Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Skype May have been hacked, possibly infected, Please help

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Skype May have been hacked, possibly infected, Please help

Unread postby auto100 » October 27th, 2013, 7:06 pm

Skype May have been hacked, possibly infected, Please help



Description Of Problem:
Okay, here's the thing. The other morning I discovered a picture on my Skype profile that I do not remember putting there.

I have done a clean re-installation of Windows a couple of weeks ago and so if someone did get access to my Skype Account it would have to have been, I assume from the old OS.

Furthermore I have done multiple virus and spyware scans on my PC and found everything to be clean except for one infection which was an ask toolbar adware thing.

Also another thing is that I have now changed the Skype Pic but when the option for searching for previous pics I wasn't able to find that other pic. However that might have been because I deleted it as I changed it and I think I might be able to recover it actually which is what I will work on doing.

Basically all I want is confirmation that this was most likely causes by an infection via my old OS and definitely not this one. Another thing is that it had been stalling for a while too.

One other thing is that all none of the links I clicked via IMs on were bad were infected as I already had them checked.

So any of your help on this and I'd be very grateful. Thanks.

DDS Logs:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16720
Run by Jack Standard at 22:42:18 on 2013-10-27
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.6058.2912 [GMT 0:00]
.
AV: ESET Smart Security 7.0 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ESET Smart Security 7.0 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: COMODO Antivirus *Disabled/Outdated* {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: ESET Personal firewall *Disabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
FW: COMODO Firewall *Enabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
C:\Windows\system32\WLANExt.exe
C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
C:\Windows\system32\BtwRSupportService.exe
C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files (x86)\Workrave\lib\Workrave.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Program Files\COMODO\GeekBuddy\unit.exe
C:\Program Files (x86)\Workrave\lib\WorkraveHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
C:\Program Files (x86)\Workrave\lib\dbus-daemon.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxps://duckduckgo.com/
uWindow Title = Internet Explorer, enhanced for Bing and MSN
mWinlogon: Userinit = userinit.exe
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
uRun: [Workrave] C:\Program Files (x86)\Workrave\lib\workrave.exe
uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
mRun: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\STARTG~1.LNK - C:\Program Files\COMODO\GeekBuddy\launcher.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{256A8C3E-93DE-4F76-B75C-6EFD504AB140} : NameServer = 156.154.70.22,156.154.71.22
TCP: Interfaces\{256A8C3E-93DE-4F76-B75C-6EFD504AB140} : DHCPNameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{256A8C3E-93DE-4F76-B75C-6EFD504AB140}\8416272796370284F6F6C6560275946494 : DHCPNameServer = 172.16.1.1
TCP: Interfaces\{FFE4141C-F94C-4F78-8196-03DDB0575D41} : NameServer = 156.154.70.22,156.154.71.22
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Persistence] "C:\Windows\System32\igfxpers.exe"
x64-Run: [IgfxTray] "C:\Windows\System32\igfxtray.exe"
x64-Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
x64-Run: [HotKeysCmds] "C:\Windows\System32\hkcmd.exe"
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath -
.
============= SERVICES / DRIVERS ===============
.
R0 epfwwfp;epfwwfp;C:\Windows\System32\drivers\epfwwfp.sys [2013-8-15 62136]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-8-7 644968]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-8-7 28008]
R1 CFRMD;CFRMD;C:\Windows\System32\drivers\CFRMD.sys [2013-5-7 37976]
R1 cmderd;COMODO Internet Security Eradication Driver;C:\Windows\System32\drivers\cmderd.sys [2013-9-24 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\System32\drivers\cmdguard.sys [2013-9-24 709144]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\System32\drivers\cmdhlp.sys [2013-9-24 48872]
R1 eamonm;eamonm;C:\Windows\System32\drivers\eamonm.sys [2013-8-15 239320]
R1 EpfwLWF;Epfw NDIS LightWeight Filter;C:\Windows\System32\drivers\EpfwLWF.sys [2013-8-15 44120]
R1 HMD;COMODO livePCsupport Hardware Monitor Driver;C:\Windows\System32\drivers\hmd.sys [2013-10-4 14888]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\Windows\System32\drivers\SABI.sys [2013-10-21 13824]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 APNMCP;Ask Update Service;C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-10-16 166352]
R2 BcmBtRSupport;Bluetooth Driver Management Service;C:\Windows\System32\BtwRSupportService.exe [2013-10-23 2253016]
R2 CLPSLauncher;COMODO LPS Launcher;C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [2013-10-11 70352]
R2 DragonUpdater;COMODO Dragon Update Service;C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2013-10-9 2104968]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-9-12 1337752]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-8-7 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-5-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-10-17 169432]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-10-18 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-10-18 701512]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2013-10-14 1228504]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-9 3275136]
R2 WCMVCAM;WebcamMax, WDM Video Capture;C:\Windows\System32\drivers\wcmvcam64.sys [2012-4-15 1071032]
R3 bcbtums;Bluetooth USB LD Filter;C:\Windows\System32\drivers\bcbtums.sys [2013-10-23 170712]
R3 ETD;Samsung PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2013-5-31 375088]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-10-23 169752]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-7-1 342528]
R3 KeyScrambler;KeyScrambler;C:\Windows\System32\drivers\keyscrambler.sys [2013-10-17 222200]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-10-18 25928]
R3 PSI;PSI;C:\Windows\System32\drivers\psi_mf_amd64.sys [2013-10-14 18456]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-10-17 883928]
R3 SystemExplorerHelpService;System Explorer Service;C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2013-10-25 821720]
R3 usbsmi;WebCam SCX Series Service Display Name V1;C:\Windows\System32\drivers\SMIksdrv.sys [2013-10-23 206336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-10-14 660184]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]
S2 WiseBootAssistant;Wise Boot Assistant;C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [2013-10-26 580232]
S3 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-10-10 144152]
S3 btwampfl;btwampfl;C:\Windows\System32\drivers\btwampfl.sys [2013-10-23 166104]
S3 cmdvirth;COMODO Virtual Service Manager;C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-9-24 164056]
S3 GeekBuddyRSP;GeekBuddyRSP Server;C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2013-10-11 2327248]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-5-11 822232]
S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-9-21 351520]
S3 LVUVC64;Logitech Webcam 250(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-9-21 4763680]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-10-19 1255736]
.
=============== Created Last 30 ================
.
2013-10-27 20:22:26 -------- d-----w- C:\ubuntu
2013-10-27 15:59:57 -------- d-----w- C:\Windows\pss
2013-10-27 15:22:26 -------- d-----w- C:\Users\Jack Standard\Pavark
2013-10-27 15:18:37 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\Wireshark
2013-10-27 14:37:15 -------- d-----w- C:\ProgramData\SecTaskMan
2013-10-27 14:37:07 -------- d-----w- C:\Program Files (x86)\Security Task Manager
2013-10-27 03:34:50 -------- d-----w- C:\Program Files (x86)\WinPcap
2013-10-27 03:33:57 -------- d-----w- C:\Program Files\Wireshark
2013-10-27 03:31:46 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\JAM Software
2013-10-27 01:38:43 -------- d-----w- C:\Program Files (x86)\ESET
2013-10-26 22:44:46 -------- d-----w- C:\Program Files (x86)\Wise
2013-10-26 19:25:18 -------- d-----w- C:\Program Files (x86)\Common Files\COMODO
2013-10-26 19:07:13 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2013-10-26 19:07:13 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll
2013-10-26 19:07:12 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll
2013-10-26 19:06:46 -------- d-s---w- C:\ProgramData\Shared Space
2013-10-26 19:06:04 -------- d-----w- C:\Program Files\AdTrustMedia
2013-10-26 19:06:04 -------- d-----w- C:\Program Files (x86)\AdTrustMedia
2013-10-26 19:06:03 -------- d-----w- C:\ProgramData\Adtrustmedia
2013-10-26 19:05:32 -------- d-----w- C:\ProgramData\COMODO
2013-10-26 19:05:16 -------- d-----w- C:\Program Files\COMODO
2013-10-26 19:04:49 57096 ----a-w- C:\Windows\System32\certsentry.dll
2013-10-26 19:04:41 -------- d-----w- C:\Program Files (x86)\Comodo
2013-10-26 19:04:35 -------- d-----w- C:\ProgramData\Comodo Downloader
2013-10-26 18:09:59 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-10-26 18:09:58 116440 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2013-10-26 12:26:31 -------- d-----w- C:\Users\Jack Standard\AppData\Local\Amazon
2013-10-26 12:21:46 -------- d-----w- C:\Users\Jack Standard\AppData\Local\CyberGhost
2013-10-25 15:17:26 -------- d-----w- C:\ProgramData\SystemExplorer
2013-10-25 15:17:24 -------- d-----w- C:\Program Files (x86)\System Explorer
2013-10-24 21:07:57 -------- d-----w- C:\Users\Jack Standard\AppData\Local\Diagnostics
2013-10-24 16:34:52 -------- d-----w- C:\Program Files\Microsoft Baseline Security Analyzer 2
2013-10-24 01:47:21 -------- d-----r- C:\Program Files (x86)\Skype
2013-10-23 22:01:41 -------- d-----w- C:\Users\Jack Standard\AppData\Local\CrashDumps
2013-10-23 22:00:45 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2013-10-23 21:58:24 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
2013-10-23 21:46:31 -------- d-----w- C:\ProgramData\InstallMate
2013-10-23 21:46:31 -------- d-----w- C:\Program Files (x86)\BillP Studios
2013-10-23 21:24:30 -------- d-----w- C:\ProgramData\Licenses
2013-10-23 21:24:27 129872 ----a-w- C:\Windows\SysWow64\MSSTDFMT.DLL
2013-10-23 21:24:27 1070352 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2013-10-23 21:24:26 -------- d-----w- C:\Program Files (x86)\SpywareBlaster
2013-10-23 20:55:38 -------- d-----w- C:\Users\Jack Standard\AppData\Local\Logitech® Webcam Software
2013-10-23 20:54:37 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\Intel Corporation
2013-10-23 20:53:38 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\Workrave
2013-10-23 19:29:49 -------- d-----w- C:\ProgramData\WCMShare
2013-10-23 19:23:20 -------- d-----w- C:\ProgramData\AskPartnerNetwork
2013-10-23 19:23:20 -------- d-----w- C:\Program Files (x86)\AskPartnerNetwork
2013-10-23 19:23:15 -------- d-----w- C:\ProgramData\WebcamMax
2013-10-23 19:23:09 -------- d-----w- C:\ProgramData\APN
2013-10-23 19:22:37 -------- d-----w- C:\Program Files (x86)\WebcamMax
2013-10-23 19:10:54 -------- d-----w- C:\ProgramData\regid.1995-08.com.techsmith
2013-10-23 19:10:41 -------- d-----w- C:\Program Files (x86)\Common Files\TechSmith Shared
2013-10-23 18:05:46 20992 ----a-w- C:\Windows\System32\OpenCL.dll
2013-10-23 18:05:46 144896 ----a-w- C:\Windows\System32\IntelOpenCL64.dll
2013-10-23 18:05:44 17920 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2013-10-23 18:05:44 104448 ----a-w- C:\Windows\SysWow64\IntelOpenCL32.dll
2013-10-23 18:02:45 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
2013-10-23 18:02:18 572928 ----a-w- C:\Windows\System32\SM37XCoInst.dll
2013-10-23 18:02:18 451584 ----a-w- C:\Windows\System32\370proplib.dll
2013-10-23 18:02:18 317440 ----a-w- C:\Windows\System32\370prop.ax
2013-10-23 18:02:18 2806784 ----a-w- C:\Windows\System32\drivers\SMIexp.sys
2013-10-23 18:02:18 206336 ----a-w- C:\Windows\System32\drivers\SMIksdrv.sys
2013-10-23 18:02:17 954368 ----a-w- C:\Windows\SysWow64\RemoveSM37X.exe
2013-10-23 18:02:17 372736 ----a-w- C:\Windows\SysWow64\370proplib.dll
2013-10-23 18:02:17 258048 ----a-w- C:\Windows\SysWow64\370prop.ax
2013-10-23 17:57:59 757760 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2013-10-23 17:57:59 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2013-10-23 17:57:59 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
2013-10-23 17:57:59 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2013-10-23 17:57:59 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2013-10-23 17:57:59 204800 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2013-10-23 17:57:57 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2013-10-23 17:57:57 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2013-10-23 17:54:31 225280 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2013-10-23 17:54:30 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2013-10-23 17:54:30 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2013-10-23 17:54:30 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2013-10-23 17:54:29 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2013-10-23 17:51:35 66264 ----a-w- C:\Windows\System32\btwdi.dll
2013-10-23 17:51:35 2253016 ----a-w- C:\Windows\System32\BtwRSupportService.exe
2013-10-23 17:51:35 166104 ----a-w- C:\Windows\System32\drivers\btwampfl.sys
2013-10-23 17:51:34 2232024 ----a-w- C:\Windows\System32\BcmBtRSupport.dll
2013-10-23 17:51:34 170712 ----a-w- C:\Windows\System32\drivers\bcbtums.sys
2013-10-23 17:28:30 -------- d-----w- C:\Program Files\Elantech
2013-10-23 16:47:52 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2013-10-23 16:43:00 -------- d-----w- C:\Program Files (x86)\Workrave
2013-10-23 16:39:29 -------- d-----w- C:\Users\Jack Standard\AppData\Local\Programs
2013-10-22 23:57:25 60416 ----a-w- C:\Windows\System32\drivers\vwififlt.sys
2013-10-22 23:57:25 18432 ----a-w- C:\Windows\System32\drivers\vwifimp.sys
2013-10-22 23:57:17 345600 ----a-w- C:\Windows\SetLCDStretchMode.exe
2013-10-22 00:15:09 -------- d-----w- C:\ProgramData\Samsung
2013-10-21 14:23:32 13824 ----a-w- C:\Windows\System32\drivers\SABI.sys
2013-10-21 14:23:08 -------- d-----w- C:\Program Files (x86)\SAMSUNG
2013-10-21 14:22:39 696320 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2013-10-21 14:22:39 57344 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2013-10-21 14:22:39 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2013-10-21 14:22:39 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2013-10-21 14:22:39 237568 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2013-10-21 14:22:39 155648 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2013-10-21 14:22:38 282756 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2013-10-21 14:22:38 163972 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2013-10-20 20:09:00 -------- d-----w- C:\Program Files (x86)\pidgin-otr
2013-10-20 20:07:34 -------- d-----w- C:\Program Files (x86)\Pidgin
2013-10-20 19:58:03 107238 ----a-w- C:\Users\Jack Standard\pidgin-uninst.exe
2013-10-20 19:58:03 -------- d-----w- C:\Users\Jack Standard\spellcheck
2013-10-20 19:58:03 -------- d-----w- C:\Users\Jack Standard\sounds
2013-10-20 19:58:03 -------- d-----w- C:\Users\Jack Standard\sasl2
2013-10-20 19:57:54 -------- d-----w- C:\Users\Jack Standard\plugins
2013-10-20 19:57:42 -------- d-----w- C:\Users\Jack Standard\pixmaps
2013-10-20 19:57:41 -------- d-----w- C:\Users\Jack Standard\ca-certs
2013-10-20 19:57:36 -------- d-----w- C:\Users\Jack Standard\Gtk
2013-10-20 19:23:28 -------- d-----w- C:\Users\Jack Standard\AppData\Local\enchant
2013-10-20 19:23:27 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\.purple
2013-10-20 19:12:30 -------- d-----w- C:\Users\Jack Standard\AppData\Local\Adobe
2013-10-20 17:59:15 -------- d-----w- C:\Program Files\CCleaner
2013-10-20 15:49:38 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-10-20 15:49:38 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-10-20 15:49:38 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-10-20 15:49:38 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-10-20 15:49:38 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-10-20 15:49:38 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-10-20 15:49:38 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-10-20 15:22:23 -------- d-----w- C:\Windows\System32\MRT
2013-10-20 15:09:02 -------- d-----w- C:\Program Files (x86)\Secunia
2013-10-20 14:10:40 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\ESET
2013-10-20 14:10:40 -------- d-----w- C:\Users\Jack Standard\AppData\Local\ESET
2013-10-20 14:08:53 -------- d-----w- C:\Program Files\ESET
2013-10-19 22:24:23 80384 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS
2013-10-19 22:24:23 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2013-10-19 22:19:46 96768 ----a-w- C:\Windows\System32\fsutil.exe
2013-10-19 22:19:46 2565632 ----a-w- C:\Windows\System32\esent.dll
2013-10-19 22:19:45 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2013-10-19 22:19:45 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2013-10-19 22:19:45 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2013-10-19 22:19:45 189824 ----a-w- C:\Windows\System32\drivers\storport.sys
2013-10-19 22:19:45 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2013-10-19 22:19:45 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2013-10-19 22:19:45 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2013-10-19 22:19:45 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2013-10-19 21:52:15 -------- d-----w- C:\Windows\SysWow64\Wat
2013-10-19 21:52:15 -------- d-----w- C:\Windows\System32\Wat
2013-10-19 01:25:11 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2013-10-19 00:45:47 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2013-10-19 00:45:47 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2013-10-19 00:45:47 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2013-10-19 00:45:47 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2013-10-19 00:45:47 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2013-10-19 00:45:47 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2013-10-19 00:45:47 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2013-10-19 00:26:12 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-10-19 00:26:12 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2013-10-19 00:26:12 5120 ----a-w- C:\Windows\System32\wmi.dll
2013-10-19 00:26:12 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2013-10-19 00:26:12 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-10-18 23:07:25 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\SUPERAntiSpyware.com
2013-10-18 19:22:17 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-10-18 19:22:17 230400 ----a-w- C:\Windows\System32\wwansvc.dll
2013-10-18 19:16:35 94208 ----a-w- C:\Program Files (x86)\Common Files\System\Ole DB\msdaosp.dll
2013-10-18 19:16:35 86016 ----a-w- C:\Windows\SysWow64\odbccu32.dll
2013-10-18 19:16:35 81920 ----a-w- C:\Windows\SysWow64\odbccr32.dll
2013-10-18 19:16:35 319488 ----a-w- C:\Windows\SysWow64\odbcjt32.dll
2013-10-18 19:16:35 212992 ----a-w- C:\Windows\System32\odbctrac.dll
2013-10-18 19:16:35 163840 ----a-w- C:\Windows\SysWow64\odbctrac.dll
2013-10-18 19:16:35 163840 ----a-w- C:\Windows\System32\odbccp32.dll
2013-10-18 19:16:35 126976 ----a-w- C:\Program Files\Common Files\System\Ole DB\msdaosp.dll
2013-10-18 19:16:35 122880 ----a-w- C:\Windows\SysWow64\odbccp32.dll
2013-10-18 19:16:35 106496 ----a-w- C:\Windows\System32\odbccu32.dll
2013-10-18 19:16:35 106496 ----a-w- C:\Windows\System32\odbccr32.dll
2013-10-18 19:14:07 633856 ----a-w- C:\Windows\System32\comctl32.dll
2013-10-18 19:14:07 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2013-10-18 19:13:05 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2013-10-18 19:13:05 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2013-10-18 19:11:07 142336 ----a-w- C:\Windows\System32\poqexec.exe
2013-10-18 19:11:07 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2013-10-18 19:10:28 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2013-10-18 19:10:27 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-10-18 19:10:27 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2013-10-18 19:10:27 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2013-10-18 19:07:27 2871808 ----a-w- C:\Windows\explorer.exe
2013-10-18 19:07:26 2616320 ----a-w- C:\Windows\SysWow64\explorer.exe
2013-10-18 19:06:54 961024 ----a-w- C:\Windows\System32\CPFilters.dll
2013-10-18 19:06:53 850944 ----a-w- C:\Windows\SysWow64\sbe.dll
2013-10-18 19:06:53 642048 ----a-w- C:\Windows\SysWow64\CPFilters.dll
2013-10-18 19:06:53 259072 ----a-w- C:\Windows\System32\mpg2splt.ax
2013-10-18 19:06:53 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
2013-10-18 19:06:53 1118720 ----a-w- C:\Windows\System32\sbe.dll
2013-10-18 19:03:54 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2013-10-18 19:03:54 1572864 ----a-w- C:\Windows\System32\quartz.dll
2013-10-18 19:03:54 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2013-10-18 19:03:53 366592 ----a-w- C:\Windows\System32\qdvd.dll
2013-10-18 19:00:49 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-10-18 19:00:48 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-10-18 19:00:48 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-10-18 19:00:48 111448 ----a-w- C:\Windows\System32\consent.exe
2013-10-18 18:58:48 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2013-10-18 18:58:48 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2013-10-18 18:58:48 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2013-10-18 18:58:18 395776 ----a-w- C:\Windows\System32\webio.dll
2013-10-18 18:58:18 314880 ----a-w- C:\Windows\SysWow64\webio.dll
2013-10-18 18:55:50 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2013-10-18 18:53:21 515584 ----a-w- C:\Windows\System32\timedate.cpl
2013-10-18 18:53:21 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2013-10-18 18:48:58 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-10-18 18:48:58 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-10-18 18:45:46 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2013-10-18 18:41:22 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2013-10-18 18:41:22 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2013-10-18 18:41:21 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2013-10-18 18:41:21 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2013-10-18 18:38:53 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2013-10-18 18:38:53 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2013-10-18 18:35:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-10-18 18:35:54 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-10-18 18:33:55 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-10-18 18:33:24 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2013-10-18 18:33:24 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2013-10-18 18:33:24 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2013-10-18 18:31:28 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-10-18 18:31:28 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2013-10-18 18:31:28 458704 ----a-w- C:\Windows\System32\drivers\cng.sys
2013-10-18 18:31:28 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-10-18 18:31:28 31232 ----a-w- C:\Windows\System32\lsass.exe
2013-10-18 18:31:28 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2013-10-18 18:31:28 28160 ----a-w- C:\Windows\System32\secur32.dll
2013-10-18 18:31:28 225280 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-10-18 18:31:28 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-10-18 18:31:28 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-10-18 18:31:28 1447936 ----a-w- C:\Windows\System32\lsasrv.dll
2013-10-18 18:31:28 136192 ----a-w- C:\Windows\System32\sspicli.dll
2013-10-18 18:30:57 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-10-18 18:29:00 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-10-18 18:29:00 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-10-18 18:27:02 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2013-10-18 18:27:02 109824 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys
2013-10-18 18:27:02 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2013-10-18 18:26:32 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2013-10-18 18:26:32 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2013-10-18 18:26:32 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2013-10-18 18:26:32 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2013-10-18 18:26:32 1389568 ----a-w- C:\Windows\SysWow64\msxml6.dll
2013-10-18 18:26:32 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2013-10-18 18:22:06 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2013-10-18 18:21:35 209920 ----a-w- C:\Windows\System32\profsvc.dll
2013-10-18 18:19:39 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2013-10-18 18:19:39 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2013-10-18 18:19:39 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2013-10-18 18:17:01 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2013-10-18 18:17:01 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2013-10-18 18:17:01 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2013-10-18 18:17:01 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2013-10-18 18:17:01 102400 ----a-w- C:\Windows\System32\davclnt.dll
2013-10-18 18:16:30 478208 ----a-w- C:\Windows\System32\dpnet.dll
2013-10-18 18:16:30 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2013-10-18 18:14:33 624128 ----a-w- C:\Windows\System32\qedit.dll
2013-10-18 18:14:33 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-10-18 18:14:03 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2013-10-18 18:14:03 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2013-10-18 18:12:03 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2013-10-18 18:09:27 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2013-10-18 18:09:27 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2013-10-18 18:09:27 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2013-10-18 18:07:29 800768 ----a-w- C:\Windows\System32\usp10.dll
2013-10-18 18:07:29 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2013-10-18 18:06:59 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-10-18 18:05:02 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-10-18 18:05:02 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-10-18 18:05:02 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-10-18 18:05:01 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-10-18 18:01:04 3155968 ----a-w- C:\Windows\System32\win32k.sys
2013-10-18 18:00:33 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2013-10-18 18:00:33 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2013-10-18 18:00:33 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2013-10-18 18:00:33 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2013-10-18 17:58:27 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2013-10-18 17:50:46 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\Malwarebytes
2013-10-18 17:50:26 715776 ----a-w- C:\Windows\System32\kerberos.dll
2013-10-18 17:50:25 542208 ----a-w- C:\Windows\SysWow64\kerberos.dll
2013-10-18 17:49:46 3216384 ----a-w- C:\Windows\System32\msi.dll
2013-10-18 17:49:46 2342400 ----a-w- C:\Windows\SysWow64\msi.dll
2013-10-18 17:49:28 362496 ----a-w- C:\Windows\System32\wow64win.dll
2013-10-18 17:49:27 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2013-10-18 17:49:27 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2013-10-18 17:44:39 95744 ----a-w- C:\Windows\System32\synceng.dll
2013-10-18 17:44:39 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2013-10-18 17:44:09 605552 ----a-w- C:\Windows\System32\winload.exe
2013-10-18 17:44:09 566208 ----a-w- C:\Windows\System32\winresume.efi
2013-10-18 17:44:08 642944 ----a-w- C:\Windows\System32\winload.efi
2013-10-18 17:44:08 518672 ----a-w- C:\Windows\System32\winresume.exe
2013-10-18 17:44:08 20352 ----a-w- C:\Windows\System32\kdusb.dll
2013-10-18 17:44:08 19328 ----a-w- C:\Windows\System32\kd1394.dll
2013-10-18 17:44:08 17792 ----a-w- C:\Windows\System32\kdcom.dll
2013-10-18 17:43:45 -------- d-----w- C:\ProgramData\Malwarebytes
2013-10-18 17:43:44 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-10-18 17:43:44 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-18 17:39:42 751104 ----a-w- C:\Windows\System32\win32spl.dll
2013-10-18 17:39:42 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2013-10-18 17:35:45 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2013-10-18 17:35:45 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2013-10-18 17:33:47 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2013-10-18 17:33:47 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2013-10-18 17:33:47 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2013-10-18 17:33:47 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2013-10-18 17:33:47 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2013-10-18 17:33:17 936448 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-10-18 17:33:17 1732608 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2013-10-18 17:33:17 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2013-10-18 17:33:17 1393152 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2013-10-18 17:33:17 1367040 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-10-18 17:32:45 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-10-18 17:32:45 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-10-18 17:30:47 376688 ----a-w- C:\Windows\System32\drivers\netio.sys
2013-10-18 17:30:47 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-10-18 17:28:49 59392 ----a-w- C:\Windows\System32\browcli.dll
2013-10-18 17:28:49 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2013-10-18 17:28:49 136704 ----a-w- C:\Windows\System32\browser.dll
2013-10-18 17:26:50 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2013-10-18 17:26:50 31232 ----a-w- C:\Windows\System32\prevhost.exe
2013-10-18 17:26:20 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-10-18 17:26:20 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-10-18 17:24:21 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2013-10-18 17:23:51 503808 ----a-w- C:\Windows\System32\srcore.dll
2013-10-18 17:23:51 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2013-10-18 17:21:54 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2013-10-18 17:19:57 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2013-10-18 17:19:57 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2013-10-18 17:19:26 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2013-10-18 17:19:26 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2013-10-18 17:18:18 903168 ----a-w- C:\Windows\SysWow64\certutil.exe
2013-10-18 17:18:18 52224 ----a-w- C:\Windows\System32\certenc.dll
2013-10-18 17:18:18 43008 ----a-w- C:\Windows\SysWow64\certenc.dll
2013-10-18 17:18:18 1192448 ----a-w- C:\Windows\System32\certutil.exe
2013-10-18 17:16:12 956928 ----a-w- C:\Windows\System32\localspl.dll
2013-10-18 17:15:42 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2013-10-18 17:13:45 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2013-10-18 17:13:45 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2013-10-18 17:13:45 331776 ----a-w- C:\Windows\System32\oleacc.dll
2013-10-18 17:13:45 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2013-10-18 17:13:14 723456 ----a-w- C:\Windows\System32\EncDec.dll
2013-10-18 17:13:14 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2013-10-18 17:11:15 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-10-18 17:11:15 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-10-18 17:11:15 144384 ----a-w- C:\Windows\System32\cdd.dll
2013-10-18 17:06:14 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2013-10-18 17:06:14 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-10-18 17:01:45 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2013-10-18 16:59:44 67072 ----a-w- C:\Windows\splwow64.exe
2013-10-18 16:59:44 559104 ----a-w- C:\Windows\System32\spoolsv.exe
2013-10-18 16:59:13 77312 ----a-w- C:\Windows\System32\packager.dll
2013-10-18 16:59:13 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2013-10-18 16:57:36 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-10-18 16:57:32 10280728 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6664B25E-0E03-4ADD-BB9A-85D085744F82}\mpengine.dll
2013-10-17 21:42:04 -------- d-----w- C:\Users\Jack Standard\AppData\Local\Google
2013-10-17 21:41:44 -------- d-----w- C:\Users\Jack Standard\AppData\Roaming\QFX Software
2013-10-17 21:30:16 -------- d-----w- C:\ProgramData\QFX Software
2013-10-17 16:09:54 222200 ----a-w- C:\Windows\System32\drivers\keyscrambler.sys
2013-10-17 16:09:51 -------- d-----w- C:\Program Files (x86)\KeyScrambler
2013-10-17 16:03:54 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2013-10-17 15:57:47 883928 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2013-10-17 15:57:47 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-10-17 15:57:47 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2013-10-17 15:57:43 -------- d-----w- C:\Program Files (x86)\Realtek
2013-10-17 15:47:55 16344 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll
2013-10-17 15:47:13 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2013-10-17 15:46:56 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2013-10-17 15:46:56 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2013-10-17 15:46:56 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-10-17 15:46:31 -------- d-----w- C:\Intel
2013-10-17 15:46:30 99800 ----a-w- C:\Windows\System32\drivers\TeeDriverx64.sys
2013-10-17 15:46:30 1795952 ----a-w- C:\Windows\System32\WdfCoInstaller01011.dll
2013-10-17 15:13:58 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-17 15:13:58 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-10-17 15:00:09 -------- d-----w- C:\Program Files\Easeware
2013-10-17 13:25:47 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2013-10-17 13:25:46 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2013-10-17 13:25:46 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2013-10-17 13:16:25 -------- d--h--w- C:\Windows\msdownld.tmp
2013-10-17 13:06:50 68608 ----a-w- C:\Windows\System32\taskhost.exe
2013-10-17 11:59:23 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-10-17 11:59:23 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-10-17 11:56:56 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2013-10-17 11:56:38 99840 ----a-w- C:\Windows\System32\wudriver.dll
2013-10-17 11:56:21 36864 ----a-w- C:\Windows\System32\wuapp.exe
2013-10-17 11:56:21 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2013-10-17 11:51:23 -------- d-----w- C:\Program Files (x86)\Cisco
2013-10-17 11:50:24 -------- d-sh--w- C:\Windows\Installer
2013-10-17 11:50:03 1014784 ----a-w- C:\Windows\System32\BCMLogon.dll
2013-10-17 11:43:06 -------- d-sh--w- C:\Recovery
2013-10-17 03:34:48 -------- d-----w- C:\Windows\Panther
2013-10-17 03:34:17 -------- d-----w- C:\Windows\System32\OEM
2013-10-14 10:04:42 18456 ----a-w- C:\Windows\System32\drivers\psi_mf_amd64.sys
2013-10-09 09:58:02 4879744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-10-09 09:58:02 4879744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-10-04 08:15:02 14888 ----a-w- C:\Windows\System32\drivers\hmd.sys
.
==================== Find3M ====================
.
2013-10-17 13:02:02 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-04 08:15:02 14888 ----a-w- C:\Windows\inf\HMD\hmd.sys
2013-09-24 10:54:12 709144 ----a-w- C:\Windows\System32\drivers\cmdguard.sys
2013-09-24 10:54:12 48872 ----a-w- C:\Windows\System32\drivers\cmdhlp.sys
2013-09-24 10:54:12 23168 ----a-w- C:\Windows\System32\drivers\cmderd.sys
2013-09-24 10:53:54 43216 ----a-w- C:\Windows\System32\cmdcsr.dll
2013-09-24 10:53:52 444392 ----a-w- C:\Windows\System32\guard64.dll
2013-09-24 10:53:52 354240 ----a-w- C:\Windows\SysWow64\guard32.dll
2013-09-24 10:53:42 347864 ----a-w- C:\Windows\System32\cmdvrt64.dll
2013-09-24 10:53:40 45784 ----a-w- C:\Windows\System32\cmdkbd64.dll
2013-09-24 10:53:36 40664 ----a-w- C:\Windows\SysWow64\cmdkbd32.dll
2013-09-24 10:53:36 280792 ----a-w- C:\Windows\SysWow64\cmdvrt32.dll
2013-09-05 09:35:06 68304 ----a-w- C:\Windows\System32\offreg.dll
2013-09-03 13:35:10 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-08-22 12:40:24 40664 ----a-w- C:\Windows\System32\drivers\tap0901.sys
2013-08-19 14:07:36 239296 ----a-w- C:\Windows\System32\drivers\edevmon.sys
2013-08-15 16:01:56 62136 ----a-w- C:\Windows\System32\drivers\epfwwfp.sys
2013-08-15 16:01:52 44120 ----a-w- C:\Windows\System32\drivers\EpfwLWF.sys
2013-08-15 16:01:50 220232 ----a-w- C:\Windows\System32\drivers\epfw.sys
2013-08-15 16:01:06 168256 ----a-w- C:\Windows\System32\drivers\ehdrv.sys
2013-08-15 16:00:30 239320 ----a-w- C:\Windows\System32\drivers\eamonm.sys
2013-08-09 15:26:10 279024 ----a-w- C:\Windows\SysWow64\IntelCpHeciSvc.exe
2013-08-09 15:26:08 515568 ----a-w- C:\Windows\System32\igfxsrvc.exe
2013-08-09 15:26:08 442352 ----a-w- C:\Windows\System32\igfxpers.exe
2013-08-09 15:26:08 172016 ----a-w- C:\Windows\System32\igfxtray.exe
2013-08-09 15:26:06 5905904 ----a-w- C:\Windows\System32\GfxUI.exe
2013-08-09 15:26:06 399856 ----a-w- C:\Windows\System32\hkcmd.exe
2013-08-09 15:26:06 254960 ----a-w- C:\Windows\System32\igfxext.exe
2013-08-09 15:26:04 185840 ----a-w- C:\Windows\System32\difx64.exe
2013-08-07 13:23:46 644968 ----a-w- C:\Windows\System32\drivers\iaStorA.sys
2013-08-07 13:23:46 28008 ----a-w- C:\Windows\System32\drivers\iaStorF.sys
2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
.
============= FINISH: 22:44:46.86 ===============

Attached Logs:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 17/10/2013 12:43:15
System Uptime: 27/10/2013 16:16:13 (6 hours ago)
.
Motherboard: SAMSUNG ELECTRONICS CO., LTD. | | RV420/RV520/RV720/E3530/S3530/E3420/E3520
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz | CPU | 882/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 693 GiB total, 653.433 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP20: 26/10/2013 23:51:30 - Created by Wise Care 365
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.05)
Amazon Kindle
Ask Toolbar
Broadcom Wireless Utility
CameraHelperMsi
Camtasia Studio 8
CCleaner
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Comodo Dragon
COMODO Firewall
DriverEasy 4.6.0
Easy SpeedUp Manager
EasyBatteryManager
erLT
ESET Online Scanner v3
ESET Smart Security
ETDWare X64 11.7.13.2_WHQL
GeekBuddy
Google Chrome
Google Earth
Google Update Helper
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
Intel(R) SDK for OpenCL - CPU Only Runtime Package
Intel® Trusted Connect Service Client
KeyScrambler
Logitech Unifying Software 2.10
Logitech Webcam Software
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft Baseline Security Analyzer 2.2
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 24.0 (x86 en-US)
Mozilla Maintenance Service
Pidgin
Pidgin-Encryption Plugin (remove only)
pidgin-otr 4.0.0-1
PrivDog
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Recuva
Samsung Support Center 1.0
Samsung Update Plus
Secunia PSI (3.0.0.8013)
Security Task Manager 1.8g
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Skype Click to Call
Skype™ 6.9
SpywareBlaster 5.0
SUPERAntiSpyware
System Explorer 4.2.2
Ubuntu
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
WebCam SC-0311139N
WebcamMax
WinPatrol
WinPcap 4.1.3
Wireshark 1.10.2 (64-bit)
Wise Care 365 version 2.85
Workrave 1.10
.
==== Event Viewer Messages From Past Week ========
.
27/10/2013 16:06:40, Error: bowser [8003] - The master browser has received a server announcement from the computer STEVE-LAPTOP that believes that it is the master browser for the domain on transport NetBT_Tcpip_{256A8C3E-93DE-4F76-B75C-6EFD504AB140}. The master browser is stopping or an election is being forced.
27/10/2013 15:59:54, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied.
27/10/2013 13:04:16, Error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the interface with IP address 192.168.0.4. The computer with the IP address 192.168.0.2 did not allow the name to be claimed by this computer.
26/10/2013 23:44:49, Error: Service Control Manager [7030] - The Wise Boot Assistant service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
26/10/2013 23:25:57, Error: Service Control Manager [7034] - The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).
26/10/2013 23:25:56, Error: Service Control Manager [7034] - The Ask Update Service service terminated unexpectedly. It has done this 1 time(s).
26/10/2013 23:25:15, Error: Service Control Manager [7034] - The COMODO Dragon Update Service service terminated unexpectedly. It has done this 1 time(s).
26/10/2013 20:13:57, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
26/10/2013 19:28:26, Error: mbamchameleon [61440] -
26/10/2013 06:16:11, Error: Service Control Manager [7031] - The ESET Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
25/10/2013 15:54:08, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR2.
25/10/2013 10:05:46, Error: BTHUSB [17] - The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.
23/10/2013 19:02:57, Error: Service Control Manager [7034] - The Intel(R) Rapid Storage Technology service terminated unexpectedly. It has done this 1 time(s).
23/10/2013 18:45:00, Error: Service Control Manager [7043] - The Group Policy Client service did not shut down properly after receiving a preshutdown control.
23/10/2013 18:44:27, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control.
23/10/2013 18:01:32, Error: Schannel [36888] - The following fatal alert was generated: 10. The internal error state is 10.
20/10/2013 15:09:03, Error: Service Control Manager [7030] - The ESET Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
20/10/2013 03:26:07, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070490: Security Update for Windows 7 for x64-based Systems (KB2862966).
.
==== End Of File ===========================
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am
Advertisement
Register to Remove

Re: Skype May have been hacked, possibly infected, Please he

Unread postby nunped » October 29th, 2013, 7:08 am

Hello auto100, and welcome to the forum.

