also @ TechSpot: Xbox One: Entertainment Hub First, Gaming Console Second -- But Could It Disrupt TV?

TechSpot

TechSpot News Products Downloads Forums

About
Sign in

Welcome to TechSpot

Why should I register?

Sign up for a new account or log in here:

Forgot your password?

Couldn't sign you in, please try again.

Malwarebytes Anti-Malware successfully blocked access to a potentially malicious site

Discussion in 'Virus and Malware Removal' started by Parkor, Jan 13, 2013.

Post New Reply

Page 1 of 4

Parkor Newcomer, in training Posts: 43

I am getting this message a lot lately. What can I do to fix this?

Parkor, Jan 13, 2013

#1
Broni Malware Annihilator Posts: 39,324 +175
Welcome aboard

Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.

If you're stuck, or you're not sure about certain step, always ask before doing anything else.

Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.

Never run more than one scan at a time.

Keep updating me regarding your computer behavior, good, or bad.

The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.

If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.

I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
Broni, Jan 13, 2013

#2
Parkor Newcomer, in training Posts: 43

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.13.01

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16466
DJ :: PARKER [administrator]

Protection: Enabled

1/13/2013 3:52:06 PM
mbam-log-2013-01-13 (15-52-06).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 455976
Time elapsed: 20 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Parkor, Jan 13, 2013

#3
Parkor Newcomer, in training Posts: 43

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16453
Run by DJ at 17:36:32 on 2013-01-13
Microsoft Windows 8 6.2.9200.0.1252.1.1033.18.16346.13151 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\system32\dwm.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Windows\system32\dashost.exe
e:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
e:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\taskhostex.exe
e:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Explorer.EXE
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\RuntimeBroker.exe
E:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
E:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
e:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskmgr.exe
E:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskhost.exe
C:\Windows\notepad.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
C:\Windows\system32\msiexec.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT3220468
uURLSearchHooks: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll
mWinlogon: Userinit = userinit.exe,
BHO: Coupon Companion Plugin: {11111111-1111-1111-1111-110211181104} - C:\Program Files (x86)\Coupon Companion Plugin\Coupon Companion Plugin.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
BHO: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll
BHO: Wajam: {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
TB: uTorrentControl_v2 Toolbar: {7473B6BD-4691-4744-A82B-7854EB3D70B6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll
TB: uTorrentControl_v2 Toolbar: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [uTorrent] "e:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [Google Update] "C:\Users\DJ\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
uRun: [Lync] "C:\Program Files\Microsoft Office\Office15\lync.exe" /fromrunkey
uRun: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
uRun: [Steam] "E:\Program Files (x86)\Steam\steam.exe" -silent
mRun: [StartCCC] "e:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{1517A28E-FBC3-4EDA-99E5-A32C81D05C19} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\Drivers\avgidsha.sys [2012-10-15 63328]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\Drivers\avgloga.sys [2012-9-21 225120]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\Drivers\avgmfx64.sys [2012-11-15 111968]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\Drivers\avgrkx64.sys [2012-9-14 40800]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\Drivers\avgidsdrivera.sys [2012-10-22 154464]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\Drivers\avgldx64.sys [2012-10-2 185696]
R1 Avgwfpa;AVG Firewall Driver;C:\Windows\System32\Drivers\avgwfpa.sys [2012-11-26 208736]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-10-18 239616]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-15 5814904]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
R2 MBAMScheduler;MBAMScheduler;E:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-1-12 398184]
R2 MBAMService;MBAMService;E:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-1-12 682344]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-1-12 1103392]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-1-12 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-1-12 168384]
R2 WajamUpdater;WajamUpdater;C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [2012-10-5 109064]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\Drivers\AtihdW86.sys [2013-1-6 91648]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-1-12 24176]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2012-6-2 589824]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\System32\Drivers\RTL8192su.sys [2012-5-22 694416]
S0 Avgboota;AVG Early Launch Anti-Malware Driver;C:\Windows\System32\Drivers\avgboota.sys [2012-10-26 20912]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-9 160944]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2012-10-1 178824]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
.
=============== Created Last 30 ================
.
2013-01-13 20:32:10--------d-----w-C:\Users\DJ\AppData\Roaming\SUPERAntiSpyware.com
2013-01-13 20:32:08--------d-----w-C:\ProgramData\SUPERAntiSpyware.com
2013-01-13 20:32:08--------d-----w-C:\Program Files\SUPERAntiSpyware
2013-01-13 20:17:07--------d-----w-C:\TDSSKiller_Quarantine
2013-01-13 03:20:14--------d-----w-C:\Users\DJ\AppData\Roaming\Malwarebytes
2013-01-13 03:20:09--------d-----w-C:\ProgramData\Malwarebytes
2013-01-13 03:20:0824176----a-w-C:\Windows\System32\drivers\mbam.sys
2013-01-12 23:12:36--------d-----w-C:\ProgramData\Spybot - Search & Destroy
2013-01-12 23:12:2317272----a-w-C:\Windows\System32\sdnclean64.exe
2013-01-12 23:12:18--------d-----w-C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-01-12 23:12:05--------d-----w-C:\Users\DJ\AppData\Local\Programs
2013-01-12 22:33:25--------d-----w-C:\Users\DJ\AppData\Roaming\AVG2013
2013-01-12 22:32:25--------d-----w-C:\Users\DJ\AppData\Roaming\TuneUp Software
2013-01-12 22:32:21--------d--h--w-C:\$AVG
2013-01-12 22:32:21--------d-----w-C:\ProgramData\AVG2013
2013-01-12 22:32:16--------d-----w-C:\Program Files (x86)\AVG
2013-01-12 22:30:25--------d--h--w-C:\ProgramData\Common Files
2013-01-12 22:30:25--------d-----w-C:\Users\DJ\AppData\Local\MFAData
2013-01-12 22:30:25--------d-----w-C:\Users\DJ\AppData\Local\Avg2013
2013-01-12 22:30:25--------d-----w-C:\ProgramData\MFAData
2013-01-12 13:42:38--------d-----w-C:\ProgramData\AVAST Software
2013-01-12 13:42:38--------d-----w-C:\Program Files\AVAST Software
2013-01-12 06:43:28--------d-----w-C:\Program Files (x86)\WinPcap
2013-01-12 03:17:51962612----a-w-C:\Windows\SysWow64\MFC42D.DLL
2013-01-12 03:16:31--------d-----w-C:\Users\DJ\AppData\Local\Coupon Companion Plugin
2013-01-12 03:16:27--------d-----w-C:\Users\DJ\AppData\Local\Updater21804
2013-01-12 03:16:26--------d-----w-C:\Users\DJ\AppData\Local\Wajam
2013-01-12 03:16:26--------d-----w-C:\Program Files (x86)\Coupon Companion Plugin
2013-01-12 03:16:25--------d-----w-C:\Program Files (x86)\Wajam
2013-01-11 21:45:579125352----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4036AD53-91E2-40F2-9AF8-912844FFD05B}\mpengine.dll
2013-01-11 01:32:479125352----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-01-10 21:52:17--------d-----w-C:\Program Files (x86)\Microsoft SQL Server
2013-01-10 21:51:58--------d-----w-C:\Windows\PCHEALTH
2013-01-10 21:51:58--------d-----w-C:\Program Files\Microsoft SQL Server
2013-01-10 21:49:30--------d-----w-C:\Program Files\Microsoft Analysis Services
2013-01-10 21:49:30--------d-----w-C:\Program Files (x86)\Microsoft Analysis Services
2013-01-10 21:49:28--------d-----w-C:\Users\DJ\AppData\Local\Microsoft Help
2013-01-10 21:44:10182464----a-w-C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10188.bin
2013-01-10 21:39:44--------d-s---w-C:\Users\DJ\Google Drive
2013-01-09 21:41:452367528----a-w-C:\Windows\System32\WSService.dll
2013-01-09 12:37:24--------d-----w-C:\Users\DJ\AppData\Local\Native Instruments
2013-01-09 12:34:49--------dc-h--w-C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
2013-01-09 12:34:42--------d-----w-C:\Program Files\Common Files\Native Instruments
2013-01-09 12:34:41--------d-----w-C:\Program Files (x86)\Common Files\Native Instruments
2013-01-09 12:34:41--------d-----w-C:\Program Files (x86)\Common Files\Digidesign
2013-01-09 12:34:39--------dc-h--w-C:\ProgramData\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2013-01-09 12:34:38--------d-----w-C:\ProgramData\Native Instruments
2013-01-09 12:34:38--------d-----w-C:\Program Files\Native Instruments
2013-01-09 02:53:04--------d-----w-C:\ProgramData\Ableton
2013-01-09 02:53:02--------d-----w-C:\Users\DJ\AppData\Local\CrashDumps
2013-01-09 02:52:29--------d-----w-C:\Users\DJ\AppData\Roaming\Ableton
2013-01-09 02:51:54368640----a-w-C:\Windows\SysWow64\ReWire.dll
2013-01-09 02:51:54233472----a-w-C:\Windows\SysWow64\REX Shared Library.dll
2013-01-09 00:55:40--------d-----w-C:\Users\DJ\AppData\Roaming\logs
2013-01-09 00:55:40--------d-----w-C:\Users\DJ\AppData\Roaming\.techniclauncher
2013-01-09 00:50:46108008----a-w-C:\Windows\System32\WindowsAccessBridge-64.dll
2013-01-09 00:44:53959976----a-w-C:\Windows\System32\deployJava1.dll
2013-01-09 00:44:531081320----a-w-C:\Windows\System32\npDeployJava1.dll
2013-01-07 00:03:26--------d-----w-C:\Users\DJ\AppData\Local\ATI
2013-01-07 00:03:26--------d-----w-C:\ProgramData\AMD
2013-01-07 00:03:25--------d-----w-C:\Program Files (x86)\Common Files\ATI Technologies
2013-01-07 00:03:25--------d-----w-C:\Program Files (x86)\AMD AVT
2013-01-07 00:03:24--------d-----w-C:\Program Files (x86)\AMD APP
2013-01-07 00:03:0491648----a-w-C:\Windows\System32\drivers\AtihdW86.sys
2013-01-07 00:02:56--------d-----w-C:\Program Files\ATI
2013-01-06 18:43:15--------d-----w-C:\Users\DJ\jagexcache
2013-01-05 17:28:49--------d-----w-C:\Users\DJ\AppData\Local\PAYDAY
2013-01-05 17:28:13--------d-----w-C:\Program Files (x86)\NVIDIA Corporation
2013-01-05 17:01:43--------d-----w-C:\Users\DJ\AppData\Roaming\Awesomium
2013-01-05 17:00:14--------d-----w-C:\Users\DJ\AppData\Local\Uber_Entertainment
2013-01-05 17:00:13--------d-----w-C:\Users\DJ\AppData\Local\UberLauncher
2013-01-05 17:00:05--------d-----w-C:\Windows\SysWow64\directx
2013-01-05 06:38:05--------d-----w-C:\Program Files (x86)\Microsoft XNA
2013-01-05 01:48:07--------d-----w-C:\Users\DJ\AppData\Local\ArmA 2 OA
2013-01-05 01:46:24--------d-----w-C:\Users\DJ\AppData\Local\DayZCommander
2013-01-04 22:19:5977824----a-w-C:\Windows\System32\taskhost.exe
2013-01-04 21:59:15520544----a-w-C:\Windows\System32\d3dx10_41.dll
2013-01-04 21:12:49--------d-----w-C:\Users\DJ\AppData\Roaming\LolClient
2013-01-04 20:45:1168616----a-w-C:\Windows\SysWow64\XAPOFX1_1.dll
2013-01-04 20:45:11509448----a-w-C:\Windows\SysWow64\XAudio2_2.dll
2013-01-04 20:45:11467984----a-w-C:\Windows\SysWow64\d3dx10_39.dll
2013-01-04 20:45:113851784----a-w-C:\Windows\SysWow64\D3DX9_39.dll
2013-01-04 20:45:111493528----a-w-C:\Windows\SysWow64\D3DCompiler_39.dll
2013-01-04 20:38:44--------d-----w-C:\Program Files (x86)\Pando Networks
2013-01-04 20:38:40--------d-----w-C:\Users\DJ\.swt
2013-01-04 04:31:1216114176----a-w-C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-01-04 04:31:1215541248----a-w-C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-01-04 04:29:35279656------w-C:\Windows\System32\MpSigStub.exe
2013-01-04 02:50:46--------d-----w-C:\Users\DJ\AppData\Local\Pokki
2013-01-04 02:41:2517888----a-w-C:\Windows\System32\msvcr100_clr0400.dll
2013-01-04 02:41:2017888----a-w-C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-01-04 02:33:59907776----a-w-C:\Windows\System32\uxtheme.dll
2013-01-03 21:59:044178264----a-w-C:\Windows\SysWow64\D3DX9_41.dll
2013-01-03 21:59:0381768----a-w-C:\Windows\SysWow64\xinput1_3.dll
2013-01-03 21:59:0362744----a-w-C:\Windows\SysWow64\xinput1_2.dll
2013-01-03 21:59:03517448----a-w-C:\Windows\SysWow64\XAudio2_4.dll
2013-01-03 21:59:0322360----a-w-C:\Windows\SysWow64\X3DAudio1_6.dll
2013-01-03 21:47:07--------d-----w-C:\Users\DJ\AppData\Local\TechSmith
2013-01-03 21:47:01--------d-----w-C:\Users\DJ\AppData\Roaming\TechSmith
2013-01-03 21:46:38--------d-----w-C:\Program Files (x86)\Common Files\TechSmith Shared
2013-01-03 21:44:27778856----a-w-C:\Windows\SysWow64\PresentationNative_v0300.dll
2013-01-03 21:44:2735400----a-w-C:\Windows\SysWow64\TsWpfWrp.exe
2013-01-03 21:44:2735400----a-w-C:\Windows\System32\TsWpfWrp.exe
2013-01-03 21:44:27124040----a-w-C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-01-03 21:44:271166440----a-w-C:\Windows\System32\PresentationNative_v0300.dll
2013-01-03 21:44:27102528----a-w-C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-01-03 12:28:30--------d-----w-C:\Users\DJ\AppData\Local\CRE
2013-01-03 12:28:26--------d-----w-C:\Program Files (x86)\Conduit
2013-01-03 12:28:25--------d-----w-C:\Users\DJ\AppData\Local\Conduit
2013-01-03 12:28:25--------d-----w-C:\Program Files (x86)\uTorrentControl_v2
2013-01-03 12:27:40--------d-----w-C:\Users\DJ\AppData\Roaming\uTorrent
2013-01-03 05:30:000----a-w-C:\Windows\ativpsrm.bin
2013-01-03 05:29:45--------d-----w-C:\Windows\Panther
2013-01-03 05:29:24--------d-sh--w-C:\Boot
2013-01-03 03:17:11--------d-----w-C:\Users\DJ\AppData\Roaming\.minecraft
2013-01-03 02:46:32859072----a-w-C:\Windows\SysWow64\npDeployJava1.dll
2013-01-03 02:46:32779704----a-w-C:\Windows\SysWow64\deployJava1.dll
2013-01-03 02:40:43--------d-----r-C:\Program Files (x86)\Skype
2013-01-03 02:40:35--------d-----w-C:\Program Files\Common Files\ATI Technologies
2013-01-03 02:35:24--------d-----w-C:\Program Files (x86)\Common Files\Steam
2013-01-03 02:35:10--------d-----w-C:\Users\DJ\AppData\Local\Google
2013-01-03 02:33:2950784----a-w-C:\ProgramData\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-01-03 02:33:2718528----a-w-C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm2.bin
2013-01-03 02:32:17--------d-----r-C:\Users\DJ\Searches
2013-01-03 02:32:17--------d-----r-C:\Users\DJ\Contacts
2013-01-03 02:32:05--------d-----w-C:\Users\DJ\AppData\Local\VirtualStore
2013-01-03 02:32:04--------d-----w-C:\Users\DJ\AppData\Local\Packages
2013-01-03 02:32:04--------d-----w-C:\ProgramData\PRICache
2012-12-26 13:50:21--------d-sh--w-C:\Recovery
.
==================== Find3M ====================
.
2012-12-18 23:32:5880728----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-18 23:32:58695640----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe
2012-12-16 08:28:2046080----a-w-C:\Windows\System32\atmlib.dll
2012-12-16 08:20:0135328----a-w-C:\Windows\SysWow64\atmlib.dll
2012-12-16 08:08:33362496----a-w-C:\Windows\System32\atmfd.dll
2012-12-16 07:57:09300032----a-w-C:\Windows\SysWow64\atmfd.dll
2012-12-06 04:23:00170496----a-w-C:\Windows\System32\TimeBrokerServer.dll
2012-12-06 04:22:59178176----a-w-C:\Windows\System32\SystemEventsBrokerServer.dll
2012-12-04 04:21:42368640----a-w-C:\Windows\System32\sppwinob.dll
2012-12-04 03:59:084055552----a-w-C:\Windows\System32\win32k.sys
2012-11-29 05:05:57707584----a-w-C:\Windows\System32\AppXDeploymentExtensions.dll
2012-11-29 05:05:571131520----a-w-C:\Windows\System32\AppXDeploymentServer.dll
2012-11-28 04:21:1744032----a-w-C:\Windows\SysWow64\UXInit.dll
2012-11-28 04:20:5953760----a-w-C:\Windows\System32\UXInit.dll
2012-11-27 07:00:32194280----a-w-C:\Windows\System32\drivers\sdbus.sys
2012-11-27 07:00:29124648----a-w-C:\Windows\System32\drivers\dumpsd.sys
2012-11-27 06:59:13329960----a-w-C:\Windows\System32\drivers\storport.sys
2012-11-27 06:39:461122768----a-w-C:\Windows\System32\Taskmgr.exe
2012-11-27 04:49:201027152----a-w-C:\Windows\SysWow64\Taskmgr.exe
2012-11-27 04:36:16208736----a-w-C:\Windows\System32\drivers\avgwfpa.sys
2012-11-27 04:20:501048064----a-w-C:\Windows\SysWow64\mstsc.exe
2012-11-27 04:20:42179200----a-w-C:\Windows\SysWow64\wpnapps.dll
2012-11-27 04:20:35891904----a-w-C:\Windows\SysWow64\winmde.dll
2012-11-27 04:20:31798208----a-w-C:\Windows\SysWow64\WebcamUi.dll
2012-11-27 04:20:2946592----a-w-C:\Windows\SysWow64\vds_ps.dll
2012-11-27 04:20:28560128----a-w-C:\Windows\SysWow64\UserLanguagesCpl.dll
2012-11-27 04:20:231217536----a-w-C:\Windows\SysWow64\storagewmi.dll
2012-11-27 04:20:15680960----a-w-C:\Windows\System32\vds.exe
2012-11-27 04:20:07702464----a-w-C:\Windows\SysWow64\nshwfp.dll
2012-11-27 04:20:071123840----a-w-C:\Windows\System32\mstsc.exe
2012-11-27 04:18:59888832----a-w-C:\Windows\System32\nshwfp.dll
2012-11-27 04:18:395974528----a-w-C:\Windows\System32\mstscax.dll
2012-11-27 04:18:131071104----a-w-C:\Windows\System32\IKEEXT.DLL
2012-11-27 04:18:06378880----a-w-C:\Windows\System32\FWPUCLNT.DLL
2012-11-27 04:17:32718848----a-w-C:\Windows\System32\BFE.DLL
2012-11-27 04:17:312302464----a-w-C:\Windows\System32\authui.dll
2012-11-27 03:57:3218432----a-w-C:\Windows\System32\drivers\BtaMPM.sys
2012-11-27 03:56:2931104----a-w-C:\Windows\System32\drivers\BthAvrcpTg.sys
2012-11-27 03:55:4429952----a-w-C:\Windows\System32\drivers\BthhfHid.sys
2012-11-26 04:21:1871168----a-w-C:\Windows\SysWow64\ncryptsslp.dll
2012-11-26 04:20:0986016----a-w-C:\Windows\System32\ncryptsslp.dll
2012-11-20 08:00:236971624----a-w-C:\Windows\System32\ntoskrnl.exe
2012-11-20 05:24:191164800----a-w-C:\Windows\SysWow64\Display.dll
2012-11-20 05:24:1736352----a-w-C:\Windows\SysWow64\DevDispItemProvider.dll
2012-11-20 05:17:231184256----a-w-C:\Windows\System32\Display.dll
2012-11-20 05:17:2049152----a-w-C:\Windows\System32\DevDispItemProvider.dll
2012-11-20 05:02:466656----a-w-C:\Windows\SysWow64\KBDKURD.DLL
2012-11-20 04:59:267168----a-w-C:\Windows\System32\KBDKURD.DLL
2012-11-20 04:56:2727136----a-w-C:\Windows\System32\drivers\usbohci.sys
2012-11-20 04:56:1183456----a-w-C:\Windows\System32\drivers\hidclass.sys
2012-11-20 04:54:3139936----a-w-C:\Windows\System32\drivers\hidi2c.sys
2012-11-16 04:33:24111968----a-w-C:\Windows\System32\drivers\avgmfx64.sys
2012-11-15 06:08:412706432----a-w-C:\Windows\System32\mshtml.tlb
2012-11-15 06:06:342706432----a-w-C:\Windows\SysWow64\mshtml.tlb
2012-11-13 04:20:301120768----a-w-C:\Windows\System32\msctf.dll
2012-11-13 04:19:23890880----a-w-C:\Windows\SysWow64\msctf.dll
2012-11-10 04:23:25132608----a-w-C:\Windows\SysWow64\poqexec.exe
2012-11-10 04:23:18148480----a-w-C:\Windows\System32\poqexec.exe
2012-11-10 04:22:40122880----a-w-C:\Windows\System32\VmHostAI.dll
2012-11-10 04:22:35144384----a-w-C:\Windows\System32\tssdisai.dll
2012-11-10 04:22:14126976----a-w-C:\Windows\System32\RDWebAI.dll
2012-11-10 04:20:20135680----a-w-C:\Windows\System32\appserverai.dll
2012-11-09 04:49:512048----a-w-C:\Windows\System32\tzres.dll
2012-11-09 04:03:482048----a-w-C:\Windows\SysWow64\tzres.dll
2012-11-08 04:25:36523776----a-w-C:\Windows\SysWow64\WSShared.dll
2012-11-08 04:25:36143872----a-w-C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
2012-11-08 04:25:36124928----a-w-C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2012-11-08 04:25:351775104----a-w-C:\Windows\SysWow64\wininet.dll
2012-11-08 04:24:272881536----a-w-C:\Windows\SysWow64\jscript9.dll
2012-11-08 04:24:2261440----a-w-C:\Windows\SysWow64\iesetup.dll
2012-11-08 04:24:22109056----a-w-C:\Windows\SysWow64\iesysprep.dll
2012-11-08 04:24:1975776----a-w-C:\Windows\SysWow64\fontsub.dll
2012-11-08 04:24:0610752----a-w-C:\Windows\SysWow64\dciman32.dll
2012-11-08 04:22:21641536----a-w-C:\Windows\System32\WSShared.dll
2012-11-08 04:22:20198656----a-w-C:\Windows\System32\Windows.ApplicationModel.Store.dll
2012-11-08 04:22:20163840----a-w-C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2012-11-08 04:22:192246656----a-w-C:\Windows\System32\wininet.dll
2012-11-08 04:21:003966464----a-w-C:\Windows\System32\jscript9.dll
2012-11-08 04:20:5667072----a-w-C:\Windows\System32\iesetup.dll
2012-11-08 04:20:56136704----a-w-C:\Windows\System32\iesysprep.dll
2012-11-08 04:20:5096256----a-w-C:\Windows\System32\fontsub.dll
2012-11-08 04:20:3714336----a-w-C:\Windows\System32\dciman32.dll
2012-11-08 04:02:163072----a-w-C:\Windows\System32\lpk.dll
2012-11-08 04:01:403072----a-w-C:\Windows\SysWow64\lpk.dll
2012-11-08 01:56:52534528----a-w-C:\Windows\SysWow64\uxtheme.dll
2012-11-06 07:52:07445160----a-w-C:\Windows\System32\drivers\USBHUB3.SYS
2012-11-06 07:52:04277736----a-w-C:\Windows\System32\drivers\msiscsi.sys
2012-11-06 07:36:2369864----a-w-C:\Windows\System32\drivers\pdc.sys
2012-11-06 07:33:46522640----a-w-C:\Windows\System32\AUDIOKSE.dll
2012-11-06 07:33:46253512----a-w-C:\Windows\System32\audiodg.exe
2012-11-06 07:33:45490064----a-w-C:\Windows\System32\AudioEng.dll
2012-11-06 07:33:45447792----a-w-C:\Windows\System32\AudioSes.dll
2012-11-06 07:33:301566432----a-w-C:\Windows\System32\ole32.dll
2012-11-06 05:00:06463768----a-w-C:\Windows\SysWow64\AUDIOKSE.dll
2012-11-06 05:00:06427568----a-w-C:\Windows\SysWow64\AudioEng.dll
2012-11-06 05:00:06324344----a-w-C:\Windows\SysWow64\AudioSes.dll
2012-11-06 04:54:132205696----a-w-C:\Windows\SysWow64\PrintConfig.dll
2012-11-06 04:48:271150160----a-w-C:\Windows\SysWow64\ole32.dll
2012-11-06 04:19:59470016----a-w-C:\Windows\System32\wlanmsm.dll
2012-11-06 04:18:5884992----a-w-C:\Windows\SysWow64\fdWCN.dll
.
============= FINISH: 17:36:43.64 ===============

