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\123.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\16.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\180.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\183.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\192.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\221.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\226.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\242.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\244.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\268.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\28.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\281.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\91.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins\93.js" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\locale\en-US\translations.dtd" deleted
"C:\PROGRA~2\BitLord\BitLord.exe" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\defaults" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\locale" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\defaults\preferences" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\extensionData\plugins" deleted
"C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default\extensions\warnerroberts@hotmail.com\locale\en-US" deleted
"C:\PROGRA~2\BitLord" not deleted
"C:\PROGRA~2\BitLord\rules" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [01-Sep-14 07:26 PM]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Blue\AppData\Roaming\Mozilla\Firefox\Profiles\epsd5qrt.default
9EE20E6E2E3F94714D44F739B9A228F4 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll - Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[08-May-14 03:49 PM]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[01-Sep-14 09:47 AM]

Google Voice Search Hotword (Beta) - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
avast Online Security - Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Blue\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Blue\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Blue\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Blue\AppData\Local\Mozilla\Firefox\Profiles\epsd5qrt.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Blue\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=242 folders=62 112370398 bytes)

==== Empty Temp Folders ======================

C:\Users\Blue\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Blue\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Blue\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\PROGRA~2\BitLord" not found

==== EOF on 02-Sep-14 at 20:40:52.68 ======================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Još samo jedna provera, i završavamo.


Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop.

Dvoklikom pokreni MBAR () na ikonicu programa:
- Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u;
- mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.;
- U uvodnom prozoru klikni dugme Next ukoliko si saglasan;


• Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next;
• Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan;

Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka:
- 'Could not load protection driver' => u tom slucaju klikni OK.
- 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta.




>> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje.

>> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje.
- Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja.



Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe:
- Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ...
- Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem.




Sledeci izvestaji ce biti formirani u mbar folderu.
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

sve je ok da li mogu ovaj mallwarebyte da koristim ubuduce ...?

Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.09.03.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Blue :: BLUE-PC [administrator]

03-Sep-14 6:47:34 AM
mbar-log-2014-09-03 (06-47-34).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 298136
Time elapsed: 7 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)



https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Kompjuter je čist što se malware-a tiče.



• Sledeća procedura će implementirati završno čišćenje.

Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

# DelFix v10.8 - Logfile created 03/09/2014 at 09:57:39
# Updated 29/07/2014 by Xplode
# Username : Blue - BLUE-PC
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\Users\Blue\Desktop\mbar
Deleted : C:\zoek-results.log
Deleted : C:\zoek-results2014-09-02-165304.log
Deleted : C:\Users\Blue\Desktop\AdwCleaner.exe
Deleted : C:\Users\Blue\Desktop\zoek.exe
Deleted : C:\Users\Blue\Downloads\Addition.txt
Deleted : C:\Users\Blue\Downloads\Fixlog.txt
Deleted : C:\Users\Blue\Downloads\FRST.txt
Deleted : C:\Users\Blue\Downloads\FRST64.exe
Deleted : C:\Users\Blue\Downloads\zoek.zip
Deleted : HKLM\SOFTWARE\AdwCleaner

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #3 [Installed Realtek Ethernet Controller Driver | 09/01/2014 07:25:34]
Deleted : RP #4 [Windows Update | 09/01/2014 07:38:39]
Deleted : RP #5 [avast! antivirus system restore point | 09/01/2014 07:42:41]
Deleted : RP #6 [avast! antivirus system restore point | 09/01/2014 07:46:12]
Deleted : RP #7 [Windows Update | 09/01/2014 07:46:53]
Deleted : RP #8 [Installed DirectX | 09/01/2014 07:51:40]
Deleted : RP #9 [Installed Microsoft Office Enterprise 2007 | 09/01/2014 08:05:51]
Deleted : RP #10 [Device Driver Package Install: DT Soft Ltd System devices | 09/01/2014 08:06:21]
Deleted : RP #11 [Removed Skype™ 6.7 | 09/01/2014 08:48:28]
Deleted : RP #12 [Removed Skype Click to Call | 09/01/2014 08:48:54]
Deleted : RP #13 [Installed DirectX | 09/01/2014 09:02:24]
Deleted : RP #14 [Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 | 09/01/2014 09:14:40]
Deleted : RP #15 [Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 | 09/01/2014 09:15:03]
Deleted : RP #16 [Installed Adobe Acrobat XI Pro. | 09/01/2014 09:31:56]
Deleted : RP #17 [Installed DirectX | 09/01/2014 09:45:11]
Deleted : RP #18 [Windows Update | 09/02/2014 05:37:45]
Deleted : RP #19 [Windows Update | 09/02/2014 13:15:39]
Deleted : RP #20 [zoek.exe restore point | 09/02/2014 16:48:04]
Deleted : RP #21 [Windows Update | 09/03/2014 05:53:55]

New restore point created !

########## - EOF - ##########