My name is nunped and I'll be helping you with any malware problems.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Here are some guidelines for the cleaning process to run as easy as possible.

  1. Please read this topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.
  2. The instructions being given are for YOUR computer and system only! Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  3. You must have Administrator rights permissions for this computer.
  4. DO NOT run any other fix or removal tools unless instructed to do so!
  5. DO NOT install any other software (or hardware) during the cleaning process. This adds more items to be researched.
  6. Only post your problem at one help site. Applying fixes from multiple help sites can cause problems.
  7. Only reply to this thread. Do not start another thread.
  8. The absence of symptoms does not imply the absence of malware. Please continue responding until I give you the "All Clean".
  9. No Reply Within 3 Days will result in your topic being closed!


Read through these instructions with your full attention.
Please ask first if you have any doubts.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions.
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 9:04 am

Hi, I have now read the above and ready when you are. Thanks.
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby nunped » October 29th, 2013, 9:06 am

Hi auto100,

Step 1 - AdwCleaner Download and Run

Click on this link to download : ADWCleaner
Click on the Download Now button and save it to your desktop.

NOTE: If using Internet Explorer and you get an alert that stops the program downloading click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.

Close your browser and double click on this icon on your desktop:

Image

You will then see the screen below. Click on the Scan button (as indicated), accept any prompts that appear and allow it to run.
It may take several minutes to complete. When it is done click on the Clean button, accept any prompts that appear and allow the system to reboot.
You will then be presented with the report. Copy & Paste it into your next post.

Image

Step 2 - OTL
Please download OTL by Old Timer. Save it to your Desktop.
If you can't download the exe file, try these links:
http://oldtimer.geekstogo.com/OTL.com
http://oldtimer.geekstogo.com/OTL.scr
  • Right-click OTL.exe (or OTL.com or OTL.scr) and select "Run as Administrator" to launch the program.
  • Click the Scan All Users checkbox.
    Leave the remaining selections to the default settings.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened, maximized
    • Extras.txt <-- Will be minimized on task bar.
  • Please post the contents of both OTL.txt and Extras.txt files in your next reply.

Step 3 - TDSSKiller - Rootkit Removal Tool
Please download the TDSSKiller.exe by Kaspersky... save it to your Desktop. <-Important!!!
  • Right-click on TDSSKiller.exe and select "run as administrator" to run the tool for known TDSS variants.
    If TDSSKiller does not run... rename it. Right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. ektfhtw.com). If you don't see file extensions, please see: How to change the file extension.
  • Click the Start Scan button. Do not use the computer during the scan!
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the "Scan results - Select action for found objects" and offer 3 options.
    • Ensure SKIP is selected... DO NOT attempt to FIX anything yet!
    • Now click on Report to open the log file created by TDSSKiller in your root directory C:\
  • A log file named TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt will be created and saved to the root directory. (usually Local Disk C: ).
  • Copy and paste the contents of that file in your next reply.

For your next reply:
  1. Log from adwcleaner
  2. Log from OTL
  3. Log from TDSSKiller
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 11:37 am

Hi, I had to do the adware and otl scan twice as when I tried doing it on my standard account but with admin privileges it didn't display anything. So I logged onto the Admin account to perform the scans. What I did notice however was that on the admin account were adware log files from earlier which I think was from the standard account. In any case I will provide you with all of tge logs. Furthermore the otl didn't display any extras log file, even on the admin account. The log files are as follows:

Adware Log [R0]:
# AdwCleaner v3.010 - Report created 29/10/2013 at 14:26:49
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jack - JACK-PC
# Running from : C:\Users\Jack Standard\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : APNMCP

***** [ Files / Folders ] *****

File Found : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\searchplugins\bingp.xml
Folder Found C:\Program Files (x86)\AskPartnerNetwork
Folder Found C:\ProgramData\apn
Folder Found C:\ProgramData\AskPartnerNetwork
Folder Found C:\Users\Jack Standard\AppData\Local\Temp\apn
Folder Found C:\Users\Jack\AppData\Local\Temp\apn

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AskPartnerNetwork
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKCU\Software\AskPartnerNetwork
Key Found : HKLM\Software\AskPartnerNetwork
Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Jack Standard\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : homepage

*************************

AdwCleaner[R0].txt - [2308 octets] - [29/10/2013 14:26:49]

########## EOF - \AdwCleaner\AdwCleaner[R0].txt - [2368 octets] ##########

Adw log [R1]:

# AdwCleaner v3.010 - Report created 29/10/2013 at 14:49:02
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jack - JACK-PC
# Running from : C:\Users\Jack\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Program Files (x86)\AskPartnerNetwork
Folder Found C:\ProgramData\apn
Folder Found C:\ProgramData\AskPartnerNetwork
Folder Found C:\Users\Jack Standard\AppData\Local\Temp\apn
Folder Found C:\Users\Jack\AppData\Local\Temp\apn

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Jack Standard\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2462 octets] - [29/10/2013 14:26:49]
AdwCleaner[R1].txt - [1849 octets] - [29/10/2013 14:49:02]
AdwCleaner[S0].txt - [2540 octets] - [29/10/2013 14:27:47]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1969 octets] ##########

ADW [S0] Log file:
# AdwCleaner v3.010 - Report created 29/10/2013 at 14:27:47
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jack - JACK-PC
# Running from : C:\Users\Jack Standard\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : APNMCP

***** [ Files / Folders ] *****

[!] Folder Deleted : C:\ProgramData\apn
[!] Folder Deleted : C:\ProgramData\AskPartnerNetwork
[!] Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
[!] Folder Deleted : C:\Users\Jack\AppData\Local\Temp\apn
[!] Folder Deleted : C:\Users\Jack Standard\AppData\Local\Temp\apn
File Deleted : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\searchplugins\bingp.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKLM\Software\AskPartnerNetwork

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Jack Standard\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage

*************************

AdwCleaner[R0].txt - [2462 octets] - [29/10/2013 14:26:49]
AdwCleaner[S0].txt - [2390 octets] - [29/10/2013 14:27:47]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [2450 octets] ##########

ADW [S1] Log:

# AdwCleaner v3.010 - Report created 29/10/2013 at 14:49:55
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jack - JACK-PC
# Running from : C:\Users\Jack\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
[#] Folder Deleted : C:\ProgramData\AskPartnerNetwork
[#] Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Users\Jack\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Jack Standard\AppData\Local\Temp\apn

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Jack Standard\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2462 octets] - [29/10/2013 14:26:49]
AdwCleaner[R1].txt - [2061 octets] - [29/10/2013 14:49:02]
AdwCleaner[S0].txt - [2540 octets] - [29/10/2013 14:27:47]
AdwCleaner[S1].txt - [2012 octets] - [29/10/2013 14:49:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2072 octets] ##########

ADW [S2] Log:
# AdwCleaner v3.010 - Report created 29/10/2013 at 14:49:55
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jack - JACK-PC
# Running from : C:\Users\Jack\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
[#] Folder Deleted : C:\ProgramData\AskPartnerNetwork
[#] Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Users\Jack\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Jack Standard\AppData\Local\Temp\apn

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Jack Standard\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2462 octets] - [29/10/2013 14:26:49]
AdwCleaner[R1].txt - [2061 octets] - [29/10/2013 14:49:02]
AdwCleaner[S0].txt - [2540 octets] - [29/10/2013 14:27:47]
AdwCleaner[S1].txt - [2012 octets] - [29/10/2013 14:49:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2072 octets] ##########
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 11:39 am

OTL Log:
OTL logfile created on: 29/10/2013 14:55:28 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jack\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

5.92 Gb Total Physical Memory | 3.90 Gb Available Physical Memory | 65.89% Memory free
11.83 Gb Paging File | 9.66 Gb Available in Paging File | 81.65% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 692.62 Gb Total Space | 650.66 Gb Free Space | 93.94% Space Free | Partition Type: NTFS

Computer Name: JACK-PC | User Name: Jack | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/10/29 14:54:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jack\Desktop\OTL.exe
PRC - [2013/10/19 03:25:57 | 000,456,768 | ---- | M] (BillP Studios) -- C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2013/10/17 22:01:12 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
PRC - [2013/10/14 10:04:52 | 001,228,504 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psia.exe
PRC - [2013/10/14 10:04:48 | 000,565,464 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
PRC - [2013/10/11 11:21:54 | 000,070,352 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
PRC - [2013/10/09 17:33:16 | 002,104,968 | ---- | M] () -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
PRC - [2013/10/09 09:58:16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/10/09 00:02:45 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/09/12 11:06:22 | 001,337,752 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2013/09/05 14:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/08/07 13:24:00 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/08/07 13:24:00 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/05/31 12:30:40 | 000,368,600 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/05/31 12:30:06 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2013/05/16 08:00:46 | 002,851,784 | ---- | M] (Mister Group) -- C:\Program Files (x86)\System Explorer\SystemExplorer.exe
PRC - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 13:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/01/13 10:31:16 | 004,480,000 | ---- | M] (The Workrave development team) -- C:\Program Files (x86)\Workrave\lib\Workrave.exe
PRC - [2012/04/24 13:37:56 | 000,169,752 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
PRC - [2011/10/12 18:46:30 | 001,624,593 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\dbus-daemon.exe
PRC - [2011/09/04 11:45:26 | 003,398,736 | ---- | M] (SAMSUNG Electronics) -- C:\Program Files (x86)\SAMSUNG\Samsung Support Center\SSCKbdHk.exe
PRC - [2010/02/10 22:29:52 | 000,719,360 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe


========== Modules (No Company Name) ==========

MOD - [2013/10/22 14:26:55 | 000,369,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\5f439806d279ae08101d7874c798e5ec\System.ServiceModel.Routing.ni.dll
MOD - [2013/10/22 14:26:54 | 001,142,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\3f1f30383f9e487eec8b74fc1d3e5576\System.ServiceModel.Discovery.ni.dll
MOD - [2013/10/22 14:26:52 | 000,082,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\75c45cfe9fcc38ebd79676c4e872a203\System.ServiceModel.Channels.ni.dll
MOD - [2013/10/22 14:26:48 | 001,394,176 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\654bc6e2eccddad140b66c28c312dc95\System.ServiceModel.Activities.ni.dll
MOD - [2013/10/22 14:26:45 | 018,109,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\da2aba8446e56504cc2f6ee5dc357384\System.ServiceModel.ni.dll
MOD - [2013/10/21 14:42:49 | 001,079,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\c62769bad8f57b1071071d80fdc5f0cf\System.IdentityModel.ni.dll
MOD - [2013/10/21 14:41:19 | 001,021,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\1e2d8f94ba04e5262f8814ce22af6bdb\System.Runtime.DurableInstancing.ni.dll
MOD - [2013/10/21 14:41:18 | 002,659,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\fc36679c453643647e96c591827c88ee\System.Runtime.Serialization.ni.dll
MOD - [2013/10/21 14:41:18 | 000,143,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\12d171dd78ad02e8561a46bf266c5394\SMDiagnostics.ni.dll
MOD - [2013/10/21 14:41:14 | 001,801,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\44d87641535e186f4a7fc9c469bc73dd\System.Xaml.ni.dll
MOD - [2013/10/20 16:57:39 | 013,199,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\485a21406ce7d08fe6cf0b40b706f460\System.Windows.Forms.ni.dll
MOD - [2013/10/20 16:57:27 | 007,070,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\7ece4823b0e12cae58be346bbc3cdeac\System.Core.ni.dll
MOD - [2013/10/20 16:57:24 | 001,667,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\7e3570a0cc71998e14e7adb8e4ea0cbb\System.Drawing.ni.dll
MOD - [2013/10/20 16:57:22 | 005,628,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\0835155203a99b6a9bb540629920da0d\System.Xml.ni.dll
MOD - [2013/10/20 16:57:19 | 001,014,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\b21ef81fc4131bd1edd6d0bae9d58932\System.Configuration.ni.dll
MOD - [2013/10/20 16:57:16 | 009,099,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\fc16a5cafc433e6d942e9bd5b14fbeaf\System.ni.dll
MOD - [2013/10/20 16:57:08 | 014,418,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c799474a067f07ef3a167d75029fa012\mscorlib.ni.dll
MOD - [2013/10/09 00:02:43 | 000,415,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppgooglenaclpluginchrome.dll
MOD - [2013/10/09 00:02:41 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll
MOD - [2013/10/09 00:01:50 | 000,698,832 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\libglesv2.dll
MOD - [2013/10/09 00:01:49 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\libegl.dll
MOD - [2013/10/09 00:01:47 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
MOD - [2013/07/15 17:29:04 | 000,620,718 | ---- | M] () -- C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll
MOD - [2011/10/12 18:46:30 | 001,624,593 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\dbus-daemon.exe
MOD - [2011/10/12 18:46:06 | 001,240,138 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\libdbus-1.dll
MOD - [2011/02/19 11:26:56 | 000,099,128 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\gtk-2.0\2.10.0\engines\libwimp.dll
MOD - [2010/12/27 16:46:52 | 001,182,444 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\libcairo-2.dll
MOD - [2010/12/27 13:12:52 | 000,538,324 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\freetype6.dll
MOD - [2010/09/29 21:10:54 | 000,103,139 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\libpangocairo-1.0-0.dll
MOD - [2010/08/20 09:18:12 | 000,100,352 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\zlib1.dll
MOD - [2010/08/17 14:38:28 | 000,230,529 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\libpng14-14.dll
MOD - [2010/04/23 17:38:28 | 000,066,560 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\harpoon.dll
MOD - [2009/11/19 18:20:46 | 000,278,495 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\libfontconfig-1.dll
MOD - [2009/01/31 21:42:36 | 000,143,096 | ---- | M] () -- C:\Program Files (x86)\Workrave\lib\libexpat-1.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/10/20 01:23:22 | 006,254,152 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2013/10/10 22:54:28 | 000,144,152 | ---- | M] (SUPERAntiSpyware.com) [On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2013/10/02 17:02:16 | 002,253,016 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Windows\SysNative\BtwRSupportService.exe -- (BcmBtRSupport)
SRV:64bit: - [2013/09/24 10:53:32 | 000,164,056 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:64bit: - [2013/09/12 11:06:22 | 001,337,752 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2013/08/07 13:24:00 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:64bit: - [2013/05/27 05:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013/05/11 16:45:54 | 000,822,232 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:64bit: - [2013/05/11 16:45:38 | 000,733,696 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2010/07/07 09:43:14 | 000,048,128 | ---- | M] (Broadcom Corporation) [Auto | Running] -- C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2013/10/20 22:00:06 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/10/14 10:04:52 | 001,228,504 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\psia.exe -- (Secunia PSI Agent)
SRV - [2013/10/14 10:04:50 | 000,660,184 | ---- | M] (Secunia) [Auto | Stopped] -- C:\Program Files (x86)\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2013/10/11 11:21:54 | 000,070,352 | ---- | M] (Comodo Security Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe -- (CLPSLauncher)
SRV - [2013/10/11 09:35:22 | 002,327,248 | ---- | M] (Comodo Security Solutions, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe -- (GeekBuddyRSP)
SRV - [2013/10/09 17:33:16 | 002,104,968 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2013/10/09 09:58:16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/09/11 02:26:44 | 000,118,680 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/09/05 14:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/09/05 09:34:30 | 000,171,680 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/08/09 15:26:10 | 000,279,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/05/31 12:30:40 | 000,368,600 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/05/31 12:30:06 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2013/04/25 17:12:00 | 000,580,232 | ---- | M] (WiseCleaner.com) [Auto | Stopped] -- C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe -- (WiseBootAssistant)
SRV - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/11/25 05:13:12 | 000,821,720 | ---- | M] (Mister Group) [On_Demand | Running] -- C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe -- (SystemExplorerHelpService)
SRV - [2012/04/24 13:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/10/14 10:04:42 | 000,018,456 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\psi_mf_amd64.sys -- (PSI)
DRV:64bit: - [2013/10/04 08:15:02 | 000,014,888 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\hmd.sys -- (HMD)
DRV:64bit: - [2013/10/02 17:02:16 | 000,166,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (btwampfl)
DRV:64bit: - [2013/10/02 17:02:14 | 000,170,712 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcbtums.sys -- (bcbtums)
DRV:64bit: - [2013/09/24 10:54:12 | 000,023,168 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd)
DRV:64bit: - [2013/08/27 13:08:42 | 000,883,928 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2013/08/22 12:40:24 | 000,040,664 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2013/08/15 16:01:56 | 000,062,136 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2013/08/15 16:01:52 | 000,044,120 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2013/08/15 16:01:50 | 000,220,232 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2013/08/15 16:01:06 | 000,168,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2013/08/15 16:00:30 | 000,239,320 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013/08/07 13:23:46 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/08/07 13:23:46 | 000,028,008 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF)
DRV:64bit: - [2013/07/01 12:51:36 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2013/06/27 07:07:42 | 005,361,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/05/31 16:49:38 | 000,375,088 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2013/05/31 14:53:12 | 000,222,200 | ---- | M] (QFX Software Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\keyscrambler.sys -- (KeyScrambler)
DRV:64bit: - [2013/05/31 12:30:06 | 000,099,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013/05/07 07:00:18 | 000,037,976 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | System | Running] -- C:\Windows\SysNative\drivers\CFRMD.sys -- (CFRMD)
DRV:64bit: - [2013/04/04 13:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/09/21 19:04:22 | 004,763,680 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/09/21 19:04:22 | 000,351,520 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2012/04/15 21:32:14 | 001,071,032 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\wcmvcam64.sys -- (WCMVCAM)
DRV:64bit: - [2012/03/01 06:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/07/22 16:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 21:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/03/11 06:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 06:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/21 03:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 03:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 03:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/09/15 15:14:48 | 000,206,336 | ---- | M] (SMI) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SMIksdrv.sys -- (usbsmi)
DRV:64bit: - [2010/07/28 15:23:08 | 003,065,408 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2010/07/07 09:43:14 | 000,022,592 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/28 14:38:04 | 000,013,824 | ---- | M] (SAMSUNG ELECTRONICS) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SABI.sys -- (SABI)
DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 11:42 am

OTL Log Continued:

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1089015780-974823976-2004761081-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://uk.msn.com/?ocid=UP74DHP&pc=UP74&dt=101713
IE - HKU\S-1-5-21-1089015780-974823976-2004761081-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1089015780-974823976-2004761081-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-1089015780-974823976-2004761081-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - prefs.js..browser.search.defaultenginename: "Bing "
FF - prefs.js..browser.search.selectedEngine: "Bing "
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q="
FF - prefs.js..browser.startup.homepage: "http://uk.msn.com/?pc=UP97&ocid=UP97DHP"
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2013/10/20 14:08:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013/10/20 14:08:54 | 000,000,000 | ---D | M]

[2013/10/20 21:53:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jack\AppData\Roaming\Mozilla\Extensions
[2013/10/26 19:06:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\extensions
[2013/10/26 19:06:05 | 000,535,330 | ---- | M] () (No name found) -- C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\jxyccmt5.default\extensions\PrivDog@AdTrustMedia.com.xpi
[2013/10/24 01:48:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/10/24 01:48:04 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/24 01:48:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/10/24 01:48:03 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/20 21:52:36 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Bing (Enabled)
CHR - default_search_provider: search_url = http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}
CHR - default_search_provider: suggest_url = http://api.bing.com/osjson.aspx?query={searchTerms}&language={language}&form=UP97DF&PC=UP97,
CHR - homepage: http://uk.msn.com/?pc=UP97&ocid=UP97DHP
CHR - Extension: Google Docs = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: PrivDog = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\1.6.0.30_0\
CHR - Extension: Google Search = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Skype Click to Call = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 21:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SystemExplorerAutoStart] C:\Program Files (x86)\System Explorer\SystemExplorer.exe (Mister Group)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1089015780-974823976-2004761081-1000..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKU\S-1-5-21-1089015780-974823976-2004761081-1000..\Run: [Workrave] C:\Program Files (x86)\Workrave\lib\Workrave.exe (The Workrave development team)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{256A8C3E-93DE-4F76-B75C-6EFD504AB140}: DhcpNameServer = 194.168.4.100 194.168.8.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{256A8C3E-93DE-4F76-B75C-6EFD504AB140}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FFE4141C-F94C-4F78-8196-03DDB0575D41}: NameServer = 156.154.70.22,156.154.71.22
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/10/29 14:54:56 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jack\Desktop\OTL.exe
[2013/10/29 14:25:56 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/10/27 21:47:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
[2013/10/27 20:22:26 | 000,000,000 | ---D | C] -- C:\ubuntu
[2013/10/27 15:59:57 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2013/10/27 14:37:15 | 000,000,000 | ---D | C] -- C:\ProgramData\SecTaskMan
[2013/10/27 14:37:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Security Task Manager
[2013/10/27 03:35:49 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Wireshark
[2013/10/27 03:34:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
[2013/10/27 03:34:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinPcap
[2013/10/27 03:33:57 | 000,000,000 | ---D | C] -- C:\Program Files\Wireshark
[2013/10/27 03:32:43 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\JAM Software
[2013/10/27 01:38:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2013/10/26 22:45:10 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Wise Care 365
[2013/10/26 22:44:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
[2013/10/26 22:44:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wise
[2013/10/26 19:25:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\COMODO
[2013/10/26 19:07:13 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2013/10/26 19:07:12 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll
[2013/10/26 19:06:46 | 000,000,000 | --SD | C] -- C:\ProgramData\Shared Space
[2013/10/26 19:06:04 | 000,000,000 | ---D | C] -- C:\Program Files\AdTrustMedia
[2013/10/26 19:06:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AdTrustMedia
[2013/10/26 19:06:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Adtrustmedia
[2013/10/26 19:05:32 | 000,000,000 | ---D | C] -- C:\ProgramData\COMODO
[2013/10/26 19:05:16 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2013/10/26 19:04:58 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Comodo
[2013/10/26 19:04:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
[2013/10/26 19:04:49 | 000,057,096 | ---- | C] (COMODO CA Limited) -- C:\Windows\SysNative\certsentry.dll
[2013/10/26 19:04:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Comodo
[2013/10/26 19:04:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2013/10/26 18:09:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2013/10/26 18:09:58 | 000,116,440 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2013/10/25 15:17:26 | 000,000,000 | ---D | C] -- C:\ProgramData\SystemExplorer
[2013/10/25 15:17:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
[2013/10/25 15:17:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\System Explorer
[2013/10/24 16:35:11 | 000,000,000 | ---D | C] -- C:\Users\Jack\SecurityScans
[2013/10/24 16:34:52 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Baseline Security Analyzer 2
[2013/10/24 03:01:20 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\CrashDumps
[2013/10/24 02:36:04 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\.purple
[2013/10/24 02:30:40 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Skype
[2013/10/24 01:47:21 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2013/10/24 01:47:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/10/24 01:47:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/10/24 01:47:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/10/23 22:00:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2013/10/23 22:00:45 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2013/10/23 22:00:42 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\SUPERAntiSpyware.com
[2013/10/23 21:58:24 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2013/10/23 21:46:40 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\WinPatrol
[2013/10/23 21:46:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
[2013/10/23 21:46:31 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013/10/23 21:46:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BillP Studios
[2013/10/23 21:24:30 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2013/10/23 21:24:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Licenses
[2013/10/23 21:24:27 | 001,070,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSCOMCTL.OCX
[2013/10/23 21:24:27 | 000,129,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSSTDFMT.DLL
[2013/10/23 21:24:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
[2013/10/23 21:24:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpywareBlaster
[2013/10/23 19:29:49 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\WCMShare
[2013/10/23 19:29:49 | 000,000,000 | ---D | C] -- C:\ProgramData\WCMShare
[2013/10/23 19:23:15 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\WebcamMax
[2013/10/23 19:23:15 | 000,000,000 | ---D | C] -- C:\ProgramData\WebcamMax
[2013/10/23 19:23:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebcamMax
[2013/10/23 19:22:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WebcamMax
[2013/10/23 19:21:42 | 000,509,872 | ---- | C] (Ask Partner Network) -- C:\Users\Jack\Documents\APNSetup.exe
[2013/10/23 19:11:59 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\TechSmith
[2013/10/23 19:11:43 | 000,000,000 | ---D | C] -- C:\Users\Jack\Documents\Camtasia Studio
[2013/10/23 19:10:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
[2013/10/23 19:10:54 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1995-08.com.techsmith
[2013/10/23 19:10:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2013/10/23 19:10:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\TechSmith Shared
[2013/10/23 19:10:26 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2013/10/23 19:10:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TechSmith
[2013/10/23 18:52:14 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Logitech® Webcam Software
[2013/10/23 18:47:04 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Leadertech
[2013/10/23 18:45:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2013/10/23 18:37:13 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2013/10/23 18:37:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2013/10/23 18:05:46 | 000,144,896 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelOpenCL64.dll
[2013/10/23 18:05:46 | 000,020,992 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013/10/23 18:05:44 | 000,104,448 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\IntelOpenCL32.dll
[2013/10/23 18:05:44 | 000,017,920 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013/10/23 18:02:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation
[2013/10/23 18:02:18 | 002,806,784 | ---- | C] (Silicon Motion Corporation) -- C:\Windows\SysNative\drivers\SMIexp.sys
[2013/10/23 18:02:18 | 000,451,584 | ---- | C] (SiliconMotion Inc.) -- C:\Windows\SysNative\370proplib.dll
[2013/10/23 18:02:18 | 000,206,336 | ---- | C] (SMI) -- C:\Windows\SysNative\drivers\SMIksdrv.sys
[2013/10/23 18:02:17 | 000,954,368 | ---- | C] (SiliconMotion) -- C:\Windows\SysWow64\RemoveSM37X.exe
[2013/10/23 18:02:17 | 000,372,736 | ---- | C] (SiliconMotion Inc.) -- C:\Windows\SysWow64\370proplib.dll
[2013/10/23 18:02:00 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Intel Corporation
[2013/10/23 18:01:50 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2013/10/23 18:01:22 | 000,000,000 | ---D | C] -- C:\Users\Jack\Intel
[2013/10/23 17:58:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2013/10/23 17:58:43 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2013/10/23 17:58:43 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/10/23 17:58:13 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
[2013/10/23 17:58:13 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2013/10/23 17:58:13 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2013/10/23 17:58:13 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2013/10/23 17:58:13 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2013/10/23 17:58:12 | 001,662,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2013/10/23 17:58:12 | 000,947,760 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
[2013/10/23 17:58:12 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2013/10/23 17:58:12 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2013/10/23 17:58:12 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2013/10/23 17:58:12 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2013/10/23 17:58:11 | 003,760,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2013/10/23 17:58:11 | 002,795,224 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2013/10/23 17:58:11 | 001,004,248 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2013/10/23 17:58:11 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2013/10/23 17:58:11 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2013/10/23 17:58:11 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2013/10/23 17:58:11 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2013/10/23 17:58:10 | 029,216,256 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2013/10/23 17:58:10 | 001,284,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2013/10/23 17:58:10 | 000,613,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2013/10/23 17:58:10 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2013/10/23 17:58:10 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2013/10/23 17:58:10 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2013/10/23 17:58:10 | 000,147,160 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2013/10/23 17:58:10 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2013/10/23 17:58:10 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2013/10/23 17:58:09 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2013/10/23 17:58:09 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2013/10/23 17:58:09 | 000,394,616 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2013/10/23 17:58:09 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2013/10/23 17:58:09 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2013/10/23 17:58:09 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2013/10/23 17:58:08 | 014,041,344 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2013/10/23 17:58:08 | 002,032,896 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2013/10/23 17:58:08 | 000,920,832 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2013/10/23 17:58:08 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2013/10/23 17:58:08 | 000,395,208 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2013/10/23 17:58:08 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2013/10/23 17:58:07 | 002,736,160 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2013/10/23 17:58:07 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2013/10/23 17:58:07 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2013/10/23 17:58:06 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2013/10/23 17:58:06 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2013/10/23 17:58:06 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2013/10/23 17:58:06 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2013/10/23 17:58:06 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2013/10/23 17:58:06 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2013/10/23 17:58:06 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2013/10/23 17:58:06 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2013/10/23 17:58:06 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2013/10/23 17:58:06 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2013/10/23 17:58:06 | 000,208,072 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2013/10/23 17:58:06 | 000,110,592 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2013/10/23 17:58:06 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2013/10/23 17:58:00 | 002,080,472 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2013/10/23 17:58:00 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2013/10/23 17:51:35 | 002,253,016 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\BtwRSupportService.exe
[2013/10/23 17:51:35 | 000,166,104 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwampfl.sys
[2013/10/23 17:51:35 | 000,066,264 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\btwdi.dll
[2013/10/23 17:51:34 | 002,232,024 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\BcmBtRSupport.dll
[2013/10/23 17:51:34 | 000,170,712 | ---- | C] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\bcbtums.sys
[2013/10/23 17:28:30 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech
[2013/10/23 16:47:52 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2013/10/23 16:47:48 | 000,000,000 | ---D | C] -- C:\Users\Jack\Desktop\mbar
[2013/10/23 16:43:10 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Workrave
[2013/10/23 16:43:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Workrave
[2013/10/23 16:43:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Workrave
[2013/10/22 23:57:17 | 000,345,600 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\Windows\SetLCDStretchMode.exe
[2013/10/22 00:15:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2013/10/21 15:00:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/10/21 14:54:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2013/10/21 14:23:32 | 000,013,824 | ---- | C] (SAMSUNG ELECTRONICS) -- C:\Windows\SysNative\drivers\SABI.sys
[2013/10/21 14:23:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SAMSUNG
[2013/10/21 14:22:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2013/10/20 21:52:52 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Mozilla
[2013/10/20 21:52:52 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Mozilla
[2013/10/20 21:52:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013/10/20 21:52:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013/10/20 21:52:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/10/20 20:09:01 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\pidgin-otr
[2013/10/20 20:09:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pidgin-otr
[2013/10/20 20:09:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\pidgin-otr
[2013/10/20 20:07:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pidgin
[2013/10/20 20:01:08 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\ESET
[2013/10/20 20:01:08 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\ESET
[2013/10/20 17:59:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013/10/20 17:59:15 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/10/20 17:15:35 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013/10/20 17:14:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2013/10/20 17:14:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2013/10/20 17:13:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2013/10/20 15:49:38 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2013/10/20 15:49:38 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2013/10/20 15:37:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2013/10/20 15:22:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2013/10/20 15:14:39 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\WindowsUpdate
[2013/10/20 15:09:13 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Secunia PSI
[2013/10/20 15:09:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Secunia
[2013/10/20 14:08:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013/10/20 14:08:53 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013/10/20 14:08:53 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/10/20 13:58:05 | 000,000,000 | --SD | C] -- C:\Users\Jack\Documents\Passwords Database
[2013/10/19 22:19:46 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2013/10/19 22:19:46 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2013/10/19 22:19:45 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2013/10/19 22:19:45 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2013/10/19 22:19:45 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2013/10/19 22:19:45 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2013/10/19 22:19:45 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2013/10/19 21:52:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2013/10/19 21:52:15 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2013/10/19 01:25:11 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2013/10/19 00:45:47 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2013/10/19 00:45:47 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2013/10/19 00:45:47 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2013/10/19 00:45:47 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2013/10/19 00:26:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2013/10/19 00:26:12 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2013/10/18 19:22:17 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2013/10/18 19:19:47 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2013/10/18 19:16:35 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2013/10/18 19:16:35 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2013/10/18 19:16:35 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2013/10/18 19:16:35 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2013/10/18 19:16:35 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2013/10/18 19:16:35 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2013/10/18 19:16:35 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2013/10/18 19:16:35 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2013/10/18 19:16:35 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2013/10/18 19:14:07 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2013/10/18 19:11:07 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2013/10/18 19:11:07 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2013/10/18 19:10:28 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2013/10/18 19:10:27 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2013/10/18 19:10:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2013/10/18 19:09:58 | 003,717,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2013/10/18 19:09:57 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2013/10/18 19:09:57 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2013/10/18 19:09:57 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2013/10/18 19:09:57 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2013/10/18 19:09:57 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2013/10/18 19:09:27 | 001,472,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/10/18 19:09:27 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2013/10/18 19:09:26 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2013/10/18 19:07:27 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2013/10/18 19:07:26 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2013/10/18 19:06:54 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2013/10/18 19:06:53 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2013/10/18 19:06:53 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2013/10/18 19:06:53 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2013/10/18 19:06:53 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2013/10/18 19:06:53 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2013/10/18 19:03:54 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2013/10/18 19:03:54 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2013/10/18 19:03:54 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2013/10/18 19:03:53 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2013/10/18 19:01:47 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2013/10/18 19:01:17 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2013/10/18 19:01:17 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2013/10/18 19:01:17 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2013/10/18 19:01:17 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2013/10/18 19:01:17 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2013/10/18 19:01:17 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2013/10/18 19:01:17 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2013/10/18 19:01:17 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2013/10/18 19:01:17 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2013/10/18 19:01:17 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2013/10/18 19:01:17 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2013/10/18 19:01:17 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2013/10/18 19:01:17 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2013/10/18 19:00:49 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2013/10/18 19:00:48 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2013/10/18 19:00:48 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2013/10/18 18:58:18 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2013/10/18 18:58:18 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2013/10/18 18:53:21 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2013/10/18 18:53:21 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2013/10/18 18:45:46 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2013/10/18 18:43:19 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2013/10/18 18:43:19 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2013/10/18 18:43:19 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2013/10/18 18:43:19 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2013/10/18 18:43:19 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2013/10/18 18:43:19 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2013/10/18 18:43:18 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2013/10/18 18:43:18 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2013/10/18 18:41:22 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2013/10/18 18:41:22 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2013/10/18 18:41:21 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2013/10/18 18:41:21 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2013/10/18 18:38:53 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2013/10/18 18:36:27 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/10/18 18:36:27 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/10/18 18:36:26 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/10/18 18:36:26 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/10/18 18:36:26 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013/10/18 18:36:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013/10/18 18:36:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013/10/18 18:36:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2013/10/18 18:36:26 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/10/18 18:36:26 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/10/18 18:36:26 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/10/18 18:36:26 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/10/18 18:36:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/10/18 18:36:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/10/18 18:35:54 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/10/18 18:35:54 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/10/18 18:33:55 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys
[2013/10/18 18:33:24 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2013/10/18 18:33:24 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2013/10/18 18:33:24 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2013/10/18 18:31:28 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2013/10/18 18:31:28 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2013/10/18 18:31:28 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2013/10/18 18:31:28 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2013/10/18 18:29:00 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2013/10/18 18:26:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2013/10/18 18:26:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2013/10/18 18:24:38 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2013/10/18 18:24:38 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2013/10/18 18:24:38 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2013/10/18 18:24:38 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2013/10/18 18:24:38 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2013/10/18 18:24:38 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2013/10/18 18:24:04 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2013/10/18 18:24:04 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys
[2013/10/18 18:22:06 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2013/10/18 18:19:39 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2013/10/18 18:19:39 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2013/10/18 18:19:39 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2013/10/18 18:17:01 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2013/10/18 18:16:30 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2013/10/18 18:16:30 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2013/10/18 18:14:33 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2013/10/18 18:14:33 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2013/10/18 18:14:03 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013/10/18 18:12:03 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2013/10/18 18:07:29 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2013/10/18 18:03:15 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2013/10/18 18:03:15 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2013/10/18 18:03:15 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2013/10/18 18:03:15 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2013/10/18 18:03:15 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2013/10/18 18:03:15 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2013/10/18 18:03:15 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2013/10/18 18:03:15 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2013/10/18 18:03:15 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2013/10/18 18:03:15 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2013/10/18 18:03:15 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2013/10/18 18:03:15 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2013/10/18 18:03:15 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2013/10/18 18:03:15 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2013/10/18 18:03:15 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2013/10/18 18:03:15 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2013/10/18 18:03:15 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2013/10/18 18:03:15 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2013/10/18 18:03:15 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2013/10/18 18:03:15 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 11:42 am