Parkor, Jan 13, 2013

#4
Broni Malware Annihilator Posts: 39,324 +175

I still need Attach.txt part of DDS.

Broni, Jan 13, 2013

#5

Parkor Newcomer, in training Posts: 43

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 8
Boot Device: \Device\HarddiskVolume1
Install Date: 1/2/2013 9:32:03 PM
System Uptime: 1/13/2013 3:50:55 PM (2 hours ago)
.
Motherboard: ASRock | | P67 Extreme4 Gen3
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz | CPUSocket | 3401/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 56 GiB total, 14.048 GiB free.
D: is FIXED (NTFS) - 0 GiB total, 0.29 GiB free.
E: is FIXED (NTFS) - 1397 GiB total, 1145.545 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description:
Device ID: ACPI\INT33A0\0
Manufacturer:
Name:
PNP Device ID: ACPI\INT33A0\0
Service:
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
.
==== End Of File ===========================

Parkor, Jan 13, 2013

#6

Broni Malware Annihilator Posts: 39,324 +175
Download RogueKiller on the desktop

Close all the running programs

Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator

Otherwise just double-click on RogueKiller.exe

Pre-scan will start. Let it finish.

Click on SCAN button.

Wait until the Status box shows Scan Finished

Click on Delete.

Wait until the Status box shows Deleting Finished.

Click on Report and copy/paste the content of the Notepad into your next reply.

RKreport.txt could also be found on your desktop.

If more than one log is produced post all logs.

If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

============================

Download Malwarebytes Anti-Rootkit (MBAR) from HERE

Unzip downloaded file.

Open the folder where the contents were unzipped and run mbar.exe

Follow the instructions in the wizard to update and allow the program to scan your computer for threats.

Click on the Cleanup button to remove any threats and reboot if prompted to do so.

Wait while the system shuts down and the cleanup process is performed.

Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.

When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt
Broni, Jan 13, 2013

#7
Parkor Newcomer, in training Posts: 43

RogueKiller V8.4.3 [Jan 10 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 8 (6.2.9200 ) 64 bits version
Started in : Normal mode
User : DJ [Admin rights]
Mode : Remove -- Date : 01/13/2013 21:32:13

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[TASK][SUSP PATH] Updater21804.exe : C:\Users\DJ\AppData\Local\Updater21804\Updater21804.exe /extensionid=21804 /extensionname="Coupon Companion Plugin" /chromeid=jneaojaoiajhnemidnjhoempalnidbhj -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST31500341AS ATA Device +++++
--- User ---
[MBR] 4ff1444c11da12d0644cd06532e4ec5b
[BSP] ed99f35e60929b5207a910154d0a7dd7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 350 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 718848 | Size: 1430453 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Corsair Force GT ATA Device +++++
--- User ---
[MBR] 5c97e55e9e8526171e1a3e52db5d8ef9
[BSP] d9c74a2586a3a7b3b332574efd7d0890 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 57246 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_01132013_02d2132.txt >>
RKreport[1]_S_01132013_02d2132.txt ; RKreport[2]_D_01132013_02d2132.txt

Parkor, Jan 13, 2013

#8
Parkor Newcomer, in training Posts: 43

Malwarebytes Anti-Rootkit BETA 1.01.0.1016
www.malwarebytes.org

Database version: v2013.01.09.01

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16466
DJ :: PARKER [administrator]

1/13/2013 9:37:21 PM
mbar-log-2013-01-13 (21-37-21).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 30222
Time elapsed: 3 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Parkor, Jan 13, 2013

#9
Parkor Newcomer, in training Posts: 43

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1016
(c) Malwarebytes Corporation 2011-2012
OS version: 6.2.9200 Windows 8 x64
Account is Administrative
Internet Explorer version: 10.0.9200.16466
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, E:\ DRIVE_FIXED
CPU speed: 3.392000 GHz
Memory total: 17139806208, free: 13196496896
------------ Kernel report ------------
01/13/2013 21:33:55
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\System32\Drivers\WppRecorder.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\system32\drivers\tpm.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\pciide.sys
\SystemRoot\System32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\atapi.sys
\SystemRoot\System32\drivers\ataport.SYS
\SystemRoot\System32\drivers\storahci.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\DRIVERS\wfplwfs.sys
\SystemRoot\system32\DRIVERS\avgloga.sys
\SystemRoot\system32\DRIVERS\avgmfx64.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\DRIVERS\avgidsha.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\avgrkx64.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\BasicRender.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\System32\drivers\BasicDisplay.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\system32\DRIVERS\avgwfpa.sys
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\avgldx64.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
\??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\avgidsdrivera.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\System32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\kdnic.sys
\SystemRoot\System32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\atikmpag.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\HECIx64.sys
\SystemRoot\System32\drivers\usbehci.sys
\SystemRoot\System32\drivers\USBPORT.SYS
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\System32\drivers\ucx01000.sys
\SystemRoot\System32\drivers\1394ohci.sys
\SystemRoot\system32\DRIVERS\Rt630x64.sys
\SystemRoot\System32\drivers\serial.sys
\SystemRoot\System32\drivers\serenum.sys
\SystemRoot\System32\drivers\wmiacpi.sys
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\System32\drivers\swenum.sys
\SystemRoot\System32\drivers\ks.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\System32\drivers\usbhub.sys
\SystemRoot\System32\drivers\USBD.SYS
\SystemRoot\system32\drivers\AtihdW86.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\HdAudio.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\System32\drivers\hidusb.sys
\SystemRoot\System32\drivers\HIDCLASS.SYS
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\System32\drivers\kbdhid.sys
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\system32\DRIVERS\RTL8192su.sys
\SystemRoot\System32\drivers\vwifibus.sys
\SystemRoot\system32\drivers\usbaudio.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\mouhid.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\??\C:\Windows\system32\drivers\mbam.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\drivers\condrv.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR1
Upper Device Object: 0xfffffa800d739060
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\Ide\IdeDeviceP1T1L0-2\
Lower Device Object: 0xfffffa800cd13060
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\Drivers\ataport.sys (0x0)
Load Function returned 0x0
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa800d73a060
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\Ide\IdeDeviceP2T0L0-3\
Lower Device Object: 0xfffffa800cd16060
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initializing...
Done!
<<<2>>>
Device number: 1, partition: 1
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa800d739060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d739b10, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d739060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
DevicePointer: 0xfffffa800cd18520, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800cd13060, DeviceName: \Device\Ide\IdeDeviceP1T1L0-2\, DriverName: \Driver\atapi\
------------ End ----------
Upper DeviceData: 0xfffff8a023dfd880, 0xfffffa800d739060, 0xfffffa801d02d090
Lower DeviceData: 0xfffff8a0251d3710, 0xfffffa800cd13060, 0xfffffa801cea9090
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
Done!
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa800d73a060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d691980, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d73a060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xfffffa800cd12520, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800cd16060, DeviceName: \Device\Ide\IdeDeviceP2T0L0-3\, DriverName: \Driver\atapi\
------------ End ----------
Upper DeviceData: 0xfffff8a025bfb7e0, 0xfffffa800d73a060, 0xfffffa801bc67430
Lower DeviceData: 0xfffff8a02614cc00, 0xfffffa800cd16060, 0xfffffa801cec1e40
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 141F6EB
Partition information:
Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 716800
Partition file system is NTFS
Partition is bootable
Partition 1 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 718848 Numsec = 2929569282
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Disk Size: 1500301910016 bytes
Sector size: 512 bytes
Scanning physical sectors of unpartitioned space on drive 0 (1-2047-2930257168-2930277168)...
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 5697B06D
Partition information:
Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 117240322
Partition file system is NTFS
Partition is bootable
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Disk Size: 60022480896 bytes
Sector size: 512 bytes
Done!
Performing system, memory and registry scan...
Read File: File "c:\ProgramData\{C78336EC-F2EB-4640-99A4-DFE96581B90B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\AVG2013\Chjw\3600f8fb00f8c343.dat" is sparse (flags = 32768)
Read File: File "c:\ProgramData\AVG2013\Chjw\5ac42f68c42f459b.dat" is sparse (flags = 32768)
Read File: File "c:\ProgramData\{C78336EC-F2EB-4640-99A4-DFE96581B90B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}\instance.dat" is compressed (flags = 1)
Done!
Scan finished
=======================================

Parkor, Jan 13, 2013

#10
Parkor Newcomer, in training Posts: 43

(still getting the messages)

Parkor, Jan 13, 2013

#11
Broni Malware Annihilator Posts: 39,324 +175
Create new restore point before proceeding with the next step....
How to:
- Windows 8: http://www.vikitech.com/11302/system-restore-windows-8
- Windows 7: http://www.howtogeek.com/howto/3195/create-a-system-restore-point-in-windows-7/
- Vista: http://www.howtogeek.com/howto/wind...tore-point-for-windows-vistas-system-restore/
- XP: http://support.microsoft.com/kb/948247

=======================

Please download ComboFix from Here, Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

Never rename Combofix unless instructed.

Close any open browsers.

Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".

Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.

Close any open browsers.

WARNING: Combofix will disconnect your machine from the Internet as soon as it starts

Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.

If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
If the connection is not there use restore point you created prior to running Combofix.

Double click on combofix.exe & follow the prompts.

NOTE1. If Combofix asks you to install Recovery Console, please allow it.
NOTE 2. If Combofix asks you to update the program, always do so.

When finished, it will produce a report for you.

Please post the "C:\ComboFix.txt"

**Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
**Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
Use AppRemover to uninstall it: http://www.appremover.com/
We can reinstall it when we're done with CF.
**Note 3: If you receive an error "Illegal operation attempted on a registery key that has been marked for deletion", restart computer to fix the issue.
**Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.

Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try the following...

Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

Restart computer in safe mode

Double-click on the Rkill desktop icon to run the tool.

If using Vista or Windows 7 right-click on it and choose Run As Administrator.

A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.

If not, delete the file, then download and use the one provided in Link 2.

Do not reboot until instructed.

If the tool does not run from any of the links provided, please let me know.

When the scan is done Notepad will open with rKill.txt log.
NOTE. rKill.txt log will also be present on your desktop.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.
Broni, Jan 13, 2013

#12
Parkor Newcomer, in training Posts: 43

It says combofix is not compatible with windows 8.

Parkor, Jan 13, 2013

#13
Broni Malware Annihilator Posts: 39,324 +175
Oh, my fault, sorry...

For x32 (x86) bit systems download Farbar Recovery Scan Tool 32-Bit and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool 64-Bit and save it to a flash drive.

Plug the flashdrive into the infected PC.

If you are using Windows 8 consult How to use the Windows 8 System Recovery Environment Command Prompt to enter System Recovery Command prompt.

If you are using Vista or Windows 7 enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

Restart the computer.

As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.

Use the arrow keys to select the Repair your computer menu item.

Select US as the keyboard language settings, and then click Next.

Select the operating system you want to repair, and then click Next.

Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:

Insert the installation disc.

Restart your computer.

If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.

Click Repair your computer.

Select US as the keyboard language settings, and then click Next.

Select the operating system you want to repair, and then click Next.

Select your user account and click Next.

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

Select Command Prompt

In the command window type in notepad and press Enter.

The notepad opens. Under File menu select Open.

Select "Computer" and find your flash drive letter and close the notepad.

In the command window type e:\frst (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.

The tool will start to run.

When the tool opens click Yes to disclaimer.

Press Scan button.

It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

Next...

Re-run FRST again.
Type the following in the edit box after "Search:".

services.exe

Click Search button and post the log (Search.txt) it makes in your reply.

I'll expect two logs:
- FRST.txt
- Search.txt
Broni, Jan 13, 2013

#14
Parkor Newcomer, in training Posts: 43

1/4
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2013
Ran by SYSTEM at 13-01-2013 22:50:14
Running from E:\
Windows 8 (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM-x32\...\Run: [StartCCC] "e:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [x]
HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [3147384 2012-12-11] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [3825176 2012-11-13] (Safer-Networking Ltd.)
HKU\DJ\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17877168 2012-11-09] (Skype Technologies S.A.)
HKU\DJ\...\Run: [uTorrent] "e:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED [x]
HKU\DJ\...\Run: [Google Update] "C:\Users\DJ\AppData\Local\Google\Update\GoogleUpdate.exe" /c [116648 2013-01-02] (Google Inc.)
HKU\DJ\...\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart [16328976 2012-12-17] (Google)
HKU\DJ\...\Run: [Lync] "C:\Program Files\Microsoft Office\Office15\lync.exe" /fromrunkey [21431912 2012-10-01] (Microsoft Corporation)
HKU\DJ\...\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean [3713032 2012-11-13] (Safer-Networking Ltd.)
HKU\DJ\...\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5629312 2012-11-01] (SUPERAntiSpyware.com)
HKU\DJ\...\Run: [Steam] "E:\Program Files (x86)\Steam\steam.exe" -silent [x]
HKLM-x32\...\Runonce: [Z1] cmd /c "E:\Downloads\mbar-1.01.0.1016\mbar\mbar.exe" /cleanup /s [x]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

==================== Services (Whitelisted) ===================

2 !SASCORE; "C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE" [140672 2012-07-11] (SUPERAntiSpyware.com)
3 AllUserInstallAgent; C:\Windows\System32\AUInstallAgent.dll [122368 2012-07-25] (Microsoft Corporation)
2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [169472 2012-11-05] (Microsoft Corporation)
2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe" [5814904 2012-11-15] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe" [196664 2012-10-22] (AVG Technologies CZ, s.r.o.)
2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [179712 2012-09-19] (Microsoft Corporation)
2 DeviceAssociationService; C:\Windows\System32\das.dll [342016 2012-07-25] (Microsoft Corporation)
3 DeviceInstall; C:\Windows\System32\umpnpmgr.dll [107008 2012-09-19] (Microsoft Corporation)
3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [207872 2012-07-25] (Microsoft Corporation)
3 EFS; C:\Windows\System32\efssvc.dll [37376 2012-07-25] (Microsoft Corporation)
3 fhsvc; C:\Windows\System32\fhsvc.dll [116736 2012-09-19] (Microsoft Corporation)
3 KeyIso; C:\Windows\System32\keyiso.dll [59904 2012-07-25] (Microsoft Corporation)
3 KeyIso; C:\Windows\SysWow64\keyiso.dll [43520 2012-07-25] (Microsoft Corporation)
2 LSM; C:\Windows\System32\lsm.dll [438272 2012-07-25] (Microsoft Corporation)
3 NcaSvc; C:\Windows\System32\ncasvc.dll [161792 2012-07-25] (Microsoft Corporation)
3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [73728 2012-07-25] (Microsoft Corporation)
3 Netlogon; C:\Windows\System32\netlogon.dll [743936 2012-07-25] (Microsoft Corporation)
3 Netlogon; C:\Windows\SysWow64\netlogon.dll [634368 2012-07-25] (Microsoft Corporation)
3 netprofm; C:\Windows\System32\netprofmsvc.dll [463872 2012-07-25] (Microsoft Corporation)
3 PrintNotify; C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll [2675712 2012-11-05] (Microsoft Corporation)
2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
3 StorSvc; C:\Windows\SysWow64\storsvc.dll [18432 2012-07-25] (Microsoft Corporation)
3 svsvc; C:\Windows\System32\svsvc.dll [12800 2012-07-25] (Microsoft Corporation)
3 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [178176 2012-12-05] (Microsoft Corporation)
3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [170496 2012-12-05] (Microsoft Corporation)
3 VaultSvc; C:\Windows\System32\vaultsvc.dll [283648 2012-07-25] (Microsoft Corporation)
3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [336384 2012-07-25] (Microsoft Corporation)
3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [336384 2012-07-25] (Microsoft Corporation)
3 vmicrdv; C:\Windows\System32\ICSvc.dll [336384 2012-07-25] (Microsoft Corporation)
3 vmicshutdown; C:\Windows\System32\ICSvc.dll [336384 2012-07-25] (Microsoft Corporation)
3 vmictimesync; C:\Windows\System32\ICSvc.dll [336384 2012-07-25] (Microsoft Corporation)
3 vmicvss; C:\Windows\System32\ICSvc.dll [336384 2012-07-25] (Microsoft Corporation)
2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [263680 2012-07-25] (Microsoft Corporation)
3 WiaRpc; C:\Windows\System32\wiarpc.dll [65536 2012-07-25] (Microsoft Corporation)
3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-25] (Microsoft Corporation)
3 WinHttpAutoProxySvc; C:\Windows\SysWow64\winhttp.dll [516608 2012-11-05] (Microsoft Corporation)
3 wlidsvc; C:\Windows\System32\wlidsvc.dll [1968128 2012-07-25] (Microsoft Corporation)
3 WSService; C:\Windows\System32\WSService.dll [2367528 2012-09-20] (Microsoft Corporation)
2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" [x]
2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [x]
3 rpcapd; "C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini" [x]

==================== Drivers (Whitelisted) =====================

0 3ware; C:\Windows\System32\Drivers\3ware.sys [106736 2012-07-25] (LSI)
0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [77040 2012-07-25] (Microsoft Corporation)
3 acpipagr; C:\Windows\System32\Drivers\acpipagr.sys [10240 2012-07-25] (Microsoft Corporation)
3 acpitime; C:\Windows\System32\Drivers\acpitime.sys [10752 2012-07-25] (Microsoft Corporation)
0 arc; C:\Windows\System32\Drivers\arc.sys [104688 2012-07-25] (PMC-Sierra, Inc.)
0 arcsas; C:\Windows\System32\Drivers\arcsas.sys [108272 2012-07-25] (PMC-Sierra, Inc.)
3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-08-21] (Advanced Micro Devices)
0 Avgboota; C:\Windows\System32\Drivers\Avgboota.sys [20912 2012-10-26] (AVG Technologies CZ, s.r.o.)
1 AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [154464 2012-10-22] (AVG Technologies CZ, s.r.o. )
0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [63328 2012-10-15] (AVG Technologies CZ, s.r.o. )
1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [185696 2012-10-02] (AVG Technologies CZ, s.r.o.)
0 Avgloga; C:\Windows\System32\Drivers\Avgloga.sys [225120 2012-09-21] (AVG Technologies CZ, s.r.o.)
0 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [111968 2012-11-15] (AVG Technologies CZ, s.r.o.)
0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [40800 2012-09-14] (AVG Technologies CZ, s.r.o.)
1 Avgwfpa; C:\Windows\System32\Drivers\Avgwfpa.sys [208736 2012-11-26] (AVG Technologies CZ, s.r.o.)
1 BasicDisplay; C:\Windows\System32\Drivers\BasicDisplay.sys [48640 2012-07-25] (Microsoft Corporation)
1 BasicRender; C:\Windows\System32\Drivers\BasicRender.sys [29696 2012-07-25] (Microsoft Corporation)
3 BthAvrcpTg; C:\Windows\System32\Drivers\BthAvrcpTg.sys [31104 2012-11-26] (Microsoft Corporation)
3 BthHFEnum; C:\Windows\System32\Drivers\BthHFEnum.sys [51200 2012-07-25] (Microsoft Corporation)
3 bthhfhid; C:\Windows\System32\Drivers\bthhfhid.sys [29952 2012-11-26] (Microsoft Corporation)
0 CLFS; C:\Windows\System32\Drivers\CLFS.sys [361200 2012-07-25] (Microsoft Corporation)
3 condrv; C:\Windows\System32\Drivers\condrv.sys [33792 2012-07-25] (Microsoft Corporation)
1 dam; C:\Windows\System32\Drivers\dam.sys [58088 2012-10-10] (Microsoft Corporation)
0 EhStorClass; C:\Windows\System32\Drivers\EhStorClass.sys [81136 2012-07-25] (Microsoft Corporation)
0 EhStorTcgDrv; C:\Windows\System32\Drivers\EhStorTcgDrv.sys [113904 2012-07-25] (Microsoft Corporation)
3 FxPPM; C:\Windows\System32\Drivers\FxPPM.sys [22528 2012-11-05] (Microsoft Corporation)
3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [12288 2012-07-25] (Microsoft Corporation)
3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [120040 2012-09-19] (Microsoft Corporation)
3 hidi2c; C:\Windows\System32\Drivers\hidi2c.sys [39936 2012-11-19] (Microsoft Corporation)
3 hyperkbd; C:\Windows\System32\Drivers\hyperkbd.sys [11776 2012-07-25] (Microsoft Corporation)
3 HyperVideo; C:\Windows\System32\Drivers\HyperVideo.sys [24576 2012-07-25] (Microsoft Corporation)
3 kdnic; C:\Windows\System32\Drivers\kdnic.sys [18432 2012-07-25] (Microsoft Corporation)
0 LSI_SSS; C:\Windows\System32\Drivers\LSI_SSS.sys [81136 2012-07-25] (LSI Corporation)
3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [24176 2012-12-14] (Malwarebytes Corporation)
3 MsBridge; C:\Windows\system32\DRIVERS\bridge.sys [129536 2012-07-25] (Microsoft Corporation)
3 msgpiowin32; C:\Windows\System32\Drivers\msgpiowin32.sys [28392 2012-09-19] (Microsoft Corporation)
3 mshidumdf; C:\Windows\System32\Drivers\mshidumdf.sys [10752 2012-07-25] (Microsoft Corporation)
3 MsLldp; C:\Windows\System32\Drivers\MsLldp.sys [68608 2012-07-25] (Microsoft Corporation)
0 mvumis; C:\Windows\System32\Drivers\mvumis.sys [64240 2012-07-25] (Marvell Semiconductor, Inc.)
3 NdisImPlatform; C:\Windows\System32\Drivers\NdisImPlatform.sys [126464 2012-07-25] (Microsoft Corporation)
3 NDISWANLEGACY; C:\Windows\system32\DRIVERS\ndiswan.sys [174080 2012-07-25] (Microsoft Corporation)
2 Ndu; C:\Windows\System32\Drivers\Ndu.sys [97792 2012-07-25] (Microsoft Corporation)
3 NPF; C:\Windows\SysWow64\Drivers\NPF.sys [30336 2003-04-04] (Politecnico di Torino)
1 npsvctrig; C:\Windows\System32\Drivers\npsvctrig.sys [23552 2012-07-25] (Microsoft Corporation)
0 pdc; C:\Windows\System32\Drivers\pdc.sys [69864 2012-11-05] (Microsoft Corporation)
3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [589824 2012-06-02] (Realtek )
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
3 sdstor; C:\Windows\System32\Drivers\sdstor.sys [56552 2012-10-10] (Microsoft Corporation)
3 SerCx; C:\Windows\System32\Drivers\SerCx.sys [62976 2012-07-25] (Microsoft Corporation)
0 spaceport; C:\Windows\System32\Drivers\spaceport.sys [283888 2012-07-25] (Microsoft Corporation)
3 SpbCx; C:\Windows\System32\Drivers\SpbCx.sys [59392 2012-07-25] (Microsoft Corporation)
0 storahci; C:\Windows\System32\Drivers\storahci.sys [77552 2012-07-25] (Microsoft Corporation)
3 UASPStor; C:\Windows\System32\Drivers\UASPStor.sys [97008 2012-07-25] (Microsoft Corporation)
3 UCX01000; C:\Windows\System32\Drivers\UCX01000.sys [212200 2012-09-19] (Microsoft Corporation)
3 USBHUB3; C:\Windows\System32\Drivers\USBHUB3.sys [445160 2012-11-05] (Microsoft Corporation)
3 USBXHCI; C:\Windows\System32\Drivers\USBXHCI.sys [337128 2012-09-19] (Microsoft Corporation)
3 VerifierExt; C:\Windows\System32\Drivers\VerifierExt.sys [106224 2012-07-25] (Microsoft Corporation)
3 vpci; C:\Windows\System32\Drivers\vpci.sys [67824 2012-07-25] (Microsoft Corporation)
0 VSTXRAID; C:\Windows\System32\Drivers\VSTXRAID.sys [322800 2012-07-25] (VIA Corporation)
3 WdBoot; C:\Windows\System32\Drivers\WdBoot.sys [34216 2012-07-25] (Microsoft Corporation)
3 WdFilter; C:\Windows\System32\Drivers\WdFilter.sys [258288 2012-07-25] (Microsoft Corporation)
0 WFPLWFS; C:\Windows\System32\Drivers\WFPLWFS.sys [96496 2012-07-25] (Microsoft Corporation)
3 wpcfltr; C:\Windows\System32\Drivers\wpcfltr.sys [45056 2012-07-25] (Microsoft Corporation)
3 WpdUpFltr; C:\Windows\System32\Drivers\WpdUpFltr.sys [19968 2012-07-25] (Microsoft Corporation)
3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-25] (Microsoft Corporation)
3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-25] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ====================