[2013/10/18 18:03:14 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2013/10/18 18:03:14 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2013/10/18 18:03:14 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2013/10/18 18:03:14 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2013/10/18 18:03:12 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2013/10/18 18:03:12 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2013/10/18 18:03:12 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2013/10/18 18:03:12 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2013/10/18 18:03:12 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2013/10/18 18:03:12 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2013/10/18 18:03:12 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2013/10/18 18:03:12 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2013/10/18 18:00:33 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2013/10/18 18:00:33 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2013/10/18 18:00:33 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2013/10/18 18:00:33 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2013/10/18 17:52:59 | 005,549,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/10/18 17:52:58 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/10/18 17:52:58 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/10/18 17:52:58 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/10/18 17:52:58 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2013/10/18 17:52:58 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2013/10/18 17:52:57 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2013/10/18 17:52:57 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/10/18 17:52:57 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/10/18 17:52:56 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/10/18 17:52:56 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/10/18 17:52:56 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/10/18 17:52:56 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/10/18 17:49:46 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2013/10/18 17:49:28 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/10/18 17:49:27 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/10/18 17:49:27 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/10/18 17:44:39 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2013/10/18 17:44:39 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2013/10/18 17:44:09 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2013/10/18 17:44:09 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2013/10/18 17:44:08 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2013/10/18 17:44:08 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2013/10/18 17:44:08 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2013/10/18 17:44:08 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2013/10/18 17:44:08 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2013/10/18 17:44:06 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Malwarebytes
[2013/10/18 17:43:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/10/18 17:43:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/10/18 17:43:44 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/10/18 17:43:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/10/18 17:43:26 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Programs
[2013/10/18 17:42:15 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/10/18 17:39:42 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013/10/18 17:39:42 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013/10/18 17:35:45 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2013/10/18 17:35:45 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2013/10/18 17:33:47 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2013/10/18 17:33:47 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2013/10/18 17:32:45 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2013/10/18 17:32:45 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2013/10/18 17:30:47 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2013/10/18 17:30:47 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2013/10/18 17:28:49 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2013/10/18 17:28:49 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2013/10/18 17:28:49 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2013/10/18 17:26:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2013/10/18 17:26:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2013/10/18 17:26:20 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/10/18 17:23:51 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2013/10/18 17:21:54 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2013/10/18 17:19:26 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2013/10/18 17:18:18 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2013/10/18 17:18:18 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2013/10/18 17:18:18 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2013/10/18 17:18:18 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2013/10/18 17:16:12 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2013/10/18 17:13:45 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2013/10/18 17:13:45 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2013/10/18 17:13:14 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2013/10/18 17:13:14 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2013/10/18 17:11:15 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2013/10/18 17:11:15 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2013/10/18 17:06:14 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/10/18 17:04:14 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2013/10/18 17:04:14 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2013/10/18 17:01:45 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2013/10/18 16:59:44 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2013/10/18 16:59:13 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2013/10/18 16:59:13 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2013/10/17 21:30:16 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\QFX Software
[2013/10/17 21:30:16 | 000,000,000 | ---D | C] -- C:\ProgramData\QFX Software
[2013/10/17 16:09:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
[2013/10/17 16:09:54 | 000,222,200 | ---- | C] (QFX Software Corporation) -- C:\Windows\SysNative\drivers\keyscrambler.sys
[2013/10/17 16:09:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\KeyScrambler
[2013/10/17 16:03:54 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2013/10/17 15:57:47 | 000,883,928 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2013/10/17 15:57:47 | 000,108,760 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2013/10/17 15:57:47 | 000,074,456 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RtNicProp64.dll
[2013/10/17 15:57:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2013/10/17 15:47:55 | 000,016,344 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll
[2013/10/17 15:47:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2013/10/17 15:47:42 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2013/10/17 15:47:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2013/10/17 15:46:56 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2013/10/17 15:46:56 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2013/10/17 15:46:31 | 000,000,000 | ---D | C] -- C:\Intel
[2013/10/17 15:46:30 | 001,795,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01011.dll
[2013/10/17 15:46:30 | 000,099,800 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys
[2013/10/17 15:46:28 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2013/10/17 15:46:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2013/10/17 15:46:27 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\InstallShield
[2013/10/17 15:14:42 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Macromedia
[2013/10/17 15:13:58 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/10/17 15:13:58 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/10/17 15:13:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2013/10/17 15:13:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2013/10/17 15:13:27 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Adobe
[2013/10/17 15:00:12 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Easeware
[2013/10/17 15:00:09 | 000,000,000 | ---D | C] -- C:\Program Files\Easeware
[2013/10/17 15:00:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
[2013/10/17 14:39:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2013/10/17 14:39:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2013/10/17 13:52:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/10/17 13:51:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013/10/17 13:51:26 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Google
[2013/10/17 13:51:13 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Deployment
[2013/10/17 13:51:13 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Apps
[2013/10/17 13:29:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2013/10/17 13:25:47 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2013/10/17 13:25:46 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2013/10/17 13:21:09 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Adobe
[2013/10/17 13:17:10 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2013/10/17 13:07:41 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/10/17 13:07:41 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/10/17 13:07:41 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/10/17 13:07:41 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/10/17 13:07:41 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/10/17 13:07:41 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/10/17 13:07:41 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/10/17 13:07:41 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/10/17 13:07:41 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/10/17 13:07:41 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/10/17 13:07:41 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/10/17 13:07:41 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/10/17 13:07:41 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/10/17 13:07:41 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/10/17 13:07:41 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/10/17 13:07:41 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/10/17 13:07:41 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/10/17 13:07:41 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/10/17 13:07:41 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/10/17 13:07:41 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/10/17 13:07:41 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/10/17 13:07:41 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/10/17 13:07:41 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/10/17 13:07:41 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/10/17 13:07:41 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/10/17 13:07:41 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/10/17 13:07:41 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/10/17 13:07:41 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/10/17 13:07:41 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/10/17 13:07:41 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/10/17 13:07:41 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/10/17 13:07:41 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/10/17 13:07:41 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/10/17 13:07:41 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/10/17 13:07:41 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/10/17 13:07:41 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/10/17 13:07:41 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/10/17 13:07:41 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/10/17 13:07:41 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/10/17 13:07:41 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/10/17 13:07:41 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/10/17 13:07:41 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/10/17 13:07:41 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/10/17 13:07:41 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/10/17 13:07:41 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/10/17 13:07:41 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/10/17 13:07:41 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/10/17 13:07:41 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/10/17 13:07:41 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/10/17 13:07:41 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/10/17 13:07:41 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/10/17 13:07:41 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/10/17 13:07:41 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/10/17 13:07:41 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/10/17 13:07:41 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/10/17 13:07:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/10/17 13:07:41 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/10/17 13:07:41 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/10/17 13:07:41 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/10/17 13:07:41 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/10/17 13:07:41 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/10/17 13:07:41 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/10/17 13:07:41 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/10/17 13:07:41 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/10/17 13:07:41 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/10/17 13:07:41 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/10/17 13:07:41 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/10/17 13:07:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/10/17 13:06:50 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/10/17 13:02:02 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/10/17 13:02:02 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/10/17 13:02:02 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/10/17 13:02:02 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/10/17 13:02:02 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/10/17 13:02:02 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/10/17 13:02:02 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/10/17 13:02:02 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/10/17 13:02:02 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/10/17 13:02:02 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/10/17 13:02:02 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/10/17 13:02:02 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/10/17 13:02:02 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/10/17 13:02:02 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/10/17 13:02:02 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/10/17 13:02:02 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/10/17 13:02:02 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/10/17 13:02:02 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/10/17 13:02:02 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/10/17 13:02:02 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/10/17 13:02:02 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/10/17 13:02:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/10/17 13:02:02 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/10/17 11:59:23 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/10/17 11:59:23 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/10/17 11:56:56 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2013/10/17 11:56:56 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2013/10/17 11:56:56 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2013/10/17 11:56:38 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2013/10/17 11:56:38 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2013/10/17 11:56:38 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2013/10/17 11:56:21 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2013/10/17 11:56:21 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2013/10/17 11:51:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2013/10/17 11:50:24 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2013/10/17 11:50:22 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broadcom Wireless
[2013/10/17 11:50:03 | 001,014,784 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\BCMLogon.dll
[2013/10/17 11:49:51 | 004,961,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vcredist_x64.exe
[2013/10/17 11:49:51 | 004,428,288 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmttls.dll
[2013/10/17 11:49:51 | 000,060,928 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmwlrmt.dll
[2013/10/17 11:49:51 | 000,047,632 | ---- | C] (CACE Technologies, Inc.) -- C:\Windows\SysNative\drivers\npf.sys
[2013/10/17 11:49:51 | 000,022,592 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bcm42rly.sys
[2013/10/17 11:49:50 | 007,761,408 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\BCMWLCPL.CPL
[2013/10/17 11:49:50 | 003,161,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vcredist_x64.exe
[2013/10/17 11:49:50 | 000,073,728 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\wltrynt.dll
[2013/10/17 11:49:49 | 003,896,832 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvsrv64.dll
[2013/10/17 11:49:49 | 003,561,472 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvui64.dll
[2013/10/17 11:49:49 | 003,065,408 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL664.SYS
[2013/10/17 11:49:49 | 000,095,544 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmwlcoi.dll
[2013/10/17 11:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2013/10/17 11:43:48 | 000,000,000 | R--D | C] -- C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013/10/17 11:43:48 | 000,000,000 | R--D | C] -- C:\Users\Jack\Searches
[2013/10/17 11:43:48 | 000,000,000 | R--D | C] -- C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013/10/17 11:43:48 | 000,000,000 | -H-D | C] -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2013/10/17 11:43:39 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Identities
[2013/10/17 11:43:35 | 000,000,000 | R--D | C] -- C:\Users\Jack\Contacts
[2013/10/17 11:43:34 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\VirtualStore
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\AppData\Local\Temporary Internet Files
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Templates
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Start Menu
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\SendTo
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Recent
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\PrintHood
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\NetHood
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Documents\My Videos
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Documents\My Pictures
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Documents\My Music
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\My Documents
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Local Settings
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\AppData\Local\History
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Cookies
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\Application Data
[2013/10/17 11:43:18 | 000,000,000 | -HSD | C] -- C:\Users\Jack\AppData\Local\Application Data
[2013/10/17 11:43:17 | 000,000,000 | --SD | C] -- C:\Users\Jack\AppData\Roaming\Microsoft
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Videos
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Saved Games
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Pictures
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Music
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Links
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Favorites
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Downloads
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Documents
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\Desktop
[2013/10/17 11:43:17 | 000,000,000 | R--D | C] -- C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/10/17 11:43:17 | 000,000,000 | -H-D | C] -- C:\Users\Jack\AppData
[2013/10/17 11:43:17 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Temp
[2013/10/17 11:43:17 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Local\Microsoft
[2013/10/17 11:43:17 | 000,000,000 | ---D | C] -- C:\Users\Jack\AppData\Roaming\Media Center Programs
[2013/10/17 11:43:06 | 000,000,000 | -HSD | C] -- C:\Recovery
[2013/10/17 11:38:23 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/10/17 11:36:04 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013/10/17 11:35:14 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013/10/17 03:34:48 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013/10/17 03:34:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\OEM
[2013/10/14 10:04:42 | 000,018,456 | ---- | C] (Secunia) -- C:\Windows\SysNative\drivers\psi_mf_amd64.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/10/29 14:59:01 | 000,017,152 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/10/29 14:59:01 | 000,017,152 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/10/29 14:56:59 | 000,728,132 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/10/29 14:56:59 | 000,629,498 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/10/29 14:56:59 | 000,111,148 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/10/29 14:54:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jack\Desktop\OTL.exe
[2013/10/29 14:51:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/10/29 14:50:59 | 2056,830,975 | -HS- | M] () -- C:\hiberfil.sys
[2013/10/29 14:48:51 | 001,060,070 | ---- | M] () -- C:\Users\Jack\Desktop\AdwCleaner.exe
[2013/10/29 14:36:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/10/29 14:17:43 | 000,001,048 | ---- | M] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2013/10/29 14:06:01 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/29 00:07:00 | 000,000,526 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 2b20bff2-35fa-445d-b3eb-3c8bf40345de.job
[2013/10/28 16:53:15 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\Wise Turbo Checker.job
[2013/10/27 20:33:38 | 000,135,483 | ---- | M] () -- C:\wubildr
[2013/10/27 20:33:31 | 000,008,192 | ---- | M] () -- C:\wubildr.mbr
[2013/10/26 22:45:38 | 000,000,420 | ---- | M] () -- C:\Windows\tasks\Wise Care 365.job
[2013/10/26 22:44:49 | 000,001,156 | ---- | M] () -- C:\Users\Public\Desktop\Wise Care 365.lnk
[2013/10/26 19:25:21 | 000,002,013 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
[2013/10/26 19:25:21 | 000,002,013 | ---- | M] () -- C:\Users\Public\Desktop\GeekBuddy.lnk
[2013/10/26 19:08:34 | 000,001,870 | ---- | M] () -- C:\Users\Public\Desktop\COMODO Firewall.lnk
[2013/10/26 19:08:33 | 000,000,593 | ---- | M] () -- C:\Users\Public\Desktop\Shared Space.lnk
[2013/10/26 19:07:13 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2013/10/26 19:07:12 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll
[2013/10/26 19:04:58 | 000,001,116 | ---- | M] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2013/10/26 19:04:49 | 000,057,096 | ---- | M] (COMODO CA Limited) -- C:\Windows\SysNative\certsentry.dll
[2013/10/26 18:09:58 | 000,116,440 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2013/10/26 18:09:02 | 000,091,352 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2013/10/25 15:17:25 | 000,001,110 | ---- | M] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\System Explorer.lnk
[2013/10/25 15:17:25 | 000,001,086 | ---- | M] () -- C:\Users\Public\Desktop\System Explorer.lnk
[2013/10/24 16:34:53 | 000,001,081 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2013/10/24 14:25:39 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/10/23 22:38:20 | 000,223,632 | ---- | M] () -- C:\Users\Jack\AppData\Local\census.cache
[2013/10/23 22:38:14 | 000,112,803 | ---- | M] () -- C:\Users\Jack\AppData\Local\ars.cache
[2013/10/23 22:18:09 | 000,000,036 | ---- | M] () -- C:\Users\Jack\AppData\Local\housecall.guid.cache
[2013/10/23 22:00:50 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2013/10/23 21:24:27 | 000,001,079 | ---- | M] () -- C:\Users\Public\Desktop\SpywareBlaster.lnk
[2013/10/23 19:23:07 | 000,001,019 | ---- | M] () -- C:\Users\Public\Desktop\WebcamMax.lnk
[2013/10/23 19:13:56 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs
[2013/10/23 19:10:56 | 000,001,168 | ---- | M] () -- C:\Users\Public\Desktop\Camtasia Studio 8.lnk
[2013/10/23 18:45:37 | 000,001,624 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2013/10/23 18:08:15 | 000,016,054 | ---- | M] () -- C:\Windows\SysNative\results.xml
[2013/10/23 18:02:01 | 000,735,230 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/23 16:43:06 | 000,001,097 | ---- | M] () -- C:\Users\Jack\Desktop\Workrave.lnk
[2013/10/22 23:57:12 | 000,000,084 | ---- | M] () -- C:\Windows\HotFixList.ini
[2013/10/22 23:57:06 | 000,345,600 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Windows\SetLCDStretchMode.exe
[2013/10/22 23:55:03 | 000,002,114 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Support Center.lnk
[2013/10/22 23:52:35 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Update Plus.lnk
[2013/10/22 14:15:20 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/21 15:00:18 | 000,002,212 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/10/21 14:24:27 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SABI_01009.Wdf
[2013/10/20 22:00:06 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/10/20 22:00:06 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/10/20 21:52:46 | 000,001,147 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/10/20 17:59:17 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/10/20 17:14:43 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/10/19 21:55:07 | 000,275,712 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/18 17:43:45 | 000,001,133 | ---- | M] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2013/10/18 17:43:45 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/10/17 15:50:15 | 000,002,279 | ---- | M] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/17 15:49:45 | 000,000,404 | ---- | M] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job
[2013/10/17 15:47:13 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2013/10/17 15:47:10 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
[2013/10/17 15:00:10 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\DriverEasy.lnk
[2013/10/17 13:52:25 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/10/17 13:07:41 | 003,959,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/10/17 13:07:41 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/10/17 13:07:41 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/10/17 13:07:41 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/10/17 13:07:41 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/10/17 13:07:41 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/10/17 13:07:41 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/10/17 13:07:41 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/10/17 13:07:41 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/10/17 13:07:41 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/10/17 13:07:41 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/10/17 13:07:41 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/10/17 13:07:41 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/10/17 13:07:41 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/10/17 13:07:41 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/10/17 13:07:41 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/10/17 13:07:41 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/10/17 13:07:41 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/10/17 13:07:41 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/10/17 13:07:41 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/10/17 13:07:41 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/10/17 13:07:41 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/10/17 13:07:41 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/10/17 13:07:41 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/10/17 13:07:41 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/10/17 13:07:41 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/10/17 13:07:41 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/10/17 13:07:41 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/10/17 13:07:41 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/10/17 13:07:41 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/10/17 13:07:41 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/10/17 13:07:41 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/10/17 13:07:41 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/10/17 13:07:41 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/10/17 13:07:41 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/10/17 13:07:41 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/10/17 13:07:41 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/10/17 13:07:41 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/10/17 13:07:41 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/10/17 13:07:41 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/10/17 13:07:41 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/10/17 13:07:41 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/10/17 13:07:41 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/10/17 13:07:41 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/10/17 13:07:41 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/10/17 13:07:41 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/10/17 13:07:41 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/10/17 13:07:41 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/10/17 13:07:41 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/10/17 13:07:41 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/10/17 13:07:41 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/10/17 13:07:41 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/10/17 13:07:41 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/10/17 13:07:41 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/10/17 13:07:41 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/10/17 13:07:41 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/10/17 13:07:41 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/10/17 13:07:41 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/10/17 13:07:41 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/10/17 13:07:41 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/10/17 13:07:41 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/10/17 13:07:41 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/10/17 13:07:41 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/10/17 13:07:41 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/10/17 13:07:41 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/17 13:07:41 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/17 13:07:41 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/10/17 13:07:41 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/10/17 13:07:41 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/10/17 13:07:41 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/10/17 13:06:50 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/10/17 13:02:02 | 003,928,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/10/17 13:02:02 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/10/17 13:02:02 | 002,565,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/10/17 13:02:02 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/10/17 13:02:02 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/10/17 13:02:02 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/10/17 13:02:02 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/10/17 13:02:02 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/10/17 13:02:02 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/10/17 13:02:02 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/10/17 13:02:02 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/10/17 13:02:02 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/10/17 13:02:02 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/10/17 13:02:02 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/10/17 13:02:02 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/10/17 13:02:02 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/10/17 13:02:02 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/10/17 13:02:02 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/10/17 13:02:02 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/10/17 13:02:02 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/10/17 13:02:02 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/10/17 13:02:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/10/17 13:02:02 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/10/17 13:02:02 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/10/17 11:59:23 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/10/17 11:59:23 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/10/17 11:55:50 | 000,001,437 | ---- | M] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/17 11:50:14 | 000,679,298 | ---- | M] () -- C:\Windows\SysNative\oem2.inf
[2013/10/17 11:47:36 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2013/10/17 11:40:17 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013/10/17 11:40:17 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013/10/14 10:04:42 | 000,018,456 | ---- | M] (Secunia) -- C:\Windows\SysNative\drivers\psi_mf_amd64.sys
[2013/10/04 08:15:02 | 000,014,888 | ---- | M] () -- C:\Windows\SysNative\drivers\hmd.sys
[2013/10/02 17:02:16 | 002,253,016 | ---- | M] (Broadcom Corporation.) -- C:\Windows\SysNative\BtwRSupportService.exe
[2013/10/02 17:02:16 | 002,232,024 | ---- | M] (Broadcom Corporation.) -- C:\Windows\SysNative\BcmBtRSupport.dll
[2013/10/02 17:02:16 | 000,166,104 | ---- | M] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\btwampfl.sys
[2013/10/02 17:02:16 | 000,066,264 | ---- | M] (Broadcom Corporation.) -- C:\Windows\SysNative\btwdi.dll
[2013/10/02 17:02:14 | 000,170,712 | ---- | M] (Broadcom Corporation.) -- C:\Windows\SysNative\drivers\bcbtums.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 11:43 am

========== Files Created - No Company Name ==========

[2013/10/29 14:48:50 | 001,060,070 | ---- | C] () -- C:\Users\Jack\Desktop\AdwCleaner.exe
[2013/10/29 14:17:26 | 000,002,013 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
[2013/10/29 14:15:52 | 000,001,048 | ---- | C] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2013/10/27 20:33:31 | 000,135,483 | ---- | C] () -- C:\wubildr
[2013/10/27 20:33:31 | 000,008,192 | ---- | C] () -- C:\wubildr.mbr
[2013/10/26 22:45:38 | 000,000,400 | ---- | C] () -- C:\Windows\tasks\Wise Turbo Checker.job
[2013/10/26 22:45:37 | 000,000,420 | ---- | C] () -- C:\Windows\tasks\Wise Care 365.job
[2013/10/26 22:44:49 | 000,001,156 | ---- | C] () -- C:\Users\Public\Desktop\Wise Care 365.lnk
[2013/10/26 19:25:21 | 000,002,013 | ---- | C] () -- C:\Users\Public\Desktop\GeekBuddy.lnk
[2013/10/26 19:08:34 | 000,001,870 | ---- | C] () -- C:\Users\Public\Desktop\COMODO Firewall.lnk
[2013/10/26 19:08:33 | 000,000,593 | ---- | C] () -- C:\Users\Public\Desktop\Shared Space.lnk
[2013/10/26 19:04:58 | 000,001,116 | ---- | C] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2013/10/25 15:17:25 | 000,001,110 | ---- | C] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\System Explorer.lnk
[2013/10/25 15:17:25 | 000,001,086 | ---- | C] () -- C:\Users\Public\Desktop\System Explorer.lnk
[2013/10/24 16:34:53 | 000,001,093 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Baseline Security Analyzer 2.2.lnk
[2013/10/24 16:34:53 | 000,001,081 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2013/10/24 01:47:21 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/10/23 22:38:20 | 000,223,632 | ---- | C] () -- C:\Users\Jack\AppData\Local\census.cache
[2013/10/23 22:38:14 | 000,112,803 | ---- | C] () -- C:\Users\Jack\AppData\Local\ars.cache
[2013/10/23 22:18:09 | 000,000,036 | ---- | C] () -- C:\Users\Jack\AppData\Local\housecall.guid.cache
[2013/10/23 22:02:35 | 000,000,526 | ---- | C] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 2b20bff2-35fa-445d-b3eb-3c8bf40345de.job
[2013/10/23 22:00:50 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2013/10/23 21:24:27 | 000,001,079 | ---- | C] () -- C:\Users\Public\Desktop\SpywareBlaster.lnk
[2013/10/23 19:23:07 | 000,001,019 | ---- | C] () -- C:\Users\Public\Desktop\WebcamMax.lnk
[2013/10/23 19:10:56 | 000,001,168 | ---- | C] () -- C:\Users\Public\Desktop\Camtasia Studio 8.lnk
[2013/10/23 18:45:37 | 000,001,624 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2013/10/23 18:08:15 | 000,016,054 | ---- | C] () -- C:\Windows\SysNative\results.xml
[2013/10/23 18:02:18 | 000,572,928 | ---- | C] () -- C:\Windows\SysNative\SM37XCoInst.dll
[2013/10/23 18:02:18 | 000,317,440 | ---- | C] () -- C:\Windows\SysNative\370prop.ax
[2013/10/23 18:02:17 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\370prop.ax
[2013/10/23 18:02:17 | 000,001,752 | ---- | C] () -- C:\Windows\Sensor.set
[2013/10/23 18:02:01 | 000,735,230 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/23 17:58:18 | 000,003,272 | ---- | C] () -- C:\Windows\SysNative\drivers\SAMSfPa.dat
[2013/10/23 17:58:12 | 005,448,460 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2013/10/23 17:58:10 | 000,618,913 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2013/10/23 16:43:06 | 000,001,097 | ---- | C] () -- C:\Users\Jack\Desktop\Workrave.lnk
[2013/10/22 23:57:12 | 000,000,084 | ---- | C] () -- C:\Windows\HotFixList.ini
[2013/10/22 23:55:03 | 000,002,114 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Support Center.lnk
[2013/10/22 23:52:35 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Update Plus.lnk
[2013/10/22 23:52:29 | 000,000,433 | ---- | C] () -- C:\Windows\SlientUninstall.iss
[2013/10/21 15:00:18 | 000,002,212 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/10/21 14:24:27 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SABI_01009.Wdf
[2013/10/20 21:52:46 | 000,001,159 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/10/20 21:52:46 | 000,001,147 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/10/20 20:07:55 | 000,000,991 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
[2013/10/20 17:59:16 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/10/20 17:14:43 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013/10/20 17:14:43 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/10/20 15:09:06 | 000,001,069 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2013/10/19 00:45:47 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013/10/18 17:43:45 | 000,001,133 | ---- | C] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2013/10/18 17:43:45 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/10/17 15:47:13 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2013/10/17 15:47:10 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
[2013/10/17 15:46:57 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013/10/17 15:14:00 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/10/17 15:00:11 | 000,000,404 | ---- | C] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job
[2013/10/17 15:00:10 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\DriverEasy.lnk
[2013/10/17 14:39:31 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\drivers\lvuvc.hs
[2013/10/17 13:52:25 | 000,002,279 | ---- | C] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/17 13:52:25 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/10/17 13:51:36 | 000,000,894 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/17 13:51:35 | 000,000,890 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/17 13:07:41 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/10/17 13:07:41 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/10/17 11:55:49 | 000,001,437 | ---- | C] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/17 11:50:19 | 000,679,298 | ---- | C] () -- C:\Windows\SysNative\oem2.inf
[2013/10/17 11:49:51 | 000,006,656 | ---- | C] () -- C:\Windows\SysNative\bcmwlrc.dll
[2013/10/17 11:49:51 | 000,000,459 | ---- | C] () -- C:\Windows\SysWow64\vcredist_x64.bat
[2013/10/17 11:49:50 | 000,000,457 | ---- | C] () -- C:\Windows\SysNative\vcredist_x64.bat
[2013/10/17 11:47:36 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2013/10/17 11:43:49 | 000,001,413 | ---- | C] () -- C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/10/17 11:43:17 | 000,000,290 | ---- | C] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/10/17 11:43:17 | 000,000,272 | ---- | C] () -- C:\Users\Jack\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/10/17 11:40:08 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013/10/17 11:39:53 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013/10/17 11:35:15 | 2056,830,975 | -HS- | C] () -- C:\hiberfil.sys
[2013/10/04 08:15:02 | 000,014,888 | ---- | C] () -- C:\Windows\SysNative\drivers\hmd.sys
[2013/06/27 07:07:38 | 000,077,312 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/05/11 16:17:52 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2012/12/14 01:42:30 | 000,963,452 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng600.bin
[2012/12/14 01:42:28 | 000,272,928 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng600.bin
[2012/09/21 19:08:36 | 010,919,784 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012/09/21 19:08:36 | 000,338,136 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012/09/21 19:08:36 | 000,103,272 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe

========== ZeroAccess Check ==========

[2009/07/14 04:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 02:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 01:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 01:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 03:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 01:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Alternate Data Streams ==========

@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:5C321E34

< End of report >
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 29th, 2013, 11:43 am

TDSSKiller Log:


15:05:52.0410 0x08a4 TDSS rootkit removing tool 3.0.0.14 Oct 15 2013 15:35:38
15:05:56.0924 0x08a4 ============================================================
15:05:56.0924 0x08a4 Current date / time: 2013/10/29 15:05:56.0924
15:05:56.0925 0x08a4 SystemInfo:
15:05:56.0925 0x08a4
15:05:56.0925 0x08a4 OS Version: 6.1.7601 ServicePack: 1.0
15:05:56.0925 0x08a4 Product type: Workstation
15:05:56.0925 0x08a4 ComputerName: JACK-PC
15:05:56.0926 0x08a4 UserName: Jack
15:05:56.0926 0x08a4 Windows directory: C:\Windows
15:05:56.0926 0x08a4 System windows directory: C:\Windows
15:05:56.0926 0x08a4 Running under WOW64
15:05:56.0926 0x08a4 Processor architecture: Intel x64
15:05:56.0926 0x08a4 Number of processors: 4
15:05:56.0926 0x08a4 Page size: 0x1000
15:05:56.0926 0x08a4 Boot type: Normal boot
15:05:56.0926 0x08a4 ============================================================
15:06:00.0268 0x08a4 System UUID: {21FEBE31-F912-4A41-DD7F-EE0551325E08}
15:06:01.0554 0x08a4 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x162DD1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000040
15:06:01.0580 0x08a4 ============================================================
15:06:01.0580 0x08a4 \Device\Harddisk0\DR0:
15:06:01.0580 0x08a4 MBR partitions:
15:06:01.0580 0x08a4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:06:01.0580 0x08a4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x5693F800
15:06:01.0612 0x08a4 ============================================================
15:06:01.0659 0x08a4 C: <-> \Device\Harddisk0\DR0\Partition2
15:06:01.0660 0x08a4 ============================================================
15:06:01.0660 0x08a4 Initialize success
15:06:01.0660 0x08a4 ============================================================
15:06:56.0330 0x0660 ============================================================
15:06:56.0330 0x0660 Scan started
15:06:56.0330 0x0660 Mode: Manual;
15:06:56.0330 0x0660 ============================================================
15:06:56.0330 0x0660 KSN ping started
15:07:11.0113 0x0660 KSN ping finished: true
15:07:11.0872 0x0660 ================ Scan system memory ========================
15:07:11.0872 0x0660 System memory - ok
15:07:11.0873 0x0660 ================ Scan services =============================
15:07:12.0009 0x0660 [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
15:07:12.0020 0x0660 !SASCORE - ok
15:07:12.0272 0x0660 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:07:12.0288 0x0660 1394ohci - ok
15:07:12.0340 0x0660 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:07:12.0353 0x0660 ACPI - ok
15:07:12.0389 0x0660 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:07:12.0391 0x0660 AcpiPmi - ok
15:07:12.0626 0x0660 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:07:12.0632 0x0660 AdobeARMservice - ok
15:07:12.0857 0x0660 [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:07:12.0873 0x0660 AdobeFlashPlayerUpdateSvc - ok
15:07:12.0982 0x0660 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:07:13.0001 0x0660 adp94xx - ok
15:07:13.0058 0x0660 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:07:13.0068 0x0660 adpahci - ok
15:07:13.0077 0x0660 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:07:13.0083 0x0660 adpu320 - ok
15:07:13.0158 0x0660 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:07:13.0164 0x0660 AeLookupSvc - ok
15:07:13.0255 0x0660 [ 314C17917AC8523EC77A710215012A65, 725CF2D5F63C06F7704C24FE0CFA696215DADC6C0EC445D9671E82F8E23E56AD ] AFD C:\Windows\system32\drivers\afd.sys
15:07:13.0274 0x0660 AFD - ok
15:07:13.0333 0x0660 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
15:07:13.0338 0x0660 agp440 - ok
15:07:13.0358 0x0660 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
15:07:13.0365 0x0660 ALG - ok
15:07:13.0433 0x0660 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
15:07:13.0436 0x0660 aliide - ok
15:07:13.0444 0x0660 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
15:07:13.0447 0x0660 amdide - ok
15:07:13.0551 0x0660 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:07:13.0557 0x0660 AmdK8 - ok
15:07:13.0568 0x0660 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:07:13.0575 0x0660 AmdPPM - ok
15:07:13.0643 0x0660 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:07:13.0651 0x0660 amdsata - ok
15:07:13.0716 0x0660 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:07:13.0729 0x0660 amdsbs - ok
15:07:13.0806 0x0660 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:07:13.0810 0x0660 amdxata - ok
15:07:13.0876 0x0660 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
15:07:13.0882 0x0660 AppID - ok
15:07:13.0918 0x0660 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:07:13.0922 0x0660 AppIDSvc - ok
15:07:13.0956 0x0660 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
15:07:13.0963 0x0660 Appinfo - ok
15:07:13.0998 0x0660 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
15:07:14.0006 0x0660 arc - ok
15:07:14.0020 0x0660 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:07:14.0029 0x0660 arcsas - ok
15:07:14.0112 0x0660 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:07:14.0116 0x0660 AsyncMac - ok
15:07:14.0172 0x0660 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
15:07:14.0174 0x0660 atapi - ok
15:07:14.0264 0x0660 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:07:14.0284 0x0660 AudioEndpointBuilder - ok
15:07:14.0307 0x0660 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:07:14.0323 0x0660 AudioSrv - ok
15:07:14.0434 0x0660 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:07:14.0443 0x0660 AxInstSV - ok
15:07:14.0530 0x0660 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:07:14.0547 0x0660 b06bdrv - ok
15:07:14.0623 0x0660 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:07:14.0637 0x0660 b57nd60a - ok
15:07:14.0734 0x0660 [ 70433F7A216BD0B5EC7DA1202EE53E65, 12F3210EC5546714B34225770242F5CF4AC36032BB49A8E8989620BA274AC505 ] bcbtums C:\Windows\system32\drivers\bcbtums.sys
15:07:14.0745 0x0660 bcbtums - ok
15:07:14.0778 0x0660 [ 46A9662A946E90DBEC70CF503D3B81B9, 7A8B35F7C5354EFB3A6857061E35B8EEA26207DC5F4C4E7CFBF02303B1B8D8EE ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
15:07:14.0780 0x0660 BCM42RLY - ok
15:07:14.0966 0x0660 [ 63DD9C990883709053DD2C427DF0DB6F, 027E45F0A068D7C0A4F22A3BA1097F41369A52F88D233E1F3569E2C301B93180 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
15:07:15.0036 0x0660 BCM43XX - ok
15:07:15.0213 0x0660 [ 71770C2CDAF52A8C86088BF6697B66A4, 2A7DBB0D9665C6D52D4D2D7C1C90840B34887D7E35C0A6F9BA99BB96CD0F51DA ] BcmBtRSupport C:\Windows\system32\BtwRSupportService.exe
15:07:15.0265 0x0660 BcmBtRSupport - ok
15:07:15.0345 0x0660 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
15:07:15.0353 0x0660 BDESVC - ok
15:07:15.0407 0x0660 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
15:07:15.0411 0x0660 Beep - ok
15:07:15.0505 0x0660 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
15:07:15.0525 0x0660 BFE - ok
15:07:15.0621 0x0660 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
15:07:15.0651 0x0660 BITS - ok
15:07:15.0718 0x0660 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:07:15.0723 0x0660 blbdrive - ok
15:07:15.0750 0x0660 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:07:15.0759 0x0660 bowser - ok
15:07:15.0808 0x0660 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:07:15.0812 0x0660 BrFiltLo - ok
15:07:15.0819 0x0660 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:07:15.0822 0x0660 BrFiltUp - ok
15:07:15.0895 0x0660 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
15:07:15.0906 0x0660 Browser - ok
15:07:15.0936 0x0660 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:07:15.0949 0x0660 Brserid - ok
15:07:15.0953 0x0660 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:07:15.0956 0x0660 BrSerWdm - ok
15:07:15.0959 0x0660 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:07:15.0961 0x0660 BrUsbMdm - ok
15:07:15.0965 0x0660 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:07:15.0966 0x0660 BrUsbSer - ok
15:07:16.0040 0x0660 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
15:07:16.0045 0x0660 BthEnum - ok
15:07:16.0058 0x0660 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:07:16.0065 0x0660 BTHMODEM - ok
15:07:16.0107 0x0660 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:07:16.0115 0x0660 BthPan - ok
15:07:16.0209 0x0660 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
15:07:16.0232 0x0660 BTHPORT - ok
15:07:16.0291 0x0660 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
15:07:16.0299 0x0660 bthserv - ok
15:07:16.0326 0x0660 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
15:07:16.0333 0x0660 BTHUSB - ok
15:07:16.0393 0x0660 [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] btwampfl C:\Windows\system32\DRIVERS\btwampfl.sys
15:07:16.0403 0x0660 btwampfl - ok
15:07:16.0450 0x0660 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:07:16.0453 0x0660 cdfs - ok
15:07:16.0517 0x0660 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:07:16.0524 0x0660 cdrom - ok
15:07:16.0588 0x0660 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
15:07:16.0596 0x0660 CertPropSvc - ok
15:07:16.0678 0x0660 [ 7AD735DB1A9CC82D75E8854952EE8052, 662E6A07AF995AFF7E2D7817F121028078E0B04B394A29D6E62A8BC287C7A6D9 ] CFRMD C:\Windows\system32\DRIVERS\CFRMD.sys
15:07:16.0682 0x0660 CFRMD - ok
15:07:16.0734 0x0660 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
15:07:16.0739 0x0660 circlass - ok
15:07:16.0820 0x0660 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
15:07:16.0833 0x0660 CLFS - ok
15:07:16.0964 0x0660 [ 624F33274A6C6192BF7C1299A609914B, BDA8A2C390D2BC2A567E9387D289C8E5A65747CA62306955C9E998DE73EA4F1F ] CLPSLauncher C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
15:07:16.0970 0x0660 CLPSLauncher - ok
15:07:17.0046 0x0660 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:07:17.0051 0x0660 clr_optimization_v2.0.50727_32 - ok
15:07:17.0115 0x0660 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:07:17.0123 0x0660 clr_optimization_v2.0.50727_64 - ok
15:07:17.0227 0x0660 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:07:17.0237 0x0660 clr_optimization_v4.0.30319_32 - ok
15:07:17.0321 0x0660 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:07:17.0329 0x0660 clr_optimization_v4.0.30319_64 - ok
15:07:17.0383 0x0660 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:07:17.0386 0x0660 CmBatt - ok
15:07:17.0806 0x0660 [ 2D1E7E163AB1C927ACBA22CBE4A9F818, 81CAC4AC46573AE997FA98E4FFD5CE88A9BB8D3BE80CA075490EA3168414E649 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
15:07:17.0947 0x0660 cmdAgent - ok
15:07:18.0052 0x0660 [ E34DF9613C8D24C5CB6F8DF8D74E5586, BFE4BC747262439F98A3B39FFF484D350A247143B7F7074BC78C2124798BE448 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
15:07:18.0055 0x0660 cmderd - ok
15:07:18.0114 0x0660 [ E406A49D0EB04EE52AD44F9258B5DB82, 0BAC73208719A03FB92AC731C3A50DFB1D887E808B8B38378811C9A0E1990839 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
15:07:18.0133 0x0660 cmdGuard - ok
15:07:18.0190 0x0660 [ F6B424B925B67C306BAA85AC79F7A5CC, 910E86EDFD1750324C70167989DDFE17C9E061822039AE35D6F66113E32320D6 ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
15:07:18.0195 0x0660 cmdHlp - ok
15:07:18.0210 0x0660 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:07:18.0212 0x0660 cmdide - ok
15:07:18.0276 0x0660 [ A3574DCC6588D6E09E069D2BE61537EC, E9AA0DA9A6C6F22398C2555FA6AA24B2142791B7281E91973842A5E88A2815D4 ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
15:07:18.0288 0x0660 cmdvirth - ok
15:07:18.0379 0x0660 [ 9AC4F97C2D3E93367E2148EA940CD2CD, 530E089E5CF868AECDB2B5548EBE76E0CA98FC74A72897292AB2485734402E3B ] CNG C:\Windows\system32\Drivers\cng.sys
15:07:18.0394 0x0660 CNG - ok
15:07:18.0474 0x0660 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:07:18.0477 0x0660 Compbatt - ok
15:07:18.0494 0x0660 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:07:18.0498 0x0660 CompositeBus - ok
15:07:18.0527 0x0660 COMSysApp - ok
15:07:18.0599 0x0660 [ 61D0FDF2D2269F13D44C23EF951AD36C, 40ED0D8787335AB929D7DB2624D0B3AC1D8DE3494E95987A4DE2ECFD13870D19 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
15:07:18.0619 0x0660 cphs - ok
15:07:18.0644 0x0660 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:07:18.0647 0x0660 crcdisk - ok
15:07:18.0694 0x0660 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:07:18.0703 0x0660 CryptSvc - ok
15:07:18.0818 0x0660 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:07:18.0838 0x0660 DcomLaunch - ok
15:07:18.0920 0x0660 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
15:07:18.0941 0x0660 defragsvc - ok
15:07:18.0988 0x0660 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:07:18.0993 0x0660 DfsC - ok
15:07:19.0041 0x0660 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:07:19.0051 0x0660 Dhcp - ok
15:07:19.0122 0x0660 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
15:07:19.0125 0x0660 discache - ok
15:07:19.0193 0x0660 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
15:07:19.0199 0x0660 Disk - ok
15:07:19.0275 0x0660 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:07:19.0290 0x0660 Dnscache - ok
15:07:19.0331 0x0660 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
15:07:19.0343 0x0660 dot3svc - ok
15:07:19.0363 0x0660 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
15:07:19.0372 0x0660 DPS - ok
15:07:19.0639 0x0660 [ B0C6BA4F50A6B4F2A8334F07BCB80B52, 0A31D3AEB5A08C31DB8B308074D8A2E31E6D284BF73A0B8D94EA440F3233D980 ] DragonUpdater C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
15:07:19.0687 0x0660 DragonUpdater - ok
15:07:19.0730 0x0660 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:07:19.0732 0x0660 drmkaud - ok
15:07:19.0799 0x0660 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:07:19.0822 0x0660 DXGKrnl - ok
15:07:19.0926 0x0660 [ FE96AA1A36E76588C80DF1040286DDE1, 86EED8A0B59CD1930E6282997537ED94333FC7D45E3FE5A4D82057E1C8E5C2CD ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
15:07:19.0940 0x0660 eamonm - ok
15:07:20.0007 0x0660 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
15:07:20.0017 0x0660 EapHost - ok
15:07:20.0185 0x0660 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:07:20.0302 0x0660 ebdrv - ok
15:07:20.0329 0x0660 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS C:\Windows\System32\lsass.exe
15:07:20.0331 0x0660 EFS - ok
15:07:20.0406 0x0660 [ 807BA90D47F8885C09E1D6AFBB706E18, A803FE639C9C87733CA73D8F6C04A8CEB28DC45EEEA6CEC01ED3D4124C8E48EA ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
15:07:20.0418 0x0660 ehdrv - ok
15:07:20.0495 0x0660 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:07:20.0517 0x0660 ehRecvr - ok
15:07:20.0537 0x0660 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
15:07:20.0542 0x0660 ehSched - ok
15:07:20.0715 0x0660 [ 4CB575D97653FA91FFB02DA3105EB084, 59FB4D2485EEDBCC56D92C1F5DF3FEAE67D751F3AD7AEA7590F3C73107C829E8 ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
15:07:20.0746 0x0660 ekrn - ok
15:07:20.0838 0x0660 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:07:20.0856 0x0660 elxstor - ok
15:07:20.0924 0x0660 [ 00A81DC02BA17FB4BFCFA026DC47458F, 1B95BD51727E66B023BA4F2C9F57E69496790582CB272D57FE4BC15BA64952D8 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
15:07:20.0939 0x0660 epfw - ok
15:07:20.0959 0x0660 [ 3B085449438B2BCFD09CC84A0B90D1DB, 098DD64CC446E3960F93C0CDA495069DB6E7D9397CAC857E09E9FA323F5D31B2 ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
15:07:20.0961 0x0660 EpfwLWF - ok
15:07:20.0971 0x0660 [ 91D54747A07F56ADCE1B6CFD3387AF60, 6F27AC896EA360284F6868BA1FEB55AE9325C914E54D73AECC5EBC8328650D41 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
15:07:20.0974 0x0660 epfwwfp - ok
15:07:20.0993 0x0660 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:07:20.0994 0x0660 ErrDev - ok
15:07:21.0086 0x0660 [ 5C212F3830EEB892C221F9CCC0C3A846, 24504D97E07922D3DE76F21773AB2CF14A87B9E36D2C31A172C73D0CA278FAC4 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
15:07:21.0102 0x0660 ETD - ok
15:07:21.0185 0x0660 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
15:07:21.0205 0x0660 EventSystem - ok
15:07:21.0270 0x0660 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
15:07:21.0285 0x0660 exfat - ok
15:07:21.0327 0x0660 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:07:21.0342 0x0660 fastfat - ok
15:07:21.0431 0x0660 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
15:07:21.0462 0x0660 Fax - ok
15:07:21.0508 0x0660 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
15:07:21.0511 0x0660 fdc - ok
15:07:21.0560 0x0660 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
15:07:21.0565 0x0660 fdPHost - ok
15:07:21.0586 0x0660 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
15:07:21.0590 0x0660 FDResPub - ok
15:07:21.0611 0x0660 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:07:21.0615 0x0660 FileInfo - ok
15:07:21.0629 0x0660 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:07:21.0631 0x0660 Filetrace - ok
15:07:21.0643 0x0660 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:07:21.0645 0x0660 flpydisk - ok
15:07:21.0701 0x0660 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:07:21.0710 0x0660 FltMgr - ok
15:07:21.0819 0x0660 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
15:07:21.0852 0x0660 FontCache - ok
15:07:21.0904 0x0660 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:07:21.0908 0x0660 FontCache3.0.0.0 - ok
15:07:21.0932 0x0660 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:07:21.0937 0x0660 FsDepends - ok
15:07:22.0000 0x0660 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:07:22.0003 0x0660 Fs_Rec - ok
15:07:22.0085 0x0660 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:07:22.0099 0x0660 fvevol - ok
15:07:22.0151 0x0660 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:07:22.0154 0x0660 gagp30kx - ok
15:07:22.0343 0x0660 [ 39B47A50DC3D5E898298468307765710, 06268FF65CF69E2B0822477C2D1DA44721B1ADBE4F06C0D3AC0B70C2A18D8DC6 ] GeekBuddyRSP C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
15:07:22.0397 0x0660 GeekBuddyRSP - ok
15:07:22.0499 0x0660 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
15:07:22.0526 0x0660 gpsvc - ok
15:07:22.0632 0x0660 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:22.0640 0x0660 gupdate - ok
15:07:22.0653 0x0660 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:22.0661 0x0660 gupdatem - ok
15:07:22.0728 0x0660 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:07:22.0731 0x0660 hcw85cir - ok
15:07:22.0828 0x0660 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:07:22.0853 0x0660 HdAudAddService - ok
15:07:22.0910 0x0660 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:07:22.0919 0x0660 HDAudBus - ok
15:07:22.0929 0x0660 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:07:22.0934 0x0660 HidBatt - ok
15:07:22.0956 0x0660 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:07:22.0961 0x0660 HidBth - ok
15:07:22.0968 0x0660 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
15:07:22.0971 0x0660 HidIr - ok
15:07:23.0001 0x0660 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
15:07:23.0004 0x0660 hidserv - ok
15:07:23.0068 0x0660 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
15:07:23.0072 0x0660 HidUsb - ok
15:07:23.0133 0x0660 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:07:23.0143 0x0660 hkmsvc - ok
15:07:23.0205 0x0660 [ D3A6BCD0047EE7923C2C3960C4CDCA4D, DC947773EE362120CA1A41194A0B52C03AA608E00233B66E81A6C9AC73573EDE ] HMD C:\Windows\system32\DRIVERS\hmd.sys
15:07:23.0208 0x0660 HMD - ok
15:07:23.0237 0x0660 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:07:23.0247 0x0660 HomeGroupListener - ok
15:07:23.0280 0x0660 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:07:23.0289 0x0660 HomeGroupProvider - ok
15:07:23.0352 0x0660 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:07:23.0358 0x0660 HpSAMD - ok
15:07:23.0433 0x0660 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:07:23.0458 0x0660 HTTP - ok
15:07:23.0507 0x0660 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:07:23.0508 0x0660 hwpolicy - ok
15:07:23.0561 0x0660 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:07:23.0570 0x0660 i8042prt - ok
15:07:23.0680 0x0660 [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
15:07:23.0702 0x0660 iaStorA - ok
15:07:23.0814 0x0660 [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
15:07:23.0818 0x0660 IAStorDataMgrSvc - ok
15:07:23.0831 0x0660 [ CE5CD8CBE940965867D507AB8EA2795A, 1CC2C23A1436E4C911DD3B942D8F6DABB7249AB04426F9AB6B6045034226DD25 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
15:07:23.0836 0x0660 iaStorF - ok
15:07:23.0918 0x0660 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:07:23.0935 0x0660 iaStorV - ok
15:07:24.0000 0x0660 [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
15:07:24.0012 0x0660 ICCS - ok
15:07:24.0111 0x0660 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:07:24.0133 0x0660 idsvc - ok
15:07:24.0389 0x0660 [ 690E1FCE66B5F0DB3A00B30E9CC2D617, 157C78A1DD902C2204C6733F5CE502A9240876E8CB3FB2FF44EF2716B65BC4F4 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:07:24.0602 0x0660 igfx - ok
15:07:24.0661 0x0660 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:07:24.0666 0x0660 iirsp - ok
15:07:24.0740 0x0660 [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll
15:07:24.0767 0x0660 IKEEXT - ok
15:07:24.0838 0x0660 [ 7D3B8880385ACFA47174847983C4A7FA, CDD3AD80885C6D321C5DFDC8E83F3E673D5FB5A6A49CC45E343F630386D28662 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
15:07:24.0846 0x0660 inspect - ok
15:07:25.0036 0x0660 [ 46C58BFDE42460C5FD7222CD3BE11402, 40D74C81DDA5A18894A8D487C716D41849B22E390012184DFB5F2231A3687256 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:07:25.0115 0x0660 IntcAzAudAddService - ok
15:07:25.0212 0x0660 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
15:07:25.0226 0x0660 IntcDAud - ok
15:07:25.0318 0x0660 [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:07:25.0340 0x0660 Intel(R) Capability Licensing Service Interface - ok
15:07:25.0385 0x0660 [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
15:07:25.0407 0x0660 Intel(R) Capability Licensing Service TCP IP Interface - ok
15:07:25.0438 0x0660 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
15:07:25.0439 0x0660 intelide - ok
15:07:25.0513 0x0660 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:07:25.0518 0x0660 intelppm - ok
15:07:25.0591 0x0660 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:07:25.0601 0x0660 IPBusEnum - ok
15:07:25.0624 0x0660 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:07:25.0630 0x0660 IpFilterDriver - ok
15:07:25.0697 0x0660 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:07:25.0714 0x0660 iphlpsvc - ok
15:07:25.0721 0x0660 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:07:25.0724 0x0660 IPMIDRV - ok
15:07:25.0730 0x0660 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:07:25.0734 0x0660 IPNAT - ok
15:07:25.0782 0x0660 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:07:25.0783 0x0660 IRENUM - ok
15:07:25.0791 0x0660 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:07:25.0793 0x0660 isapnp - ok
15:07:25.0823 0x0660 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:07:25.0831 0x0660 iScsiPrt - ok
15:07:25.0901 0x0660 [ 1128B38EEC9DAF1B36373B65E87C00A3, 071E9454B9B442C2C3272FBC1AE5E92911A23CDB99F1C718C34067A70B99F910 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
15:07:25.0913 0x0660 jhi_service - ok
15:07:25.0967 0x0660 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:07:25.0972 0x0660 kbdclass - ok
15:07:26.0028 0x0660 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:07:26.0032 0x0660 kbdhid - ok
15:07:26.0087 0x0660 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso C:\Windows\system32\lsass.exe
15:07:26.0092 0x0660 KeyIso - ok
15:07:26.0191 0x0660 [ 783BEB99743BACB9586CCB70356449C5, CEE63FC2E7937B181743D4CFE837FFB29E3BF94BBA5394A3B5FFAF5142EF0D48 ] KeyScrambler C:\Windows\system32\drivers\keyscrambler.sys
15:07:26.0204 0x0660 KeyScrambler - ok
15:07:26.0239 0x0660 [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:07:26.0246 0x0660 KSecDD - ok
15:07:26.0269 0x0660 [ 26C43A7C2862447EC59DEDA188D1DA07, 5363BF87E650FE2010ACA9417D6920FF4ED752256FF47732882E9B2BA1ED154B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:07:26.0276 0x0660 KSecPkg - ok
15:07:26.0327 0x0660 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:07:26.0329 0x0660 ksthunk - ok
15:07:26.0401 0x0660 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
15:07:26.0429 0x0660 KtmRm - ok
15:07:26.0505 0x0660 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:07:26.0519 0x0660 LanmanServer - ok
15:07:26.0550 0x0660 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:07:26.0558 0x0660 LanmanWorkstation - ok
15:07:26.0619 0x0660 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:07:26.0623 0x0660 lltdio - ok
15:07:26.0668 0x0660 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:07:26.0682 0x0660 lltdsvc - ok
15:07:26.0702 0x0660 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:07:26.0706 0x0660 lmhosts - ok
15:07:26.0809 0x0660 [ 388B04A767082D0B0581AF475DF943D9, B1E12445B79C4D1EFAABB38096EED2C8A127479AF1602476DFDDECC122A828CA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:07:26.0823 0x0660 LMS - ok
15:07:26.0884 0x0660 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:07:26.0893 0x0660 LSI_FC - ok
15:07:26.0908 0x0660 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:07:26.0916 0x0660 LSI_SAS - ok
15:07:26.0929 0x0660 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:07:26.0932 0x0660 LSI_SAS2 - ok
15:07:26.0940 0x0660 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:07:26.0944 0x0660 LSI_SCSI - ok
15:07:27.0019 0x0660 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
15:07:27.0026 0x0660 luafv - ok
15:07:27.0123 0x0660 [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
15:07:27.0142 0x0660 LVRS64 - ok
15:07:27.0364 0x0660 [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
15:07:27.0472 0x0660 LVUVC64 - ok
15:07:27.0541 0x0660 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:07:27.0545 0x0660 MBAMProtector - ok
15:07:27.0591 0x0660 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:07:27.0609 0x0660 MBAMScheduler - ok
15:07:27.0708 0x0660 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:07:27.0726 0x0660 MBAMService - ok
15:07:27.0755 0x0660 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:07:27.0759 0x0660 Mcx2Svc - ok
15:07:27.0783 0x0660 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
15:07:27.0784 0x0660 megasas - ok
15:07:27.0855 0x0660 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:07:27.0869 0x0660 MegaSR - ok
15:07:27.0931 0x0660 [ CFBDB416E1DC172327C099DB122FE15D, 64A497FC8211C00BAD593C381D55F414DC7C7EB226AA9406F3C165DEF3F1243A ] MEIx64 C:\Windows\system32\DRIVERS\TeeDriverx64.sys
15:07:27.0937 0x0660 MEIx64 - ok
15:07:27.0997 0x0660 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
15:07:28.0002 0x0660 MMCSS - ok
15:07:28.0020 0x0660 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
15:07:28.0023 0x0660 Modem - ok
15:07:28.0069 0x0660 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:07:28.0072 0x0660 monitor - ok
15:07:28.0123 0x0660 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:07:28.0126 0x0660 mouclass - ok
15:07:28.0156 0x0660 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\drivers\mouhid.sys
15:07:28.0160 0x0660 mouhid - ok
15:07:28.0210 0x0660 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:07:28.0214 0x0660 mountmgr - ok
15:07:28.0286 0x0660 [ 0329A45C849C9D77901094B8FFE8BBB9, 2151C15A4185FABBC3367B8213017B45E08C43E26E1D8942E707E217C6A5EDA7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:07:28.0295 0x0660 MozillaMaintenance - ok
15:07:28.0321 0x0660 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
15:07:28.0332 0x0660 mpio - ok
15:07:28.0365 0x0660 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:07:28.0370 0x0660 mpsdrv - ok
15:07:28.0441 0x0660 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:07:28.0470 0x0660 MpsSvc - ok
15:07:28.0511 0x0660 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:07:28.0516 0x0660 MRxDAV - ok
15:07:28.0568 0x0660 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:07:28.0581 0x0660 mrxsmb - ok
15:07:28.0613 0x0660 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:07:28.0624 0x0660 mrxsmb10 - ok
15:07:28.0642 0x0660 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:07:28.0648 0x0660 mrxsmb20 - ok
15:07:28.0677 0x0660 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
15:07:28.0681 0x0660 msahci - ok
15:07:28.0723 0x0660 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:07:28.0727 0x0660 msdsm - ok
15:07:28.0757 0x0660 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
15:07:28.0762 0x0660 MSDTC - ok
15:07:28.0811 0x0660 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:07:28.0813 0x0660 Msfs - ok
15:07:28.0851 0x0660 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:07:28.0854 0x0660 mshidkmdf - ok
15:07:28.0875 0x0660 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:07:28.0878 0x0660 msisadrv - ok
15:07:28.0913 0x0660 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:07:28.0925 0x0660 MSiSCSI - ok
15:07:28.0932 0x0660 msiserver - ok
15:07:28.0986 0x0660 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:07:28.0989 0x0660 MSKSSRV - ok
15:07:29.0014 0x0660 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:07:29.0016 0x0660 MSPCLOCK - ok
15:07:29.0033 0x0660 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:07:29.0035 0x0660 MSPQM - ok
15:07:29.0073 0x0660 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:07:29.0090 0x0660 MsRPC - ok
15:07:29.0106 0x0660 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:07:29.0108 0x0660 mssmbios - ok
15:07:29.0136 0x0660 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:07:29.0137 0x0660 MSTEE - ok
15:07:29.0154 0x0660 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:07:29.0155 0x0660 MTConfig - ok
15:07:29.0176 0x0660 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
15:07:29.0179 0x0660 Mup - ok
15:07:29.0226 0x0660 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
15:07:29.0241 0x0660 napagent - ok
15:07:29.0291 0x0660 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:07:29.0301 0x0660 NativeWifiP - ok
15:07:29.0399 0x0660 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
15:07:29.0421 0x0660 NDIS - ok
15:07:29.0439 0x0660 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:07:29.0441 0x0660 NdisCap - ok
15:07:29.0487 0x0660 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:07:29.0490 0x0660 NdisTapi - ok
15:07:29.0516 0x0660 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:07:29.0520 0x0660 Ndisuio - ok
15:07:29.0542 0x0660 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:07:29.0551 0x0660 NdisWan - ok
15:07:29.0568 0x0660 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:07:29.0571 0x0660 NDProxy - ok
15:07:29.0614 0x0660 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:07:29.0617 0x0660 NetBIOS - ok
15:07:29.0627 0x0660 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:07:29.0636 0x0660 NetBT - ok
15:07:29.0680 0x0660 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon C:\Windows\system32\lsass.exe
15:07:29.0683 0x0660 Netlogon - ok
15:07:29.0760 0x0660 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
15:07:29.0773 0x0660 Netman - ok
15:07:29.0814 0x0660 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
15:07:29.0829 0x0660 netprofm - ok
15:07:29.0859 0x0660 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:07:29.0863 0x0660 NetTcpPortSharing - ok
15:07:29.0913 0x0660 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:07:29.0919 0x0660 nfrd960 - ok
15:07:29.0962 0x0660 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:07:29.0986 0x0660 NlaSvc - ok
15:07:30.0005 0x0660 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:07:30.0008 0x0660 Npfs - ok
15:07:30.0035 0x0660 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
15:07:30.0039 0x0660 nsi - ok
15:07:30.0054 0x0660 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:07:30.0056 0x0660 nsiproxy - ok
15:07:30.0163 0x0660 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:07:30.0207 0x0660 Ntfs - ok
15:07:30.0230 0x0660 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
15:07:30.0231 0x0660 Null - ok
15:07:30.0311 0x0660 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:07:30.0321 0x0660 nvraid - ok
15:07:30.0349 0x0660 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:07:30.0356 0x0660 nvstor - ok
15:07:30.0405 0x0660 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:07:30.0410 0x0660 nv_agp - ok
15:07:30.0420 0x0660 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:07:30.0424 0x0660 ohci1394 - ok
15:07:30.0457 0x0660 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:07:30.0468 0x0660 p2pimsvc - ok
15:07:30.0495 0x0660 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
15:07:30.0509 0x0660 p2psvc - ok
15:07:30.0523 0x0660 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
15:07:30.0527 0x0660 Parport - ok
15:07:30.0556 0x0660 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:07:30.0560 0x0660 partmgr - ok
15:07:30.0586 0x0660 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
15:07:30.0596 0x0660 PcaSvc - ok
15:07:30.0616 0x0660 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
15:07:30.0622 0x0660 pci - ok
15:07:30.0645 0x0660 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
15:07:30.0646 0x0660 pciide - ok
15:07:30.0670 0x0660 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:07:30.0676 0x0660 pcmcia - ok
15:07:30.0690 0x0660 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
15:07:30.0697 0x0660 pcw - ok
15:07:30.0777 0x0660 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:07:30.0795 0x0660 PEAUTH - ok
15:07:30.0887 0x0660 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:07:30.0893 0x0660 PerfHost - ok
15:07:30.0998 0x0660 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
15:07:31.0037 0x0660 pla - ok
15:07:31.0123 0x0660 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:07:31.0141 0x0660 PlugPlay - ok
15:07:31.0175 0x0660 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:07:31.0178 0x0660 PNRPAutoReg - ok
15:07:31.0201 0x0660 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:07:31.0211 0x0660 PNRPsvc - ok
15:07:31.0272 0x0660 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:07:31.0288 0x0660 PolicyAgent - ok
15:07:31.0324 0x0660 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
15:07:31.0331 0x0660 Power - ok
15:07:31.0398 0x0660 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:07:31.0404 0x0660 PptpMiniport - ok
15:07:31.0418 0x0660 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
15:07:31.0422 0x0660 Processor - ok
15:07:31.0488 0x0660 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
15:07:31.0499 0x0660 ProfSvc - ok
15:07:31.0511 0x0660 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
15:07:31.0514 0x0660 ProtectedStorage - ok
15:07:31.0569 0x0660 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:07:31.0576 0x0660 Psched - ok
15:07:31.0646 0x0660 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
15:07:31.0649 0x0660 PSI - ok
15:07:31.0802 0x0660 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:07:31.0837 0x0660 ql2300 - ok
15:07:31.0895 0x0660 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:07:31.0905 0x0660 ql40xx - ok
15:07:31.0948 0x0660 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
15:07:31.0962 0x0660 QWAVE - ok
15:07:31.0980 0x0660 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:07:31.0984 0x0660 QWAVEdrv - ok
15:07:32.0005 0x0660 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:07:32.0008 0x0660 RasAcd - ok
15:07:32.0060 0x0660 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:07:32.0064 0x0660 RasAgileVpn - ok
15:07:32.0084 0x0660 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
15:07:32.0091 0x0660 RasAuto - ok
15:07:32.0113 0x0660 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:07:32.0120 0x0660 Rasl2tp - ok
15:07:32.0158 0x0660 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
15:07:32.0176 0x0660 RasMan - ok
15:07:32.0192 0x0660 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:07:32.0197 0x0660 RasPppoe - ok
15:07:32.0207 0x0660 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:07:32.0210 0x0660 RasSstp - ok
15:07:32.0233 0x0660 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:07:32.0242 0x0660 rdbss - ok
15:07:32.0264 0x0660 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:07:32.0265 0x0660 rdpbus - ok
15:07:32.0276 0x0660 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:07:32.0278 0x0660 RDPCDD - ok
15:07:32.0291 0x0660 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:07:32.0293 0x0660 RDPENCDD - ok
15:07:32.0299 0x0660 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:07:32.0300 0x0660 RDPREFMP - ok
15:07:32.0350 0x0660 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:07:32.0357 0x0660 RDPWD - ok
15:07:32.0380 0x0660 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:07:32.0386 0x0660 rdyboost - ok
15:07:32.0429 0x0660 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:07:32.0440 0x0660 RemoteAccess - ok
15:07:32.0512 0x0660 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:07:32.0528 0x0660 RemoteRegistry - ok
15:07:32.0605 0x0660 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:07:32.0616 0x0660 RFCOMM - ok
15:07:32.0667 0x0660 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:07:32.0676 0x0660 RpcEptMapper - ok
15:07:32.0696 0x0660 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
15:07:32.0705 0x0660 RpcLocator - ok
15:07:32.0766 0x0660 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
15:07:32.0781 0x0660 RpcSs - ok
15:07:32.0829 0x0660 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:07:32.0833 0x0660 rspndr - ok
15:07:32.0945 0x0660 [ EF91E0806C01806C3CF62AF006901127, 1F49D57B6598EF0923DF70FD31B755B29D5ED4D38840D7619D3399B759FD579F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:07:32.0974 0x0660 RTL8167 - ok
15:07:33.0045 0x0660 [ 62DB6CC4B0818F1B5F3441241B098F12, 7A53B3FBA3F82EDE6FA688E531FBE7EC9E1AE329090C0AFE0DCD64F65BD90F21 ] SABI C:\Windows\system32\Drivers\SABI.sys
15:07:33.0049 0x0660 SABI - ok
15:07:33.0064 0x0660 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs C:\Windows\system32\lsass.exe
15:07:33.0070 0x0660 SamSs - ok
15:07:33.0149 0x0660 [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
15:07:33.0152 0x0660 SASDIFSV - ok
15:07:33.0216 0x0660 [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
15:07:33.0219 0x0660 SASKUTIL - ok
15:07:33.0239 0x0660 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:07:33.0251 0x0660 sbp2port - ok
15:07:33.0326 0x0660 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:07:33.0344 0x0660 SCardSvr - ok
15:07:33.0380 0x0660 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:07:33.0384 0x0660 scfilter - ok
15:07:33.0450 0x0660 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
15:07:33.0482 0x0660 Schedule - ok
15:07:33.0512 0x0660 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:07:33.0515 0x0660 SCPolicySvc - ok
15:07:33.0548 0x0660 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:07:33.0555 0x0660 SDRSVC - ok
15:07:33.0582 0x0660 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:07:33.0584 0x0660 secdrv - ok
15:07:33.0601 0x0660 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
15:07:33.0605 0x0660 seclogon - ok
15:07:33.0751 0x0660 [ 95A49509BBBC987E64D967273A130E56, 77C6CA1CCA55B0655F7A01137655843D91F5EDCAAD88472BD0DFE7C2C1C564FC ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
15:07:33.0780 0x0660 Secunia PSI Agent - ok
15:07:33.0864 0x0660 [ 375E458884DD271AF6CCF2D723D51501, 4608AF27DEA5160D036CA7D6023AE49E1C1E6241AF500BDCF7B571BDFE3E198B ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
15:07:33.0879 0x0660 Secunia Update Agent - ok
15:07:33.0901 0x0660 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
15:07:33.0904 0x0660 SENS - ok
15:07:33.0937 0x0660 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:07:33.0940 0x0660 SensrSvc - ok
15:07:33.0988 0x0660 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:07:33.0992 0x0660 Serenum - ok
15:07:34.0069 0x0660 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
15:07:34.0074 0x0660 Serial - ok
15:07:34.0099 0x0660 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:07:34.0101 0x0660 sermouse - ok
15:07:34.0139 0x0660 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
15:07:34.0145 0x0660 SessionEnv - ok
15:07:34.0149 0x0660 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:07:34.0151 0x0660 sffdisk - ok
15:07:34.0155 0x0660 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:07:34.0156 0x0660 sffp_mmc - ok
15:07:34.0161 0x0660 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:07:34.0162 0x0660 sffp_sd - ok
15:07:34.0167 0x0660 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:07:34.0168 0x0660 sfloppy - ok
15:07:34.0205 0x0660 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:07:34.0216 0x0660 SharedAccess - ok
15:07:34.0254 0x0660 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:07:34.0268 0x0660 ShellHWDetection - ok
15:07:34.0321 0x0660 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:07:34.0326 0x0660 SiSRaid2 - ok
15:07:34.0340 0x0660 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:07:34.0346 0x0660 SiSRaid4 - ok
15:07:34.0605 0x0660 [ 9F712B26EE3B0242DE997A42FD302E2C, 12663EB108F158282A965EE70980627C2F2332BA7944D7DE03B78E18BEB87D26 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:07:34.0680 0x0660 Skype C2C Service - ok
15:07:34.0731 0x0660 [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:07:34.0735 0x0660 SkypeUpdate - ok
15:07:34.0807 0x0660 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:07:34.0811 0x0660 Smb - ok
15:07:34.0914 0x0660 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:07:34.0921 0x0660 SNMPTRAP - ok
15:07:34.0956 0x0660 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
15:07:34.0959 0x0660 spldr - ok
15:07:35.0009 0x0660 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
15:07:35.0031 0x0660 Spooler - ok
15:07:35.0187 0x0660 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
15:07:35.0269 0x0660 sppsvc - ok
15:07:35.0284 0x0660 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:07:35.0288 0x0660 sppuinotify - ok
15:07:35.0324 0x0660 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:07:35.0337 0x0660 srv - ok
15:07:35.0365 0x0660 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:07:35.0377 0x0660 srv2 - ok
15:07:35.0416 0x0660 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:07:35.0424 0x0660 srvnet - ok
15:07:35.0499 0x0660 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:07:35.0517 0x0660 SSDPSRV - ok
15:07:35.0536 0x0660 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:07:35.0543 0x0660 SstpSvc - ok
15:07:35.0563 0x0660 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:07:35.0565 0x0660 stexstor - ok
15:07:35.0631 0x0660 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
15:07:35.0649 0x0660 stisvc - ok
15:07:35.0670 0x0660 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:07:35.0671 0x0660 swenum - ok
15:07:35.0702 0x0660 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
15:07:35.0719 0x0660 swprv - ok
15:07:35.0805 0x0660 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
15:07:35.0853 0x0660 SysMain - ok
15:07:36.0025 0x0660 [ 196E20CE11EDB0EA3EDA491FCD3C943B, DDE0CA36C1E2C15621CAB6CCD84EB3F415F800B62629C213016B0C2FB04E7035 ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
15:07:36.0047 0x0660 SystemExplorerHelpService - ok
15:07:36.0082 0x0660 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:07:36.0088 0x0660 TabletInputService - ok
15:07:36.0147 0x0660 [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
15:07:36.0152 0x0660 tap0901 - ok
15:07:36.0199 0x0660 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
15:07:36.0223 0x0660 TapiSrv - ok
15:07:36.0246 0x0660 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
15:07:36.0251 0x0660 TBS - ok
15:07:36.0378 0x0660 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:07:36.0422 0x0660 Tcpip - ok
15:07:36.0504 0x0660 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:07:36.0547 0x0660 TCPIP6 - ok
15:07:36.0587 0x0660 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:07:36.0593 0x0660 tcpipreg - ok
15:07:36.0633 0x0660 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:07:36.0635 0x0660 TDPIPE - ok
15:07:36.0667 0x0660 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:07:36.0669 0x0660 TDTCP - ok
15:07:36.0732 0x0660 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:07:36.0740 0x0660 tdx - ok
15:07:36.0781 0x0660 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:07:36.0785 0x0660 TermDD - ok
15:07:36.0866 0x0660 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
15:07:36.0888 0x0660 TermService - ok
15:07:36.0904 0x0660 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
15:07:36.0908 0x0660 Themes - ok
15:07:36.0925 0x0660 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
15:07:36.0928 0x0660 THREADORDER - ok
15:07:36.0952 0x0660 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
15:07:36.0957 0x0660 TrkWks - ok
15:07:37.0038 0x0660 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:07:37.0052 0x0660 TrustedInstaller - ok
15:07:37.0090 0x0660 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:07:37.0092 0x0660 tssecsrv - ok
15:07:37.0150 0x0660 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:07:37.0156 0x0660 TsUsbFlt - ok
15:07:37.0163 0x0660 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:07:37.0167 0x0660 TsUsbGD - ok
15:07:37.0218 0x0660 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:07:37.0223 0x0660 tunnel - ok
15:07:37.0242 0x0660 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:07:37.0245 0x0660 uagp35 - ok
15:07:37.0265 0x0660 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:07:37.0275 0x0660 udfs - ok
15:07:37.0310 0x0660 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:07:37.0313 0x0660 UI0Detect - ok
15:07:37.0374 0x0660 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:07:37.0380 0x0660 uliagpkx - ok
15:07:37.0444 0x0660 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:07:37.0450 0x0660 umbus - ok
15:07:37.0478 0x0660 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
15:07:37.0481 0x0660 UmPass - ok
15:07:37.0527 0x0660 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
15:07:37.0549 0x0660 upnphost - ok
15:07:37.0605 0x0660 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:07:37.0612 0x0660 usbaudio - ok
15:07:37.0638 0x0660 [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:07:37.0644 0x0660 usbccgp - ok
15:07:37.0693 0x0660 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:07:37.0699 0x0660 usbcir - ok
15:07:37.0740 0x0660 [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\drivers\usbehci.sys
15:07:37.0745 0x0660 usbehci - ok
15:07:37.0777 0x0660 [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:07:37.0789 0x0660 usbhub - ok
15:07:37.0803 0x0660 [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:07:37.0805 0x0660 usbohci - ok
15:07:37.0828 0x0660 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
15:07:37.0830 0x0660 usbprint - ok
15:07:37.0864 0x0660 [ 8099433EC42EC43A2A4AC9A2BFFE18E9, B6D739B5296AC0A4FFA1090941AF159FC56676FCB7E7A8386D33577BB885BE8D ] usbsmi C:\Windows\system32\DRIVERS\SMIksdrv.sys
15:07:37.0872 0x0660 usbsmi - ok
15:07:37.0902 0x0660 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
15:07:37.0906 0x0660 USBSTOR - ok
15:07:37.0936 0x0660 [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:07:37.0938 0x0660 usbuhci - ok
15:07:38.0010 0x0660 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:07:38.0024 0x0660 usbvideo - ok
15:07:38.0054 0x0660 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
15:07:38.0059 0x0660 UxSms - ok
15:07:38.0077 0x0660 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc C:\Windows\system32\lsass.exe
15:07:38.0079 0x0660 VaultSvc - ok
15:07:38.0145 0x0660 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:07:38.0149 0x0660 vdrvroot - ok
15:07:38.0201 0x0660 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
15:07:38.0221 0x0660 vds - ok
15:07:38.0265 0x0660 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:07:38.0267 0x0660 vga - ok
15:07:38.0291 0x0660 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:07:38.0295 0x0660 VgaSave - ok
15:07:38.0311 0x0660 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:07:38.0319 0x0660 vhdmp - ok
15:07:38.0342 0x0660 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
15:07:38.0344 0x0660 viaide - ok
15:07:38.0364 0x0660 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:07:38.0367 0x0660 volmgr - ok
15:07:38.0393 0x0660 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:07:38.0402 0x0660 volmgrx - ok
15:07:38.0420 0x0660 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:07:38.0428 0x0660 volsnap - ok
15:07:38.0456 0x0660 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:07:38.0461 0x0660 vsmraid - ok
15:07:38.0570 0x0660 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
15:07:38.0615 0x0660 VSS - ok
15:07:38.0639 0x0660 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:07:38.0641 0x0660 vwifibus - ok
15:07:38.0676 0x0660 [ 13A0DECD1794DE60A8427862C8669D27, 4024AF9F2F052BC80C85F5B9A671499C20AF38838206CC649E6EFE37C380D3BF ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:07:38.0679 0x0660 vwififlt - ok
15:07:38.0762 0x0660 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
15:07:38.0783 0x0660 W32Time - ok
15:07:38.0803 0x0660 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:07:38.0805 0x0660 WacomPen - ok
15:07:38.0875 0x0660 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:07:38.0882 0x0660 WANARP - ok
15:07:38.0894 0x0660 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:07:38.0899 0x0660 Wanarpv6 - ok
15:07:39.0028 0x0660 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:07:39.0058 0x0660 WatAdminSvc - ok
15:07:39.0164 0x0660 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
15:07:39.0206 0x0660 wbengine - ok
15:07:39.0227 0x0660 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:07:39.0235 0x0660 WbioSrvc - ok
15:07:39.0336 0x0660 [ 8F105ADE434064ADFBBFBE198513B84F, 613F6C224D5FE079C038C2813BC92F769877AEC8E0071026B63D2A548371880E ] WCMVCAM C:\Windows\system32\DRIVERS\wcmvcam64.sys
15:07:39.0364 0x0660 WCMVCAM - ok
15:07:39.0395 0x0660 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:07:39.0407 0x0660 wcncsvc - ok
15:07:39.0439 0x0660 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:07:39.0443 0x0660 WcsPlugInService - ok
15:07:39.0478 0x0660 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
15:07:39.0480 0x0660 Wd - ok
15:07:39.0540 0x0660 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:07:39.0559 0x0660 Wdf01000 - ok
15:07:39.0613 0x0660 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:07:39.0618 0x0660 WdiServiceHost - ok
15:07:39.0624 0x0660 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:07:39.0629 0x0660 WdiSystemHost - ok
15:07:39.0665 0x0660 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
15:07:39.0675 0x0660 WebClient - ok
15:07:39.0702 0x0660 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:07:39.0712 0x0660 Wecsvc - ok
15:07:39.0753 0x0660 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:07:39.0758 0x0660 wercplsupport - ok
15:07:39.0774 0x0660 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
15:07:39.0779 0x0660 WerSvc - ok
15:07:39.0839 0x0660 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:07:39.0840 0x0660 WfpLwf - ok
15:07:39.0890 0x0660 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:07:39.0894 0x0660 WIMMount - ok
15:07:39.0922 0x0660 WinDefend - ok
15:07:39.0956 0x0660 WinHttpAutoProxySvc - ok
15:07:40.0022 0x0660 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:07:40.0030 0x0660 Winmgmt - ok
15:07:40.0135 0x0660 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
15:07:40.0191 0x0660 WinRM - ok
15:07:40.0369 0x0660 [ A7C993F86BE5AF035DE06DF9160D7008, 9890293AD584C846C5F2444BEF8E6130C6EE450EFF0387FCECDE056CD7D0C02C ] WiseBootAssistant C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
15:07:40.0385 0x0660 WiseBootAssistant - ok
15:07:40.0479 0x0660 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:07:40.0514 0x0660 Wlansvc - ok
15:07:40.0568 0x0660 [ 1DAEB80C233D35F8EF285217AE386307, 90B859E882C2B5F15EA37D23B9882D506FC96CB4FA73800471868537C70CB561 ] wltrysvc C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
15:07:40.0570 0x0660 wltrysvc - ok
15:07:40.0599 0x0660 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:07:40.0601 0x0660 WmiAcpi - ok
15:07:40.0640 0x0660 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:07:40.0647 0x0660 wmiApSrv - ok
15:07:40.0677 0x0660 WMPNetworkSvc - ok
15:07:40.0707 0x0660 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:07:40.0711 0x0660 WPCSvc - ok
15:07:40.0731 0x0660 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:07:40.0738 0x0660 WPDBusEnum - ok
15:07:40.0756 0x0660 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:07:40.0758 0x0660 ws2ifsl - ok
15:07:40.0786 0x0660 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
15:07:40.0792 0x0660 wscsvc - ok
15:07:40.0797 0x0660 WSearch - ok
15:07:40.0943 0x0660 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
15:07:41.0009 0x0660 wuauserv - ok
15:07:41.0045 0x0660 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:07:41.0049 0x0660 WudfPf - ok
15:07:41.0102 0x0660 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:07:41.0108 0x0660 WUDFRd - ok
15:07:41.0146 0x0660 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:07:41.0154 0x0660 wudfsvc - ok
15:07:41.0208 0x0660 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
15:07:41.0226 0x0660 WwanSvc - ok
15:07:41.0265 0x0660 ================ Scan global ===============================
15:07:41.0306 0x0660 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
15:07:41.0348 0x0660 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:07:41.0368 0x0660 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:07:41.0407 0x0660 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:07:41.0442 0x0660 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
15:07:41.0451 0x0660 [ Global ] - ok
15:07:41.0451 0x0660 ================ Scan MBR ==================================
15:07:41.0464 0x0660 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:07:41.0670 0x0660 \Device\Harddisk0\DR0 - ok
15:07:41.0671 0x0660 ================ Scan VBR ==================================
15:07:41.0676 0x0660 [ 1F9F39C63441F304C82C2BB3A4D468BA ] \Device\Harddisk0\DR0\Partition1
15:07:41.0679 0x0660 \Device\Harddisk0\DR0\Partition1 - ok
15:07:41.0696 0x0660 [ 2C80B94A4B1D6689113B4CECBF2358EB ] \Device\Harddisk0\DR0\Partition2
15:07:41.0698 0x0660 \Device\Harddisk0\DR0\Partition2 - ok
15:07:41.0699 0x0660 Waiting for KSN requests completion. In queue: 71
15:07:42.0699 0x0660 Waiting for KSN requests completion. In queue: 71
15:07:43.0699 0x0660 Waiting for KSN requests completion. In queue: 71
15:07:44.0749 0x0660 AV detected via SS2: ESET Smart Security 7.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.302.0 ), 0x41000 ( enabled : updated )
15:07:44.0754 0x0660 FW detected via SS2: ESET Personal firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.302.0 ), 0x40010 ( disabled )
15:07:44.0758 0x0660 FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 6.3.32439.2937 ), 0x61010 ( enabled )
15:07:47.0545 0x0660 ============================================================
15:07:47.0545 0x0660 Scan finished
15:07:47.0545 0x0660 ============================================================
15:07:47.0561 0x0c38 Detected object count: 0
15:07:47.0561 0x0c38 Actual detected object count: 0
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby nunped » October 30th, 2013, 4:51 am

Hi auto100,

Please do the following:
Step 1
  • Right click OTL.exe and select "Run as Administrator" to launch the program.
  • Copy/Paste the contents of the code box below into the Custom Scans/Fixes box.
Code: Select all
:commands
[createrestorepoint]

:OTL
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1089015780-974823976-2004761081-1000\..\SearchScopes,DefaultScope =
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:5C321E34

:files
ipconfig /flushdns /c

:commands
[emptytemp]

  • Click the Run Fix button.
  • OTL will now process the instructions.
  • When finished a box will open asking you to open the fix log, click OK.
  • The fix log will open.
  • Copy/Paste the log in your next reply please.