==================== One Month Created Files and Folders ========

2013-01-13 22:47 - 2013-01-13 22:47 - 00000000 ____A C:\Recovery.txt
2013-01-13 19:42 - 2013-01-13 19:42 - 00000645 ____A C:\Windows\setupact.log
2013-01-13 19:42 - 2013-01-13 19:42 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-01-13 19:16 - 2013-01-13 19:16 - 00002988 ____A C:\Users\DJ\Desktop\Rkill.txt
2013-01-13 19:16 - 2013-01-13 19:16 - 00000000 ____D C:\Users\DJ\Desktop\rkill
2013-01-13 18:32 - 2013-01-13 18:32 - 00001889 ____A C:\Users\DJ\Desktop\RKreport[2]_D_01132013_02d2132.txt
2013-01-13 18:32 - 2013-01-13 18:32 - 00001834 ____A C:\Users\DJ\Desktop\RKreport[1]_S_01132013_02d2132.txt
2013-01-13 18:31 - 2013-01-13 18:32 - 00000000 ____D C:\Users\DJ\Desktop\RK_Quarantine
2013-01-13 18:31 - 2013-01-13 18:31 - 00764416 ____A C:\Users\DJ\Desktop\RogueKiller.exe
2013-01-13 14:36 - 2013-01-13 14:36 - 00029707 ____A C:\Users\DJ\Desktop\dds.txt
2013-01-13 14:36 - 2013-01-13 14:36 - 00000991 ____A C:\Users\DJ\Desktop\attach.txt
2013-01-13 12:56 - 2013-01-13 12:56 - 00000000 ____D C:\Users\DJ\Desktop\tdsskiller
2013-01-13 12:55 - 2013-01-13 12:55 - 02195061 ____A C:\Users\DJ\Desktop\tdsskiller.zip
2013-01-13 12:32 - 2013-01-13 12:51 - 00000518 ____A C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task f80611e4-a410-4fd3-b7c0-1c618bc4f252.job
2013-01-13 12:32 - 2013-01-13 12:51 - 00000518 ____A C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 31b9111b-1432-484b-927c-d61581e72c2d.job
2013-01-13 12:32 - 2013-01-13 12:32 - 00001808 ____A C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-01-13 12:32 - 2013-01-13 12:32 - 00000000 ____D C:\Users\DJ\AppData\Roaming\SUPERAntiSpyware.com
2013-01-13 12:32 - 2013-01-13 12:32 - 00000000 ____D C:\Users\All Users\SUPERAntiSpyware.com
2013-01-13 12:32 - 2013-01-13 12:32 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-01-13 12:17 - 2013-01-13 12:17 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-01-12 19:51 - 2013-01-12 19:51 - 00000000 ____D C:\Users\DJ\Desktop\Apex Rise Trap Sample Pack 1
2013-01-12 19:47 - 2013-01-12 19:47 - 00422160 ____A C:\Windows\System32\FNTCACHE.DAT
2013-01-12 19:30 - 2013-01-12 19:45 - 00001938 ____A C:\Windows\wininit.ini
2013-01-12 19:20 - 2013-01-12 19:20 - 00000814 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-01-12 19:20 - 2013-01-12 19:20 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Malwarebytes
2013-01-12 19:20 - 2013-01-12 19:20 - 00000000 ____D C:\Users\All Users\Malwarebytes
2013-01-12 19:20 - 2012-12-14 13:49 - 00024176 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-01-12 15:12 - 2013-01-12 19:29 - 00000000 ____D C:\Users\All Users\Spybot - Search & Destroy
2013-01-12 15:12 - 2013-01-12 15:12 - 00002177 ____A C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-01-12 15:12 - 2013-01-12 15:12 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-01-12 15:12 - 2009-01-25 09:14 - 00017272 ____A (Safer Networking Limited) C:\Windows\System32\sdnclean64.exe
2013-01-12 14:33 - 2013-01-12 14:33 - 00000000 ____D C:\Users\DJ\AppData\Roaming\AVG2013
2013-01-12 14:32 - 2013-01-12 14:32 - 00047104 __ASH C:\Users\DJ\Desktop\Thumbs.db
2013-01-12 14:32 - 2013-01-12 14:32 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-01-12 14:32 - 2013-01-12 14:32 - 00000000 ___HD C:\$AVG
2013-01-12 14:32 - 2013-01-12 14:32 - 00000000 ____D C:\Users\DJ\AppData\Roaming\TuneUp Software
2013-01-12 14:32 - 2013-01-12 14:32 - 00000000 ____D C:\Users\All Users\AVG2013
2013-01-12 14:32 - 2013-01-12 14:32 - 00000000 ____D C:\Program Files (x86)\AVG
2013-01-12 14:30 - 2013-01-13 15:36 - 00000000 ____D C:\Users\All Users\MFAData
2013-01-12 14:30 - 2013-01-12 14:43 - 00000000 ____D C:\Users\DJ\AppData\Local\Avg2013
2013-01-12 14:30 - 2013-01-12 14:30 - 00000000 ____D C:\Users\DJ\AppData\Local\MFAData
2013-01-12 05:43 - 2013-01-12 14:34 - 00000444 ____A C:\Windows\System32\config\afw_hm.conf
2013-01-12 05:43 - 2013-01-12 14:34 - 00000004 ____A C:\Windows\System32\config\afw_db.conf
2013-01-12 05:43 - 2013-01-12 14:34 - 00000000 ____A C:\Windows\SysWOW64\config.nt
2013-01-12 05:43 - 2012-10-30 15:50 - 00285328 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe
2013-01-12 05:42 - 2013-01-12 15:21 - 00000000 ____D C:\Users\All Users\AVAST Software
2013-01-12 05:42 - 2013-01-12 05:42 - 00000000 ____D C:\Program Files\AVAST Software
2013-01-12 05:35 - 2013-01-12 05:35 - 00000117 ____A C:\Windows\System32\netcfg-493388484.txt
2013-01-12 05:35 - 2013-01-12 05:35 - 00000117 ____A C:\Windows\System32\netcfg-493388359.txt
2013-01-11 22:43 - 2013-01-11 22:43 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-01-11 21:54 - 2012-12-05 20:23 - 00170496 ____A (Microsoft Corporation) C:\Windows\System32\TimeBrokerServer.dll
2013-01-11 21:54 - 2012-12-05 20:22 - 00178176 ____A (Microsoft Corporation) C:\Windows\System32\SystemEventsBrokerServer.dll
2013-01-11 21:54 - 2012-12-03 20:21 - 00368640 ____A (Microsoft Corporation) C:\Windows\System32\sppwinob.dll
2013-01-11 21:54 - 2012-12-03 19:59 - 04055552 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-01-11 21:54 - 2012-11-28 21:05 - 01131520 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll
2013-01-11 21:54 - 2012-11-28 21:05 - 00707584 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.dll
2013-01-11 21:54 - 2012-11-26 23:00 - 00194280 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\sdbus.sys
2013-01-11 21:54 - 2012-11-26 23:00 - 00124648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dumpsd.sys
2013-01-11 21:54 - 2012-11-26 22:59 - 00329960 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2013-01-11 21:54 - 2012-11-26 22:39 - 01122768 ____A (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
2013-01-11 21:54 - 2012-11-26 22:27 - 00058288 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2013-01-11 21:54 - 2012-11-26 20:49 - 01027152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2013-01-11 21:54 - 2012-11-26 20:20 - 01217536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2013-01-11 21:54 - 2012-11-26 20:20 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe
2013-01-11 21:54 - 2012-11-26 20:20 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-01-11 21:54 - 2012-11-26 20:20 - 00891904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2013-01-11 21:54 - 2012-11-26 20:20 - 00798208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2013-01-11 21:54 - 2012-11-26 20:20 - 00702464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-01-11 21:54 - 2012-11-26 20:20 - 00680960 ____A (Microsoft Corporation) C:\Windows\System32\vds.exe
2013-01-11 21:54 - 2012-11-26 20:20 - 00560128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2013-01-11 21:54 - 2012-11-26 20:20 - 00179200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2013-01-11 21:54 - 2012-11-26 20:20 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 05088256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 03345920 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 03245568 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 02033664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 01536512 ____A (Microsoft Corporation) C:\Windows\System32\storagewmi.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 01145856 ____A (Microsoft Corporation) C:\Windows\System32\winmde.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 01096704 ____A (Microsoft Corporation) C:\Windows\System32\wmpmde.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 00955904 ____A (Microsoft Corporation) C:\Windows\System32\WebcamUi.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 00631808 ____A (Microsoft Corporation) C:\Windows\System32\UserLanguagesCpl.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 00256000 ____A (Microsoft Corporation) C:\Windows\System32\WSDMon.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 00245248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-01-11 21:54 - 2012-11-26 20:19 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\usbmon.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 00244736 ____A (Microsoft Corporation) C:\Windows\System32\wpnapps.dll
2013-01-11 21:54 - 2012-11-26 20:19 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\storewuauth.dll
2013-01-11 21:54 - 2012-11-26 20:18 - 05974528 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2013-01-11 21:54 - 2012-11-26 20:18 - 01071104 ____A (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2013-01-11 21:54 - 2012-11-26 20:18 - 00888832 ____A (Microsoft Corporation) C:\Windows\System32\nshwfp.dll
2013-01-11 21:54 - 2012-11-26 20:18 - 00378880 ____A (Microsoft Corporation) C:\Windows\System32\FWPUCLNT.DLL
2013-01-11 21:54 - 2012-11-26 20:17 - 02302464 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-01-11 21:54 - 2012-11-26 20:17 - 00718848 ____A (Microsoft Corporation) C:\Windows\System32\BFE.DLL
2013-01-11 21:54 - 2012-11-26 19:57 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\BtaMPM.sys
2013-01-11 21:54 - 2012-11-26 19:56 - 00031104 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\BthAvrcpTg.sys
2013-01-11 21:54 - 2012-11-26 19:55 - 00029952 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\BthhfHid.sys
2013-01-11 21:54 - 2012-09-10 21:28 - 00023552 ____A (Microsoft Corporation) C:\Windows\System32\vdsldr.exe
2013-01-11 21:54 - 2012-09-10 21:27 - 00190976 ____A (Microsoft Corporation) C:\Windows\System32\vdsutil.dll
2013-01-11 21:54 - 2012-09-10 21:27 - 00120832 ____A (Microsoft Corporation) C:\Windows\System32\vds_ps.dll
2013-01-11 19:17 - 2013-01-11 19:17 - 00000730 ____A C:\Users\DJ\Desktop\NetTools.lnk
2013-01-11 19:17 - 2013-01-11 19:17 - 00000000 ____D C:\Users\DJ\Downloads\NetTools5070zip
2013-01-11 19:17 - 2006-06-23 18:38 - 00809345 ____A C:\Windows\SysWOW64\nmap-os-fingerprints
2013-01-11 19:17 - 2006-06-23 18:38 - 00557444 ____A C:\Windows\SysWOW64\nmap-service-probes
2013-01-11 19:17 - 2006-06-23 18:38 - 00452096 ____A () C:\Windows\SysWOW64\nmap.exe
2013-01-11 19:17 - 2006-06-23 18:38 - 00225546 ____A C:\Windows\SysWOW64\nmap-mac-prefixes
2013-01-11 19:17 - 2006-06-23 18:38 - 00192007 ____A C:\Windows\SysWOW64\CHANGELOG
2013-01-11 19:17 - 2006-06-23 18:38 - 00108536 ____A C:\Windows\SysWOW64\nmap-services
2013-01-11 19:17 - 2006-06-23 18:38 - 00025611 ____A C:\Windows\SysWOW64\COPYING
2013-01-11 19:17 - 2006-06-23 18:38 - 00021552 ____A C:\Windows\SysWOW64\nmap.xsl
2013-01-11 19:17 - 2006-06-23 18:38 - 00017955 ____A C:\Windows\SysWOW64\nmap-rpc
2013-01-11 19:17 - 2006-06-23 18:38 - 00006318 ____A C:\Windows\SysWOW64\nmap-protocols
2013-01-11 19:17 - 2006-06-23 18:38 - 00000192 ____A C:\Windows\SysWOW64\nmap_performance.reg
2013-01-11 19:17 - 2004-08-04 01:21 - 00081920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msado25.tlb
2013-01-11 19:17 - 2004-07-10 01:44 - 00608448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2013-01-11 19:17 - 2004-06-09 12:59 - 00939224 ____A (Macromedia, Inc.) C:\Windows\SysWOW64\Flash.ocx
2013-01-11 19:17 - 2004-03-01 17:55 - 00561179 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dao360.dll
2013-01-11 19:17 - 2004-02-26 21:00 - 00962612 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MFC42D.DLL
2013-01-11 19:17 - 2004-02-26 21:00 - 00061493 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MFCN42D.DLL
2013-01-11 19:17 - 2004-02-16 21:00 - 00434252 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSVCRTD.DLL
2013-01-11 19:17 - 2003-03-18 23:03 - 00544768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71d.dll
2013-01-11 19:17 - 2003-01-29 14:50 - 00010348 ____A C:\Windows\SysWOW64\SubclassingSink.tlb
2013-01-11 19:17 - 2002-11-20 16:53 - 00482123 ____A C:\Windows\SysWOW64\nmapwin.chm
2013-01-11 19:17 - 2002-11-20 16:44 - 00077824 ____A (JVSoftware) C:\Windows\SysWOW64\nmapwin.exe
2013-01-11 19:17 - 2002-11-20 15:06 - 00290816 ____A C:\Windows\SysWOW64\nmapserv.exe
2013-01-11 19:17 - 2002-08-15 12:09 - 00000687 ____A C:\Windows\SysWOW64\nmapwin.exe.manifest
2013-01-11 19:17 - 2002-06-06 09:13 - 01077344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2013-01-11 19:17 - 2001-11-26 21:13 - 00114688 ____A (Open Source Telecom) C:\Windows\SysWOW64\CCGNU32.dll
2013-01-11 19:17 - 2001-09-07 11:00 - 00059904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wbemdisp.tlb
2013-01-11 19:17 - 2001-09-07 10:00 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msado20.tlb
2013-01-11 19:17 - 2001-04-05 13:43 - 01009336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mschrt20.ocx
2013-01-11 19:17 - 2000-12-05 22:00 - 00209608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2013-01-11 19:17 - 2000-12-05 16:30 - 00109248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Mswinsck.ocx
2013-01-11 19:17 - 2000-05-22 13:58 - 00647872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mscomct2.ocx
2013-01-11 19:17 - 2000-05-21 21:00 - 00203976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2013-01-11 19:17 - 2000-05-21 21:00 - 00115920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSINET.ocx
2013-01-11 19:17 - 2000-04-03 13:52 - 00164144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2013-01-11 19:17 - 1999-05-06 21:00 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Comdlg32.ocx
2013-01-11 19:17 - 1999-04-16 21:06 - 00010752 ____A (Almeida & Andrade Ltda) C:\Windows\SysWOW64\aamd532.dll
2013-01-11 19:17 - 1999-03-26 00:00 - 00101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VB6STKIT.DLL
2013-01-11 19:17 - 1998-08-09 14:07 - 00118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
2013-01-11 19:17 - 1998-06-23 21:00 - 00137000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2013-01-11 19:17 - 1998-06-23 21:00 - 00103744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMM32.OCX
2013-01-11 19:17 - 1998-06-17 21:00 - 00299008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSDBRPTR.DLL
2013-01-11 19:17 - 1998-06-08 21:00 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSDERUN.DLL
2013-01-11 19:16 - 2013-01-11 19:16 - 00000000 ____D C:\Users\DJ\AppData\Local\Updater21804
2013-01-11 19:16 - 2013-01-11 19:16 - 00000000 ____D C:\Users\DJ\AppData\Local\Coupon Companion Plugin
2013-01-11 19:16 - 2013-01-11 19:16 - 00000000 ____D C:\Program Files (x86)\Coupon Companion Plugin
2013-01-11 16:33 - 2013-01-11 16:33 - 08141967 ____A ( )

Parkor, Jan 13, 2013

#15
Parkor Newcomer, in training Posts: 43
I couldnt figure out how to post the rest so I just attached the files.
Attached Files:
- FRST.txt
  
  File size:
  
  166.5 KB
  
  Views:
  
  2
- Search.txt
  
  File size:
  
  1.1 KB
  
  Views:
  
  1
Parkor, Jan 13, 2013

#16
Broni Malware Annihilator Posts: 39,324 +175

All logs have to be pasted. It saves me a lot of time.