Note: If necessary, OTL may re-boot your computer, or request that you do so, if it does, re-boot your computer. A log will be produced upon re-boot.

Step 2 - SystemLook
Please download SystemLook from the link below and save it to your Desktop.

For 64 bit Systems
  • Right-click SystemLook.exe and select "Run as Administrator" to run it.
  • Copy and paste the content of the following codebox into the main textfield:
    Code: Select all
    :filefind
    *Fun4IM*
    *Bandoo*
    *Searchqu*
    *iLivid*
    *whitesmoke*
    *datamngr*
    *trolltech*
    *ask*
    
    :folderfind
    *Fun4IM*
    *Bandoo*
    *Searchqu*
    *iLivid*
    *whitesmoke*
    *datamngr*
    *trolltech*
    *ask*
    
    :Regfind
    Fun4IM
    Bandoo
    Searchqu
    iLivid
    whitesmoke
    datamngr
    kelkoopartners
    trolltech
    ask
    
  • Click the Look button to start the scan.
    The scan may take 15 minutes or a bit more to run on a large machine. Please be patient.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 30th, 2013, 9:39 am

OTL Log (Custom Scan)
All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-21-1089015780-974823976-2004761081-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
ADS C:\ProgramData\TEMP:5C321E34 deleted successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Jack\Desktop\cmd.bat deleted successfully.
C:\Users\Jack\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Jack
->Temp folder emptied: 1936853598 bytes
->Temporary Internet Files folder emptied: 312834792 bytes
->FireFox cache emptied: 14102871 bytes
->Google Chrome cache emptied: 385661519 bytes
->Flash cache emptied: 1667 bytes

User: Jack 2
->Temp folder emptied: 295791 bytes
->Temporary Internet Files folder emptied: 1832659 bytes
->Google Chrome cache emptied: 30844592 bytes
->Flash cache emptied: 492 bytes

User: Jack Standard
->Temp folder emptied: 105417821 bytes
->Temporary Internet Files folder emptied: 237344 bytes
->FireFox cache emptied: 14754948 bytes
->Google Chrome cache emptied: 7939834 bytes
->Flash cache emptied: 959 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4670348 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33298 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 2,685.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10302013_131742

Files\Folders moved on Reboot...
C:\Users\Jack\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Jack\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 30th, 2013, 9:44 am

System Look Log

SystemLook 04.09.10 by jpshortstuff
Log created at 13:30 on 30/10/2013 by Jack
Administrator - Elevation successful

========== filefind ==========

Searching for "*Fun4IM*"
No files found.

Searching for "*Bandoo*"
No files found.

Searching for "*Searchqu*"
No files found.

Searching for "*iLivid*"
No files found.

Searching for "*whitesmoke*"
No files found.

Searching for "*datamngr*"
No files found.

Searching for "*trolltech*"
No files found.

Searching for "*ask*"
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source\AskToolbarInstaller-12.6.0_CLM-V7.msi.vir --a---- 465408 bytes [19:23 23/10/2013] [10:32 16/10/2013] 724F5C3E1743E7AAD513878DA02E2D01
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source\appdata\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\extensions\toolbar_CLM-V7@apn.ask.com.xpi.vir --a---- 478686 bytes [19:23 23/10/2013] [10:32 16/10/2013] E88B80FA2F42974B774CA18A3737604E
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source\program files\AskPartnerNetwork\Toolbar\Updater\ask-search.xml.vir --a---- 2479 bytes [19:23 23/10/2013] [10:31 16/10/2013] C3A6D5612EB7B5EE7A0AF7A6F0A16AD1
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\ask-search.xml.vir --a---- 2479 bytes [10:31 16/10/2013] [10:31 16/10/2013] C3A6D5612EB7B5EE7A0AF7A6F0A16AD1
C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-image-mask.png --a---- 1551 bytes [20:49 13/07/2009] [21:06 10/06/2009] 1DAD3FC352F304EB15827A8FA6B28751
C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\mainimage-mask.png --a---- 9115 bytes [20:49 13/07/2009] [21:06 10/06/2009] 7F0834C2F4AAB1A2B11A85457889BE85
C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\16_9-frame-image-mask.png --a---- 1400 bytes [20:49 13/07/2009] [21:06 10/06/2009] 83191D42235BCAA6EF85A0A2DF0825AE
C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_mainImage-mask.png --a---- 4968 bytes [20:49 13/07/2009] [21:06 10/06/2009] 69024986BFE2AD8C604E97B8B1B49E9D
C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\Perf_Scenes_Mask1.png --a---- 6922 bytes [20:49 13/07/2009] [21:06 10/06/2009] 84112C39B22199F48A4569636691E848
C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\userContent_16x9_imagemask.png --a---- 6716 bytes [20:49 13/07/2009] [21:06 10/06/2009] AFE92A7924EA1AC0CE1B73B709C0A5A5
C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_frame-imageMask.png --a---- 8169 bytes [20:49 13/07/2009] [21:06 10/06/2009] 5AA1782B5B2C00D673DDB60F97FE54A6
C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-ImageMask.png --a---- 4422 bytes [20:49 13/07/2009] [21:06 10/06/2009] EFDA95E5642CF140F85892BA49F842B7
C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\Panel_Mask.wmv --a---- 543910 bytes [20:49 13/07/2009] [21:06 10/06/2009] 8F1AEA25EE344CF2148E764C6DB18A99
C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\Panel_Mask_PAL.wmv --a---- 542466 bytes [20:49 13/07/2009] [21:06 10/06/2009] 6534EAAB0085D4734B779E9459129CB8
C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\whitemask1047.png --a---- 6423 bytes [20:49 13/07/2009] [21:06 10/06/2009] E8C632DCCAE185A94C11F40269FEFF73
C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\sports_disc_mask.png --a---- 9170 bytes [20:49 13/07/2009] [21:06 10/06/2009] 38A0748739FD769D5F357A2E89E22258
C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\PassportMask.wmv --a---- 29268 bytes [20:49 13/07/2009] [21:06 10/06/2009] F9C5DE33B3B9FF9C44DF9F3644F3DDD8
C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\PassportMask_PAL.wmv --a---- 29268 bytes [20:49 13/07/2009] [21:06 10/06/2009] 23ABE0258D3F608C61CA10B954B85291
C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport_mask_left.png --a---- 4793 bytes [20:49 13/07/2009] [21:06 10/06/2009] 5DD3B0B3C65E048B918F3451847FD35B
C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\passport_mask_right.png --a---- 4813 bytes [20:49 13/07/2009] [21:06 10/06/2009] AFB109642B423FD69BD73E359CBD03C3
C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMainMask.wmv --a---- 61220 bytes [20:49 13/07/2009] [21:06 10/06/2009] A182C15348A5F3FCE01D20A3AD87E154
C:\Program Files\DVD Maker\Shared\DvdStyles\Travel\TravelIntroToMainMask_PAL.wmv --a---- 61220 bytes [20:49 13/07/2009] [21:06 10/06/2009] B2ED62788884695155BA2A10F28C0210
C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\vignettemask25.png --a---- 56543 bytes [20:49 13/07/2009] [21:06 10/06/2009] 74A1078B8C5D8286E4C9C466C4A34FA8
C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationBuildTasks.dll --a---- 598016 bytes [03:24 21/11/2010] [03:24 21/11/2010] CB0C91A3F27C8297D15196890CC34786
C:\Program Files\SUPERAntiSpyware\saskutil64.sys --a---- 12368 bytes [21:55 12/07/2011] [21:55 12/07/2011] 58A38E75F3316A83C23DF6173D41F2B5
C:\Program Files\SUPERAntiSpyware\SASTask.exe --a---- 49944 bytes [22:55 10/10/2013] [22:55 10/10/2013] 8E0015BB05D44EC2BB4E85C69FF382C6
C:\Program Files (x86)\BillP Studios\WinPatrol\tasks.html ------- 7207 bytes [21:46 23/10/2013] [19:52 04/01/2013] BB25CF0868098F535297482F52553CC8
C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64\task_executor.dll --a---- 71608 bytes [18:05 23/10/2013] [07:09 15/05/2012] 28D8633C26DD51786ABB3953A4A8FBA4
C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86\task_executor.dll --a---- 61368 bytes [18:05 23/10/2013] [07:09 15/05/2012] 625B4E0ADD1C4577074B98FB30419DFB
C:\Program Files (x86)\LibreOffice 4\program\wizards\ui\event\Task.py --a---- 3456 bytes [04:19 05/09/2013] [04:19 05/09/2013] 347B77F9E7169741D46C4B6B74219C48
C:\Program Files (x86)\LibreOffice 4\program\wizards\ui\event\TaskEvent.py --a---- 1372 bytes [04:19 05/09/2013] [04:19 05/09/2013] 235D91BE1936435467F25225CF8C08BE
C:\Program Files (x86)\LibreOffice 4\program\wizards\ui\event\TaskListener.py --a---- 1260 bytes [04:19 05/09/2013] [04:19 05/09/2013] 23681387D60780E39815E9AC30743AAD
C:\Program Files (x86)\LibreOffice 4\program\wizards\web\LogTaskListener.py --a---- 2318 bytes [04:19 05/09/2013] [04:19 05/09/2013] B42C824E1DC805A8CD2E4970A24748AB
C:\Program Files (x86)\LibreOffice 4\share\config\soffice.cfg\modules\simpress\toolbar\commontaskbar.xml --a---- 1687 bytes [04:19 05/09/2013] [04:19 05/09/2013] A3A24403A0AA8E79F436E4390D6F254F
C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationBuildTasks.dll --a---- 598016 bytes [03:24 21/11/2010] [03:24 21/11/2010] AEFD96A1A087027A7EDC21F83F1B4727
C:\Program Files (x86)\Security Task Manager\Purchase Security Task Manager Now!.url --a---- 94 bytes [14:37 27/10/2013] [14:37 27/10/2013] 90870045E8EE81492675804B4E084819
C:\Program Files (x86)\Security Task Manager\taskman_de.chm --a---- 149992 bytes [14:37 27/10/2013] [14:01 15/07/2011] C02823CE39D07FBF70DD1FA967F75C04
C:\Program Files (x86)\Security Task Manager\taskman_en.chm --a---- 146922 bytes [14:37 27/10/2013] [11:41 11/10/2012] 2ECE4CD57053C0B7E0DDC19E499E2898
C:\Program Files (x86)\Security Task Manager\taskman_fr.chm --a---- 165240 bytes [14:37 27/10/2013] [11:52 21/06/2011] 77489E58962D56190D9FD86ACD989AA8
C:\Program Files (x86)\Security Task Manager\taskman_rus.chm --a---- 133860 bytes [14:37 27/10/2013] [08:58 07/07/2011] 294911FD14F630D24BE7AD1C47D9C960
C:\Program Files (x86)\TechSmith\Camtasia Studio 8\TaskbarFeaturesHelper.dll --a---- 32696 bytes [02:57 19/07/2013] [02:57 19/07/2013] 15D58F278FF4F089F46DF78757547E6E
C:\Program Files (x86)\WebcamMax\Effects7\Effects\Accessories\Horrible Mask.efc --a---- 34405 bytes [09:31 17/04/2010] [09:31 17/04/2010] 01A1C512E958A69AF0D91985F23C877D
C:\Program Files (x86)\WebcamMax\Effects7\Effects\Emotions\Ask.efc --a---- 11394 bytes [09:31 17/04/2010] [09:31 17/04/2010] 45E4C75B168088CBEF7CE49AE2E62369
C:\Program Files (x86)\WebcamMax\Effects7\Effects\Faces\Mask - Loki.efc --a---- 51380 bytes [09:31 17/04/2010] [09:31 17/04/2010] 28508186622EE42DCD3CDCBFEBE88F5C
C:\Program Files (x86)\WebcamMax\Effects7\Effects\Faces\Mask.efc --a---- 64548 bytes [09:31 17/04/2010] [09:31 17/04/2010] 23787F995B8390BA0994A48CCAE4F150
C:\Program Files (x86)\WebcamMax\res\images\photomask.png --a---- 3620 bytes [09:31 17/04/2010] [09:31 17/04/2010] E6149AAA70EC77B952D65CE5DAE6DCA5
C:\Program Files (x86)\WebcamMax\res\images\templatemask.png --a---- 1223 bytes [09:31 17/04/2010] [09:31 17/04/2010] 2D8C6B1B9FC43022D407A86F3C4DB7B1
C:\Program Files (x86)\WebcamMax\res\images\videomask.png --a---- 3600 bytes [09:31 17/04/2010] [09:31 17/04/2010] BDEE42A897355B7A6A67285DBC8C300A
C:\ProgramData\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\tasks.xml --a---- 13427 bytes [21:00 10/06/2009] [21:00 10/06/2009] 4FA5493A54ED29698EAB7E917C64DAE2
C:\ProgramData\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\tasks.xml --a---- 11364 bytes [22:50 13/07/2009] [21:02 10/06/2009] 6AB160B8998020E6D4373C003E9879D4
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk --a---- 1268 bytes [04:54 14/07/2009] [04:54 14/07/2009] DC47E244BC5E18A60485ABD88AA849BF
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk --a---- 1262 bytes [04:54 14/07/2009] [04:54 14/07/2009] BB7D315DF99E6B9F3218DEEEB4084891
C:\ProgramData\WebcamMax\cache\C\Program Files (x86)\WebcamMax\Effects7\Effects\Accessories\Horrible Mask.bmp --a---- 15606 bytes [19:27 23/10/2013] [19:27 23/10/2013] 1722A3EC4D3F2BB775BCD4B707AABFA8
C:\ProgramData\WebcamMax\cache\C\Program Files (x86)\WebcamMax\Effects7\Effects\Emotions\Ask.bmp --a---- 15606 bytes [19:28 23/10/2013] [19:28 23/10/2013] 438CA4CF2EB8EAAE60EF9AEA1B228E13
C:\Users\All Users\Microsoft\Device Stage\Task\{07deb856-fc6e-4fb9-8add-d8f2cf8722c9}\tasks.xml --a---- 13427 bytes [21:00 10/06/2009] [21:00 10/06/2009] 4FA5493A54ED29698EAB7E917C64DAE2
C:\Users\All Users\Microsoft\Device Stage\Task\{e35be42d-f742-4d96-a50a-1775fb1a7a42}\tasks.xml --a---- 11364 bytes [22:50 13/07/2009] [21:02 10/06/2009] 6AB160B8998020E6D4373C003E9879D4
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk --a---- 1268 bytes [04:54 14/07/2009] [04:54 14/07/2009] DC47E244BC5E18A60485ABD88AA849BF
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk --a---- 1262 bytes [04:54 14/07/2009] [04:54 14/07/2009] BB7D315DF99E6B9F3218DEEEB4084891
C:\Users\All Users\WebcamMax\cache\C\Program Files (x86)\WebcamMax\Effects7\Effects\Accessories\Horrible Mask.bmp --a---- 15606 bytes [19:27 23/10/2013] [19:27 23/10/2013] 1722A3EC4D3F2BB775BCD4B707AABFA8
C:\Users\All Users\WebcamMax\cache\C\Program Files (x86)\WebcamMax\Effects7\Effects\Emotions\Ask.bmp --a---- 15606 bytes [19:28 23/10/2013] [19:28 23/10/2013] 438CA4CF2EB8EAAE60EF9AEA1B228E13
C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\1.7.0.12_0\config\ask.js --a---- 22167 bytes [15:29 29/10/2013] [15:29 29/10/2013] C93C9868C23A4A4B6EF618B25B70857F
C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Cookies\Low\ASK2GCZM.txt --a---- 88 bytes [20:04 20/10/2013] [20:04 20/10/2013] 1EA149073921C029B4D4055657FB0263
C:\Users\Jack 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\1.7.0.12_0\config\ask.js --a---- 22167 bytes [19:42 29/10/2013] [19:42 29/10/2013] C93C9868C23A4A4B6EF618B25B70857F
C:\Windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll --a---- 655360 bytes [03:24 21/11/2010] [03:24 21/11/2010] 5B5AEB3CEB1FC6D77E57821E6A42DE72
C:\Windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll --a---- 802816 bytes [03:25 21/11/2010] [03:25 21/11/2010] 9EBE67131D1776B86410B56FFC95A5BF
C:\Windows\assembly\GAC_MSIL\PresentationBuildTasks\3.0.0.0__31bf3856ad364e35\PresentationBuildTasks.dll --a---- 598016 bytes [03:24 21/11/2010] [03:24 21/11/2010] AEFD96A1A087027A7EDC21F83F1B4727
C:\Windows\assembly\GAC_MSIL\TaskScheduler\6.1.0.0__31bf3856ad364e35\TaskScheduler.dll --a---- 167936 bytes [03:24 21/11/2010] [03:24 21/11/2010] 1D264989FFABEF36745304F5DD216DC7
C:\Windows\assembly\GAC_MSIL\TaskScheduler.Resources\6.1.0.0_en_31bf3856ad364e35\TaskScheduler.resources.dll --a---- 7168 bytes [07:06 21/11/2010] [07:06 21/11/2010] ABBF43F681EF160CAAB7C41BC289DA06
C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\b68d1be2900f17c9b480f2c4f36921ea\Microsoft.Build.Tasks.v3.5.ni.dll --a---- 1970176 bytes [18:51 20/10/2013] [18:51 20/10/2013] D5EA5B92019D833A29DF0540166CB427
C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\cff0d14be1427c4e8bd1349388ddc0fb\Microsoft.Build.Tasks.ni.dll --a---- 1620992 bytes [18:51 20/10/2013] [18:51 20/10/2013] 07F314A799B6431DCEE7C9AA989EB8D0
C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\5ca3284cc2df19dd46584914c0f4a4ea\PresentationBuildTasks.ni.dll --a---- 1451008 bytes [18:52 20/10/2013] [18:52 20/10/2013] 27700FD8174A5EE5E7C6C1751CC68FAA
C:\Windows\assembly\NativeImages_v2.0.50727_32\TaskScheduler\6e42e8d38f57a27637d8087af618153c\TaskScheduler.ni.dll --a---- 245248 bytes [14:40 21/10/2013] [14:40 21/10/2013] 78503E1CA14462B620363AFA2B163B56
C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Tas#\8676d6de6b05a098ae6888e7367372cb\Microsoft.Build.Tasks.v3.5.ni.dll --a---- 2682880 bytes [19:38 20/10/2013] [19:38 20/10/2013] 86581D2F0C645A5A3214D3D92C3DAD9B
C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Tas#\edd66433c9e13348b82144f0f9b55e6c\Microsoft.Build.Tasks.ni.dll --a---- 2218496 bytes [19:38 20/10/2013] [19:38 20/10/2013] 6A50FF593CABB36EE44B40786031E828
C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationBuildTa#\d69443db44cdf1ec5e3fcd0ff3df6791\PresentationBuildTasks.ni.dll --a---- 1884160 bytes [15:26 21/10/2013] [15:26 21/10/2013] A73BA8F45EFFD444AF4BC8B7E28A40D8
C:\Windows\assembly\NativeImages_v2.0.50727_64\TaskScheduler\1cb93e9c0ebf2ce86b8b87eb235fcf50\TaskScheduler.ni.dll --a---- 304128 bytes [15:27 21/10/2013] [15:27 21/10/2013] 60DC6581421441E1747E6B25649F3EA0
C:\Windows\ehome\McxTask.exe --a---- 37376 bytes [00:24 14/07/2009] [01:39 14/07/2009] B364761F91F27F20B139A03EE5E3D1A0
C:\Windows\Help\mui\0409\taskscheduler.CHM --a---- 64597 bytes [07:06 21/11/2010] [07:06 21/11/2010] A08F959550C9C2FC2C07C0129CD87AEA
C:\Windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll --a---- 655360 bytes [03:24 21/11/2010] [03:24 21/11/2010] 5B5AEB3CEB1FC6D77E57821E6A42DE72
C:\Windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Common.Tasks --a---- 6838 bytes [20:46 13/07/2009] [21:23 10/06/2009] 54A4EA347F2C2D5C3E10F7CC6D689600
C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll --a---- 802816 bytes [03:25 21/11/2010] [03:25 21/11/2010] 9EBE67131D1776B86410B56FFC95A5BF
C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft.Common.Tasks --a---- 11588 bytes [21:10 13/07/2009] [21:14 10/06/2009] 1D34906C6AA1C79C6E986403896DA7B9
C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft.Data.Entity.Build.Tasks.dll --a---- 40960 bytes [21:10 13/07/2009] [21:14 10/06/2009] 276F80268B3ADE4D2BDDFCEFAD1059B3
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Tasks.dll --a---- 655360 bytes [03:24 21/11/2010] [03:24 21/11/2010] 5B5AEB3CEB1FC6D77E57821E6A42DE72
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Common.Tasks --a---- 6838 bytes [20:37 13/07/2009] [20:39 10/06/2009] 54A4EA347F2C2D5C3E10F7CC6D689600
C:\Windows\Microsoft.NET\Framework64\v3.5\Microsoft.Build.Tasks.v3.5.dll --a---- 729088 bytes [03:25 21/11/2010] [03:25 21/11/2010] 82C7E5D708C1C160ED4526D090E4209D
C:\Windows\Microsoft.NET\Framework64\v3.5\Microsoft.Common.Tasks --a---- 11588 bytes [20:54 13/07/2009] [20:31 10/06/2009] 1D34906C6AA1C79C6E986403896DA7B9
C:\Windows\Microsoft.NET\Framework64\v3.5\Microsoft.Data.Entity.Build.Tasks.dll --a---- 40960 bytes [20:54 13/07/2009] [20:31 10/06/2009] 38E83106F5530D98928DB61DA1755A9F
C:\Windows\Prefetch\SASTASK.EXE-CD61E54E.pf --a---- 16438 bytes [23:07 26/10/2013] [00:07 29/10/2013] 468F446B6997F1D7997B7354E798692D
C:\Windows\Prefetch\SECURITYTASKMANAGER_SETUP.EXE-B1CCD924.pf --a---- 32032 bytes [14:37 27/10/2013] [14:37 27/10/2013] 632422457ACE9C24C461C3AFEBF5A303
C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf --a---- 26462 bytes [00:36 22/10/2013] [13:06 30/10/2013] 2C1C32A7B2F0A32B594040487B940F71
C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf --a---- 93904 bytes [11:39 17/10/2013] [13:01 30/10/2013] C40564CF4F9F0E1A7DB0BC0A5189D78D
C:\Windows\Prefetch\TASKMAN.EXE-37FA792A.pf --a---- 51212 bytes [14:37 27/10/2013] [14:37 27/10/2013] 208C97900C37088AEC6E5BBA4375B5F3
C:\Windows\System32\bthudtask.exe --a---- 36864 bytes [00:06 14/07/2009] [01:38 14/07/2009] 036F1CF5992508B057E9A5EAB0E06724
C:\Windows\System32\DXPTaskRingtone.dll --a---- 675328 bytes [03:24 21/11/2010] [03:24 21/11/2010] 3D991793E642D063508503FE68907BA4
C:\Windows\System32\DxpTaskSync.dll --a---- 1457664 bytes [03:24 21/11/2010] [03:24 21/11/2010] D7111757FCB56070D15D37DAD910CC35
C:\Windows\System32\mstask.dll --a---- 238080 bytes [03:24 21/11/2010] [03:24 21/11/2010] 862596399AAFD2A21DB2AF9270CD4F70
C:\Windows\System32\schtasks.exe --a---- 285696 bytes [03:24 21/11/2010] [03:24 21/11/2010] 97E0EC3D6D99E8CC2B17EF2D3760E8FC
C:\Windows\System32\taskbarcpl.dll --a---- 243712 bytes [03:24 21/11/2010] [03:24 21/11/2010] F0112F2DDAC14DFD4B3A69BB0164D005
C:\Windows\System32\taskcomp.dll --a---- 473600 bytes [03:24 21/11/2010] [03:24 21/11/2010] 6DC4A7242F565C9E9C9CCC7BB0FA75C7
C:\Windows\System32\taskeng.exe --a---- 464384 bytes [03:24 21/11/2010] [03:24 21/11/2010] 65EA57712340C09B1B0C427B4848AE05
C:\Windows\System32\taskhost.exe --a---- 68608 bytes [13:06 17/10/2013] [13:06 17/10/2013] 639774C9ACD063F028F6084ABF5593AD
C:\Windows\System32\taskkill.exe --a---- 112640 bytes [00:13 14/07/2009] [01:39 14/07/2009] 3722FA501DCB50AE42818F9034906891
C:\Windows\System32\tasklist.exe --a---- 108544 bytes [00:13 14/07/2009] [01:39 14/07/2009] 77F42591DE77CC1E2EAE8E4933BA64F5
C:\Windows\System32\taskmgr.exe --a---- 257024 bytes [03:24 21/11/2010] [03:24 21/11/2010] 09F7401D56F2393C6CA534FF0241A590
C:\Windows\System32\taskschd.dll --a---- 1197056 bytes [03:24 21/11/2010] [03:24 21/11/2010] BAAFAF9CEAEC0B73C2A3550A01F6CECB
C:\Windows\System32\taskschd.msc --a---- 145059 bytes [21:36 13/07/2009] [20:58 10/06/2009] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\System32\TaskSchdPS.dll --a---- 55296 bytes [23:46 13/07/2009] [01:41 14/07/2009] C3D545F4646303A864C8DFA85B33F476
C:\Windows\System32\en-US\bthudtask.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 0C309951983EDD06EF5AA084E110CD85
C:\Windows\System32\en-US\DXPTaskRingtone.dll.mui --a---- 7168 bytes [07:06 21/11/2010] [07:06 21/11/2010] 9FC3C351F7BBD1030714EB20C4990FB0
C:\Windows\System32\en-US\DxpTaskSync.dll.mui --a---- 31232 bytes [07:06 21/11/2010] [07:06 21/11/2010] C5C0CE6A43FEEA2208123B2B9EFBDB39
C:\Windows\System32\en-US\mstask.dll.mui --a---- 43008 bytes [07:06 21/11/2010] [07:06 21/11/2010] 8CE0D5108EFF118ADA14335FA8ECE78C
C:\Windows\System32\en-US\schtasks.exe.mui --a---- 73728 bytes [07:06 21/11/2010] [07:06 21/11/2010] D529FB8235ABDC26BF0CFFFAFCEBEE51
C:\Windows\System32\en-US\taskbarcpl.dll.mui --a---- 5120 bytes [07:06 21/11/2010] [07:06 21/11/2010] 32A57505DC599D569965BACF265DD4C7
C:\Windows\System32\en-US\taskcomp.dll.mui --a---- 13312 bytes [07:06 21/11/2010] [07:06 21/11/2010] 8DE7E652F99E53C697B9B01308791105
C:\Windows\System32\en-US\TaskEng.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 2E655BA36F7791C1A6DC2BF2F2E29B17
C:\Windows\System32\en-US\taskhost.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 045C408170B3B2390D26B8ED6B803A26
C:\Windows\System32\en-US\taskkill.exe.mui --a---- 15872 bytes [07:06 21/11/2010] [07:06 21/11/2010] AE97CDD2EA7CF334EE0CE99F93FB9293
C:\Windows\System32\en-US\tasklist.exe.mui --a---- 14848 bytes [07:06 21/11/2010] [07:06 21/11/2010] FF078276612E836031C797A8F5393B6D
C:\Windows\System32\en-US\taskmgr.exe.mui --a---- 34304 bytes [07:06 21/11/2010] [07:06 21/11/2010] BAA0CDDA0E2072C5A59A9DB7E48D4DFA
C:\Windows\System32\en-US\taskschd.dll.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 47024C2A07585DED8B9D8B16F05A896B
C:\Windows\System32\en-US\taskschd.msc --a---- 145059 bytes [07:06 21/11/2010] [07:06 21/11/2010] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore --a---- 3650 bytes [13:51 17/10/2013] [00:15 22/10/2013] 9C3E6BAA1E3E6BE6C02E42FE56F0A4F6
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA --a---- 3890 bytes [13:51 17/10/2013] [22:01 17/10/2013] D414660AD0B5CA42DB30FB5D095A2F58
C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 2b20bff2-35fa-445d-b3eb-3c8bf40345de --a---- 3540 bytes [22:02 23/10/2013] [22:02 23/10/2013] B6C1CDAE06A49CBA1DDD1E269EF4D5C9
C:\Windows\System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask --a---- 1862 bytes [04:57 14/07/2009] [04:57 14/07/2009] 24CC3D7423BB3E32DBE89A5B981CB17C
C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask --a---- 4130 bytes [04:53 14/07/2009] [04:53 14/07/2009] FC102D35223A637D33E9426D5D95B725
C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask --a---- 3868 bytes [04:53 14/07/2009] [04:53 14/07/2009] 0E622465AD45E3A75BEA86BC1147EF20
C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam --a---- 3134 bytes [04:53 14/07/2009] [05:09 14/07/2009] AC47B1AA58B97D829F62C386E00F5AA2
C:\Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask --a---- 3946 bytes [04:53 14/07/2009] [04:53 14/07/2009] 8BEB02F6F6599BD562D7FEF3A509737F
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks --a---- 2592 bytes [11:40 17/10/2013] [11:40 17/10/2013] 1707CD4A78C4814045D0FB0F1E014F6D
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask --a---- 2954 bytes [11:40 17/10/2013] [11:40 17/10/2013] 2A2B49C49ADD1A4AC4F440EA892D99BD
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask --a---- 2958 bytes [11:40 17/10/2013] [11:40 17/10/2013] ADC8C73245EFE833478BA69E924B6AB2
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask --a---- 2926 bytes [11:40 17/10/2013] [11:40 17/10/2013] 2E6BEBDB7A86C032BE3992FCCC32CE20
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask --a---- 2918 bytes [11:40 17/10/2013] [11:40 17/10/2013] A39A038A11EE85990CFF2FFDBC0BDA53
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask --a---- 2942 bytes [11:40 17/10/2013] [11:40 17/10/2013] CDD02F8A1A4CF89215C9C561B2F01BB4
C:\Windows\System32\Tasks\Microsoft\Windows\RAC\RacTask --a---- 4370 bytes [04:55 14/07/2009] [04:57 14/07/2009] 279131AB239C93EBF794CFD2D302A403
C:\Windows\System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask --a---- 4596 bytes [04:57 14/07/2009] [04:57 14/07/2009] C7C228CDC4D93498AE3C19B0ACCBC6E8
C:\Windows\System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask --a---- 3942 bytes [04:49 14/07/2009] [04:49 14/07/2009] 6B46EBAF3F5C1F64A5E250EE696B7AA1
C:\Windows\System32\Tasks\Microsoft\Windows\User Profile Service\HiveUploadTask --a---- 3420 bytes [04:53 14/07/2009] [04:53 14/07/2009] CFC4B8CEA9E8F9119C5C7F7C09DB8A01
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask --a---- 4364 bytes [21:56 19/10/2013] [13:31 25/10/2013] 36241CA5AAE0E891A003CEB288BA4131
C:\Windows\System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline --a---- 4362 bytes [21:56 19/10/2013] [13:31 25/10/2013] 128BEF3DF3A6492EC5CCAD1788F97E8B
C:\Windows\System32\Tasks\Microsoft\Windows\Wininet\CacheTask --a---- 3540 bytes [13:20 17/10/2013] [13:20 17/10/2013] 3FE88BCF6C690257A6C886B5038D0B40
C:\Windows\System32\wdi\perftrack\taskmgr.events.ptxml --a---- 1086 bytes [20:22 13/07/2009] [20:22 13/07/2009] B03FDEA854B2C246140F39A5F3D5C163
C:\Windows\SysWOW64\bthudtask.exe --a---- 35328 bytes [23:51 13/07/2009] [01:14 14/07/2009] F6DB1B426044CE75A512A5BA58C29B5D
C:\Windows\SysWOW64\DXPTaskRingtone.dll --a---- 630784 bytes [03:25 21/11/2010] [03:25 21/11/2010] 1078F4A06BE5DACDC8429215ADAE8104
C:\Windows\SysWOW64\DxpTaskSync.dll --a---- 1400320 bytes [03:24 21/11/2010] [03:24 21/11/2010] ABA2AAA6F31EE934A76C87B537515EC6
C:\Windows\SysWOW64\mstask.dll --a---- 209920 bytes [03:24 21/11/2010] [03:24 21/11/2010] C5A99A4C0DC9F0F5A95BA0C83D30A549
C:\Windows\SysWOW64\schtasks.exe --a---- 179712 bytes [03:23 21/11/2010] [03:23 21/11/2010] 2003E9B15E1C502B146DAD2E383AC1E3
C:\Windows\SysWOW64\taskcomp.dll --a---- 305152 bytes [03:23 21/11/2010] [03:23 21/11/2010] 1C3E8371377E988B683797A132EFFE1B
C:\Windows\SysWOW64\taskeng.exe --a---- 192000 bytes [03:23 21/11/2010] [03:23 21/11/2010] 4F2659160AFCCA990305816946F69407
C:\Windows\SysWOW64\taskkill.exe --a---- 77824 bytes [23:57 13/07/2009] [01:14 14/07/2009] 94BDCAFBD584C979B385ADEE14B08AB4
C:\Windows\SysWOW64\tasklist.exe --a---- 80896 bytes [23:57 13/07/2009] [01:14 14/07/2009] A9A00E71E3DD67B029FC904FE3BB61DA
C:\Windows\SysWOW64\taskmgr.exe --a---- 227328 bytes [03:23 21/11/2010] [03:23 21/11/2010] 545BF7EAA24A9E062857D0742EC0B28A
C:\Windows\SysWOW64\taskschd.dll --a---- 505856 bytes [03:24 21/11/2010] [03:24 21/11/2010] 544EFF88AC6C85DF5A4D6F18DFE08CFC
C:\Windows\SysWOW64\taskschd.msc --a---- 145059 bytes [21:46 13/07/2009] [21:38 10/06/2009] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\SysWOW64\TaskSchdPS.dll --a---- 36864 bytes [23:29 13/07/2009] [01:16 14/07/2009] E1EF320CBB1A6623DF040D5539DDA8F4
C:\Windows\SysWOW64\en-US\bthudtask.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] E6E00B73AB935C7DDBAF3BD4A9A15FA4
C:\Windows\SysWOW64\en-US\DXPTaskRingtone.dll.mui --a---- 7168 bytes [07:06 21/11/2010] [07:06 21/11/2010] 182A0BC5E5D2691A49A7FECE49576F60
C:\Windows\SysWOW64\en-US\DxpTaskSync.dll.mui --a---- 31232 bytes [07:06 21/11/2010] [07:06 21/11/2010] CB43CAE5108ACBD2F4EAF22293B65BC3
C:\Windows\SysWOW64\en-US\mstask.dll.mui --a---- 43008 bytes [07:06 21/11/2010] [07:06 21/11/2010] 598C87C3EBF9AD8DDF63FCB6E814F4DF
C:\Windows\SysWOW64\en-US\schtasks.exe.mui --a---- 73728 bytes [07:06 21/11/2010] [07:06 21/11/2010] 0C2DEC2B98693EEA2AF1A20C31E13A86
C:\Windows\SysWOW64\en-US\taskcomp.dll.mui --a---- 13312 bytes [07:06 21/11/2010] [07:06 21/11/2010] FC245ABE9E103F75C5F94B8BBAD0BD68
C:\Windows\SysWOW64\en-US\TaskEng.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 35EB874E9319D57CCFF4BB8BE55F4DE5
C:\Windows\SysWOW64\en-US\taskkill.exe.mui --a---- 15872 bytes [07:06 21/11/2010] [07:06 21/11/2010] 2C2E4B8D78271CF0B187973FB304AEF0
C:\Windows\SysWOW64\en-US\tasklist.exe.mui --a---- 14848 bytes [07:06 21/11/2010] [07:06 21/11/2010] 1E28034DD76392DF4970E714D66CDA63
C:\Windows\SysWOW64\en-US\taskmgr.exe.mui --a---- 34304 bytes [07:06 21/11/2010] [07:06 21/11/2010] 438D1192DD633A6D684FD61D87944FC2
C:\Windows\SysWOW64\en-US\taskschd.dll.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 4EC67B28281E58BD9A6B2BBDD29E59A5
C:\Windows\SysWOW64\en-US\taskschd.msc --a---- 145059 bytes [07:06 21/11/2010] [07:06 21/11/2010] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\SysWOW64\wdi\perftrack\taskmgr.events.ptxml --a---- 1086 bytes [20:27 13/07/2009] [20:27 13/07/2009] B03FDEA854B2C246140F39A5F3D5C163
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job --a---- 890 bytes [13:51 17/10/2013] [14:15 22/10/2013] 7338203DB23772FCAFBF00982FECC0E4
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job --a---- 894 bytes [13:51 17/10/2013] [13:06 30/10/2013] F23C173F0A9AFB0A05BF3FE5204B5066
C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 2b20bff2-35fa-445d-b3eb-3c8bf40345de.job --a---- 526 bytes [22:02 23/10/2013] [00:07 30/10/2013] FAD9681E032158B11E2F653347EB5115
C:\Windows\winsxs\amd64_bth-user.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c2af6879929e9727\bthudtask.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 0C309951983EDD06EF5AA084E110CD85
C:\Windows\winsxs\amd64_microsoft-windows-bth-user_31bf3856ad364e35_6.1.7601.17514_none_c33f455aebcd9dbb\bthudtask.exe --a---- 36864 bytes [00:06 14/07/2009] [01:38 14/07/2009] 036F1CF5992508B057E9A5EAB0E06724
C:\Windows\winsxs\amd64_microsoft-windows-d..-ringtone.resources_31bf3856ad364e35_6.1.7600.16385_en-us_3e374e0aa39d8a9f\DXPTaskRingtone.dll.mui --a---- 7168 bytes [07:06 21/11/2010] [07:06 21/11/2010] 9FC3C351F7BBD1030714EB20C4990FB0
C:\Windows\winsxs\amd64_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4805475288b5b544\DxpTaskSync.dll.mui --a---- 31232 bytes [07:06 21/11/2010] [07:06 21/11/2010] C5C0CE6A43FEEA2208123B2B9EFBDB39
C:\Windows\winsxs\amd64_microsoft-windows-dxp-deviceexperience_31bf3856ad364e35_6.1.7601.17514_none_a54b31331066c8e2\tasks.xml --a---- 13427 bytes [21:00 10/06/2009] [21:00 10/06/2009] 4FA5493A54ED29698EAB7E917C64DAE2
C:\Windows\winsxs\amd64_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_6.1.7601.17514_none_0cb2f60328a1fa24\DXPTaskRingtone.dll --a---- 675328 bytes [03:24 21/11/2010] [03:24 21/11/2010] 3D991793E642D063508503FE68907BA4
C:\Windows\winsxs\amd64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_6.1.7601.17514_none_ecd0036bc4402d67\DxpTaskSync.dll --a---- 1457664 bytes [03:24 21/11/2010] [03:24 21/11/2010] D7111757FCB56070D15D37DAD910CC35
C:\Windows\winsxs\amd64_microsoft-windows-ehome-devices-mcxtask_31bf3856ad364e35_6.1.7600.16385_none_b6bc1aae9d0693c5\McxTask.exe --a---- 37376 bytes [00:24 14/07/2009] [01:39 14/07/2009] B364761F91F27F20B139A03EE5E3D1A0
C:\Windows\winsxs\amd64_microsoft-windows-o..c-style-performance_31bf3856ad364e35_6.1.7600.16385_none_1d8aecb671a2bda5\Perf_Scenes_Mask1.png --a---- 6922 bytes [20:49 13/07/2009] [21:06 10/06/2009] 84112C39B22199F48A4569636691E848
C:\Windows\winsxs\amd64_microsoft-windows-o..c-style-performance_31bf3856ad364e35_6.1.7600.16385_none_1d8aecb671a2bda5\userContent_16x9_imagemask.png --a---- 6716 bytes [20:49 13/07/2009] [21:06 10/06/2009] AFE92A7924EA1AC0CE1B73B709C0A5A5
C:\Windows\winsxs\amd64_microsoft-windows-o..disc-style-babygirl_31bf3856ad364e35_6.1.7600.16385_none_b2bd01695c9021fd\16_9-frame-image-mask.png --a---- 1551 bytes [20:49 13/07/2009] [21:06 10/06/2009] 1DAD3FC352F304EB15827A8FA6B28751
C:\Windows\winsxs\amd64_microsoft-windows-o..disc-style-babygirl_31bf3856ad364e35_6.1.7600.16385_none_b2bd01695c9021fd\mainimage-mask.png --a---- 9115 bytes [20:49 13/07/2009] [21:06 10/06/2009] 7F0834C2F4AAB1A2B11A85457889BE85
C:\Windows\winsxs\amd64_microsoft-windows-o..disc-style-memories_31bf3856ad364e35_6.1.7600.16385_none_51190840a935f980\16_9-frame-image-mask.png --a---- 1400 bytes [20:49 13/07/2009] [21:06 10/06/2009] 83191D42235BCAA6EF85A0A2DF0825AE
C:\Windows\winsxs\amd64_microsoft-windows-o..disc-style-memories_31bf3856ad364e35_6.1.7600.16385_none_51190840a935f980\Title_mainImage-mask.png --a---- 4968 bytes [20:49 13/07/2009] [21:06 10/06/2009] 69024986BFE2AD8C604E97B8B1B49E9D
C:\Windows\winsxs\amd64_microsoft-windows-o..disc-style-vignette_31bf3856ad364e35_6.1.7600.16385_none_cc1304de922cc585\vignettemask25.png --a---- 56543 bytes [20:49 13/07/2009] [21:06 10/06/2009] 74A1078B8C5D8286E4C9C466C4A34FA8
C:\Windows\winsxs\amd64_microsoft-windows-o..ediadisc-style-pets_31bf3856ad364e35_6.1.7600.16385_none_d0d7ee773d711005\Pets_frame-imageMask.png --a---- 8169 bytes [20:49 13/07/2009] [21:06 10/06/2009] 5AA1782B5B2C00D673DDB60F97FE54A6
C:\Windows\winsxs\amd64_microsoft-windows-o..ediadisc-style-pets_31bf3856ad364e35_6.1.7600.16385_none_d0d7ee773d711005\Pets_image-frame-ImageMask.png --a---- 4422 bytes [20:49 13/07/2009] [21:06 10/06/2009] EFDA95E5642CF140F85892BA49F842B7
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-sports_31bf3856ad364e35_6.1.7600.16385_none_c1c84490c211896e\sports_disc_mask.png --a---- 9170 bytes [20:49 13/07/2009] [21:06 10/06/2009] 38A0748739FD769D5F357A2E89E22258
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-travel_31bf3856ad364e35_6.1.7600.16385_none_f2a7c66510a5395d\PassportMask.wmv --a---- 29268 bytes [20:49 13/07/2009] [21:06 10/06/2009] F9C5DE33B3B9FF9C44DF9F3644F3DDD8
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-travel_31bf3856ad364e35_6.1.7600.16385_none_f2a7c66510a5395d\PassportMask_PAL.wmv --a---- 29268 bytes [20:49 13/07/2009] [21:06 10/06/2009] 23ABE0258D3F608C61CA10B954B85291
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-travel_31bf3856ad364e35_6.1.7600.16385_none_f2a7c66510a5395d\passport_mask_left.png --a---- 4793 bytes [20:49 13/07/2009] [21:06 10/06/2009] 5DD3B0B3C65E048B918F3451847FD35B
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-travel_31bf3856ad364e35_6.1.7600.16385_none_f2a7c66510a5395d\passport_mask_right.png --a---- 4813 bytes [20:49 13/07/2009] [21:06 10/06/2009] AFB109642B423FD69BD73E359CBD03C3
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-travel_31bf3856ad364e35_6.1.7600.16385_none_f2a7c66510a5395d\TravelIntroToMainMask.wmv --a---- 61220 bytes [20:49 13/07/2009] [21:06 10/06/2009] A182C15348A5F3FCE01D20A3AD87E154
C:\Windows\winsxs\amd64_microsoft-windows-o..iadisc-style-travel_31bf3856ad364e35_6.1.7600.16385_none_f2a7c66510a5395d\TravelIntroToMainMask_PAL.wmv --a---- 61220 bytes [20:49 13/07/2009] [21:06 10/06/2009] B2ED62788884695155BA2A10F28C0210
C:\Windows\winsxs\amd64_microsoft-windows-o..tyle-resizingpanels_31bf3856ad364e35_6.1.7600.16385_none_bc51073aee3391ed\Panel_Mask.wmv --a---- 543910 bytes [20:49 13/07/2009] [21:06 10/06/2009] 8F1AEA25EE344CF2148E764C6DB18A99
C:\Windows\winsxs\amd64_microsoft-windows-o..tyle-resizingpanels_31bf3856ad364e35_6.1.7600.16385_none_bc51073aee3391ed\Panel_Mask_PAL.wmv --a---- 542466 bytes [20:49 13/07/2009] [21:06 10/06/2009] 6534EAAB0085D4734B779E9459129CB8
C:\Windows\winsxs\amd64_microsoft-windows-o..yle-specialoccasion_31bf3856ad364e35_6.1.7600.16385_none_01242a21ddccaf3b\whitemask1047.png --a---- 6423 bytes [20:49 13/07/2009] [21:06 10/06/2009] E8C632DCCAE185A94C11F40269FEFF73
C:\Windows\winsxs\amd64_microsoft-windows-printing-fdprint_31bf3856ad364e35_6.1.7600.16385_none_b425025e9ef3d84c\tasks.xml --a---- 11364 bytes [22:50 13/07/2009] [21:02 10/06/2009] 6AB160B8998020E6D4373C003E9879D4
C:\Windows\winsxs\amd64_microsoft-windows-s..-taskhost.resources_31bf3856ad364e35_6.1.7600.16385_en-us_58218e6315051c80\taskhost.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 045C408170B3B2390D26B8ED6B803A26
C:\Windows\winsxs\amd64_microsoft-windows-s..ouppolicy.resources_31bf3856ad364e35_6.1.7600.16385_en-us_7ef5713984067904\Taskbar.adml --a---- 8948 bytes [07:06 21/11/2010] [07:06 21/11/2010] ED324177AA54E6520234E6CA568351A9
C:\Windows\winsxs\amd64_microsoft-windows-sctasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_7f0d187b6294453e\schtasks.exe.mui --a---- 73728 bytes [07:06 21/11/2010] [07:06 21/11/2010] D529FB8235ABDC26BF0CFFFAFCEBEE51
C:\Windows\winsxs\amd64_microsoft-windows-sctasks_31bf3856ad364e35_6.1.7601.17514_none_e8657d02cbf5e4c1\schtasks.exe --a---- 285696 bytes [03:24 21/11/2010] [03:24 21/11/2010] 97E0EC3D6D99E8CC2B17EF2D3760E8FC
C:\Windows\winsxs\amd64_microsoft-windows-shell-grouppolicy_31bf3856ad364e35_6.1.7600.16385_none_71af9b5b0a86e6b7\Taskbar.admx --a---- 9365 bytes [21:48 13/07/2009] [20:53 10/06/2009] DF269058E534180B54C464F7ECEFF3BE
C:\Windows\winsxs\amd64_microsoft-windows-t..atibility.resources_31bf3856ad364e35_6.1.7600.16385_en-us_55fe4c4365bdd13d\taskcomp.dll.mui --a---- 13312 bytes [07:06 21/11/2010] [07:06 21/11/2010] 8DE7E652F99E53C697B9B01308791105
C:\Windows\winsxs\amd64_microsoft-windows-t..cheduler-apis-proxy_31bf3856ad364e35_6.1.7600.16385_none_31a8e7113546f43e\TaskSchdPS.dll --a---- 55296 bytes [23:46 13/07/2009] [01:41 14/07/2009] C3D545F4646303A864C8DFA85B33F476
C:\Windows\winsxs\amd64_microsoft-windows-t..duler-adm.resources_31bf3856ad364e35_6.1.7600.16385_en-us_3a346b361b962de3\TaskScheduler.adml --a---- 7038 bytes [07:06 21/11/2010] [07:06 21/11/2010] 09BB6BBD535E6B16043D7DE703670523
C:\Windows\winsxs\amd64_microsoft-windows-t..duler-compatibility_31bf3856ad364e35_6.1.7601.17514_none_c6bb0139f2db3d90\taskcomp.dll --a---- 473600 bytes [03:24 21/11/2010] [03:24 21/11/2010] 6DC4A7242F565C9E9C9CCC7BB0FA75C7
C:\Windows\winsxs\amd64_microsoft-windows-t..er-client.resources_31bf3856ad364e35_6.1.7600.16385_en-us_1bf121eae88b9918\taskschd.dll.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 47024C2A07585DED8B9D8B16F05A896B
C:\Windows\winsxs\amd64_microsoft-windows-t..er-engine.resources_31bf3856ad364e35_6.1.7600.16385_en-us_133138db7a4bbc25\TaskEng.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 2E655BA36F7791C1A6DC2BF2F2E29B17
C:\Windows\winsxs\amd64_microsoft-windows-t..ompatibility-client_31bf3856ad364e35_6.1.7601.17514_none_bc2e2d6e7ae461a8\mstask.dll --a---- 238080 bytes [03:24 21/11/2010] [03:24 21/11/2010] 862596399AAFD2A21DB2AF9270CD4F70
C:\Windows\winsxs\amd64_microsoft-windows-t..ty-client.resources_31bf3856ad364e35_6.1.7600.16385_en-us_9c4aafc6c255cbd1\mstask.dll.mui --a---- 43008 bytes [07:06 21/11/2010] [07:06 21/11/2010] 8CE0D5108EFF118ADA14335FA8ECE78C
C:\Windows\winsxs\amd64_microsoft-windows-taskbarcpl.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d0f4b03a5b80da85\taskbarcpl.dll.mui --a---- 5120 bytes [07:06 21/11/2010] [07:06 21/11/2010] 32A57505DC599D569965BACF265DD4C7
C:\Windows\winsxs\amd64_microsoft-windows-taskbarcpl_31bf3856ad364e35_6.1.7601.17514_none_530206f2406950d6\taskbarcpl.dll --a---- 243712 bytes [03:24 21/11/2010] [03:24 21/11/2010] F0112F2DDAC14DFD4B3A69BB0164D005
C:\Windows\winsxs\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.17514_none_8664adc870f5633a\taskhost.exe --a---- 69120 bytes [03:24 21/11/2010] [03:24 21/11/2010] 517110BD83835338C037269E603DB55D
C:\Windows\winsxs\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.18010_none_86608c5a70f925bc\taskhost.exe --a---- 68608 bytes [13:06 17/10/2013] [13:06 17/10/2013] 639774C9ACD063F028F6084ABF5593AD
C:\Windows\winsxs\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.22172_none_86ab4a318a459fda\taskhost.exe --a---- 69120 bytes [13:06 17/10/2013] [13:06 17/10/2013] C671F1B7D4242A5EC7AF2D548F072671
C:\Windows\winsxs\amd64_microsoft-windows-taskkill.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5c3db67537ec1a5d\taskkill.exe.mui --a---- 15872 bytes [07:06 21/11/2010] [07:06 21/11/2010] AE97CDD2EA7CF334EE0CE99F93FB9293
C:\Windows\winsxs\amd64_microsoft-windows-taskkill_31bf3856ad364e35_6.1.7600.16385_none_8172f0ac75c192a6\taskkill.exe --a---- 112640 bytes [00:13 14/07/2009] [01:39 14/07/2009] 3722FA501DCB50AE42818F9034906891
C:\Windows\winsxs\amd64_microsoft-windows-tasklist.resources_31bf3856ad364e35_6.1.7600.16385_en-us_1c81dfd54d6f3aab\tasklist.exe.mui --a---- 14848 bytes [07:06 21/11/2010] [07:06 21/11/2010] FF078276612E836031C797A8F5393B6D
C:\Windows\winsxs\amd64_microsoft-windows-tasklist_31bf3856ad364e35_6.1.7600.16385_none_843823d87402ab36\tasklist.exe --a---- 108544 bytes [00:13 14/07/2009] [01:39 14/07/2009] 77F42591DE77CC1E2EAE8E4933BA64F5
C:\Windows\winsxs\amd64_microsoft-windows-taskmanager-events_31bf3856ad364e35_6.1.7600.16385_none_e0ac3efe41cead57\taskmgr.events.ptxml --a---- 1086 bytes [20:22 13/07/2009] [20:22 13/07/2009] B03FDEA854B2C246140F39A5F3D5C163
C:\Windows\winsxs\amd64_microsoft-windows-taskmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_32d103f978c42b21\taskmgr.exe.mui --a---- 34304 bytes [07:06 21/11/2010] [07:06 21/11/2010] BAA0CDDA0E2072C5A59A9DB7E48D4DFA
C:\Windows\winsxs\amd64_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_7288349cbfd37b08\taskmgr.exe --a---- 257024 bytes [03:24 21/11/2010] [03:24 21/11/2010] 09F7401D56F2393C6CA534FF0241A590
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-adm_31bf3856ad364e35_6.1.7600.16385_none_074719bfd9d616de\TaskScheduler.admx --a---- 5520 bytes [20:58 10/06/2009] [20:58 10/06/2009] 81F5D01FCC855EAA4E2195A41354CF43
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-client_31bf3856ad364e35_6.1.7601.17514_none_a2204d83b4ef6bd1\taskschd.dll --a---- 1197056 bytes [03:24 21/11/2010] [03:24 21/11/2010] BAAFAF9CEAEC0B73C2A3550A01F6CECB
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_6.1.7601.17514_none_43d2529dd579f798\taskeng.exe --a---- 464384 bytes [03:24 21/11/2010] [03:24 21/11/2010] 65EA57712340C09B1B0C427B4848AE05
C:\Windows\winsxs\amd64_netfx-microsoft.build.tasks_b03f5f7f11d50a3a_6.1.7601.17514_none_fc74b51ae0ff9c55\Microsoft.Build.Tasks.dll --a---- 655360 bytes [03:24 21/11/2010] [03:24 21/11/2010] 5B5AEB3CEB1FC6D77E57821E6A42DE72
C:\Windows\winsxs\amd64_netfx-msbuild_data_files_b03f5f7f11d50a3a_6.1.7600.16385_none_09648aeeea40605a\Microsoft.Common.Tasks --a---- 6838 bytes [20:37 13/07/2009] [20:39 10/06/2009] 54A4EA347F2C2D5C3E10F7CC6D689600
C:\Windows\winsxs\amd64_netfx35linq-microso...entity.build.tasks_31bf3856ad364e35_6.1.7600.16385_none_3250e53a62eb6f11\Microsoft.Data.Entity.Build.Tasks.dll --a---- 40960 bytes [20:54 13/07/2009] [20:31 10/06/2009] 38E83106F5530D98928DB61DA1755A9F
C:\Windows\winsxs\amd64_netfx35linq-microsoft.build.tasks.v3.5_31bf3856ad364e35_6.1.7601.17514_none_5077bea082d2585e\Microsoft.Build.Tasks.v3.5.dll --a---- 729088 bytes [03:25 21/11/2010] [03:25 21/11/2010] 82C7E5D708C1C160ED4526D090E4209D
C:\Windows\winsxs\amd64_netfx35linq-msbuild_data_files_31bf3856ad364e35_6.1.7600.16385_none_e9104f2e94f4b7ed\Microsoft.Common.Tasks --a---- 11588 bytes [20:54 13/07/2009] [20:31 10/06/2009] 1D34906C6AA1C79C6E986403896DA7B9
C:\Windows\winsxs\amd64_server-help-chm.tas..eduler_lh.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5e1a6b84df8c850\taskscheduler.CHM --a---- 64597 bytes [07:06 21/11/2010] [07:06 21/11/2010] A08F959550C9C2FC2C07C0129CD87AEA
C:\Windows\winsxs\amd64_taskschedulersettings.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4f61fcad4768c9b8\taskschd.msc --a---- 145059 bytes [07:06 21/11/2010] [07:06 21/11/2010] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\winsxs\amd64_taskschedulersettings_31bf3856ad364e35_6.1.7600.16385_none_a6dff5711e0deb2d\taskschd.msc --a---- 145059 bytes [21:36 13/07/2009] [20:58 10/06/2009] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\winsxs\amd64_wpf-presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_ae33444d641b1282\PresentationBuildTasks.dll --a---- 598016 bytes [03:24 21/11/2010] [03:24 21/11/2010] CB0C91A3F27C8297D15196890CC34786
C:\Windows\winsxs\FileMaps\$$_system32_tasks_5f1dd67a5a1ae70e.cdf-ms --a---- 580 bytes [02:59 14/07/2009] [07:16 21/11/2010] 139820E4B29042EE0BB3F71304533DF3
C:\Windows\winsxs\FileMaps\$$_system32_tasks_microsoft_b7abd682baafefc2.cdf-ms --a---- 588 bytes [02:59 14/07/2009] [07:16 21/11/2010] 92059055D30BD3D8506C862639CD3C9C
C:\Windows\winsxs\FileMaps\$$_system32_tasks_microsoft_windows_media_center_ad67db1bbb2dd336.cdf-ms --a---- 604 bytes [07:16 21/11/2010] [07:16 21/11/2010] 7D8932426BCC91B921160A80D5A5B895
C:\Windows\winsxs\FileMaps\$$_system32_tasks_microsoft_windows_media_center_extender_02bff096ccf79441.cdf-ms --a---- 612 bytes [07:16 21/11/2010] [07:16 21/11/2010] B7875CA1C8FD4A7DEB89335F49798358
C:\Windows\winsxs\FileMaps\$$_system32_tasks_microsoft_windows_remoteapp_and_desktop_connections_update_c0beaecbfc21a5e1.cdf-ms --a---- 644 bytes [02:59 14/07/2009] [02:59 14/07/2009] 68594FE7EAF7E3488D62C9460E6578D0
C:\Windows\winsxs\FileMaps\$$_system32_tasks_microsoft_windows_synccenter_6c995d37b2976a17.cdf-ms --a---- 596 bytes [05:32 14/07/2009] [05:32 14/07/2009] A01981D76A94F3531966F7D8528CFE80
C:\Windows\winsxs\FileMaps\$$_syswow64_tasks_bad86ed64cd79762.cdf-ms --a---- 580 bytes [02:59 14/07/2009] [05:32 14/07/2009] 51176B10A5C2832373E54FC7FD3E7911
C:\Windows\winsxs\FileMaps\$$_syswow64_tasks_microsoft_200b1d7e84f3818e.cdf-ms --a---- 588 bytes [02:59 14/07/2009] [05:32 14/07/2009] C88DEE10682CC21CAB27A376163BBF78
C:\Windows\winsxs\FileMaps\$$_syswow64_tasks_microsoft_windows_remoteapp_and_desktop_connections_update_537d8a8a24b3a619.cdf-ms --a---- 644 bytes [02:59 14/07/2009] [02:59 14/07/2009] 63BF4C26D7AD5AF42CBB17FDDC8D4DB8
C:\Windows\winsxs\FileMaps\$$_syswow64_tasks_microsoft_windows_synccenter_bb7e945a68c8139d.cdf-ms --a---- 592 bytes [05:32 14/07/2009] [05:32 14/07/2009] 0356A142738106136B2B879FCFC4ED35
C:\Windows\winsxs\FileMaps\programdata_microsoft_device_stage_task_07deb856-fc6e-4fb9-8add-d8f2cf8722c9_en-us_66e939cf450318c4.cdf-ms --a---- 716 bytes [07:06 21/11/2010] [07:06 21/11/2010] DCDE8B5134092A7252EAEC76D98A1F5C
C:\Windows\winsxs\FileMaps\programdata_microsoft_device_stage_task_07deb856-fc6e-4fb9-8add-d8f2cf8722c9__0ce7c057892d5774.cdf-ms --a---- 1224 bytes [02:59 14/07/2009] [22:50 18/10/2013] 5F1047C97DAE2BB351154D66C008A26B
C:\Windows\winsxs\FileMaps\programdata_microsoft_device_stage_task_e35be42d-f742-4d96-a50a-1775fb1a7a42_en-us_98bc184903c637fe.cdf-ms --a---- 712 bytes [07:06 21/11/2010] [07:06 21/11/2010] A54B7DEF1835A17A7F1EB643CF4514A3
C:\Windows\winsxs\FileMaps\programdata_microsoft_device_stage_task_e35be42d-f742-4d96-a50a-1775fb1a7a42__96ac8d0751fb5c2c.cdf-ms --a---- 1184 bytes [02:59 14/07/2009] [22:50 18/10/2013] D0153C61E7EF933AE06290806A9F16EE
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4805475288b5b544.manifest --a---- 2197 bytes [07:05 21/11/2010] [07:05 21/11/2010] 441D14C237AF8B5254FF427C5088EA20
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_6.1.7601.17514_none_0cb2f60328a1fa24.manifest --a---- 4877 bytes [03:18 21/11/2010] [03:18 21/11/2010] 705F1455F18D9A74389EDDC7ED603AA9
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_6.1.7601.17514_none_ecd0036bc4402d67.manifest --a---- 8761 bytes [03:17 21/11/2010] [03:17 21/11/2010] F715C22512CEEE4149B2CDBC94119DB1
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-ehome-devices-mcxtask_31bf3856ad364e35_6.1.7600.16385_none_b6bc1aae9d0693c5.manifest --a---- 1803 bytes [02:12 14/07/2009] [02:12 14/07/2009] 9D9A699EFAF979C8404CEA712BDB6DCF
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-r..bilityanalysistasks_31bf3856ad364e35_6.1.7600.16385_none_e0525c65f3921d41.manifest --a---- 5557 bytes [02:25 14/07/2009] [02:11 14/07/2009] 19A8E07BBB46333006B0DBC65C054EDF
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-s..-taskhost.resources_31bf3856ad364e35_6.1.7600.16385_en-us_58218e6315051c80.manifest --a---- 2095 bytes [07:05 21/11/2010] [07:05 21/11/2010] 1B3B0BD4A47071D1F97E496E6345B03A
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-sctasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_7f0d187b6294453e.manifest --a---- 2152 bytes [07:05 21/11/2010] [07:05 21/11/2010] 6AAD87707CFFBE0A6F8E61E69990E4D0
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-sctasks_31bf3856ad364e35_6.1.7601.17514_none_e8657d02cbf5e4c1.manifest --a---- 2499 bytes [03:17 21/11/2010] [03:17 21/11/2010] 2D9AFD386E59400C16B2476F586A4653
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskbarcpl.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d0f4b03a5b80da85.manifest --a---- 2173 bytes [07:05 21/11/2010] [07:05 21/11/2010] C1B45243B94DCC66F3DF8B6F59EB4903
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskbarcpl_31bf3856ad364e35_6.1.7601.17514_none_530206f2406950d6.manifest --a---- 8960 bytes [03:15 21/11/2010] [03:15 21/11/2010] A0733F9DFEFF10122209CE3EF2A4C9F7
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.17514_none_8664adc870f5633a.manifest --a---- 2315 bytes [03:15 21/11/2010] [03:15 21/11/2010] 234A428DE766E34FA9D1422957302B01
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.18010_none_86608c5a70f925bc.manifest ------- 2315 bytes [13:06 17/10/2013] [13:06 17/10/2013] 98B070CB2783B4B62CEC7527D973C778
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.22172_none_86ab4a318a459fda.manifest ------- 2315 bytes [13:06 17/10/2013] [13:06 17/10/2013] C443585D691B071FA6F77A009D31DBE7
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskkill.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5c3db67537ec1a5d.manifest --a---- 2175 bytes [07:05 21/11/2010] [07:05 21/11/2010] CE05C1E81CCF7D809D2D19D308A61C6E
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskkill_31bf3856ad364e35_6.1.7600.16385_none_8172f0ac75c192a6.manifest --a---- 2590 bytes [02:33 14/07/2009] [02:14 14/07/2009] 24B1CC98C67BBDB508B4E57B440C76B4
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-tasklist.resources_31bf3856ad364e35_6.1.7600.16385_en-us_1c81dfd54d6f3aab.manifest --a---- 2175 bytes [07:05 21/11/2010] [07:05 21/11/2010] 4C482FDEC44588152699CE759C853FBA
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-tasklist_31bf3856ad364e35_6.1.7600.16385_none_843823d87402ab36.manifest --a---- 2566 bytes [02:33 14/07/2009] [02:15 14/07/2009] A52A8465AD90FD9EFA6649B9C99F078D
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskmanager-events_31bf3856ad364e35_6.1.7600.16385_none_e0ac3efe41cead57.manifest --a---- 5141 bytes [02:33 14/07/2009] [02:28 14/07/2009] A1BF0E2F130B442D555FAD9FAEE4C8EF
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_32d103f978c42b21.manifest --a---- 2144 bytes [07:05 21/11/2010] [07:05 21/11/2010] 55067436E7A8AA951323DF5A25281173
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_7288349cbfd37b08.manifest --a---- 2362 bytes [03:16 21/11/2010] [03:16 21/11/2010] 88F5206E71801EAAB975692520714730
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskscheduler-adm_31bf3856ad364e35_6.1.7600.16385_none_074719bfd9d616de.manifest --a---- 2777 bytes [02:15 14/07/2009] [02:15 14/07/2009] 4D5A50A70B536CF39DFC14B3ABEAAD75
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskscheduler-client_31bf3856ad364e35_6.1.7601.17514_none_a2204d83b4ef6bd1.manifest --a---- 22635 bytes [03:16 21/11/2010] [03:16 21/11/2010] 172C961980488205AA607AD5E2BD64D5
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_6.1.7601.17514_none_43d2529dd579f798.manifest --a---- 2476 bytes [03:15 21/11/2010] [03:15 21/11/2010] C511E2A72D189F8BCBAA5FF8C7843DA2
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskscheduler-netapi_31bf3856ad364e35_6.1.7601.17514_none_67e6c3074ea71107.manifest --a---- 2228 bytes [03:15 21/11/2010] [03:15 21/11/2010] 74F71A89AB95E6C36EBF651B7A45F06A
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskscheduler-proxy_31bf3856ad364e35_6.1.7600.16385_none_d9b2cafed4f953d2.manifest --a---- 4394 bytes [02:33 14/07/2009] [02:18 14/07/2009] 485EF6777E458D7A69BE289F32A3154E
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.1.7601.17514_none_8d272400ada202f9.manifest --a---- 119031 bytes [03:16 21/11/2010] [03:16 21/11/2010] 28C5986017739ADDFB6413F1CD814185
C:\Windows\winsxs\Manifests\amd64_microsoft-windows-taskschedulerv2_31bf3856ad364e35_6.1.7600.16385_none_7e8d98462629b1fb.manifest --a---- 1082 bytes [02:33 14/07/2009] [02:12 14/07/2009] CDF7ADE321E5DEA38B31DBA9590BD077
C:\Windows\winsxs\Manifests\amd64_netfx-microsoft.build.tasks_b03f5f7f11d50a3a_6.1.7601.17514_none_fc74b51ae0ff9c55.manifest --a---- 2156 bytes [03:15 21/11/2010] [03:15 21/11/2010] 346C84853503868873277D00E03D2BC2
C:\Windows\winsxs\Manifests\amd64_netfx35linq-microso...entity.build.tasks_31bf3856ad364e35_6.1.7600.16385_none_3250e53a62eb6f11.manifest --a---- 2155 bytes [02:24 14/07/2009] [02:24 14/07/2009] 52230C40020A4C66E541220761EFCED4
C:\Windows\winsxs\Manifests\amd64_netfx35linq-microsoft.build.tasks.v3.5_31bf3856ad364e35_6.1.7601.17514_none_5077bea082d2585e.manifest --a---- 2127 bytes [03:17 21/11/2010] [03:17 21/11/2010] B89AFD50BB711F9FB400FE25EED1EC9A
C:\Windows\winsxs\Manifests\amd64_networking-mpssvc-rules-remotetask_31bf3856ad364e35_6.1.7600.16385_none_689dd38770642ad7.manifest --a---- 2232 bytes [02:17 14/07/2009] [02:11 14/07/2009] 6D37038FFF16C288574070BE69D151EB
C:\Windows\winsxs\Manifests\amd64_server-help-chm.taskscheduler_lh_31bf3856ad364e35_6.1.7600.16385_none_447c20b5f6540ded.manifest --a---- 789 bytes [02:24 14/07/2009] [02:12 14/07/2009] A6324CDCE97DE90E2EE81EEBCCC50104
C:\Windows\winsxs\Manifests\amd64_taskschedulersettings.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4f61fcad4768c9b8.manifest --a---- 2701 bytes [07:05 21/11/2010] [07:05 21/11/2010] 5B23DC08305673D576D686B179B2BE5B
C:\Windows\winsxs\Manifests\amd64_taskschedulersettings_31bf3856ad364e35_6.1.7600.16385_none_a6dff5711e0deb2d.manifest --a---- 12042 bytes [02:33 14/07/2009] [02:23 14/07/2009] 45BDEB000D56BB96AE4E38AC8338556D
C:\Windows\winsxs\Manifests\amd64_wpf-presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_ae33444d641b1282.manifest --a---- 2195 bytes [03:18 21/11/2010] [03:18 21/11/2010] 583B29D7D48F9421FD2B765ACBBFAF9F
C:\Windows\winsxs\Manifests\msil_microsoft.build.tasks.resources_b03f5f7f11d50a3a_6.1.7600.16385_en-us_7cd8657c94291ead.manifest --a---- 481 bytes [07:05 21/11/2010] [07:05 21/11/2010] 203673CF9C550E21C03B349E687012CF
C:\Windows\winsxs\Manifests\msil_microsoft.build.tasks.v3.5.resources_b03f5f7f11d50a3a_6.1.7600.16385_en-us_5a98412a6e17299e.manifest --a---- 575 bytes [07:05 21/11/2010] [07:05 21/11/2010] 4DD5B96E0E78B78172738B8D39D44E92
C:\Windows\winsxs\Manifests\msil_microsoft.build.tasks.v3.5_b03f5f7f11d50a3a_6.1.7601.17514_none_e8818a0573561a67.manifest --a---- 2632 bytes [03:17 21/11/2010] [03:17 21/11/2010] AA60BB9E59F83E68EA9ECBA8DF9E84AC
C:\Windows\winsxs\Manifests\msil_microsoft.build.tasks_b03f5f7f11d50a3a_6.1.7601.17514_none_71bd78cd49d28292.manifest --a---- 2662 bytes [03:17 21/11/2010] [03:17 21/11/2010] 0E63CD4CA5CEF3113074EF9428987A5B
C:\Windows\winsxs\Manifests\msil_microsoft.data.entity.build.tasks_b03f5f7f11d50a3a_6.1.7600.16385_none_b9aa8f89715bbe5a.manifest --a---- 2128 bytes [01:51 14/07/2009] [01:51 14/07/2009] 1CBE7736ED445337716B52056598C5C0
C:\Windows\winsxs\Manifests\msil_presentationbuildtasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4803cb90b434c578.manifest --a---- 601 bytes [07:05 21/11/2010] [07:05 21/11/2010] D07330DE124D4166043253745D31B357
C:\Windows\winsxs\Manifests\msil_presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_9e27e66b96da763b.manifest --a---- 1934 bytes [03:18 21/11/2010] [03:18 21/11/2010] BB567A0F91A16888259630375D61D54B
C:\Windows\winsxs\Manifests\msil_taskscheduler.resources_31bf3856ad364e35_6.1.7600.16385_en-us_21df7e00fbf2db0a.manifest --a---- 2275 bytes [07:05 21/11/2010] [07:05 21/11/2010] 551C4C0DF2D60FFAE3BB55E124A3D916
C:\Windows\winsxs\Manifests\msil_taskscheduler_31bf3856ad364e35_6.1.7601.17514_none_170487c39d98ec89.manifest --a---- 2607 bytes [03:15 21/11/2010] [03:15 21/11/2010] FC71A60D4AA291CDAF674C2BD6140630
C:\Windows\winsxs\Manifests\wow64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_6.1.7601.17514_none_f724adbdf8a0ef62.manifest --a---- 8759 bytes [03:16 21/11/2010] [03:16 21/11/2010] 8CA67037DF09276221E91C67C045C574
C:\Windows\winsxs\Manifests\wow64_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.1.7601.17514_none_977bce52e202c4f4.manifest --a---- 45326 bytes [03:15 21/11/2010] [03:15 21/11/2010] 642A256D55FB1D790A61AA1B84CD914B
C:\Windows\winsxs\Manifests\wow64_taskschedulersettings_31bf3856ad364e35_6.1.7600.16385_none_b1349fc3526ead28.manifest --a---- 10774 bytes [02:33 14/07/2009] [01:43 14/07/2009] F6F257DA75AF3ED7E22B02929B6D332E
C:\Windows\winsxs\Manifests\x86_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_6.1.7600.16385_en-us_ebe6abced058440e.manifest --a---- 2195 bytes [07:05 21/11/2010] [07:05 21/11/2010] 0B1ECAFC92E8276B182CCB0EE72A6A87
C:\Windows\winsxs\Manifests\x86_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_6.1.7601.17514_none_b0945a7f704488ee.manifest --a---- 4873 bytes [03:18 21/11/2010] [03:18 21/11/2010] 6C1D02699FACAAA2B5CB01B367E96C95
C:\Windows\winsxs\Manifests\x86_microsoft-windows-r..bilityanalysistasks_31bf3856ad364e35_6.1.7600.16385_none_8433c0e23b34ac0b.manifest --a---- 5555 bytes [01:56 14/07/2009] [01:45 14/07/2009] 5375CD370AF35330CFCE1391550D1EC0
C:\Windows\winsxs\Manifests\x86_microsoft-windows-sctasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_22ee7cf7aa36d408.manifest --a---- 2150 bytes [07:05 21/11/2010] [07:05 21/11/2010] 806DCDF38E55606AB40BFC4E76D85E23
C:\Windows\winsxs\Manifests\x86_microsoft-windows-sctasks_31bf3856ad364e35_6.1.7601.17514_none_8c46e17f1398738b.manifest --a---- 2495 bytes [03:15 21/11/2010] [03:15 21/11/2010] C687C7DE2029FEE097C359A5F28ABFA8
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskkill.resources_31bf3856ad364e35_6.1.7600.16385_en-us_001f1af17f8ea927.manifest --a---- 2173 bytes [07:05 21/11/2010] [07:05 21/11/2010] A05A4DD7F77ED28139FE442A6DFF44B3
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskkill_31bf3856ad364e35_6.1.7600.16385_none_25545528bd642170.manifest --a---- 2586 bytes [02:33 14/07/2009] [01:48 14/07/2009] 9C151C993844BA58B81EAC843CA03A41
C:\Windows\winsxs\Manifests\x86_microsoft-windows-tasklist.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c06344519511c975.manifest --a---- 2173 bytes [07:05 21/11/2010] [07:05 21/11/2010] 0529AF717834319D21D935CF5BEDDCDB
C:\Windows\winsxs\Manifests\x86_microsoft-windows-tasklist_31bf3856ad364e35_6.1.7600.16385_none_28198854bba53a00.manifest --a---- 2562 bytes [02:33 14/07/2009] [01:49 14/07/2009] 2149E22C72F6863986D691C564C7354D
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskmanager-events_31bf3856ad364e35_6.1.7600.16385_none_848da37a89713c21.manifest --a---- 5139 bytes [02:33 14/07/2009] [01:58 14/07/2009] 425B0303AA66CD823081D062A2F8743E
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d6b26875c066b9eb.manifest --a---- 2142 bytes [07:05 21/11/2010] [07:05 21/11/2010] 1217D8552FFF217F201070FA0DB356D7
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_16699919077609d2.manifest --a---- 2358 bytes [03:16 21/11/2010] [03:16 21/11/2010] E866E8171F5938195027D127CE4FF453
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskscheduler-client_31bf3856ad364e35_6.1.7601.17514_none_4601b1fffc91fa9b.manifest --a---- 22631 bytes [03:16 21/11/2010] [03:16 21/11/2010] FC9EC6C6F7A3397315AC0F4745A45375
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_6.1.7601.17514_none_e7b3b71a1d1c8662.manifest --a---- 2472 bytes [03:15 21/11/2010] [03:15 21/11/2010] F4A0EE6ACB6F97229590E7BCF5DF9802
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 30th, 2013, 9:45 am