2013-01-11 16:33 - 2013-01-11 16:33 - 08141967 ____A ( ) C:\Users\DJ\Desktop\MKVPlayerSetupD.exe
2013-01-11 13:09 - 2013-01-11 13:09 - 00000117 ____A C:\Windows\System32\netcfg-434252687.txt
2013-01-11 13:09 - 2013-01-11 13:09 - 00000117 ____A C:\Windows\System32\netcfg-434252656.txt
2013-01-10 17:08 - 2013-01-10 17:08 - 00000117 ____A C:\Windows\System32\netcfg-362166375.txt
2013-01-10 17:08 - 2013-01-10 17:08 - 00000117 ____A C:\Windows\System32\netcfg-362166359.txt
2013-01-10 14:26 - 2013-01-10 14:26 - 00000953 ____A C:\Users\DJ\Desktop\Apex Rise Trap Sample Pack 1.lnk
2013-01-10 13:52 - 2013-01-10 13:52 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-01-10 13:52 - 2013-01-10 13:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-01-10 13:52 - 2013-01-10 13:52 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2013-01-10 13:51 - 2013-01-10 13:52 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2013-01-10 13:51 - 2013-01-10 13:51 - 00000000 ____D C:\Windows\PCHEALTH
2013-01-10 13:49 - 2013-01-10 14:19 - 00000000 ____D C:\Users\All Users\Microsoft Help
2013-01-10 13:49 - 2013-01-10 13:51 - 00000000 ____D C:\Program Files\Microsoft Office
2013-01-10 13:49 - 2013-01-10 13:49 - 00000000 __RHD C:\MSOCache
2013-01-10 13:49 - 2013-01-10 13:49 - 00000000 ____D C:\Users\DJ\AppData\Local\Microsoft Help
2013-01-10 13:49 - 2013-01-10 13:49 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2013-01-10 13:49 - 2013-01-10 13:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-01-10 13:49 - 2013-01-10 13:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2013-01-10 13:39 - 2013-01-13 19:43 - 00000000 ___SD C:\Users\DJ\Google Drive
2013-01-10 13:39 - 2013-01-10 13:39 - 00001694 ____A C:\Users\DJ\Desktop\Google Drive.lnk
2013-01-10 13:38 - 2013-01-10 13:38 - 00000000 ____D C:\Users\DJ\AppData\LocalGoogle
2013-01-10 13:19 - 2013-01-10 13:19 - 00000117 ____A C:\Windows\System32\netcfg-348440890.txt
2013-01-10 13:19 - 2013-01-10 13:19 - 00000117 ____A C:\Windows\System32\netcfg-348440859.txt
2013-01-10 04:42 - 2013-01-10 04:42 - 00000117 ____A C:\Windows\System32\netcfg-317390343.txt
2013-01-10 04:42 - 2013-01-10 04:42 - 00000117 ____A C:\Windows\System32\netcfg-317388500.txt
2013-01-09 19:29 - 2013-01-09 19:29 - 00329315 ___AT C:\Users\DJ\Desktop\Parkor - Glide.wav.asd
2013-01-09 19:26 - 2013-01-09 19:29 - 43446902 ___AT C:\Users\DJ\Desktop\Parkor - Glide.wav
2013-01-09 19:25 - 2013-01-09 19:25 - 157686659 ____A C:\Users\DJ\Desktop\GLIDEe.rar
2013-01-09 19:08 - 2013-01-09 19:08 - 00329305 ___AT C:\Users\DJ\Desktop\GLIDEe320.wav.asd
2013-01-09 19:07 - 2013-01-09 19:07 - 231716620 ___AT C:\Users\DJ\Desktop\GLIDEe320.wav
2013-01-09 18:59 - 2013-01-09 19:00 - 00305581 ___AT C:\Users\DJ\Desktop\GLIDEe160.wav.asd
2013-01-09 18:59 - 2013-01-09 18:59 - 26611244 ___AT C:\Users\DJ\Desktop\GLIDEe160.wav
2013-01-09 18:49 - 2013-01-09 18:49 - 00305425 ___AT C:\Users\DJ\Desktop\GLIDEe240.wav.asd
2013-01-09 18:34 - 2013-01-09 18:34 - 00329419 ___AT C:\Users\DJ\Desktop\GLIDEe.wav.asd
2013-01-09 18:32 - 2013-01-09 18:33 - 231716620 ___AT C:\Users\DJ\Desktop\GLIDEe.wav
2013-01-09 18:23 - 2013-01-09 18:23 - 29030444 ___AT C:\Users\DJ\Desktop\GLIDE.wav
2013-01-09 18:23 - 2013-01-09 18:23 - 00332829 ___AT C:\Users\DJ\Desktop\GLIDE.wav.asd
2013-01-09 16:47 - 2013-01-09 19:07 - 00000000 ___RD C:\Users\DJ\Desktop\GLIDE Project
2013-01-09 14:48 - 2013-01-09 14:49 - 00305237 ___AT C:\Users\DJ\Desktop\trap1.wav.asd
2013-01-09 13:49 - 2013-01-09 13:49 - 00000000 ____D C:\Users\DJ\Desktop\The Official Lex Luger Sound Kit (LEWIS CITY)
2013-01-09 13:46 - 2013-01-09 13:46 - 00000000 ____D C:\Users\DJ\Desktop\Free.Lex.Luger.Drum.Kits.Samples-Download.FULL.KIT.from.HexLoops.com
2013-01-09 13:42 - 2012-11-25 20:21 - 00071168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2013-01-09 13:42 - 2012-11-25 20:20 - 00086016 ____A (Microsoft Corporation) C:\Windows\System32\ncryptsslp.dll
2013-01-09 13:42 - 2012-10-31 20:41 - 01802240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-01-09 13:42 - 2012-10-31 20:41 - 01438720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-01-09 13:42 - 2012-10-31 20:40 - 02361344 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2013-01-09 13:42 - 2012-10-31 20:40 - 01836032 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2013-01-09 13:42 - 2012-10-31 20:21 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\msxml6r.dll
2013-01-09 13:42 - 2012-10-31 20:21 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2013-01-09 13:42 - 2012-10-31 20:20 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2013-01-09 13:42 - 2012-10-31 20:20 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-01-09 13:42 - 2012-10-01 23:34 - 00446976 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
2013-01-09 13:42 - 2012-10-01 23:34 - 00068608 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll
2013-01-09 13:42 - 2012-09-26 23:17 - 00076288 ____A (Microsoft Corporation) C:\Windows\System32\newdev.exe
2013-01-09 13:42 - 2012-09-26 23:17 - 00075264 ____A (Microsoft Corporation) C:\Windows\System32\ndadmin.exe
2013-01-09 13:42 - 2012-09-26 23:15 - 00301568 ____A (Microsoft Corporation) C:\Windows\System32\newdev.dll
2013-01-09 13:42 - 2012-09-26 22:35 - 00074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2013-01-09 13:42 - 2012-09-26 22:35 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2013-01-09 13:42 - 2012-09-26 22:34 - 00275968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2013-01-09 13:41 - 2012-09-20 01:10 - 02367528 ____A (Microsoft Corporation) C:\Windows\System32\WSService.dll
2013-01-09 13:41 - 2012-09-20 01:08 - 00027280 ____A (Microsoft Corporation) C:\Windows\System32\avrt.dll
2013-01-09 13:41 - 2012-09-20 01:05 - 01448168 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-01-09 13:41 - 2012-09-20 01:05 - 00303848 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2013-01-09 13:41 - 2012-09-20 00:56 - 00199680 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-01-09 13:41 - 2012-09-20 00:40 - 00389360 ____A (Microsoft Corporation) C:\Windows\System32\MMDevAPI.dll
2013-01-09 13:41 - 2012-09-20 00:31 - 00425192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\acpi.sys
2013-01-09 13:41 - 2012-09-20 00:28 - 01825208 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2013-01-09 13:41 - 2012-09-20 00:04 - 02225896 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-01-09 13:41 - 2012-09-20 00:04 - 00411880 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2013-01-09 13:41 - 2012-09-20 00:04 - 00100072 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2013-01-09 13:41 - 2012-09-19 23:55 - 03265256 ____A (Broadcom Corporation) C:\Windows\System32\Drivers\evbda.sys
2013-01-09 13:41 - 2012-09-19 23:55 - 00533224 ____A (Broadcom Corporation) C:\Windows\System32\Drivers\bxvbda.sys
2013-01-09 13:41 - 2012-09-19 23:55 - 00337128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBXHCI.SYS
2013-01-09 13:41 - 2012-09-19 23:55 - 00212200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\UCX01000.SYS
2013-01-09 13:41 - 2012-09-19 23:55 - 00120040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\msgpioclx.sys
2013-01-09 13:41 - 2012-09-19 23:55 - 00028392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\msgpiowin32.sys
2013-01-09 13:41 - 2012-09-19 23:03 - 00465128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2013-01-09 13:41 - 2012-09-19 23:03 - 00148712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tpm.sys
2013-01-09 13:41 - 2012-09-19 22:48 - 00062488 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dumpfve.sys
2013-01-09 13:41 - 2012-09-19 22:47 - 00307192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 14259712 ____A (Microsoft Corporation) C:\Windows\System32\wmp.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 13640704 ____A (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 03964416 ____A (Microsoft Corporation) C:\Windows\System32\WinSAT.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 02397184 ____A (Microsoft Corporation) C:\Windows\System32\WpcMon.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 01590272 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 01513984 ____A (Microsoft Corporation) C:\Windows\System32\vssapi.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 01342464 ____A (Microsoft Corporation) C:\Windows\System32\user32.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 01304064 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Media.Streaming.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00866304 ____A (Microsoft Corporation) C:\Windows\System32\WinTypes.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00757248 ____A (Microsoft Corporation) C:\Windows\System32\uDWM.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00699392 ____A (Microsoft Corporation) C:\Windows\System32\twinapi.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00627712 ____A (Microsoft Corporation) C:\Windows\System32\lpksetup.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00588800 ____A (Microsoft Corporation) C:\Windows\System32\webio.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00573440 ____A (Microsoft Corporation) C:\Windows\System32\WinSATAPI.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00545280 ____A (Microsoft Corporation) C:\Windows\System32\taskeng.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00543232 ____A (Microsoft Corporation) C:\Windows\System32\wlroamextension.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00541184 ____A (Microsoft Corporation) C:\Windows\System32\VAN.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00457216 ____A (Microsoft Corporation) C:\Windows\System32\wpncore.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00420352 ____A (Microsoft Corporation) C:\Windows\System32\WWAHost.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00410624 ____A (Microsoft Corporation) C:\Windows\System32\services.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00390144 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00344064 ____A (Microsoft Corporation) C:\Windows\System32\wlidcredprov.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00332800 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00249344 ____A (Microsoft Corporation) C:\Windows\System32\wpnprv.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00203776 ____A (Microsoft Corporation) C:\Windows\System32\WSClient.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00194048 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00177152 ____A (Microsoft Corporation) C:\Windows\System32\WSSync.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\fhmanagew.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00117760 ____A (Microsoft Corporation) C:\Windows\System32\dwm.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00110592 ____A C:\Windows\System32\OEMLicense.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00107008 ____A (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00101888 ____A (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00092672 ____A (Microsoft Corporation) C:\Windows\System32\drvinst.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\lpremove.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00090624 ____A (Microsoft Corporation) C:\Windows\System32\TpmTasks.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\umpo.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00069632 ____A (Microsoft Corporation) C:\Windows\System32\vsstrace.dll
2013-01-09 13:41 - 2012-09-19 22:33 - 00060928 ____A (Microsoft Corporation) C:\Windows\System32\ndptsp.tsp
2013-01-09 13:41 - 2012-09-19 22:33 - 00047104 ____A (Microsoft Corporation) C:\Windows\System32\kmddsp.tsp
2013-01-09 13:41 - 2012-09-19 22:33 - 00035840 ____A (Microsoft Corporation) C:\Windows\System32\lsass.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00029696 ____A (Microsoft Corporation) C:\Windows\System32\svchost.exe
2013-01-09 13:41 - 2012-09-19 22:33 - 00025088 ____A (Microsoft Corporation) C:\Windows\System32\sdbinst.exe
2013-01-09 13:41 - 2012-09-19 22:32 - 01739264 ____A (Microsoft Corporation) C:\Windows\System32\RacEngn.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 01400832 ____A (Microsoft Corporation) C:\Windows\System32\propsys.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 01019392 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\provcore.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00416256 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00385024 ____A (Microsoft Corporation) C:\Windows\System32\ncsi.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00356352 ____A (Microsoft Corporation) C:\Windows\System32\nlasvc.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00256512 ____A (Microsoft Corporation) C:\Windows\System32\msvproc.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00228352 ____A (Microsoft Corporation) C:\Windows\System32\ProximityService.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00189952 ____A (Microsoft Corporation) C:\Windows\System32\perfos.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00163328 ____A (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00121856 ____A (Microsoft Corporation) C:\Windows\System32\rascfg.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00112128 ____A (Microsoft Corporation) C:\Windows\System32\PackageStateRoaming.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00093696 ____A (Microsoft Corporation) C:\Windows\System32\psmsrv.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00076288 ____A (Microsoft Corporation) C:\Windows\System32\RpcEpMap.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00075264 ____A (Microsoft Corporation) C:\Windows\System32\rasdiag.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00072192 ____A (Microsoft Corporation) C:\Windows\System32\nlaapi.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00065536 ____A (Microsoft Corporation) C:\Windows\System32\setbcdlocale.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00044544 ____A (Microsoft Corporation) C:\Windows\System32\perfctrs.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00041984 ____A (Microsoft Corporation) C:\Windows\System32\rasmxs.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00037888 ____A (Microsoft Corporation) C:\Windows\System32\perfproc.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00034816 ____A (Microsoft Corporation) C:\Windows\System32\perfdisk.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00029696 ____A (Microsoft Corporation) C:\Windows\System32\rasser.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00023552 ____A (Microsoft Corporation) C:\Windows\System32\perfnet.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\MUILanguageCleanup.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00009728 ____A (Microsoft Corporation) C:\Windows\System32\spwmp.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00006656 ____A (Microsoft Corporation) C:\Windows\System32\shimeng.dll
2013-01-09 13:41 - 2012-09-19 22:32 - 00006144 ____A (Microsoft Corporation) C:\Windows\System32\msdxm.ocx
2013-01-09 13:41 - 2012-09-19 22:32 - 00006144 ____A (Microsoft Corporation) C:\Windows\System32\dxmasf.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00755200 ____A (Microsoft Corporation) C:\Windows\System32\fveapi.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00617984 ____A (Microsoft Corporation) C:\Windows\System32\mfsrcsnk.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00604672 ____A (Microsoft Corporation) C:\Windows\System32\dnsapi.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00468992 ____A (Microsoft Corporation) C:\Windows\System32\MFMediaEngine.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00459776 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00437760 ____A (Microsoft Corporation) C:\Windows\System32\mfh264enc.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00355328 ____A (Microsoft Corporation) C:\Windows\System32\mfsvr.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00315392 ____A (Microsoft Corporation) C:\Windows\System32\fhcfg.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00280576 ____A (Microsoft Corporation) C:\Windows\System32\fhcat.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00240640 ____A (Microsoft Corporation) C:\Windows\System32\fveapibase.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00236544 ____A (Microsoft Corporation) C:\Windows\System32\MFPlay.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\fhengine.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00210432 ____A (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00172544 ____A (Microsoft Corporation) C:\Windows\System32\dwmredir.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00155136 ____A (Microsoft Corporation) C:\Windows\System32\IPHLPAPI.DLL
2013-01-09 13:41 - 2012-09-19 22:31 - 00137728 ____A (Microsoft Corporation) C:\Windows\System32\fhshl.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00118272 ____A (Microsoft Corporation) C:\Windows\System32\DevPropMgr.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00116736 ____A (Microsoft Corporation) C:\Windows\System32\fhsvc.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00080896 ____A (Microsoft Corporation) C:\Windows\System32\mmcss.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00080896 ____A (Microsoft Corporation) C:\Windows\System32\fhsrchapi.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00070656 ____A (Microsoft Corporation) C:\Windows\System32\fhevents.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00067584 ____A (Microsoft Corporation) C:\Windows\System32\fhsrchph.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00064000 ____A (Microsoft Corporation) C:\Windows\System32\fhlisten.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00064000 ____A (Microsoft Corporation) C:\Windows\System32\fhautoplay.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\fhcleanup.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00038400 ____A (Microsoft Corporation) C:\Windows\System32\fhtask.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00037888 ____A (Microsoft Corporation) C:\Windows\System32\LangCleanupSysprepAction.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00020480 ____A (Microsoft Corporation) C:\Windows\System32\fhsvcctl.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00017408 ____A (Microsoft Corporation) C:\Windows\System32\eventcls.dll
2013-01-09 13:41 - 2012-09-19 22:31 - 00008704 ____A (Microsoft Corporation) C:\Windows\System32\lpksetupproxyserv.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 03847168 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 02219008 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 02066432 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 02016256 ____A (Microsoft Corporation) C:\Windows\System32\batmeter.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 01743872 ____A (Microsoft Corporation) C:\Windows\System32\combase.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\appwiz.cpl
2013-01-09 13:41 - 2012-09-19 22:30 - 00634880 ____A (Microsoft Corporation) C:\Windows\System32\apphelp.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 00190976 ____A (Microsoft Corporation) C:\Windows\System32\aelupsvc.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 00180736 ____A (Microsoft Corporation) C:\Windows\System32\bcdsrv.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 00179712 ____A (Microsoft Corporation) C:\Windows\System32\bisrv.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 00156672 ____A (Microsoft Corporation) C:\Windows\System32\DAFWSD.dll
2013-01-09 13:41 - 2012-09-19 22:30 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-01-09 13:41 - 2012-09-19 22:26 - 01409376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-01-09 13:41 - 2012-09-19 22:13 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\microsoft-windows-kernel-power-events.dll
2013-01-09 13:41 - 2012-09-19 22:13 - 00023656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\avrt.dll
2013-01-09 13:41 - 2012-09-19 22:12 - 09374208 ____A (Microsoft Corporation) C:\Windows\System32\wmploc.DLL
2013-01-09 13:41 - 2012-09-19 22:09 - 00025088 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndistapi.sys
2013-01-09 13:41 - 2012-09-19 22:09 - 00022528 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ws2ifsl.sys
2013-01-09 13:41 - 2012-09-19 22:08 - 00071168 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hdaudbus.sys
2013-01-09 13:41 - 2012-09-19 22:08 - 00060416 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2013-01-09 13:41 - 2012-09-19 22:05 - 00083456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2013-01-09 13:41 - 2012-09-19 21:55 - 11875328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 10791936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 01319424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00995328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00465920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00417280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00410624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00333824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2013-01-09 13:41 - 2012-09-19 21:55 - 00303616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00267776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00265216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00263168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00239616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2013-01-09 13:41 - 2012-09-19 21:55 - 00166912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00154624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00083968 ____A C:\Windows\SysWOW64\OEMLicense.dll
2013-01-09 13:41 - 2012-09-19 21:55 - 00080896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2013-01-09 13:41 - 2012-09-19 21:55 - 00080384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-01-09 13:41 - 2012-09-19 21:55 - 00051200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2013-01-09 13:41 - 2012-09-19 21:55 - 00038912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2013-01-09 13:41 - 2012-09-19 21:55 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2013-01-09 13:41 - 2012-09-19 21:55 - 00021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2013-01-09 13:41 - 2012-09-19 21:54 - 01369600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 01196032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 01137152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00709632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00533504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00509952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00480768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00449024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00413184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00325632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00214528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00108544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00089088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00059392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00055296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00052224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00034816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00033792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfos.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00032768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00031232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfdisk.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00009216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00005632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2013-01-09 13:41 - 2012-09-19 21:54 - 00004608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2013-01-09 13:41 - 2012-09-19 21:54 - 00004608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 03296256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 02033664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 02007040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 01701376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 01247232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 00675840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 00670208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2013-01-09 13:41 - 2012-09-19 21:53 - 00461824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 00366080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 00119808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2013-01-09 13:41 - 2012-09-19 21:53 - 00025088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-01-09 13:41 - 2012-09-19 21:53 - 00015360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2013-01-09 13:41 - 2012-09-19 21:32 - 09374208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-01-09 13:41 - 2012-09-19 20:13 - 00098816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-01-09 13:41 - 2012-09-19 20:10 - 01126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll

Broni, Jan 13, 2013

#17
Broni Malware Annihilator Posts: 39,324 +175

2013-01-09 13:28 - 2013-01-09 14:49 - 26611244 ___AT C:\Users\DJ\Desktop\trap1.wav
2013-01-09 12:08 - 2013-01-09 12:08 - 00000117 ____A C:\Windows\System32\netcfg-257764187.txt
2013-01-09 12:08 - 2013-01-09 12:08 - 00000117 ____A C:\Windows\System32\netcfg-257764093.txt
2013-01-09 04:37 - 2013-01-09 04:37 - 00000000 ____D C:\Users\DJ\Documents\Native Instruments
2013-01-09 04:37 - 2013-01-09 04:37 - 00000000 ____D C:\Users\DJ\AppData\Local\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-01-09 04:34 - 2013-01-09 04:34 - 00000624 ____A C:\Users\Public\Desktop\Massive.lnk
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 __HDC C:\Users\All Users\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 __HDC C:\Users\All Users\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Users\All Users\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Program Files\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2013-01-09 04:19 - 2013-01-09 04:19 - 00000117 ____A C:\Windows\System32\netcfg-229606312.txt
2013-01-09 04:19 - 2013-01-09 04:19 - 00000117 ____A C:\Windows\System32\netcfg-229606281.txt
2013-01-08 18:53 - 2013-01-12 05:42 - 00000000 ____D C:\Users\DJ\AppData\Local\CrashDumps
2013-01-08 18:53 - 2013-01-08 18:53 - 00000000 ____D C:\Users\DJ\Documents\Ableton
2013-01-08 18:53 - 2013-01-08 18:53 - 00000000 ____D C:\Users\All Users\Ableton
2013-01-08 18:52 - 2013-01-08 18:53 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Ableton
2013-01-08 18:51 - 2011-03-29 11:38 - 00368640 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\ReWire.dll
2013-01-08 18:51 - 2011-03-29 11:38 - 00233472 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\REX Shared Library.dll
2013-01-08 17:41 - 2013-01-13 19:46 - 00000910 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3044163233-2214013121-3301013928-1001UA.job
2013-01-08 17:41 - 2013-01-13 17:46 - 00000858 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3044163233-2214013121-3301013928-1001Core.job
2013-01-08 16:55 - 2013-01-08 16:59 - 00000000 ____D C:\Users\DJ\AppData\Roaming\.techniclauncher
2013-01-08 16:55 - 2013-01-08 16:55 - 00582227 ____A C:\Users\DJ\AppData\Roaming\technic-launcher.jar
2013-01-08 16:50 - 2013-01-08 16:50 - 00308200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00188392 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00188392 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-01-08 16:50 - 2013-01-08 16:50 - 00000000 ____D C:\Program Files\Java
2013-01-08 16:44 - 2013-01-08 16:50 - 01081320 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-01-08 16:44 - 2013-01-08 16:50 - 00959976 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-01-08 16:37 - 2013-01-08 16:37 - 00000117 ____A C:\Windows\System32\netcfg-187505546.txt
2013-01-08 16:37 - 2013-01-08 16:37 - 00000117 ____A C:\Windows\System32\netcfg-187505484.txt
2013-01-08 13:40 - 2013-01-08 13:40 - 00000117 ____A C:\Windows\System32\netcfg-176876453.txt
2013-01-08 13:40 - 2013-01-08 13:40 - 00000117 ____A C:\Windows\System32\netcfg-176876359.txt
2013-01-07 12:25 - 2013-01-07 12:25 - 00000117 ____A C:\Windows\System32\netcfg-85988453.txt
2013-01-07 12:25 - 2013-01-07 12:25 - 00000117 ____A C:\Windows\System32\netcfg-85988390.txt
2013-01-07 03:02 - 2013-01-07 03:02 - 00000117 ____A C:\Windows\System32\netcfg-52218500.txt
2013-01-07 03:02 - 2013-01-07 03:02 - 00000117 ____A C:\Windows\System32\netcfg-52218484.txt
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\DJ\AppData\Roaming\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\DJ\AppData\Local\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\All Users\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\All Users\AMD
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Program Files (x86)\AMD APP
2013-01-06 16:03 - 2012-08-21 08:56 - 00091648 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\AtihdW86.sys
2013-01-06 16:02 - 2013-01-06 16:02 - 00000000 ____D C:\Program Files\ATI
2013-01-06 12:49 - 2013-01-06 12:49 - 00000221 ____A C:\Users\DJ\Desktop\Mass Effect.url
2013-01-06 12:48 - 2013-01-06 12:48 - 00000221 ____A C:\Users\DJ\Desktop\Prototype.url
2013-01-06 12:48 - 2013-01-06 12:48 - 00000220 ____A C:\Users\DJ\Desktop\BioShock.url
2013-01-06 12:47 - 2013-01-06 12:47 - 00000221 ____A C:\Users\DJ\Desktop\Dead Space.url
2013-01-06 12:33 - 2013-01-06 12:33 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-01-06 12:32 - 2013-01-06 12:32 - 00000136 ____A C:\Windows\System32\netcfg-19062.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000134 ____A C:\Windows\System32\netcfg-18953.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000134 ____A C:\Windows\System32\netcfg-18593.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000117 ____A C:\Windows\System32\netcfg-15375.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172477500.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172456390.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172456343.txt
2013-01-06 10:43 - 2013-01-06 10:49 - 00000024 ____A C:\Users\DJ\random.dat
2013-01-06 10:43 - 2013-01-06 10:43 - 00000041 ____A C:\Users\DJ\jagex_cl_runescape_LIVE.dat
2013-01-06 10:43 - 2013-01-06 10:43 - 00000000 ____D C:\Users\DJ\jagexcache
2013-01-06 10:14 - 2013-01-06 10:14 - 00000117 ____A C:\Windows\System32\netcfg-164206453.txt
2013-01-06 10:14 - 2013-01-06 10:14 - 00000117 ____A C:\Windows\System32\netcfg-164206390.txt
2013-01-05 12:36 - 2013-01-05 12:36 - 00000117 ____A C:\Windows\System32\netcfg-86384796.txt
2013-01-05 12:36 - 2013-01-05 12:36 - 00000117 ____A C:\Windows\System32\netcfg-86384734.txt
2013-01-05 09:28 - 2013-01-05 09:28 - 00000000 ____D C:\Users\DJ\AppData\Local\PAYDAY
2013-01-05 09:28 - 2013-01-05 09:28 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-01-05 09:01 - 2013-01-05 09:27 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Awesomium
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Users\DJ\AppData\Local\UberLauncher
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Users\DJ\AppData\Local\Uber_Entertainment
2013-01-05 08:54 - 2013-01-05 08:54 - 00000117 ____A C:\Windows\System32\netcfg-73017875.txt
2013-01-05 08:54 - 2013-01-05 08:54 - 00000117 ____A C:\Windows\System32\netcfg-73017859.txt
2013-01-04 22:38 - 2013-01-04 22:38 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-01-04 22:21 - 2013-01-04 22:21 - 00000222 ____A C:\Users\DJ\Desktop\ARMA 2 Operation Arrowhead Beta.url
2013-01-04 21:50 - 2013-01-04 21:50 - 00000000 ____D C:\Users\DJ\Documents\Shiner
2013-01-04 21:50 - 2010-06-02 01:55 - 00527192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00518488 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00239960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00077656 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02526056 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02401112 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02106216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01998168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01907552 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01868128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00511328 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00470880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00276832 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00248672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-01-04 17:55 - 2013-01-04 17:55 - 00001089 ____A C:\Users\DJ\Desktop\Steam - Shortcut (2).lnk
2013-01-04 17:48 - 2013-01-04 18:03 - 00000000 ____D C:\Users\DJ\AppData\Local\ArmA 2 OA
2013-01-04 17:47 - 2013-01-04 19:37 - 00000000 ____D C:\Users\DJ\Documents\ArmA 2
2013-01-04 17:47 - 2013-01-04 17:47 - 00000000 ____D C:\Users\DJ\AppData\Local\ArmA 2
2013-01-04 17:47 - 2010-02-04 07:01 - 00530776 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00528216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00078680 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00022360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00517960 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00515416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00176968 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00073544 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00069464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 05554512 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 05501792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 02582888 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 02475352 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 01974616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 01892184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00523088 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00453456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00285024 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00235344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00518480 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00514384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00235856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00175440 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00074576 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00070992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00025936 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00023376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00072200 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2013-01-04 17:47 - 2008-07-31 07:40 - 00513544 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-01-04 17:46 - 2013-01-04 17:46 - 00001067 ____A C:\Users\Public\Desktop\DayZ Commander.lnk
2013-01-04 17:46 - 2013-01-04 17:46 - 00000000 ____D C:\Users\DJ\AppData\Local\DayZCommander
2013-01-04 17:23 - 2013-01-04 17:23 - 00001029 ____A C:\Users\DJ\Desktop\Haunt 64bit Shortcut.lnk
2013-01-04 14:20 - 2012-11-20 00:00 - 06971624 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-01-04 14:20 - 2012-11-19 21:24 - 01164800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2013-01-04 14:20 - 2012-11-19 21:24 - 00036352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2013-01-04 14:20 - 2012-11-19 21:17 - 01184256 ____A (Microsoft Corporation) C:\Windows\System32\Display.dll
2013-01-04 14:20 - 2012-11-19 21:17 - 00049152 ____A (Microsoft Corporation) C:\Windows\System32\DevDispItemProvider.dll
2013-01-04 14:20 - 2012-11-19 21:02 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2013-01-04 14:20 - 2012-11-19 20:59 - 00007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDKURD.DLL
2013-01-04 14:20 - 2012-11-19 20:56 - 00083456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2013-01-04 14:20 - 2012-11-19 20:56 - 00027136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2013-01-04 14:20 - 2012-11-19 20:54 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidi2c.sys
2013-01-04 14:20 - 2012-11-12 20:20 - 01120768 ____A (Microsoft Corporation) C:\Windows\System32\msctf.dll
2013-01-04 14:20 - 2012-11-12 20:19 - 00890880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00523776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00143872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00124928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00641536 ____A (Microsoft Corporation) C:\Windows\System32\WSShared.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00198656 ____A (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00163840 ____A (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-01-04 14:20 - 2012-11-05 23:52 - 00445160 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2013-01-04 14:20 - 2012-11-05 23:36 - 00069864 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pdc.sys
2013-01-04 14:20 - 2012-11-05 23:33 - 01566432 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00522640 ____A (Microsoft Corporation) C:\Windows\System32\AUDIOKSE.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00490064 ____A (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00447792 ____A (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00253512 ____A (Microsoft Corporation) C:\Windows\System32\audiodg.exe
2013-01-04 14:20 - 2012-11-05 21:00 - 00427568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2013-01-04 14:20 - 2012-11-05 21:00 - 00324344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-01-04 14:20 - 2012-11-05 20:48 - 01150160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 17560576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 08856576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 01619968 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00883712 ____A (Microsoft Corporation) C:\Windows\HelpPane.exe
2013-01-04 14:20 - 2012-11-05 20:20 - 00767488 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00621056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00516608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00251904 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00246784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 19789824 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 10096640 ____A (Microsoft Corporation) C:\Windows\System32\twinui.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 08552448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 01451520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 01386496 ____A (Microsoft Corporation) C:\Windows\System32\wlansvc.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00710656 ____A (Microsoft Corporation) C:\Windows\System32\winhttp.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00318464 ____A (Microsoft Corporation) C:\Windows\System32\ubpm.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00291328 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Connectivity.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00273408 ____A (Microsoft Corporation) C:\Windows\System32\wlanapi.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 11459584 ____A (Microsoft Corporation) C:\Windows\System32\glcndFilter.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 01526784 ____A (Microsoft Corporation) C:\Windows\System32\mfcore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 01037312 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00976384 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00703488 ____A (Microsoft Corporation) C:\Windows\System32\drvstore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00549376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00501760 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairing.dll
2013-01-04 14:20 - 2012-11-05 20:17 - 00785920 ____A (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2013-01-04 14:20 - 2012-11-05 19:55 - 00212992 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2013-01-04 14:20 - 2012-11-05 19:54 - 00859136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2013-01-04 14:20 - 2012-11-05 19:52 - 00366080 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2013-01-04 14:20 - 2012-11-05 19:51 - 00665600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-01-04 14:20 - 2012-11-02 16:05 - 00385604 ____A C:\Windows\System32\ApnDatabase.xml
2013-01-04 14:20 - 2012-11-01 21:20 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2013-01-04 14:20 - 2012-10-23 20:54 - 00396008 ____A (Microsoft Corporation) C:\Windows\System32\hal.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 01172992 ____A (Microsoft Corporation) C:\Windows\System32\mfnetsrc.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 01048064 ____A (Microsoft Corporation) C:\Windows\System32\mfasfsrcsnk.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 00677888 ____A (Microsoft Corporation) C:\Windows\System32\mfnetcore.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 00673280 ____A (Microsoft Corporation) C:\Windows\System32\mfmpeg2srcsnk.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00929792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00850944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00568832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00513024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2013-01-04 14:20 - 2012-10-12 00:08 - 00027880 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys
2013-01-04 14:20 - 2012-10-11 22:14 - 00036352 ____A (Microsoft Corporation) C:\Windows\System32\rfxvmt.dll
2013-01-04 14:20 - 2012-10-11 22:13 - 00109568 ____A (Microsoft Corporation) C:\Windows\System32\dskquota.dll
2013-01-04 14:20 - 2012-10-11 21:50 - 00235520 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll
2013-01-04 14:20 - 2012-10-11 21:46 - 00618496 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2013-01-04 14:20 - 2012-10-11 21:39 - 00082944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2013-01-04 14:20 - 2012-10-10 23:47 - 00793200 ____A (Microsoft Corporation) C:\Windows\System32\mfplat.dll
2013-01-04 14:20 - 2012-10-10 23:35 - 02380944 ____A (Microsoft Corporation) C:\Windows\explorer.exe
2013-01-04 14:20 - 2012-10-10 23:26 - 00336104 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2013-01-04 14:20 - 2012-10-10 23:25 - 00056552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\sdstor.sys
2013-01-04 14:20 - 2012-10-10 23:23 - 01001192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2013-01-04 14:20 - 2012-10-10 23:23 - 00441576 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2013-01-04 14:20 - 2012-10-10 23:18 - 00172264 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2013-01-04 14:20 - 2012-10-10 23:16 - 01403784 ____A (Microsoft Corporation) C:\Windows\System32\winload.efi
2013-01-04 14:20 - 2012-10-10 23:16 - 01267424 ____A (Microsoft Corporation) C:\Windows\System32\winload.exe
2013-01-04 14:20 - 2012-10-10 23:16 - 01217328 ____A (Microsoft Corporation) C:\Windows\System32\winresume.efi
2013-01-04 14:20 - 2012-10-10 23:16 - 01093880 ____A (Microsoft Corporation) C:\Windows\System32\winresume.exe
2013-01-04 14:20 - 2012-10-10 23:13 - 00058088 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dam.sys
2013-01-04 14:20 - 2012-10-10 23:13 - 00033512 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\battc.sys
2013-01-04 14:20 - 2012-10-10 23:08 - 00562392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2013-01-04 14:20 - 2012-10-10 23:01 - 00503080 ____A (Microsoft Corporation) C:\Windows\System32\ci.dll
2013-01-04 14:20 - 2012-10-10 21:56 - 02115952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 01395712 ____A (Microsoft Corporation) C:\Windows\System32\Windows.UI.Immersive.dll
2013-01-04 14:20 - 2012-10-10 21:46 - 00816128 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00594944 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Networking.dll
2013-01-04 14:20 - 2012-10-10 21:46 - 00517120 ____A (Microsoft Corporation) C:\Windows\System32\winlogon.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00373760 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00154112 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Storage.Compression.dll
2013-01-04 14:20 - 2012-10-10 21:46 - 00049664 ____A (Microsoft Corporation) C:\Windows\System32\BdeUISrv.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\wfapigp.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 03554304 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 01045504 ____A (Microsoft Corporation) C:\Windows\System32\usercpl.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00590848 ____A (Microsoft Corporation) C:\Windows\System32\SHCore.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00579584 ____A (Microsoft Corporation) C:\Windows\System32\StructuredQuery.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00505344 ____A (Microsoft Corporation) C:\Windows\System32\SpaceControl.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00370176 ____A (Microsoft Corporation) C:\Windows\System32\SysFxUI.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00055808 ____A (Microsoft Corporation) C:\Windows\System32\PCPKsp.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 02116096 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 01265152 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00904192 ____A (Microsoft Corporation) C:\Windows\System32\MPSSVC.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00745984 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00561152 ____A (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00435712 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00355328 ____A (Microsoft Corporation) C:\Windows\System32\mswsock.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00264704 ____A (Microsoft Corporation) C:\Windows\System32\ListSvc.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00259584 ____A (Microsoft Corporation) C:\Windows\System32\input.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00246272 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\icfupgd.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00102400 ____A (Microsoft Corporation) C:\Windows\System32\mssitlb.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00096256 ____A (Microsoft Corporation) C:\Windows\System32\mssprxy.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00014336 ____A (Microsoft Corporation) C:\Windows\System32\msshooks.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 02206208 ____A (Microsoft Corporation) C:\Windows\System32\dwmcore.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 01836032 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 01294336 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 01280000 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00757760 ____A (Microsoft Corporation) C:\Windows\System32\FirewallAPI.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00331776 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00244224 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore6.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00190976 ____A (Microsoft Corporation) C:\Windows\System32\bdesvc.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00118784 ____A (Microsoft Corporation) C:\Windows\System32\AppxSip.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00081920 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcsvc.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcsvc6.dll
2013-01-04 14:20 - 2012-10-10 21:42 - 00612416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2013-01-04 14:20 - 2012-10-10 21:23 - 00034816 ____A (Microsoft Corporation) C:\Windows\System32\microsoft-windows-pdc.dll
2013-01-04 14:20 - 2012-10-10 21:23 - 00007680 ____A (Microsoft Corporation) C:\Windows\System32\kbdhebl3.dll
2013-01-04 14:20 - 2012-10-10 21:19 - 00005632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\drmkaud.sys
2013-01-04 14:20 - 2012-10-10 21:18 - 00111616 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\drmk.sys
2013-01-04 14:20 - 2012-10-10 21:16 - 00286208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2013-01-04 14:20 - 2012-10-10 21:15 - 00074752 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mpsdrv.sys
2013-01-04 14:20 - 2012-10-10 21:08 - 00671232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-01-04 14:20 - 2012-10-10 21:08 - 00303104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-01-04 14:20 - 2012-10-10 21:08 - 00170496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-01-04 14:20 - 2012-10-10 21:07 - 02764288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 01226752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00962560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00460800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00414720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00410624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00116224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00047616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00019968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 01841152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 01610240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 01420800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00658432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00653824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00550912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00411136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00408064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00289280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00219648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00186880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00094208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00060416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00051712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00035328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2013-01-04 14:20 - 2012-10-10 21:05 - 00099840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2013-01-04 14:20 - 2012-10-10 20:42 - 00007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kbdhebl3.dll
2013-01-04 14:20 - 2012-10-10 19:11 - 01022464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

Broni, Jan 13, 2013

#18
Broni Malware Annihilator Posts: 39,324 +175

2013-01-09 13:28 - 2013-01-09 14:49 - 26611244 ___AT C:\Users\DJ\Desktop\trap1.wav
2013-01-09 12:08 - 2013-01-09 12:08 - 00000117 ____A C:\Windows\System32\netcfg-257764187.txt
2013-01-09 12:08 - 2013-01-09 12:08 - 00000117 ____A C:\Windows\System32\netcfg-257764093.txt
2013-01-09 04:37 - 2013-01-09 04:37 - 00000000 ____D C:\Users\DJ\Documents\Native Instruments
2013-01-09 04:37 - 2013-01-09 04:37 - 00000000 ____D C:\Users\DJ\AppData\Local\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-01-09 04:34 - 2013-01-09 04:34 - 00000624 ____A C:\Users\Public\Desktop\Massive.lnk
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 __HDC C:\Users\All Users\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 __HDC C:\Users\All Users\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Users\All Users\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Program Files\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2013-01-09 04:19 - 2013-01-09 04:19 - 00000117 ____A C:\Windows\System32\netcfg-229606312.txt
2013-01-09 04:19 - 2013-01-09 04:19 - 00000117 ____A C:\Windows\System32\netcfg-229606281.txt
2013-01-08 18:53 - 2013-01-12 05:42 - 00000000 ____D C:\Users\DJ\AppData\Local\CrashDumps
2013-01-08 18:53 - 2013-01-08 18:53 - 00000000 ____D C:\Users\DJ\Documents\Ableton
2013-01-08 18:53 - 2013-01-08 18:53 - 00000000 ____D C:\Users\All Users\Ableton
2013-01-08 18:52 - 2013-01-08 18:53 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Ableton
2013-01-08 18:51 - 2011-03-29 11:38 - 00368640 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\ReWire.dll
2013-01-08 18:51 - 2011-03-29 11:38 - 00233472 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\REX Shared Library.dll
2013-01-08 17:41 - 2013-01-13 19:46 - 00000910 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3044163233-2214013121-3301013928-1001UA.job
2013-01-08 17:41 - 2013-01-13 17:46 - 00000858 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3044163233-2214013121-3301013928-1001Core.job
2013-01-08 16:55 - 2013-01-08 16:59 - 00000000 ____D C:\Users\DJ\AppData\Roaming\.techniclauncher
2013-01-08 16:55 - 2013-01-08 16:55 - 00582227 ____A C:\Users\DJ\AppData\Roaming\technic-launcher.jar
2013-01-08 16:50 - 2013-01-08 16:50 - 00308200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00188392 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00188392 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-01-08 16:50 - 2013-01-08 16:50 - 00000000 ____D C:\Program Files\Java
2013-01-08 16:44 - 2013-01-08 16:50 - 01081320 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-01-08 16:44 - 2013-01-08 16:50 - 00959976 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-01-08 16:37 - 2013-01-08 16:37 - 00000117 ____A C:\Windows\System32\netcfg-187505546.txt
2013-01-08 16:37 - 2013-01-08 16:37 - 00000117 ____A C:\Windows\System32\netcfg-187505484.txt
2013-01-08 13:40 - 2013-01-08 13:40 - 00000117 ____A C:\Windows\System32\netcfg-176876453.txt
2013-01-08 13:40 - 2013-01-08 13:40 - 00000117 ____A C:\Windows\System32\netcfg-176876359.txt
2013-01-07 12:25 - 2013-01-07 12:25 - 00000117 ____A C:\Windows\System32\netcfg-85988453.txt
2013-01-07 12:25 - 2013-01-07 12:25 - 00000117 ____A C:\Windows\System32\netcfg-85988390.txt
2013-01-07 03:02 - 2013-01-07 03:02 - 00000117 ____A C:\Windows\System32\netcfg-52218500.txt
2013-01-07 03:02 - 2013-01-07 03:02 - 00000117 ____A C:\Windows\System32\netcfg-52218484.txt
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\DJ\AppData\Roaming\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\DJ\AppData\Local\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\All Users\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\All Users\AMD
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Program Files (x86)\AMD APP
2013-01-06 16:03 - 2012-08-21 08:56 - 00091648 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\AtihdW86.sys
2013-01-06 16:02 - 2013-01-06 16:02 - 00000000 ____D C:\Program Files\ATI
2013-01-06 12:49 - 2013-01-06 12:49 - 00000221 ____A C:\Users\DJ\Desktop\Mass Effect.url
2013-01-06 12:48 - 2013-01-06 12:48 - 00000221 ____A C:\Users\DJ\Desktop\Prototype.url
2013-01-06 12:48 - 2013-01-06 12:48 - 00000220 ____A C:\Users\DJ\Desktop\BioShock.url
2013-01-06 12:47 - 2013-01-06 12:47 - 00000221 ____A C:\Users\DJ\Desktop\Dead Space.url
2013-01-06 12:33 - 2013-01-06 12:33 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-01-06 12:32 - 2013-01-06 12:32 - 00000136 ____A C:\Windows\System32\netcfg-19062.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000134 ____A C:\Windows\System32\netcfg-18953.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000134 ____A C:\Windows\System32\netcfg-18593.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000117 ____A C:\Windows\System32\netcfg-15375.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172477500.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172456390.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172456343.txt
2013-01-06 10:43 - 2013-01-06 10:49 - 00000024 ____A C:\Users\DJ\random.dat
2013-01-06 10:43 - 2013-01-06 10:43 - 00000041 ____A C:\Users\DJ\jagex_cl_runescape_LIVE.dat
2013-01-06 10:43 - 2013-01-06 10:43 - 00000000 ____D C:\Users\DJ\jagexcache
2013-01-06 10:14 - 2013-01-06 10:14 - 00000117 ____A C:\Windows\System32\netcfg-164206453.txt
2013-01-06 10:14 - 2013-01-06 10:14 - 00000117 ____A C:\Windows\System32\netcfg-164206390.txt
2013-01-05 12:36 - 2013-01-05 12:36 - 00000117 ____A C:\Windows\System32\netcfg-86384796.txt
2013-01-05 12:36 - 2013-01-05 12:36 - 00000117 ____A C:\Windows\System32\netcfg-86384734.txt
2013-01-05 09:28 - 2013-01-05 09:28 - 00000000 ____D C:\Users\DJ\AppData\Local\PAYDAY
2013-01-05 09:28 - 2013-01-05 09:28 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-01-05 09:01 - 2013-01-05 09:27 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Awesomium
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Users\DJ\AppData\Local\UberLauncher
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Users\DJ\AppData\Local\Uber_Entertainment
2013-01-05 08:54 - 2013-01-05 08:54 - 00000117 ____A C:\Windows\System32\netcfg-73017875.txt
2013-01-05 08:54 - 2013-01-05 08:54 - 00000117 ____A C:\Windows\System32\netcfg-73017859.txt
2013-01-04 22:38 - 2013-01-04 22:38 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-01-04 22:21 - 2013-01-04 22:21 - 00000222 ____A C:\Users\DJ\Desktop\ARMA 2 Operation Arrowhead Beta.url
2013-01-04 21:50 - 2013-01-04 21:50 - 00000000 ____D C:\Users\DJ\Documents\Shiner
2013-01-04 21:50 - 2010-06-02 01:55 - 00527192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00518488 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00239960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00077656 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02526056 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02401112 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02106216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01998168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01907552 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01868128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00511328 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00470880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00276832 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00248672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-01-04 17:55 - 2013-01-04 17:55 - 00001089 ____A C:\Users\DJ\Desktop\Steam - Shortcut (2).lnk
2013-01-04 17:48 - 2013-01-04 18:03 - 00000000 ____D C:\Users\DJ\AppData\Local\ArmA 2 OA
2013-01-04 17:47 - 2013-01-04 19:37 - 00000000 ____D C:\Users\DJ\Documents\ArmA 2
2013-01-04 17:47 - 2013-01-04 17:47 - 00000000 ____D C:\Users\DJ\AppData\Local\ArmA 2
2013-01-04 17:47 - 2010-02-04 07:01 - 00530776 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00528216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00078680 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00022360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00517960 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00515416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00176968 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00073544 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00069464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 05554512 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 05501792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 02582888 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 02475352 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 01974616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 01892184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00523088 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00453456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00285024 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00235344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00518480 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00514384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00235856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00175440 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00074576 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00070992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00025936 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00023376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00072200 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2013-01-04 17:47 - 2008-07-31 07:40 - 00513544 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-01-04 17:46 - 2013-01-04 17:46 - 00001067 ____A C:\Users\Public\Desktop\DayZ Commander.lnk
2013-01-04 17:46 - 2013-01-04 17:46 - 00000000 ____D C:\Users\DJ\AppData\Local\DayZCommander
2013-01-04 17:23 - 2013-01-04 17:23 - 00001029 ____A C:\Users\DJ\Desktop\Haunt 64bit Shortcut.lnk
2013-01-04 14:20 - 2012-11-20 00:00 - 06971624 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-01-04 14:20 - 2012-11-19 21:24 - 01164800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2013-01-04 14:20 - 2012-11-19 21:24 - 00036352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2013-01-04 14:20 - 2012-11-19 21:17 - 01184256 ____A (Microsoft Corporation) C:\Windows\System32\Display.dll
2013-01-04 14:20 - 2012-11-19 21:17 - 00049152 ____A (Microsoft Corporation) C:\Windows\System32\DevDispItemProvider.dll
2013-01-04 14:20 - 2012-11-19 21:02 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2013-01-04 14:20 - 2012-11-19 20:59 - 00007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDKURD.DLL
2013-01-04 14:20 - 2012-11-19 20:56 - 00083456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2013-01-04 14:20 - 2012-11-19 20:56 - 00027136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2013-01-04 14:20 - 2012-11-19 20:54 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidi2c.sys
2013-01-04 14:20 - 2012-11-12 20:20 - 01120768 ____A (Microsoft Corporation) C:\Windows\System32\msctf.dll
2013-01-04 14:20 - 2012-11-12 20:19 - 00890880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00523776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00143872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00124928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00641536 ____A (Microsoft Corporation) C:\Windows\System32\WSShared.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00198656 ____A (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00163840 ____A (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-01-04 14:20 - 2012-11-05 23:52 - 00445160 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2013-01-04 14:20 - 2012-11-05 23:36 - 00069864 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pdc.sys
2013-01-04 14:20 - 2012-11-05 23:33 - 01566432 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00522640 ____A (Microsoft Corporation) C:\Windows\System32\AUDIOKSE.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00490064 ____A (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00447792 ____A (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00253512 ____A (Microsoft Corporation) C:\Windows\System32\audiodg.exe
2013-01-04 14:20 - 2012-11-05 21:00 - 00427568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2013-01-04 14:20 - 2012-11-05 21:00 - 00324344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-01-04 14:20 - 2012-11-05 20:48 - 01150160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 17560576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 08856576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 01619968 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00883712 ____A (Microsoft Corporation) C:\Windows\HelpPane.exe
2013-01-04 14:20 - 2012-11-05 20:20 - 00767488 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00621056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00516608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00251904 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00246784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 19789824 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 10096640 ____A (Microsoft Corporation) C:\Windows\System32\twinui.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 08552448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 01451520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 01386496 ____A (Microsoft Corporation) C:\Windows\System32\wlansvc.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00710656 ____A (Microsoft Corporation) C:\Windows\System32\winhttp.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00318464 ____A (Microsoft Corporation) C:\Windows\System32\ubpm.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00291328 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Connectivity.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00273408 ____A (Microsoft Corporation) C:\Windows\System32\wlanapi.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 11459584 ____A (Microsoft Corporation) C:\Windows\System32\glcndFilter.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 01526784 ____A (Microsoft Corporation) C:\Windows\System32\mfcore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 01037312 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00976384 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00703488 ____A (Microsoft Corporation) C:\Windows\System32\drvstore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00549376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00501760 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairing.dll
2013-01-04 14:20 - 2012-11-05 20:17 - 00785920 ____A (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2013-01-04 14:20 - 2012-11-05 19:55 - 00212992 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2013-01-04 14:20 - 2012-11-05 19:54 - 00859136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2013-01-04 14:20 - 2012-11-05 19:52 - 00366080 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2013-01-04 14:20 - 2012-11-05 19:51 - 00665600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-01-04 14:20 - 2012-11-02 16:05 - 00385604 ____A C:\Windows\System32\ApnDatabase.xml
2013-01-04 14:20 - 2012-11-01 21:20 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2013-01-04 14:20 - 2012-10-23 20:54 - 00396008 ____A (Microsoft Corporation) C:\Windows\System32\hal.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 01172992 ____A (Microsoft Corporation) C:\Windows\System32\mfnetsrc.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 01048064 ____A (Microsoft Corporation) C:\Windows\System32\mfasfsrcsnk.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 00677888 ____A (Microsoft Corporation) C:\Windows\System32\mfnetcore.dll
2013-01-04 14:20 - 2012-10-16 20:32 - 00673280 ____A (Microsoft Corporation) C:\Windows\System32\mfmpeg2srcsnk.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00929792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00850944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00568832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2013-01-04 14:20 - 2012-10-16 19:57 - 00513024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2013-01-04 14:20 - 2012-10-12 00:08 - 00027880 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys
2013-01-04 14:20 - 2012-10-11 22:14 - 00036352 ____A (Microsoft Corporation) C:\Windows\System32\rfxvmt.dll
2013-01-04 14:20 - 2012-10-11 22:13 - 00109568 ____A (Microsoft Corporation) C:\Windows\System32\dskquota.dll
2013-01-04 14:20 - 2012-10-11 21:50 - 00235520 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll
2013-01-04 14:20 - 2012-10-11 21:46 - 00618496 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2013-01-04 14:20 - 2012-10-11 21:39 - 00082944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2013-01-04 14:20 - 2012-10-10 23:47 - 00793200 ____A (Microsoft Corporation) C:\Windows\System32\mfplat.dll
2013-01-04 14:20 - 2012-10-10 23:35 - 02380944 ____A (Microsoft Corporation) C:\Windows\explorer.exe
2013-01-04 14:20 - 2012-10-10 23:26 - 00336104 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2013-01-04 14:20 - 2012-10-10 23:25 - 00056552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\sdstor.sys
2013-01-04 14:20 - 2012-10-10 23:23 - 01001192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2013-01-04 14:20 - 2012-10-10 23:23 - 00441576 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2013-01-04 14:20 - 2012-10-10 23:18 - 00172264 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2013-01-04 14:20 - 2012-10-10 23:16 - 01403784 ____A (Microsoft Corporation) C:\Windows\System32\winload.efi
2013-01-04 14:20 - 2012-10-10 23:16 - 01267424 ____A (Microsoft Corporation) C:\Windows\System32\winload.exe
2013-01-04 14:20 - 2012-10-10 23:16 - 01217328 ____A (Microsoft Corporation) C:\Windows\System32\winresume.efi
2013-01-04 14:20 - 2012-10-10 23:16 - 01093880 ____A (Microsoft Corporation) C:\Windows\System32\winresume.exe
2013-01-04 14:20 - 2012-10-10 23:13 - 00058088 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dam.sys
2013-01-04 14:20 - 2012-10-10 23:13 - 00033512 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\battc.sys
2013-01-04 14:20 - 2012-10-10 23:08 - 00562392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2013-01-04 14:20 - 2012-10-10 23:01 - 00503080 ____A (Microsoft Corporation) C:\Windows\System32\ci.dll
2013-01-04 14:20 - 2012-10-10 21:56 - 02115952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 01395712 ____A (Microsoft Corporation) C:\Windows\System32\Windows.UI.Immersive.dll
2013-01-04 14:20 - 2012-10-10 21:46 - 00816128 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00594944 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Networking.dll
2013-01-04 14:20 - 2012-10-10 21:46 - 00517120 ____A (Microsoft Corporation) C:\Windows\System32\winlogon.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00373760 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00154112 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Storage.Compression.dll
2013-01-04 14:20 - 2012-10-10 21:46 - 00049664 ____A (Microsoft Corporation) C:\Windows\System32\BdeUISrv.exe
2013-01-04 14:20 - 2012-10-10 21:46 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\wfapigp.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 03554304 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 01045504 ____A (Microsoft Corporation) C:\Windows\System32\usercpl.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00590848 ____A (Microsoft Corporation) C:\Windows\System32\SHCore.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00579584 ____A (Microsoft Corporation) C:\Windows\System32\StructuredQuery.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00505344 ____A (Microsoft Corporation) C:\Windows\System32\SpaceControl.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00370176 ____A (Microsoft Corporation) C:\Windows\System32\SysFxUI.dll
2013-01-04 14:20 - 2012-10-10 21:45 - 00055808 ____A (Microsoft Corporation) C:\Windows\System32\PCPKsp.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 02116096 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 01265152 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00904192 ____A (Microsoft Corporation) C:\Windows\System32\MPSSVC.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00745984 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00561152 ____A (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00435712 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00355328 ____A (Microsoft Corporation) C:\Windows\System32\mswsock.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00264704 ____A (Microsoft Corporation) C:\Windows\System32\ListSvc.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00259584 ____A (Microsoft Corporation) C:\Windows\System32\input.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00246272 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00105984 ____A (Microsoft Corporation) C:\Windows\System32\icfupgd.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00102400 ____A (Microsoft Corporation) C:\Windows\System32\mssitlb.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00096256 ____A (Microsoft Corporation) C:\Windows\System32\mssprxy.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2013-01-04 14:20 - 2012-10-10 21:44 - 00014336 ____A (Microsoft Corporation) C:\Windows\System32\msshooks.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 02206208 ____A (Microsoft Corporation) C:\Windows\System32\dwmcore.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 01836032 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 01294336 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 01280000 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00757760 ____A (Microsoft Corporation) C:\Windows\System32\FirewallAPI.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00331776 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00244224 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore6.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00190976 ____A (Microsoft Corporation) C:\Windows\System32\bdesvc.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00118784 ____A (Microsoft Corporation) C:\Windows\System32\AppxSip.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00081920 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcsvc.dll
2013-01-04 14:20 - 2012-10-10 21:43 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcsvc6.dll
2013-01-04 14:20 - 2012-10-10 21:42 - 00612416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2013-01-04 14:20 - 2012-10-10 21:23 - 00034816 ____A (Microsoft Corporation) C:\Windows\System32\microsoft-windows-pdc.dll
2013-01-04 14:20 - 2012-10-10 21:23 - 00007680 ____A (Microsoft Corporation) C:\Windows\System32\kbdhebl3.dll
2013-01-04 14:20 - 2012-10-10 21:19 - 00005632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\drmkaud.sys
2013-01-04 14:20 - 2012-10-10 21:18 - 00111616 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\drmk.sys
2013-01-04 14:20 - 2012-10-10 21:16 - 00286208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2013-01-04 14:20 - 2012-10-10 21:15 - 00074752 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mpsdrv.sys
2013-01-04 14:20 - 2012-10-10 21:08 - 00671232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-01-04 14:20 - 2012-10-10 21:08 - 00303104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-01-04 14:20 - 2012-10-10 21:08 - 00170496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-01-04 14:20 - 2012-10-10 21:07 - 02764288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 01226752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00962560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00460800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00414720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00410624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00116224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00047616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2013-01-04 14:20 - 2012-10-10 21:07 - 00019968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 01841152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 01610240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 01420800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00658432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00653824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00550912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00411136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00408064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00289280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00219648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00186880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00094208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00060416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00051712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00035328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2013-01-04 14:20 - 2012-10-10 21:06 - 00010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2013-01-04 14:20 - 2012-10-10 21:05 - 00099840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2013-01-04 14:20 - 2012-10-10 20:42 - 00007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kbdhebl3.dll
2013-01-04 14:20 - 2012-10-10 19:11 - 01022464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