System Log part two
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskscheduler-netapi_31bf3856ad364e35_6.1.7601.17514_none_0bc8278396499fd1.manifest --a---- 2226 bytes [03:14 21/11/2010] [03:14 21/11/2010] 82C0FA6C05A91F3FA705C870676CCF03
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskscheduler-proxy_31bf3856ad364e35_6.1.7600.16385_none_7d942f7b1c9be29c.manifest --a---- 4390 bytes [02:33 14/07/2009] [01:53 14/07/2009] 7D50B7427B42578C3FDB96C38D91585B
C:\Windows\winsxs\Manifests\x86_microsoft-windows-taskschedulerv2_31bf3856ad364e35_6.1.7600.16385_none_226efcc26dcc40c5.manifest --a---- 1078 bytes [02:33 14/07/2009] [01:46 14/07/2009] BD914DFFEEE78478B2752612E1178581
C:\Windows\winsxs\Manifests\x86_taskschedulersettings.resources_31bf3856ad364e35_6.1.7600.16385_en-us_f34361298f0b5882.manifest --a---- 2699 bytes [07:05 21/11/2010] [07:05 21/11/2010] 11CFB8389D4A4B754D23612C1A135A30
C:\Windows\winsxs\Manifests\x86_wpf-presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_5214a8c9abbda14c.manifest --a---- 2193 bytes [03:17 21/11/2010] [03:17 21/11/2010] EE21512CC89F58C23B1F15E6F0F0DC02
C:\Windows\winsxs\msil_microsoft.build.tasks.v3.5_b03f5f7f11d50a3a_6.1.7601.17514_none_e8818a0573561a67\Microsoft.Build.Tasks.v3.5.dll --a---- 802816 bytes [03:25 21/11/2010] [03:25 21/11/2010] 9EBE67131D1776B86410B56FFC95A5BF
C:\Windows\winsxs\msil_microsoft.build.tasks_b03f5f7f11d50a3a_6.1.7601.17514_none_71bd78cd49d28292\Microsoft.Build.Tasks.dll --a---- 655360 bytes [03:24 21/11/2010] [03:24 21/11/2010] 5B5AEB3CEB1FC6D77E57821E6A42DE72
C:\Windows\winsxs\msil_microsoft.data.entity.build.tasks_b03f5f7f11d50a3a_6.1.7600.16385_none_b9aa8f89715bbe5a\Microsoft.Data.Entity.Build.Tasks.dll --a---- 40960 bytes [21:10 13/07/2009] [21:14 10/06/2009] 276F80268B3ADE4D2BDDFCEFAD1059B3
C:\Windows\winsxs\msil_presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_9e27e66b96da763b\PresentationBuildTasks.dll --a---- 598016 bytes [03:24 21/11/2010] [03:24 21/11/2010] AEFD96A1A087027A7EDC21F83F1B4727
C:\Windows\winsxs\msil_taskscheduler.resources_31bf3856ad364e35_6.1.7600.16385_en-us_21df7e00fbf2db0a\TaskScheduler.resources.dll --a---- 7168 bytes [07:06 21/11/2010] [07:06 21/11/2010] ABBF43F681EF160CAAB7C41BC289DA06
C:\Windows\winsxs\msil_taskscheduler_31bf3856ad364e35_6.1.7601.17514_none_170487c39d98ec89\TaskScheduler.dll --a---- 167936 bytes [03:24 21/11/2010] [03:24 21/11/2010] 1D264989FFABEF36745304F5DD216DC7
C:\Windows\winsxs\wow64_bth-user.resources_31bf3856ad364e35_6.1.7600.16385_en-us_cd0412cbc6ff5922\bthudtask.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] E6E00B73AB935C7DDBAF3BD4A9A15FA4
C:\Windows\winsxs\wow64_microsoft-windows-bth-user_31bf3856ad364e35_6.1.7601.17514_none_cd93efad202e5fb6\bthudtask.exe --a---- 35328 bytes [23:51 13/07/2009] [01:14 14/07/2009] F6DB1B426044CE75A512A5BA58C29B5D
C:\Windows\winsxs\wow64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_6.1.7601.17514_none_f724adbdf8a0ef62\DxpTaskSync.dll --a---- 1400320 bytes [03:24 21/11/2010] [03:24 21/11/2010] ABA2AAA6F31EE934A76C87B537515EC6
C:\Windows\winsxs\wow64_taskschedulersettings_31bf3856ad364e35_6.1.7600.16385_none_b1349fc3526ead28\taskschd.msc --a---- 145059 bytes [21:46 13/07/2009] [21:38 10/06/2009] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\winsxs\x86_microsoft-windows-d..-ringtone.resources_31bf3856ad364e35_6.1.7600.16385_en-us_e218b286eb401969\DXPTaskRingtone.dll.mui --a---- 7168 bytes [07:06 21/11/2010] [07:06 21/11/2010] 182A0BC5E5D2691A49A7FECE49576F60
C:\Windows\winsxs\x86_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_6.1.7600.16385_en-us_ebe6abced058440e\DxpTaskSync.dll.mui --a---- 31232 bytes [07:06 21/11/2010] [07:06 21/11/2010] CB43CAE5108ACBD2F4EAF22293B65BC3
C:\Windows\winsxs\x86_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_6.1.7601.17514_none_b0945a7f704488ee\DXPTaskRingtone.dll --a---- 630784 bytes [03:25 21/11/2010] [03:25 21/11/2010] 1078F4A06BE5DACDC8429215ADAE8104
C:\Windows\winsxs\x86_microsoft-windows-sctasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_22ee7cf7aa36d408\schtasks.exe.mui --a---- 73728 bytes [07:06 21/11/2010] [07:06 21/11/2010] 0C2DEC2B98693EEA2AF1A20C31E13A86
C:\Windows\winsxs\x86_microsoft-windows-sctasks_31bf3856ad364e35_6.1.7601.17514_none_8c46e17f1398738b\schtasks.exe --a---- 179712 bytes [03:23 21/11/2010] [03:23 21/11/2010] 2003E9B15E1C502B146DAD2E383AC1E3
C:\Windows\winsxs\x86_microsoft-windows-t..atibility.resources_31bf3856ad364e35_6.1.7600.16385_en-us_f9dfb0bfad606007\taskcomp.dll.mui --a---- 13312 bytes [07:06 21/11/2010] [07:06 21/11/2010] FC245ABE9E103F75C5F94B8BBAD0BD68
C:\Windows\winsxs\x86_microsoft-windows-t..cheduler-apis-proxy_31bf3856ad364e35_6.1.7600.16385_none_d58a4b8d7ce98308\TaskSchdPS.dll --a---- 36864 bytes [23:29 13/07/2009] [01:16 14/07/2009] E1EF320CBB1A6623DF040D5539DDA8F4
C:\Windows\winsxs\x86_microsoft-windows-t..duler-compatibility_31bf3856ad364e35_6.1.7601.17514_none_6a9c65b63a7dcc5a\taskcomp.dll --a---- 305152 bytes [03:23 21/11/2010] [03:23 21/11/2010] 1C3E8371377E988B683797A132EFFE1B
C:\Windows\winsxs\x86_microsoft-windows-t..er-client.resources_31bf3856ad364e35_6.1.7600.16385_en-us_bfd28667302e27e2\taskschd.dll.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 4EC67B28281E58BD9A6B2BBDD29E59A5
C:\Windows\winsxs\x86_microsoft-windows-t..er-engine.resources_31bf3856ad364e35_6.1.7600.16385_en-us_b7129d57c1ee4aef\TaskEng.exe.mui --a---- 2560 bytes [07:06 21/11/2010] [07:06 21/11/2010] 35EB874E9319D57CCFF4BB8BE55F4DE5
C:\Windows\winsxs\x86_microsoft-windows-t..ompatibility-client_31bf3856ad364e35_6.1.7601.17514_none_600f91eac286f072\mstask.dll --a---- 209920 bytes [03:24 21/11/2010] [03:24 21/11/2010] C5A99A4C0DC9F0F5A95BA0C83D30A549
C:\Windows\winsxs\x86_microsoft-windows-t..ty-client.resources_31bf3856ad364e35_6.1.7600.16385_en-us_402c144309f85a9b\mstask.dll.mui --a---- 43008 bytes [07:06 21/11/2010] [07:06 21/11/2010] 598C87C3EBF9AD8DDF63FCB6E814F4DF
C:\Windows\winsxs\x86_microsoft-windows-taskkill.resources_31bf3856ad364e35_6.1.7600.16385_en-us_001f1af17f8ea927\taskkill.exe.mui --a---- 15872 bytes [07:06 21/11/2010] [07:06 21/11/2010] 2C2E4B8D78271CF0B187973FB304AEF0
C:\Windows\winsxs\x86_microsoft-windows-taskkill_31bf3856ad364e35_6.1.7600.16385_none_25545528bd642170\taskkill.exe --a---- 77824 bytes [23:57 13/07/2009] [01:14 14/07/2009] 94BDCAFBD584C979B385ADEE14B08AB4
C:\Windows\winsxs\x86_microsoft-windows-tasklist.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c06344519511c975\tasklist.exe.mui --a---- 14848 bytes [07:06 21/11/2010] [07:06 21/11/2010] 1E28034DD76392DF4970E714D66CDA63
C:\Windows\winsxs\x86_microsoft-windows-tasklist_31bf3856ad364e35_6.1.7600.16385_none_28198854bba53a00\tasklist.exe --a---- 80896 bytes [23:57 13/07/2009] [01:14 14/07/2009] A9A00E71E3DD67B029FC904FE3BB61DA
C:\Windows\winsxs\x86_microsoft-windows-taskmanager-events_31bf3856ad364e35_6.1.7600.16385_none_848da37a89713c21\taskmgr.events.ptxml --a---- 1086 bytes [20:27 13/07/2009] [20:27 13/07/2009] B03FDEA854B2C246140F39A5F3D5C163
C:\Windows\winsxs\x86_microsoft-windows-taskmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d6b26875c066b9eb\taskmgr.exe.mui --a---- 34304 bytes [07:06 21/11/2010] [07:06 21/11/2010] 438D1192DD633A6D684FD61D87944FC2
C:\Windows\winsxs\x86_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_16699919077609d2\taskmgr.exe --a---- 227328 bytes [03:23 21/11/2010] [03:23 21/11/2010] 545BF7EAA24A9E062857D0742EC0B28A
C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-client_31bf3856ad364e35_6.1.7601.17514_none_4601b1fffc91fa9b\taskschd.dll --a---- 505856 bytes [03:24 21/11/2010] [03:24 21/11/2010] 544EFF88AC6C85DF5A4D6F18DFE08CFC
C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_6.1.7601.17514_none_e7b3b71a1d1c8662\taskeng.exe --a---- 192000 bytes [03:23 21/11/2010] [03:23 21/11/2010] 4F2659160AFCCA990305816946F69407
C:\Windows\winsxs\x86_netfx-msbuild_data_files_b03f5f7f11d50a3a_6.1.7600.16385_none_5111c1c5febc8960\Microsoft.Common.Tasks --a---- 6838 bytes [20:46 13/07/2009] [21:23 10/06/2009] 54A4EA347F2C2D5C3E10F7CC6D689600
C:\Windows\winsxs\x86_netfx35linq-msbuild_data_files_31bf3856ad364e35_6.1.7600.16385_none_8cf1b3aadc9746b7\Microsoft.Common.Tasks --a---- 11588 bytes [21:10 13/07/2009] [21:14 10/06/2009] 1D34906C6AA1C79C6E986403896DA7B9
C:\Windows\winsxs\x86_taskschedulersettings.resources_31bf3856ad364e35_6.1.7600.16385_en-us_f34361298f0b5882\taskschd.msc --a---- 145059 bytes [07:06 21/11/2010] [07:06 21/11/2010] AB2A58839814D2EA5EE621B5DBF944FF
C:\Windows\winsxs\x86_wpf-presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_5214a8c9abbda14c\PresentationBuildTasks.dll --a---- 598016 bytes [03:24 21/11/2010] [03:24 21/11/2010] AEFD96A1A087027A7EDC21F83F1B4727

========== folderfind ==========

Searching for "*Fun4IM*"
No folders found.

Searching for "*Bandoo*"
No folders found.

Searching for "*Searchqu*"
No folders found.

Searching for "*iLivid*"
No folders found.

Searching for "*whitesmoke*"
No folders found.

Searching for "*datamngr*"
No folders found.

Searching for "*trolltech*"
No folders found.

Searching for "*ask*"
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork d------ [14:27 29/10/2013]
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source\common appdata\AskPartnerNetwork d------ [14:27 29/10/2013]
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source\program files\AskPartnerNetwork d------ [14:27 29/10/2013]
C:\AdwCleaner\Quarantine\C\ProgramData\AskPartnerNetwork d------ [14:27 29/10/2013]
C:\Program Files (x86)\Security Task Manager d------ [14:37 27/10/2013]
C:\ProgramData\SecTaskMan d------ [14:37 27/10/2013]
C:\ProgramData\Microsoft\Device Stage\Task d------ [03:20 14/07/2009]
C:\Users\All Users\SecTaskMan d------ [14:37 27/10/2013]
C:\Users\All Users\Microsoft\Device Stage\Task d------ [03:20 14/07/2009]
C:\Users\Jack\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar dr----- [11:43 17/10/2013]
C:\Users\Jack 2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar dr----- [16:18 29/10/2013]
C:\Users\Jack Standard\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar dr----- [21:41 17/10/2013]
C:\Windows\Tasks d------ [03:20 14/07/2009]
C:\Windows\assembly\GAC_MSIL\Microsoft.Build.Tasks d------ [03:20 14/07/2009]
C:\Windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.resources d------ [08:54 20/03/2011]
C:\Windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5 d------ [05:32 14/07/2009]
C:\Windows\assembly\GAC_MSIL\PresentationBuildTasks d------ [05:32 14/07/2009]
C:\Windows\assembly\GAC_MSIL\PresentationBuildTasks.resources d------ [08:54 20/03/2011]
C:\Windows\assembly\GAC_MSIL\TaskScheduler d------ [03:20 14/07/2009]
C:\Windows\assembly\GAC_MSIL\TaskScheduler.Resources d------ [05:37 14/07/2009]
C:\Windows\assembly\NativeImages_v2.0.50727_32\TaskScheduler d------ [14:40 21/10/2013]
C:\Windows\assembly\NativeImages_v2.0.50727_64\TaskScheduler d------ [15:27 21/10/2013]
C:\Windows\System32\Tasks d------ [03:20 14/07/2009]
C:\Windows\System32\Tasks\Microsoft\Windows\Task Manager d------ [04:53 14/07/2009]
C:\Windows\SysWOW64\Tasks d------ [03:20 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4805475288b5b544 d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_6.1.7601.17514_none_0cb2f60328a1fa24 d------ [03:25 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_6.1.7601.17514_none_ecd0036bc4402d67 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-ehome-devices-mcxtask_31bf3856ad364e35_6.1.7600.16385_none_b6bc1aae9d0693c5 d------ [05:30 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-s..-taskhost.resources_31bf3856ad364e35_6.1.7600.16385_en-us_58218e6315051c80 d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-sctasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_7f0d187b6294453e d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-sctasks_31bf3856ad364e35_6.1.7601.17514_none_e8657d02cbf5e4c1 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskbarcpl.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d0f4b03a5b80da85 d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskbarcpl_31bf3856ad364e35_6.1.7601.17514_none_530206f2406950d6 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.17514_none_8664adc870f5633a d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.18010_none_86608c5a70f925bc d------ [13:06 17/10/2013]
C:\Windows\winsxs\amd64_microsoft-windows-taskhost_31bf3856ad364e35_6.1.7601.22172_none_86ab4a318a459fda d------ [13:06 17/10/2013]
C:\Windows\winsxs\amd64_microsoft-windows-taskkill.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5c3db67537ec1a5d d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskkill_31bf3856ad364e35_6.1.7600.16385_none_8172f0ac75c192a6 d------ [03:20 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-tasklist.resources_31bf3856ad364e35_6.1.7600.16385_en-us_1c81dfd54d6f3aab d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-tasklist_31bf3856ad364e35_6.1.7600.16385_none_843823d87402ab36 d------ [03:20 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-taskmanager-events_31bf3856ad364e35_6.1.7600.16385_none_e0ac3efe41cead57 d------ [03:20 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-taskmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_32d103f978c42b21 d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_7288349cbfd37b08 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-adm_31bf3856ad364e35_6.1.7600.16385_none_074719bfd9d616de d------ [05:30 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-client_31bf3856ad364e35_6.1.7601.17514_none_a2204d83b4ef6bd1 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_6.1.7601.17514_none_43d2529dd579f798 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-netapi_31bf3856ad364e35_6.1.7601.17514_none_67e6c3074ea71107 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-proxy_31bf3856ad364e35_6.1.7600.16385_none_d9b2cafed4f953d2 d------ [03:20 14/07/2009]
C:\Windows\winsxs\amd64_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.1.7601.17514_none_8d272400ada202f9 d------ [03:16 21/11/2010]
C:\Windows\winsxs\amd64_netfx-microsoft.build.tasks_b03f5f7f11d50a3a_6.1.7601.17514_none_fc74b51ae0ff9c55 d------ [03:24 21/11/2010]
C:\Windows\winsxs\amd64_netfx35linq-microso...entity.build.tasks_31bf3856ad364e35_6.1.7600.16385_none_3250e53a62eb6f11 d------ [05:30 14/07/2009]
C:\Windows\winsxs\amd64_netfx35linq-microsoft.build.tasks.v3.5_31bf3856ad364e35_6.1.7601.17514_none_5077bea082d2585e d------ [03:25 21/11/2010]
C:\Windows\winsxs\amd64_taskschedulersettings.resources_31bf3856ad364e35_6.1.7600.16385_en-us_4f61fcad4768c9b8 d------ [07:06 21/11/2010]
C:\Windows\winsxs\amd64_taskschedulersettings_31bf3856ad364e35_6.1.7600.16385_none_a6dff5711e0deb2d d------ [03:20 14/07/2009]
C:\Windows\winsxs\amd64_wpf-presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_ae33444d641b1282 d------ [03:25 21/11/2010]
C:\Windows\winsxs\msil_microsoft.build.tasks.v3.5_b03f5f7f11d50a3a_6.1.7601.17514_none_e8818a0573561a67 d------ [03:25 21/11/2010]
C:\Windows\winsxs\msil_microsoft.build.tasks_b03f5f7f11d50a3a_6.1.7601.17514_none_71bd78cd49d28292 d------ [03:24 21/11/2010]
C:\Windows\winsxs\msil_microsoft.data.entity.build.tasks_b03f5f7f11d50a3a_6.1.7600.16385_none_b9aa8f89715bbe5a d------ [05:30 14/07/2009]
C:\Windows\winsxs\msil_presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_9e27e66b96da763b d------ [03:25 21/11/2010]
C:\Windows\winsxs\msil_taskscheduler.resources_31bf3856ad364e35_6.1.7600.16385_en-us_21df7e00fbf2db0a d------ [07:06 21/11/2010]
C:\Windows\winsxs\msil_taskscheduler_31bf3856ad364e35_6.1.7601.17514_none_170487c39d98ec89 d------ [03:24 21/11/2010]
C:\Windows\winsxs\wow64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_6.1.7601.17514_none_f724adbdf8a0ef62 d------ [03:24 21/11/2010]
C:\Windows\winsxs\wow64_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.1.7601.17514_none_977bce52e202c4f4 d------ [03:15 21/11/2010]
C:\Windows\winsxs\wow64_taskschedulersettings_31bf3856ad364e35_6.1.7600.16385_none_b1349fc3526ead28 d------ [03:20 14/07/2009]
C:\Windows\winsxs\x86_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_6.1.7600.16385_en-us_ebe6abced058440e d------ [07:06 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_6.1.7601.17514_none_b0945a7f704488ee d------ [03:25 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-sctasks.resources_31bf3856ad364e35_6.1.7600.16385_en-us_22ee7cf7aa36d408 d------ [07:06 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-sctasks_31bf3856ad364e35_6.1.7601.17514_none_8c46e17f1398738b d------ [03:23 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskkill.resources_31bf3856ad364e35_6.1.7600.16385_en-us_001f1af17f8ea927 d------ [07:06 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskkill_31bf3856ad364e35_6.1.7600.16385_none_25545528bd642170 d------ [03:20 14/07/2009]
C:\Windows\winsxs\x86_microsoft-windows-tasklist.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c06344519511c975 d------ [07:06 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-tasklist_31bf3856ad364e35_6.1.7600.16385_none_28198854bba53a00 d------ [03:20 14/07/2009]
C:\Windows\winsxs\x86_microsoft-windows-taskmanager-events_31bf3856ad364e35_6.1.7600.16385_none_848da37a89713c21 d------ [03:20 14/07/2009]
C:\Windows\winsxs\x86_microsoft-windows-taskmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d6b26875c066b9eb d------ [07:06 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_16699919077609d2 d------ [03:23 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-client_31bf3856ad364e35_6.1.7601.17514_none_4601b1fffc91fa9b d------ [03:24 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_6.1.7601.17514_none_e7b3b71a1d1c8662 d------ [03:23 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-netapi_31bf3856ad364e35_6.1.7601.17514_none_0bc8278396499fd1 d------ [03:24 21/11/2010]
C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-proxy_31bf3856ad364e35_6.1.7600.16385_none_7d942f7b1c9be29c d------ [03:20 14/07/2009]
C:\Windows\winsxs\x86_taskschedulersettings.resources_31bf3856ad364e35_6.1.7600.16385_en-us_f34361298f0b5882 d------ [07:06 21/11/2010]
C:\Windows\winsxs\x86_wpf-presentationbuildtasks_31bf3856ad364e35_6.1.7601.17514_none_5214a8c9abbda14c d------ [03:25 21/11/2010]

========== Regfind ==========

Searching for "Fun4IM"
No data found.

Searching for "Bandoo"
No data found.

Searching for "Searchqu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"

Searching for "iLivid"
No data found.

Searching for "whitesmoke"
No data found.

Searching for "datamngr"
No data found.

Searching for "kelkoopartners"
No data found.

Searching for "trolltech"
[HKEY_CURRENT_USER\Software\Trolltech]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.6\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.8\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_USERS\S-1-5-21-1089015780-974823976-2004761081-1000\Software\Trolltech]
[HKEY_USERS\S-1-5-21-1089015780-974823976-2004761081-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.6\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_USERS\S-1-5-21-1089015780-974823976-2004761081-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.8\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]

Searching for "ask"
[HKEY_CURRENT_USER\AppEvents\Schemes\Apps\WinPatrol\Task Alert]
[HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\11.0\AVGeneral\cTaskPanes]
[HKEY_CURRENT_USER\Software\BillP Studios\Detected\ActiveTasks]
[HKEY_CURRENT_USER\Software\BillP Studios\Detected\ActiveTasks]
"C:\PROGRAM FILES (X86)\ASKPARTNERNETWORK\Toolbar\Updater\TBNOTIFIER.EXE"="10/23/2013 22:46"
[HKEY_CURRENT_USER\Software\BillP Studios\Detected\Services]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"="10/23/2013 22:46"
[HKEY_CURRENT_USER\Software\BillP Studios\Detected\Startup]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"="10/23/2013 22:46"
[HKEY_CURRENT_USER\Software\BillP Studios\Detected\Tasks]
[HKEY_CURRENT_USER\Software\BillP Studios\Detected\Tasks]
"C:\Program Files\SUPERAntiSpyware\SASTask.exe"="10/23/2013 23:05"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Options]
"HideTasks"="0"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Options]
"Tasks"="11"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Run]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"="21"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Services]
"Ask Update Service"="700"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Services]
"Task Scheduler"="701"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Tasks]
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Tasks]
"GoogleUpdateTaskMachineUA.job"="800"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Tasks]
"GoogleUpdateTaskMachineCore.job"="800"
[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Tasks]
"SUPERAntiSpyware Scheduled Task 2b20bff2-35fa-445d-b3eb-3c8bf40345de.job"="800"
[HKEY_CURRENT_USER\Software\Microsoft\Feeds]
"SyncTask"="User_Feed_Synchronization-{59C3944B-29A9-4E28-8409-FCE63C76F889}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1089015780-974823976-2004761081-1000\Software\Microsoft\MediaPlayer\Player\Tasks]
[HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Player\Tasks]
[HKEY_CURRENT_USER\Software\Microsoft\Speech\Preferences\AppCompatDisableMSAA]
"taskmgr.exe"=""
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Taskband]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\VisualEffects\TaskbarAnimations]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\askfox.net]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\askgates.com]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\bellabasketsfl.com]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clearask.com]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\gift-baskets-shop.biz]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hazardactivitytasks.in]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sceauxbasket.com]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tasksperilsanalysis.in]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\xweexxdyiaoaskfy.ru]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\TaskBarIDs]
[HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\43\52C64B7E]
"@C:\Windows\system32\miguiresource.dll,-201"="Task Scheduler"
[HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\43\52C64B7E]
"@C:\Windows\System32\taskbarcpl.dll,-1"="Notification Area Icons"
[HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\43\52C64B7E]
"@C:\Windows\System32\taskbarcpl.dll,-2"="Select which icons and notifications appear in the notification area."
[HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\43\52C64B7E]
"@%windir%\system32\miguiresource.dll,-202"="Schedule computer tasks to run automatically."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\{90AA3A4E-1CBA-4233-B8BB-535773D48449}]
@="Taskband Pin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\explorer.exe]
"TaskbarGroupIcon"="%SystemRoot%\System32\imageres.dll,-4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\MMC.exe]
"UseExecutableForTaskbarGroupIcon"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\NTVDM.exe]
"UseExecutableForTaskbarGroupIcon"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\WINWORD.EXE\TaskbarExceptionsIcons]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00C6D95F-329C-409a-81D7-C46C66EA7F33}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00da2f99-f2a6-40c2-b770-a920f8e44abc}\MergedFolder]
"AttributeMask"="0xffffffff"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0142e4d0-fb7a-11dc-ba4a-000ffe7ab428}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01575CFE-9A55-4003-A5E1-F38D1EBDCBE1}]
@="MsCtfMonitor task handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{025A5937-A6BE-4686-A844-36FE4BEC8B6D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0358b920-0ac7-461f-98f4-58e32cd89148}]
@="Wininet Cache task object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05BDC38E-5493-487a-A7FF-8CF2246ABC13}]
@="IE Background Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d7}]
@="Taskbar Control Panel"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d7}\InProcServer32]
@="%SystemRoot%\System32\taskbarcpl.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d8}\InProcServer32]
@="%SystemRoot%\System32\taskbarcpl.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}]
@="Taskbar"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}]
"InfoTip"="@%SystemRoot%\System32\taskbarcpl.dll,-2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}]
"LocalizedString"="@%SystemRoot%\System32\taskbarcpl.dll,-1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}\DefaultIcon]
@="%SystemRoot%\System32\taskbarcpl.dll,-1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}\Instance\InitPropertyBag]
"ResourceDLL"="%SystemRoot%\System32\taskbarcpl.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B3F871D-38D9-4677-8853-A247C6366483}]
@="RecoveryTaskDispatchServer Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B3F871D-38D9-4677-8853-A247C6366483}\ProgID]
@="eHome.RecoveryTaskDispatchServer.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B3F871D-38D9-4677-8853-A247C6366483}\VersionIndependentProgID]
@="eHome.RecoveryTaskDispatchServer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cbb5030-f2b2-4b38-8cbc-895cec57db03}]
@="Create 802.11 Ad hoc Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
@="Taskbar and Start Menu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
"System.ApplicationName"="Microsoft.TaskbarAndStartMenu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}]
@="TaskScheduler class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocServer32]
@="C:\Windows\system32\taskschd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1206F5F1-0569-412C-8FEC-3204630DFB70}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{148BD520-A2AB-11CE-B11F-00AA00530503}]
@="Scheduling Agent Task Object Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{148BD520-A2AB-11CE-B11F-00AA00530503}\DefaultIcon]
@="%systemroot%\System32\mstask.dll,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{148BD520-A2AB-11CE-B11F-00AA00530503}\InProcServer32]
@="%systemroot%\System32\mstask.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{148BD52A-A2AB-11CE-B11F-00AA00530503}\DefaultIcon]
@="%systemroot%\System32\mstask.dll,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{148BD52A-A2AB-11CE-B11F-00AA00530503}\InProcServer32]
@="%systemroot%\System32\mstask.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{17cd9488-1228-4b2f-88ce-4298e93e0966}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1C1EDB47-CE22-4bbb-B608-77B48F83C823}]
@="IE Fade Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2183DACA-D0BF-4a31-97F7-B87618A81955}]
@="IE Shared Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{241D7C96-F8BF-4F85-B01F-E2B043341A4B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}]
@="Configure Windows Portable Device Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}\ProgID]
@="WPD.WindowsPortableDeviceTask.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}\VersionIndependentProgID]
@="WPD.WindowsPortableDeviceTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{36eef7db-88ad-4e81-ad49-0e313f0c35f8}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{37efd44d-ef8d-41b1-940d-96973a50e9e0}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A04D93B-1EDD-4f3f-A375-A03EC19572C4}]
@="MaskFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A04D93B-1EDD-4f3f-A375-A03EC19572C4}\ProgID]
@="DXImageTransform.Microsoft.MaskFilter.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A04D93B-1EDD-4f3f-A375-A03EC19572C4}\VersionIndependentProgID]
@="DXImageTransform.Microsoft.MaskFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3D112E22-62B2-11D1-9FEF-00600832DB4A}]
@="MMCTask class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3D112E22-62B2-11D1-9FEF-00600832DB4A}\ProgID]
@="MMCTask.MMCTask.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3D112E22-62B2-11D1-9FEF-00600832DB4A}\VersionIndependentProgID]
@="MMCTask.MMCTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4026492F-2F69-46B8-B9BF-5654FC07E423}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{40419485-C444-4567-851A-2DD7BFA1684D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{427BC7E3-F833-4584-8745-CFAB9D7A5761}]
@="CTaskConditionCombiner"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44F9A03B-A3EC-4F3B-9364-08E0007F21DF}]
@="TaskSymbol Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44F9A03B-A3EC-4F3B-9364-08E0007F21DF}\ProgID]
@="Control.TaskSymbol.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44F9A03B-A3EC-4F3B-9364-08E0007F21DF}\VersionIndependentProgID]
@="Control.TaskSymbol"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{46C0A7DC-928A-485a-959F-1F9EF8686A11}\InProcServer32]
@="%SystemRoot%\system32\DXPTaskRingtone.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4C6F940C-3CFE-11D2-9EE7-00C04F797396}]
@="SpTaskManager Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4CB26C03-FF93-11d0-817E-0000F87557DB}]
@="DXTaskManager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{51653423-E62D-4FF7-894A-DABB2B8E21E2}]
@="CrawlStartPages Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{53510d24-57eb-4713-9afb-e6e60530b87e}]
@="IE RSS Feeds Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{55b70dec-4b3b-4e26-ae9c-9e8d131843a1}]
@="Microsoft Feeds Background Task Scheduling"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}]
@="Task Bar Communication"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58E3C745-D971-4081-9034-86E34B30836A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58fb76b9-ac85-4e55-ac04-427593b1d060}]
@="Certificate Services Client Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5ea4f148-308c-46d7-98a9-49041b1dd468}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{603D3800-BD81-11d0-A3A5-00C04FD706EC}]
@="Background Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{603D3801-BD81-11d0-A3A5-00C04FD706EC}]
@="Shared Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{60632754-c523-4b62-b45c-4172da012619}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62D8ED13-C9D0-4CE8-A914-47DD628FB1B0}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{67CA7650-96E6-4FDD-BB43-A8E774F73A57}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6C8EEC18-8D75-41B2-A177-8831D59D2D50}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6db29a9b-10d0-4b93-b86a-188fc998eff8}]
@="InfraCreateTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071EC71-663B-4bc1-A1FA-B97F3B917C55}]
@="Create Dial-up Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071EC75-663B-4bc1-A1FA-B97F3B917C55}]
@="Create VPN Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071ECA0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Internet Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071ECB0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Work Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071ECD0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Bluetooth Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071ECE0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Network Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7071ECFA-663B-4bc1-A1FA-B97F3B917C55}]
@="Network Tasks Host Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7086AD76-44BD-11D0-81ED-00A0C90FC491}]
@="DiskManagement.UITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7086AD76-44BD-11D0-81ED-00A0C90FC491}\ProgID]
@="DiskManagement.UITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{725BE8F7-668E-4C7B-8F90-46BDB0936430}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{74246bfc-4c96-11d0-abef-0020af6b0b7a}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{777BA815-2498-4875-933A-3067DE883070}]
@="XWizard Task Stub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{777BA81A-2498-4875-933A-3067DE883070}\VirtualServerObjects]
"{777BA815-2498-4875-933A-3067DE883070}"="XWizard Task Stub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{777BA8E5-2498-4875-933A-3067DE883070}]
@="Private XWizard Task Enumeration Manager Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78CB147A-98EA-4AA6-B0DF-C8681F69341C}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78F3955E-3B90-4184-BD14-5397C15F1EFC}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7940ACF8-60BA-4213-A7C3-F3B400EE266D}]
@="Setup a Workspace Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}]
@="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}\InprocServer32]
"Class"="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}\InprocServer32\2.0.0.0]
"Class"="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}\ProgId]
@="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7B5A12E8-0C60-4939-A046-11CF879B19FB}]
@="WlanDlg Get Key Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7b81be6a-ce2b-4676-a29e-eb907a5126c5}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7EB5FBE4-2100-49E6-8593-17E130122F91}]
@="Fade Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FA3A1C3-3C87-40de-AC16-B6E2815A4CC8}]
@="RecoveryTaskWrapper Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FA3A1C3-3C87-40de-AC16-B6E2815A4CC8}\ProgID]
@="eHome.RecoveryTaskWrapper.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FA3A1C3-3C87-40de-AC16-B6E2815A4CC8}\VersionIndependentProgID]
@="eHome.RecoveryTaskWrapper"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80F3F1D5-FECA-45F3-BC32-752C152E456E}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{854CB94F-2279-4F7F-AC62-31E22E4D8899}]
@="InfraConnectTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855fec53-d2e4-4999-9e87-3414e9cf0ff4}]
@="RunTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{879fb53b-cba3-4fc8-b233-d9a93afa7fbc}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{87D66A43-7B11-4A28-9811-C86EE395ACF7}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E908FC9-BECC-40f6-915B-F4CA0E70D03D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{90AA3A4E-1CBA-4233-B8BB-535773D48449}]
@="Taskband Pin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{90AA3A4E-1CBA-4233-B8BB-535773D48449}]
"ImplementsVerbs"="taskbarpin;taskbarunpin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96AE8D84-A250-4520-95A5-A47A7E3C548B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9C60DE1E-E5FC-40f4-A487-460851A8D915}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9C86F320-DEE3-4DD1-B972-A303F26B061E}\InprocServer32]
@="C:\Windows\system32\TaskSchdPS.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9FE63AFD-59CF-4419-9775-ABCC3849F861}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A0275511-0E86-4ECA-97C2-ECD8F1221D08}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A09C534C-0057-462E-8402-2A21D38BFCA1}]
@="New Network category Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3DD4F92-658A-410F-84FD-6FBBBEF2FFFE}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A5CF917A-0F75-4b29-A0A0-5348E501DA59}]
@="RecoveryTaskMonitor Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A5CF917A-0F75-4b29-A0A0-5348E501DA59}\ProgID]
@="eHome.RecoveryTaskMonitor.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A5CF917A-0F75-4b29-A0A0-5348E501DA59}\VersionIndependentProgID]
@="eHome.RecoveryTaskMonitor"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a86ca2f1-af74-4a74-980b-e185d4ca01b0}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A8A91A66-3A7D-4424-8D24-04E180695C7A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A9A33436-678B-4c9c-A211-7CC38785E79D}]
@="WinSAT Task Manger Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AAC2B978-266D-48ae-AA28-60A3EBB872D0}]
@="IE RSS FeedFolder Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{abd2ad24-f1ff-47ad-82de-3a1edf38e7a1}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b27b520e-46db-4720-b9c5-5f80acab23a4}]
@="HomeGroup Task"
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am