Broni, Jan 13, 2013

#19
Broni Malware Annihilator Posts: 39,324 +175

2013-01-09 13:28 - 2013-01-09 14:49 - 26611244 ___AT C:\Users\DJ\Desktop\trap1.wav
2013-01-09 12:08 - 2013-01-09 12:08 - 00000117 ____A C:\Windows\System32\netcfg-257764187.txt
2013-01-09 12:08 - 2013-01-09 12:08 - 00000117 ____A C:\Windows\System32\netcfg-257764093.txt
2013-01-09 04:37 - 2013-01-09 04:37 - 00000000 ____D C:\Users\DJ\Documents\Native Instruments
2013-01-09 04:37 - 2013-01-09 04:37 - 00000000 ____D C:\Users\DJ\AppData\Local\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00001059 ____A C:\Users\Public\Desktop\Service Center.lnk
2013-01-09 04:34 - 2013-01-09 04:34 - 00000624 ____A C:\Users\Public\Desktop\Massive.lnk
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 __HDC C:\Users\All Users\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 __HDC C:\Users\All Users\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Users\All Users\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Program Files\Native Instruments
2013-01-09 04:34 - 2013-01-09 04:34 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2013-01-09 04:19 - 2013-01-09 04:19 - 00000117 ____A C:\Windows\System32\netcfg-229606312.txt
2013-01-09 04:19 - 2013-01-09 04:19 - 00000117 ____A C:\Windows\System32\netcfg-229606281.txt
2013-01-08 18:53 - 2013-01-12 05:42 - 00000000 ____D C:\Users\DJ\AppData\Local\CrashDumps
2013-01-08 18:53 - 2013-01-08 18:53 - 00000000 ____D C:\Users\DJ\Documents\Ableton
2013-01-08 18:53 - 2013-01-08 18:53 - 00000000 ____D C:\Users\All Users\Ableton
2013-01-08 18:52 - 2013-01-08 18:53 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Ableton
2013-01-08 18:51 - 2011-03-29 11:38 - 00368640 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\ReWire.dll
2013-01-08 18:51 - 2011-03-29 11:38 - 00233472 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\REX Shared Library.dll
2013-01-08 17:41 - 2013-01-13 19:46 - 00000910 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3044163233-2214013121-3301013928-1001UA.job
2013-01-08 17:41 - 2013-01-13 17:46 - 00000858 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3044163233-2214013121-3301013928-1001Core.job
2013-01-08 16:55 - 2013-01-08 16:59 - 00000000 ____D C:\Users\DJ\AppData\Roaming\.techniclauncher
2013-01-08 16:55 - 2013-01-08 16:55 - 00582227 ____A C:\Users\DJ\AppData\Roaming\technic-launcher.jar
2013-01-08 16:50 - 2013-01-08 16:50 - 00308200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00188392 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00188392 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-01-08 16:50 - 2013-01-08 16:50 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-01-08 16:50 - 2013-01-08 16:50 - 00000000 ____D C:\Program Files\Java
2013-01-08 16:44 - 2013-01-08 16:50 - 01081320 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-01-08 16:44 - 2013-01-08 16:50 - 00959976 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-01-08 16:37 - 2013-01-08 16:37 - 00000117 ____A C:\Windows\System32\netcfg-187505546.txt
2013-01-08 16:37 - 2013-01-08 16:37 - 00000117 ____A C:\Windows\System32\netcfg-187505484.txt
2013-01-08 13:40 - 2013-01-08 13:40 - 00000117 ____A C:\Windows\System32\netcfg-176876453.txt
2013-01-08 13:40 - 2013-01-08 13:40 - 00000117 ____A C:\Windows\System32\netcfg-176876359.txt
2013-01-07 12:25 - 2013-01-07 12:25 - 00000117 ____A C:\Windows\System32\netcfg-85988453.txt
2013-01-07 12:25 - 2013-01-07 12:25 - 00000117 ____A C:\Windows\System32\netcfg-85988390.txt
2013-01-07 03:02 - 2013-01-07 03:02 - 00000117 ____A C:\Windows\System32\netcfg-52218500.txt
2013-01-07 03:02 - 2013-01-07 03:02 - 00000117 ____A C:\Windows\System32\netcfg-52218484.txt
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\DJ\AppData\Roaming\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\DJ\AppData\Local\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\All Users\ATI
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Users\All Users\AMD
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-01-06 16:03 - 2013-01-06 16:03 - 00000000 ____D C:\Program Files (x86)\AMD APP
2013-01-06 16:03 - 2012-08-21 08:56 - 00091648 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\AtihdW86.sys
2013-01-06 16:02 - 2013-01-06 16:02 - 00000000 ____D C:\Program Files\ATI
2013-01-06 12:49 - 2013-01-06 12:49 - 00000221 ____A C:\Users\DJ\Desktop\Mass Effect.url
2013-01-06 12:48 - 2013-01-06 12:48 - 00000221 ____A C:\Users\DJ\Desktop\Prototype.url
2013-01-06 12:48 - 2013-01-06 12:48 - 00000220 ____A C:\Users\DJ\Desktop\BioShock.url
2013-01-06 12:47 - 2013-01-06 12:47 - 00000221 ____A C:\Users\DJ\Desktop\Dead Space.url
2013-01-06 12:33 - 2013-01-06 12:33 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-01-06 12:32 - 2013-01-06 12:32 - 00000136 ____A C:\Windows\System32\netcfg-19062.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000134 ____A C:\Windows\System32\netcfg-18953.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000134 ____A C:\Windows\System32\netcfg-18593.txt
2013-01-06 12:32 - 2013-01-06 12:32 - 00000117 ____A C:\Windows\System32\netcfg-15375.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172477500.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172456390.txt
2013-01-06 12:31 - 2013-01-06 12:31 - 00000117 ____A C:\Windows\System32\netcfg-172456343.txt
2013-01-06 10:43 - 2013-01-06 10:49 - 00000024 ____A C:\Users\DJ\random.dat
2013-01-06 10:43 - 2013-01-06 10:43 - 00000041 ____A C:\Users\DJ\jagex_cl_runescape_LIVE.dat
2013-01-06 10:43 - 2013-01-06 10:43 - 00000000 ____D C:\Users\DJ\jagexcache
2013-01-06 10:14 - 2013-01-06 10:14 - 00000117 ____A C:\Windows\System32\netcfg-164206453.txt
2013-01-06 10:14 - 2013-01-06 10:14 - 00000117 ____A C:\Windows\System32\netcfg-164206390.txt
2013-01-05 12:36 - 2013-01-05 12:36 - 00000117 ____A C:\Windows\System32\netcfg-86384796.txt
2013-01-05 12:36 - 2013-01-05 12:36 - 00000117 ____A C:\Windows\System32\netcfg-86384734.txt
2013-01-05 09:28 - 2013-01-05 09:28 - 00000000 ____D C:\Users\DJ\AppData\Local\PAYDAY
2013-01-05 09:28 - 2013-01-05 09:28 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-01-05 09:01 - 2013-01-05 09:27 - 00000000 ____D C:\Users\DJ\AppData\Roaming\Awesomium
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Users\DJ\AppData\Local\UberLauncher
2013-01-05 09:00 - 2013-01-05 09:00 - 00000000 ____D C:\Users\DJ\AppData\Local\Uber_Entertainment
2013-01-05 08:54 - 2013-01-05 08:54 - 00000117 ____A C:\Windows\System32\netcfg-73017875.txt
2013-01-05 08:54 - 2013-01-05 08:54 - 00000117 ____A C:\Windows\System32\netcfg-73017859.txt
2013-01-04 22:38 - 2013-01-04 22:38 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-01-04 22:21 - 2013-01-04 22:21 - 00000222 ____A C:\Users\DJ\Desktop\ARMA 2 Operation Arrowhead Beta.url
2013-01-04 21:50 - 2013-01-04 21:50 - 00000000 ____D C:\Users\DJ\Documents\Shiner
2013-01-04 21:50 - 2010-06-02 01:55 - 00527192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00518488 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00239960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00077656 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2013-01-04 21:50 - 2010-06-02 01:55 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02526056 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02401112 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 02106216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01998168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01907552 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 01868128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00511328 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00470880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00276832 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2013-01-04 21:50 - 2010-05-26 08:41 - 00248672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-01-04 17:55 - 2013-01-04 17:55 - 00001089 ____A C:\Users\DJ\Desktop\Steam - Shortcut (2).lnk
2013-01-04 17:48 - 2013-01-04 18:03 - 00000000 ____D C:\Users\DJ\AppData\Local\ArmA 2 OA
2013-01-04 17:47 - 2013-01-04 19:37 - 00000000 ____D C:\Users\DJ\Documents\ArmA 2
2013-01-04 17:47 - 2013-01-04 17:47 - 00000000 ____D C:\Users\DJ\AppData\Local\ArmA 2
2013-01-04 17:47 - 2010-02-04 07:01 - 00530776 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00528216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00078680 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2013-01-04 17:47 - 2010-02-04 07:01 - 00022360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00517960 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00515416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00176968 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00073544 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-01-04 17:47 - 2009-09-04 14:44 - 00069464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 05554512 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 05501792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 02582888 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 02475352 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 01974616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 01892184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00523088 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00453456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00285024 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-01-04 17:47 - 2009-09-04 14:29 - 00235344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00518480 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00514384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00235856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00175440 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00074576 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00070992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00025936 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2013-01-04 17:47 - 2008-10-27 07:04 - 00023376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-01-04 17:47 - 2008-07-31 07:41 - 00072200 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2013-01-04 17:47 - 2008-07-31 07:40 - 00513544 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-01-04 17:46 - 2013-01-04 17:46 - 00001067 ____A C:\Users\Public\Desktop\DayZ Commander.lnk
2013-01-04 17:46 - 2013-01-04 17:46 - 00000000 ____D C:\Users\DJ\AppData\Local\DayZCommander
2013-01-04 17:23 - 2013-01-04 17:23 - 00001029 ____A C:\Users\DJ\Desktop\Haunt 64bit Shortcut.lnk
2013-01-04 14:20 - 2012-11-20 00:00 - 06971624 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-01-04 14:20 - 2012-11-19 21:24 - 01164800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2013-01-04 14:20 - 2012-11-19 21:24 - 00036352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2013-01-04 14:20 - 2012-11-19 21:17 - 01184256 ____A (Microsoft Corporation) C:\Windows\System32\Display.dll
2013-01-04 14:20 - 2012-11-19 21:17 - 00049152 ____A (Microsoft Corporation) C:\Windows\System32\DevDispItemProvider.dll
2013-01-04 14:20 - 2012-11-19 21:02 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2013-01-04 14:20 - 2012-11-19 20:59 - 00007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDKURD.DLL
2013-01-04 14:20 - 2012-11-19 20:56 - 00083456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2013-01-04 14:20 - 2012-11-19 20:56 - 00027136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2013-01-04 14:20 - 2012-11-19 20:54 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidi2c.sys
2013-01-04 14:20 - 2012-11-12 20:20 - 01120768 ____A (Microsoft Corporation) C:\Windows\System32\msctf.dll
2013-01-04 14:20 - 2012-11-12 20:19 - 00890880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00523776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00143872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-01-04 14:20 - 2012-11-07 20:25 - 00124928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00641536 ____A (Microsoft Corporation) C:\Windows\System32\WSShared.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00198656 ____A (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.dll
2013-01-04 14:20 - 2012-11-07 20:22 - 00163840 ____A (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-01-04 14:20 - 2012-11-05 23:52 - 00445160 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2013-01-04 14:20 - 2012-11-05 23:36 - 00069864 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pdc.sys
2013-01-04 14:20 - 2012-11-05 23:33 - 01566432 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00522640 ____A (Microsoft Corporation) C:\Windows\System32\AUDIOKSE.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00490064 ____A (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00447792 ____A (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2013-01-04 14:20 - 2012-11-05 23:33 - 00253512 ____A (Microsoft Corporation) C:\Windows\System32\audiodg.exe
2013-01-04 14:20 - 2012-11-05 21:00 - 00427568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2013-01-04 14:20 - 2012-11-05 21:00 - 00324344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-01-04 14:20 - 2012-11-05 20:48 - 01150160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 17560576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 08856576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 01619968 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00883712 ____A (Microsoft Corporation) C:\Windows\HelpPane.exe
2013-01-04 14:20 - 2012-11-05 20:20 - 00767488 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00621056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00516608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00251904 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2013-01-04 14:20 - 2012-11-05 20:20 - 00246784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 19789824 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 10096640 ____A (Microsoft Corporation) C:\Windows\System32\twinui.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 08552448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 01451520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 01386496 ____A (Microsoft Corporation) C:\Windows\System32\wlansvc.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00710656 ____A (Microsoft Corporation) C:\Windows\System32\winhttp.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00318464 ____A (Microsoft Corporation) C:\Windows\System32\ubpm.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00291328 ____A (Microsoft Corporation) C:\Windows\System32\Windows.Networking.Connectivity.dll
2013-01-04 14:20 - 2012-11-05 20:19 - 00273408 ____A (Microsoft Corporation) C:\Windows\System32\wlanapi.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 11459584 ____A (Microsoft Corporation) C:\Windows\System32\glcndFilter.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 01526784 ____A (Microsoft Corporation) C:\Windows\System32\mfcore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 01037312 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00976384 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00703488 ____A (Microsoft Corporation) C:\Windows\System32\drvstore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00549376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2013-01-04 14:20 - 2012-11-05 20:18 - 00501760 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairing.dll
2013-01-04 14:20 - 2012-11-05 20:17 - 00785920 ____A (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2013-01-04 14:20 - 2012-11-05 19:55 - 00212992 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2013-01-04 14:20 - 2012-11-05 19:54 - 00859136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2013-01-04 14:20 - 2012-11-05 19:52 - 00366080 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2013-01-04 14:20 - 2012-11-05 19:51 - 00665600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-01-04 14:20 - 2012-11-02 16:05 - 00385604 ____A C:\Windows\System32\ApnDatabase.xml

Broni, Jan 13, 2013

#20

Page 1 of 4

Add New Comment

	Social Login & Guest Posting			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.