Re: Skype May have been hacked, possibly infected, Please he

Unread postby auto100 » October 30th, 2013, 9:47 am

Part 3 Of system Log
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B2C761C6-29BC-4f19-9251-E6195265BAF1}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B98A2BEA-7D42-4558-8BD1-832F41BAC6FD}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BA677074-762C-444b-94C8-8C83F93F6605}]
@="User hive background upload task handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB06C0E4-D293-4f75-8A90-CB05B6477EEE}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB64F8A7-BEE7-4E1A-AB8D-7D8273F7FDB6}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BD84B380-8CA2-1069-AB1D-08000948F534}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BE122A0E-4503-11DA-8BDE-F66BAD1E3F3A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF27441E-CDCD-4659-AEBE-06F6E069714E}]
@="Screen Capture Filter Task Page"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF5CB148-7C77-4d8a-A53E-D81C70CF743C}]
@="AD RMS Rights Policy Template Management (Manual) Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C03E8586-781E-49a1-8190-CE902D0B2CE7}]
@="Incoming Connections Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C228A457-53F5-4a76-8035-DF2DA33E76C8}\InProcServer32]
@="%SystemRoot%\system32\DxpTaskSync.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C555438B-3C23-4769-A71F-B6D3D9B6053A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C58C4893-3BE0-4B45-ABB5-A63E4B8C8651}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C78A4622-A033-4dab-94E8-43DE54B461F4}]
@="RecoveryTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C78A4622-A033-4dab-94E8-43DE54B461F4}\ProgID]
@="eHome.RecoveryTasks.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C78A4622-A033-4dab-94E8-43DE54B461F4}\VersionIndependentProgID]
@="eHome.RecoveryTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CA22F5B1-E06F-4A2B-94FC-21E87FE53781}]
@="GameUpdateTask Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB1B7F8C-C50A-4176-B604-9E24DEE8D4D1}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CF2CF428-325B-48d3-8CA8-7633E36E5A32}]
@="AD RMS Rights Policy Template Management (Automated) Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D17D1D6D-CC3F-4815-8FE3-607E7D5D10B3}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D20EA4E1-3957-11d2-A40B-0C5020524153}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D555645E-D4F8-4c29-A827-D93C859C4F2A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D8559EB9-20C0-410E-BEDA-7ED416AECC2A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{db4f3fa7-5a08-4100-95de-b46df509b902}]
@="Legacy View Available Networks Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2E7934B-DCE5-43C4-9576-7FE4F75E7480}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E51DFD48-AA36-4B45-BB52-E831F02E8316}]
@="AutoWakeTaskHandler Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7DE9B1A-7533-4556-9484-B26FB486475E}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E95A4861-D57A-4be1-AD0F-35267E261739}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E9950154-C418-419e-A90A-20C5287AE24B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA9155A3-8A39-40b4-8963-D3C761B18371}]
@="PerfTrack TaskHandler class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED7BA470-8E54-465E-825C-99712043E01C}]
@="All Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED834ED6-4B5A-4bfe-8F11-A626DCB6A921}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE8E4870-A889-4DC4-969F-F38F707F4AC2}]
@="CTaskCondition"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F2DDFC82-8F12-4CDD-B7DC-D4FE1425AA4D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F82DF8F7-8B9F-442E-A48C-818EA735FF9B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\MergedFolder]
"AttributeMask"="0xffffffff"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Control.TaskSymbol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Control.TaskSymbol]
@="TaskSymbol Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Control.TaskSymbol\CurVer]
@="Control.TaskSymbol.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Control.TaskSymbol.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Control.TaskSymbol.1]
@="TaskSymbol Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DiskManagement.UITasks]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DiskManagement.UITasks]
@="DiskManagement.UITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DXImageTransform.Microsoft.MaskFilter]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DXImageTransform.Microsoft.MaskFilter]
@="MaskFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DXImageTransform.Microsoft.MaskFilter\CurVer]
@="DXImageTransform.Microsoft.MaskFilter.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DXImageTransform.Microsoft.MaskFilter.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DXImageTransform.Microsoft.MaskFilter.1]
@="MaskFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskDispatchServer]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskDispatchServer]
@="RecoveryTaskDispatchServer Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskDispatchServer\CurVer]
@="eHome.RecoveryTaskDispatchServer.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskDispatchServer.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskDispatchServer.1]
@="RecoveryTaskDispatchServer Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskMonitor]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskMonitor\CurVer]
@="eHome.RecoveryTaskMonitor.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskMonitor.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskMonitor.1]
@="RecoveryTaskMonitor Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTasks]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTasks]
@="RecoveryTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTasks\CurVer]
@="eHome.RecoveryTasks.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTasks.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTasks.1]
@="RecoveryTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskWrapper]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskWrapper]
@="RecoveryTaskWrapper Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskWrapper\CurVer]
@="eHome.RecoveryTaskWrapper.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskWrapper.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecoveryTaskWrapper.1]
@="RecoveryTaskWrapper Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecovRecoveryTaskMonitoreryTasks]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\eHome.RecovRecoveryTaskMonitoreryTasks]
@="RecoveryTaskMonitor Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2D4C4347365A600677A7A857BC06000]
"ProductName"="Ask Toolbar"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2D4C4347365A600677A7A857BC06000\SourceList]
"PackageName"="AskToolbarInstaller-12.6.0_CLM-V7.msi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2D4C4347365A600677A7A857BC06000\SourceList\Net]
"2"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{03a9a5ee-48c8-4832-9025-aad503c46526}]
@="IAzTask2 interface"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{12CA1EA7-6E40-48D0-AE38-2078510B788A}]
@="IRecTaskEventsMediator"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{22B0C1A9-E74E-381A-BABB-66BEF71FF08E}]
@="_MaskedTextBox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{2C05C3F0-6EED-4c05-A15F-ED7D7A98A369}]
@="ITaskSettings2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{2FABA4C7-4DA9-4013-9697-20CC3FD40F85}]
@="ITaskService"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3051052E-98B5-11CF-BB82-00AA00BDCE0B}]
@="ISVGMaskElement"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3059003C-98B5-11CF-BB82-00AA00BDCE0B}]
@="DispSVGMaskElement"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{35BD3360-1B35-4927-BAE4-B10E70D99EFF}]
@="IFrameTaskManager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3CE9607F-D094-4513-AC77-4A8CADDE9595}]
@="IRecTaskEvents"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3D112E21-62B2-11D1-9FEF-00600832DB4A}]
@="IMMCTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3E4C9351-D966-4B8B-BB87-CEBA68BB0107}]
@="ITaskVariables"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3EC97A1E-9F42-4251-923F-04C139A4BAAA}]
@="IWMStoreTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{425BFF0D-59E4-36A8-B1FF-1F5D39D698F4}]
@="_PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{445CA8E4-861B-42E3-AE5A-F5AC2490A77A}]
@="ITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{56FDF342-FD6D-11D0-958A-006097C9A090}]
@="ITaskbarList"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{602D4995-B13A-429B-A66E-1935E44F4317}]
@="ITaskbarList2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{653758fb-7b9a-4f1e-a471-beeb8e9b834e}]
@="IRunningTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6a67614b-6828-4fec-aa54-6d52e8f1f2db}]
@="IRunningTaskCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{777BA811-2498-4875-933A-3067DE883070}]
@="IPXWizardTaskEventStub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{777BA817-2498-4875-933A-3067DE883070}]
@="IPXWizardTaskReportStub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{79184a66-8664-423f-97f1-637356a5d812}]
@="ITaskFolderCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{7C3D1A75-7479-4BAA-83FF-274B2789BCF0}]
@="IRecTaskDispatcher"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{817B682B-5D96-4C97-9D71-1CB8D5478201}]
@="IIndexerTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{839D7762-5121-4009-9234-4F0D19394F04}]
@="ITaskHandler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{85601FEE-A79D-3710-AF21-099089EDC0BF}]
@="_MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{86627eb4-42a7-41e4-a4d9-ac33a72f2d52}]
@="IRegisteredTaskCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{891EADB1-1C45-48B0-B704-49A888DA98C4}]
@="ITaskCntrCtrl"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8CFAC062-A080-4C15-9A88-AA7C2AF80DFC}]
@="ITaskFolder"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8FD4711D-2D02-4C8C-87E3-EFF699DE127E}]
@="ITaskSettings"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{96DF0F5E-7F39-4B2D-8CA6-B097BFFFC82B}]
@="IRecTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{9C86F320-DEE3-4DD1-B972-A303F26B061E}]
@="IRegisteredTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{9DF68E2D-7484-4851-9B87-F6DDA1B8B446}]
@="IFeedTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1067146-B063-47D7-A54A-2C2309E9889D}]
@="IDXTMask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{B056521D-9B10-425E-B616-1FCD828DB3B1}]
@="IEnumScheduledTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{B056521F-9B10-425E-B616-1FCD828DB3B1}]
@="IScheduledTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{b338ccab-4c85-4388-8c0a-c58592bad398}]
@="IAzTasks interface"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{B7C9034C-6AB1-415C-8A31-8374D5FB9FBB}]
@="IGameTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{BC0B572C-0599-4CCF-BF8D-E21DA624E5F7}]
@="TaskSymbolEvents"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C1884F8B-2DB6-40B6-9E90-B9876B75FFE0}]
@="IItemTaskScheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C43DC798-95D1-4BEA-9030-BB99E2983A1A}]
@="ITaskbarList4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{cb94e592-2e0e-4a6c-a336-b89a6dc1e388}]
@="IAzTask interface"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E76C8ED4-E9A2-4DAE-9F51-67731DE0876C}]
@="IDXPTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E87FA8E6-79A1-4062-B5FE-581919A1A572}]
@="IRecTaskDispatcherEvents"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{EA1AFB91-9E28-4B86-90E9-9E9F8A5EEFAF}]
@="ITaskbarList3"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{EAEC7A8F-27A0-4DDC-8675-14726A01A38A}]
@="ITaskHandlerStatus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F2153260-232E-4474-9D0A-9F2AB153441D}]
@="IVerbStateTaskCallBack"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F4902FB8-4A1F-46DC-9BE6-CA69C72A168A}]
@="IGameTaskCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F5BC8FC5-536D-4F77-B852-FBC1356FDEB6}]
@="ITaskDefinition"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JobObject]
@="Task Scheduler Task Object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MAPI/IPM.Task]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MAPI/IPM.Task]
"PreviewDetails"="prop:*System.DueDate;*System.Task.CompletionStatus;*System.Task.Owner;*System.Keywords"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MMCTask.MMCTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MMCTask.MMCTask]
@="MMCTask class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MMCTask.MMCTask\CurVer]
@="MMCTask.MMCTask.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MMCTask.MMCTask.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MMCTask.MMCTask.1]
@="MMCTask class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSILink\shellex\ContextMenuHandlers\{90AA3A4E-1CBA-4233-B8BB-535773D48449}]
@="Taskband Pin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Record\{0B2DCA19-1224-351A-B372-C7B59A70560A}\1.0.3300.0]
"Class"="Microsoft.CLRAdmin.MMC_TASK_DISPLAY_OBJECT"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Record\{CE588EA7-1D88-3A0E-A0F4-DC22B14D2406}\1.0.3300.0]
"Class"="Microsoft.CLRAdmin.MMC_TASK"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Schedule.Service.1]
@="TaskScheduler class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\System.Security.Cryptography.PKCS1MaskGenerationMethod]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\System.Security.Cryptography.PKCS1MaskGenerationMethod]
@="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SystemFileAssociations\MAPI/IPM.Task]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SystemFileAssociations\MAPI/IPM.Task]
"PreviewDetails"="prop:*System.DueDate;*System.Task.CompletionStatus;*System.Task.Owner;*System.Keywords"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{E28C678F-84EE-4D53-B455-FB3B33205D63}\1.0]
@="Windows Portable Device WCN Tasks 1.0 Type Library"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{e34cb9f1-c7f7-424c-be29-027dcc09363a}\1.0]
@="TaskScheduler 1.1 Type Library"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{e34cb9f1-c7f7-424c-be29-027dcc09363a}\1.0\0\win32]
@="C:\Windows\SysWOW64\taskschd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{e34cb9f1-c7f7-424c-be29-027dcc09363a}\1.0\0\win64]
@="C:\Windows\system32\taskschd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WMP.BurnCD\Shell\Burn\Command]
@=""%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe" /prefetch:3 /Task:CDWrite /Device:"%L""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00C6D95F-329C-409a-81D7-C46C66EA7F33}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00da2f99-f2a6-40c2-b770-a920f8e44abc}\MergedFolder]
"AttributeMask"="0xffffffff"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{01575CFE-9A55-4003-A5E1-F38D1EBDCBE1}]
@="MsCtfMonitor task handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{025A5937-A6BE-4686-A844-36FE4BEC8B6D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0358b920-0ac7-461f-98f4-58e32cd89148}]
@="Wininet Cache task object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{05BDC38E-5493-487a-A7FF-8CF2246ABC13}]
@="IE Background Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0B3F871D-38D9-4677-8853-A247C6366483}]
@="RecoveryTaskDispatchServer Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0B3F871D-38D9-4677-8853-A247C6366483}\ProgID]
@="eHome.RecoveryTaskDispatchServer.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0B3F871D-38D9-4677-8853-A247C6366483}\VersionIndependentProgID]
@="eHome.RecoveryTaskDispatchServer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0cbb5030-f2b2-4b38-8cbc-895cec57db03}]
@="Create 802.11 Ad hoc Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
@="Taskbar and Start Menu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
"System.ApplicationName"="Microsoft.TaskbarAndStartMenu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}]
@="TaskScheduler class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0f87369f-a4e5-4cfc-bd3e-73e6154572dd}\InprocServer32]
@="C:\Windows\SysWOW64\taskschd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1206F5F1-0569-412C-8FEC-3204630DFB70}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{148BD520-A2AB-11CE-B11F-00AA00530503}]
@="Scheduling Agent Task Object Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{148BD520-A2AB-11CE-B11F-00AA00530503}\DefaultIcon]
@="%systemroot%\System32\mstask.dll,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{148BD520-A2AB-11CE-B11F-00AA00530503}\InProcServer32]
@="%systemroot%\System32\mstask.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{148BD52A-A2AB-11CE-B11F-00AA00530503}\DefaultIcon]
@="%systemroot%\System32\mstask.dll,0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{148BD52A-A2AB-11CE-B11F-00AA00530503}\InProcServer32]
@="%systemroot%\System32\mstask.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{17cd9488-1228-4b2f-88ce-4298e93e0966}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1C1EDB47-CE22-4bbb-B608-77B48F83C823}]
@="IE Fade Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{2183DACA-D0BF-4a31-97F7-B87618A81955}]
@="IE Shared Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{241D7C96-F8BF-4F85-B01F-E2B043341A4B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}]
@="Configure Windows Portable Device Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}\ProgID]
@="WPD.WindowsPortableDeviceTask.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}\VersionIndependentProgID]
@="WPD.WindowsPortableDeviceTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37efd44d-ef8d-41b1-940d-96973a50e9e0}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A04D93B-1EDD-4f3f-A375-A03EC19572C4}]
@="MaskFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A04D93B-1EDD-4f3f-A375-A03EC19572C4}\ProgID]
@="DXImageTransform.Microsoft.MaskFilter.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A04D93B-1EDD-4f3f-A375-A03EC19572C4}\VersionIndependentProgID]
@="DXImageTransform.Microsoft.MaskFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3D112E22-62B2-11D1-9FEF-00600832DB4A}]
@="MMCTask class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3D112E22-62B2-11D1-9FEF-00600832DB4A}\ProgID]
@="MMCTask.MMCTask.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3D112E22-62B2-11D1-9FEF-00600832DB4A}\VersionIndependentProgID]
@="MMCTask.MMCTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4026492F-2F69-46B8-B9BF-5654FC07E423}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{40419485-C444-4567-851A-2DD7BFA1684D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{427BC7E3-F833-4584-8745-CFAB9D7A5761}]
@="CTaskConditionCombiner"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{44F9A03B-A3EC-4F3B-9364-08E0007F21DF}]
@="TaskSymbol Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{44F9A03B-A3EC-4F3B-9364-08E0007F21DF}\ProgID]
@="Control.TaskSymbol.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{44F9A03B-A3EC-4F3B-9364-08E0007F21DF}\VersionIndependentProgID]
@="Control.TaskSymbol"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46C0A7DC-928A-485a-959F-1F9EF8686A11}\InProcServer32]
@="%SystemRoot%\system32\DXPTaskRingtone.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4C6F940C-3CFE-11D2-9EE7-00C04F797396}]
@="SpTaskManager Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4CB26C03-FF93-11d0-817E-0000F87557DB}]
@="DXTaskManager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{51653423-E62D-4FF7-894A-DABB2B8E21E2}]
@="CrawlStartPages Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{53510d24-57eb-4713-9afb-e6e60530b87e}]
@="IE RSS Feeds Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{55b70dec-4b3b-4e26-ae9c-9e8d131843a1}]
@="Microsoft Feeds Background Task Scheduling"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}]
@="Task Bar Communication"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58fb76b9-ac85-4e55-ac04-427593b1d060}]
@="Certificate Services Client Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{603D3800-BD81-11d0-A3A5-00C04FD706EC}]
@="Background Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{603D3801-BD81-11d0-A3A5-00C04FD706EC}]
@="Shared Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{60632754-c523-4b62-b45c-4172da012619}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{62D8ED13-C9D0-4CE8-A914-47DD628FB1B0}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{67CA7650-96E6-4FDD-BB43-A8E774F73A57}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6C8EEC18-8D75-41B2-A177-8831D59D2D50}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6db29a9b-10d0-4b93-b86a-188fc998eff8}]
@="InfraCreateTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071EC71-663B-4bc1-A1FA-B97F3B917C55}]
@="Create Dial-up Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071EC75-663B-4bc1-A1FA-B97F3B917C55}]
@="Create VPN Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071ECA0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Internet Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071ECB0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Work Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071ECD0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Bluetooth Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071ECE0-663B-4bc1-A1FA-B97F3B917C55}]
@="Connect To Network Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7071ECFA-663B-4bc1-A1FA-B97F3B917C55}]
@="Network Tasks Host Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7086AD76-44BD-11D0-81ED-00A0C90FC491}]
@="DiskManagement.UITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7086AD76-44BD-11D0-81ED-00A0C90FC491}\ProgID]
@="DiskManagement.UITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{725BE8F7-668E-4C7B-8F90-46BDB0936430}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{74246bfc-4c96-11d0-abef-0020af6b0b7a}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{777BA815-2498-4875-933A-3067DE883070}]
@="XWizard Task Stub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{777BA81A-2498-4875-933A-3067DE883070}\VirtualServerObjects]
"{777BA815-2498-4875-933A-3067DE883070}"="XWizard Task Stub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{777BA8E5-2498-4875-933A-3067DE883070}]
@="Private XWizard Task Enumeration Manager Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{78CB147A-98EA-4AA6-B0DF-C8681F69341C}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{78F3955E-3B90-4184-BD14-5397C15F1EFC}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7940ACF8-60BA-4213-A7C3-F3B400EE266D}]
@="Setup a Workspace Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}]
@="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}\InprocServer32]
"Class"="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}\InprocServer32\2.0.0.0]
"Class"="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7AE844F0-ECA8-3F15-AE27-AFA21A2AA6F8}\ProgId]
@="System.Security.Cryptography.PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7B5A12E8-0C60-4939-A046-11CF879B19FB}]
@="WlanDlg Get Key Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7b81be6a-ce2b-4676-a29e-eb907a5126c5}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7EB5FBE4-2100-49E6-8593-17E130122F91}]
@="Fade Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7FA3A1C3-3C87-40de-AC16-B6E2815A4CC8}]
@="RecoveryTaskWrapper Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7FA3A1C3-3C87-40de-AC16-B6E2815A4CC8}\ProgID]
@="eHome.RecoveryTaskWrapper.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7FA3A1C3-3C87-40de-AC16-B6E2815A4CC8}\VersionIndependentProgID]
@="eHome.RecoveryTaskWrapper"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{854CB94F-2279-4F7F-AC62-31E22E4D8899}]
@="InfraConnectTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{855fec53-d2e4-4999-9e87-3414e9cf0ff4}]
@="RunTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{879fb53b-cba3-4fc8-b233-d9a93afa7fbc}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{87D66A43-7B11-4A28-9811-C86EE395ACF7}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8E908FC9-BECC-40f6-915B-F4CA0E70D03D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{90AA3A4E-1CBA-4233-B8BB-535773D48449}]
@="Taskband Pin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{90AA3A4E-1CBA-4233-B8BB-535773D48449}]
"ImplementsVerbs"="taskbarpin;taskbarunpin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{96AE8D84-A250-4520-95A5-A47A7E3C548B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9C60DE1E-E5FC-40f4-A487-460851A8D915}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9C86F320-DEE3-4DD1-B972-A303F26B061E}\InprocServer32]
@="C:\Windows\SysWOW64\TaskSchdPS.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A0275511-0E86-4ECA-97C2-ECD8F1221D08}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A09C534C-0057-462E-8402-2A21D38BFCA1}]
@="New Network category Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A3DD4F92-658A-410F-84FD-6FBBBEF2FFFE}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A5CF917A-0F75-4b29-A0A0-5348E501DA59}]
@="RecoveryTaskMonitor Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A5CF917A-0F75-4b29-A0A0-5348E501DA59}\ProgID]
@="eHome.RecoveryTaskMonitor.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A5CF917A-0F75-4b29-A0A0-5348E501DA59}\VersionIndependentProgID]
@="eHome.RecoveryTaskMonitor"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{a86ca2f1-af74-4a74-980b-e185d4ca01b0}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A8A91A66-3A7D-4424-8D24-04E180695C7A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A9A33436-678B-4c9c-A211-7CC38785E79D}]
@="WinSAT Task Manger Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{AAC2B978-266D-48ae-AA28-60A3EBB872D0}]
@="IE RSS FeedFolder Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{abd2ad24-f1ff-47ad-82de-3a1edf38e7a1}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{b27b520e-46db-4720-b9c5-5f80acab23a4}]
@="HomeGroup Task"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B2C761C6-29BC-4f19-9251-E6195265BAF1}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BB06C0E4-D293-4f75-8A90-CB05B6477EEE}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BB64F8A7-BEE7-4E1A-AB8D-7D8273F7FDB6}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BD84B380-8CA2-1069-AB1D-08000948F534}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BF27441E-CDCD-4659-AEBE-06F6E069714E}]
@="Screen Capture Filter Task Page"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BF5CB148-7C77-4d8a-A53E-D81C70CF743C}]
@="AD RMS Rights Policy Template Management (Manual) Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C03E8586-781E-49a1-8190-CE902D0B2CE7}]
@="Incoming Connections Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C228A457-53F5-4a76-8035-DF2DA33E76C8}\InProcServer32]
@="%SystemRoot%\system32\DxpTaskSync.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C555438B-3C23-4769-A71F-B6D3D9B6053A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C78A4622-A033-4dab-94E8-43DE54B461F4}]
@="RecoveryTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C78A4622-A033-4dab-94E8-43DE54B461F4}\ProgID]
@="eHome.RecoveryTasks.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C78A4622-A033-4dab-94E8-43DE54B461F4}\VersionIndependentProgID]
@="eHome.RecoveryTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CA22F5B1-E06F-4A2B-94FC-21E87FE53781}]
@="GameUpdateTask Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB1B7F8C-C50A-4176-B604-9E24DEE8D4D1}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CF2CF428-325B-48d3-8CA8-7633E36E5A32}]
@="AD RMS Rights Policy Template Management (Automated) Task Handler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D17D1D6D-CC3F-4815-8FE3-607E7D5D10B3}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D20EA4E1-3957-11d2-A40B-0C5020524153}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D555645E-D4F8-4c29-A827-D93C859C4F2A}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{db4f3fa7-5a08-4100-95de-b46df509b902}]
@="Legacy View Available Networks Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E2E7934B-DCE5-43C4-9576-7FE4F75E7480}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E7DE9B1A-7533-4556-9484-B26FB486475E}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E95A4861-D57A-4be1-AD0F-35267E261739}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E9950154-C418-419e-A90A-20C5287AE24B}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{ED7BA470-8E54-465E-825C-99712043E01C}]
@="All Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{EE8E4870-A889-4DC4-969F-F38F707F4AC2}]
@="CTaskCondition"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F2DDFC82-8F12-4CDD-B7DC-D4FE1425AA4D}]
"System.Software.TasksFileUrl"="Internal"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\MergedFolder]
"AttributeMask"="0xffffffff"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{03a9a5ee-48c8-4832-9025-aad503c46526}]
@="IAzTask2 interface"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{22B0C1A9-E74E-381A-BABB-66BEF71FF08E}]
@="_MaskedTextBox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2C05C3F0-6EED-4c05-A15F-ED7D7A98A369}]
@="ITaskSettings2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2FABA4C7-4DA9-4013-9697-20CC3FD40F85}]
@="ITaskService"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{3051052E-98B5-11CF-BB82-00AA00BDCE0B}]
@="ISVGMaskElement"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{3059003C-98B5-11CF-BB82-00AA00BDCE0B}]
@="DispSVGMaskElement"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{35BD3360-1B35-4927-BAE4-B10E70D99EFF}]
@="IFrameTaskManager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{3D112E21-62B2-11D1-9FEF-00600832DB4A}]
@="IMMCTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{3E4C9351-D966-4B8B-BB87-CEBA68BB0107}]
@="ITaskVariables"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{3EC97A1E-9F42-4251-923F-04C139A4BAAA}]
@="IWMStoreTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{425BFF0D-59E4-36A8-B1FF-1F5D39D698F4}]
@="_PKCS1MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{445CA8E4-861B-42E3-AE5A-F5AC2490A77A}]
@="ITasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{56FDF342-FD6D-11D0-958A-006097C9A090}]
@="ITaskbarList"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{602D4995-B13A-429B-A66E-1935E44F4317}]
@="ITaskbarList2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{653758fb-7b9a-4f1e-a471-beeb8e9b834e}]
@="IRunningTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6a67614b-6828-4fec-aa54-6d52e8f1f2db}]
@="IRunningTaskCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{777BA811-2498-4875-933A-3067DE883070}]
@="IPXWizardTaskEventStub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{777BA817-2498-4875-933A-3067DE883070}]
@="IPXWizardTaskReportStub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{79184a66-8664-423f-97f1-637356a5d812}]
@="ITaskFolderCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{817B682B-5D96-4C97-9D71-1CB8D5478201}]
@="IIndexerTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{839D7762-5121-4009-9234-4F0D19394F04}]
@="ITaskHandler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{85601FEE-A79D-3710-AF21-099089EDC0BF}]
@="_MaskGenerationMethod"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{86627eb4-42a7-41e4-a4d9-ac33a72f2d52}]
@="IRegisteredTaskCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{891EADB1-1C45-48B0-B704-49A888DA98C4}]
@="ITaskCntrCtrl"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{8CFAC062-A080-4C15-9A88-AA7C2AF80DFC}]
@="ITaskFolder"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{8FD4711D-2D02-4C8C-87E3-EFF699DE127E}]
@="ITaskSettings"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9C86F320-DEE3-4DD1-B972-A303F26B061E}]
@="IRegisteredTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9DF68E2D-7484-4851-9B87-F6DDA1B8B446}]
@="IFeedTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1067146-B063-47D7-A54A-2C2309E9889D}]
@="IDXTMask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B056521D-9B10-425E-B616-1FCD828DB3B1}]
@="IEnumScheduledTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B056521F-9B10-425E-B616-1FCD828DB3B1}]
@="IScheduledTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{b338ccab-4c85-4388-8c0a-c58592bad398}]
@="IAzTasks interface"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B7C9034C-6AB1-415C-8A31-8374D5FB9FBB}]
@="IGameTask"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{BC0B572C-0599-4CCF-BF8D-E21DA624E5F7}]
@="TaskSymbolEvents"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{C1884F8B-2DB6-40B6-9E90-B9876B75FFE0}]
@="IItemTaskScheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{C43DC798-95D1-4BEA-9030-BB99E2983A1A}]
@="ITaskbarList4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{cb94e592-2e0e-4a6c-a336-b89a6dc1e388}]
@="IAzTask interface"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{EA1AFB91-9E28-4B86-90E9-9E9F8A5EEFAF}]
@="ITaskbarList3"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{EAEC7A8F-27A0-4DDC-8675-14726A01A38A}]
@="ITaskHandlerStatus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F2153260-232E-4474-9D0A-9F2AB153441D}]
@="IVerbStateTaskCallBack"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F4902FB8-4A1F-46DC-9BE6-CA69C72A168A}]
@="IGameTaskCollection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F5BC8FC5-536D-4F77-B852-FBC1356FDEB6}]
@="ITaskDefinition"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{E28C678F-84EE-4D53-B455-FB3B33205D63}\1.0]
@="Windows Portable Device WCN Tasks 1.0 Type Library"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{e34cb9f1-c7f7-424c-be29-027dcc09363a}\1.0]
@="TaskScheduler 1.1 Type Library"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{e34cb9f1-c7f7-424c-be29-027dcc09363a}\1.0\0\win32]
@="C:\Windows\SysWOW64\taskschd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{e34cb9f1-c7f7-424c-be29-027dcc09363a}\1.0\0\win64]
@="C:\Windows\system32\taskschd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WPD.WindowsPortableDeviceTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WPD.WindowsPortableDeviceTask]
@="Configure Windows Portable Device Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WPD.WindowsPortableDeviceTask\CurVer]
@="WPD.WindowsPortableDeviceTask.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WPD.WindowsPortableDeviceTask.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WPD.WindowsPortableDeviceTask.1]
@="Configure Windows Portable Device Task Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Plugins\01000200\Profiles\@My profile\UrlSets\Node_00000000]
"Masks"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Plugins\01000200\Profiles\@My profile\UrlSets\Node_00000001]
"Masks"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Plugins\01000200\Profiles\@My profile\UrlSets\Node_00000002]
"Masks"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\Microsoft.Build.Tasks, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\Microsoft.Build.Tasks.v3.5, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\PresentationBuildTasks, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\TaskScheduler, Version=6.1.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\CLSID\{8cec582d-07a1-11d9-b15e-000d56bfe6ee}]
@="HxDynamicTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\CLSID\{8cec582d-07a1-11d9-b15e-000d56bfe6ee}\ProgID]
@="HxDS.HxDynamicTasks.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\CLSID\{8cec582d-07a1-11d9-b15e-000d56bfe6ee}\VersionIndependentProgID]
@="HxDS.HxDynamicTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\HxDS.HxDynamicTasks]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\HxDS.HxDynamicTasks]
@="HxDynamicTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\HxDS.HxDynamicTasks\CurVer]
@="HxDS.HxDynamicTasks.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\HxDS.HxDynamicTasks.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Assistance\Client\1.0\LocalReg\HxDS.HxDynamicTasks.1]
@="HxDynamicTasks Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DXP\ChangeableTaskTypes]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Feeds]
"BackgroundTaskScheduler"="{55b70dec-4b3b-4e26-ae9c-9e8d131843a1}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FTH]
"ExclusionList"="smss.exe csrss.exe wininit.exe services.exe lsass.exe lsm.exe svchost.exe winlogon.exe SLsvc.exe spoolsv.exe taskhost.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\10cd46c\5f772e3d\8b]
"DisplayName"="TaskScheduler,6.1.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\19693f50\4dfc94e7\40]
"DisplayName"="Microsoft.Build.Tasks,2.0.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\5094d6df\70190d1c\3e]
"DisplayName"="Microsoft.Build.Tasks.v3.5,3.5.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\7836ed93\685c71d4\62]
"DisplayName"="PresentationBuildTasks,3.0.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\110e8ba\7836ed93\62]
"DisplayName"="PresentationBuildTasks,3.0.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\1734f8c5\5094d6df\3f]
"DisplayName"="Microsoft.Build.Tasks.v3.5,3.5.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\1e8c117\10cd46c\8b]
"DisplayName"="TaskScheduler,6.1.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\58052d2f\19693f50\40]
"DisplayName"="Microsoft.Build.Tasks,2.0.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\IL\10cd46c\5f772e3d\b7]
"DisplayName"="TaskScheduler,6.1.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\IL\19693f50\4dfc94e7\10e]
"DisplayName"="Microsoft.Build.Tasks,2.0.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\IL\5094d6df\70190d1c\10c]
"DisplayName"="Microsoft.Build.Tasks.v3.5,3.5.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\IL\7836ed93\685c71d4\de]
"DisplayName"="PresentationBuildTasks,3.0.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\NI\110e8ba\7836ed93\de]
"DisplayName"="PresentationBuildTasks,3.0.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\NI\1734f8c5\5094d6df\10d]
"DisplayName"="Microsoft.Build.Tasks.v3.5,3.5.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\NI\1e8c117\10cd46c\b7]
"DisplayName"="TaskScheduler,6.1.0.0,,31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_64\NI\58052d2f\19693f50\10e]
"DisplayName"="Microsoft.Build.Tasks,2.0.0.0,,b03f5f7f11d50a3a"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{43D9E6F0-1776-4897-AE14-ECEDECBAFEC0}]
"DllName"="askbarAB.dll;askbarAC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5A074B21-F830-49DE-A31B-5BB9D7F6B407}]
"DllName"="askBar.dll;ajBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5A074B29-F830-49DE-A31B-5BB9D7F6B407}]
"DllName"="askBar.dll;ajBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MediaPlayer\Objects\taskcenter]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MessengerService\SessionManager\Apps\{56b994a7-380f-410b-9985-c809d78c1bdc}]
"Name"="Ask for RemoteAssistance"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\NodeTypes\{476e6448-aaff-11d0-b944-00c04fd8d5b0}\Extensions\NameSpace]
"FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}"="Task Scheduler Extension"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\NodeTypes\{476e6449-aaff-11d0-b944-00c04fd8d5b0}\Extensions\Task]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\NodeTypes\{BD1C2544-CF5B-4640-B83E-A5B71AAE2E4A}\Extensions\NameSpace]
"FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}"="Task Scheduler Extension"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"Type"="Microsoft.TaskScheduler.SnapIn.TaskSchedulerSnapIn, TaskScheduler, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"NameString"="Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"Description"="Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"ModuleName"="TaskScheduler.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"AssemblyName"="TaskScheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"HelpTopic"="C:\Windows\Help\taskscheduler.chm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb06-bfe1-4c2e-9217-7a69a95bbac4}]
"LinkedHelpTopics"="C:\Windows\Help\taskscheduler.chm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"Type"="Microsoft.TaskScheduler.SnapIn.TaskSchedulerExtension, TaskScheduler, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"NameString"="Task Scheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"Description"="Task Scheduler Extension"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"ModuleName"="TaskScheduler.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"AssemblyName"="TaskScheduler"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"HelpTopic"="C:\Windows\Help\taskscheduler.chm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{c7b8fb07-bfe1-4c2e-9217-7a69a95bbac4}]
"LinkedHelpTopic"="C:\Windows\Help\taskscheduler.chm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RendezvousApps\{56b994a7-380f-410b-9985-c809d78c1bdc}]
"Name"="Ask for RemoteAssistance"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent]
"TasksFolder"="%SystemRoot%\Tasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent]
"LogPath"="%SystemRoot%\Tasks\SCHEDLGU.TXT"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\ComponentDetect\amd64_microsoft-windows-taskhost_31bf3856ad364e35_0.0.0.0_none_a837398a5add8665]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Diagnostics\Performance\Resolvers]
"SystemBinariesList"="win32k.sys:winlogon.exe:EXPLORER.EXE:CSRSS.Exe:dwm.exe:logon.scr:logonui.exe:lsass.exe:lsm.exe:ntkrpamp.exe:ntoskrnl.exe:RUNDLL32.EXE:services.exe:sppsvc.exe:smss.exe:spoolsv.exe:svchost.exe:taskeng.exe:WinInit.exe:WISPTIS.EXE:dllhost.exe:dllhst3g.exe:cscript.exe:mmc.exe:msiexec.exe:upnpcont.exe:wscript.exe:WUDFHost.exe:dfsvc.exe:dfsvc.exe:fdbs.exe:ntfsbs.exe:memdiag.exe:NETFXSBS10.exe:applaunch.exe:aspnet_compiler.exe:aspnet_regbrowsers.exe:aspnet_regiis.exe:aspnet_regsql.exe:aspnet_state.exe:aspnet_wp.exe:caspol.exe:csc.exe:CVTRES.EXE:dfsvc.exe:dw20.exe:IEExec.exe:ilasm.exe:InstallUtil.exe:jsc.exe:MSBuild.exe:mscorsvw.exe:ngen.exe:RegAsm.exe::RegSvcs.exe:vbc.exe:TrustedInstaller.exe:Aurora.scr:AutoChk.Exe:AUTOFMT.EXE:CHKDSK.EXE:CHKNTFS.EXE:consent.exe:PnPUnattend.exe:PnPutil.exe:RacAgent.exe:fsquirt.exe:Uninst.exe:updateWmc.exe:wmdc.exe:wmdsync.exe:mofcomp.exe:ScrCons.exe:smi2smir.exe:unse
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}]
@="Taskbar Notification Icons Control Panel"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{0DF44EAA-FF21-4412-828E-260A8728E7F1}]
@="Taskbar and Start Menu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileAssociation]
"KillList"="%1;explorer.exe;dvdplay.exe;msohtmed.exe;quikview.exe;rundll.exe;rundll32.exe;taskman.exe;bck32api.dll;"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{054FAE61-4DD8-4787-80B6-090220C4B700}]
"Name"="GameTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{DEBF2536-E1A8-4c59-B6A2-414586476AEA}]
"Name"="PublicGameTasks"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{0b2baaeb-0042-4dca-aa4d-3ee8648d03e5}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{0b2baaeb-0042-4dca-aa4d-3ee8648d03e5}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{36011842-dccc-40fe-aa3d-6177ea401788}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{36011842-dccc-40fe-aa3d-6177ea401788}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{3f2a72a7-99fa-4ddb-a5a8-c604edf61d6b}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{3f2a72a7-99fa-4ddb-a5a8-c604edf61d6b}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{4dcafe13-e6a7-4c28-be02-ca8c2126280d}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{4dcafe13-e6a7-4c28-be02-ca8c2126280d}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{5f4eab9a-6833-4f61-899d-31cf46979d49}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{5f4eab9a-6833-4f61-899d-31cf46979d49}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{631958a6-ad0f-4035-a745-28ac066dc6ed}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{631958a6-ad0f-4035-a745-28ac066dc6ed}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{71689ac1-cc88-45d0-8a22-2943c3e7dfb3}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{71689ac1-cc88-45d0-8a22-2943c3e7dfb3}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{7fde1a1e-8b31-49a5-93b8-6be14cfa4943}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{7fde1a1e-8b31-49a5-93b8-6be14cfa4943}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{8faf9629-1980-46ff-8023-9dceab9c3ee3}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{8faf9629-1980-46ff-8023-9dceab9c3ee3}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected\0\{27dfca82-8593-46e4-98d8-23eb83452f65}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected\1\{5099caf3-7ab4-4c18-ab35-3f3e664638e4}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected\2\{da8c976e-ec82-48ad-8ae4-38872e958dc5}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected\3\{9d4b9c0a-7b4e-4c0d-926e-a536d781cff6}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected\6\{0b51213d-c59c-4b59-bc10-f27d0b330294}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksItemsSelected\7\{165095b1-322d-47b1-bc9f-2a9234c1c4cb}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksNoItemsSelected\0\{5099caf3-7ab4-4c18-ab35-3f3e664638e4}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksNoItemsSelected\1\{da8c976e-ec82-48ad-8ae4-38872e958dc5}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksNoItemsSelected\2\{0b51213d-c59c-4b59-bc10-f27d0b330294}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{de2b70ec-9bf7-4a93-bd3d-243f7881d492}\TasksNoItemsSelected\3\{165095b1-322d-47b1-bc9f-2a9234c1c4cb}\shell\InvokeTask]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{ea25fbd7-3bf7-409e-b97f-3352240903f4}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{ea25fbd7-3bf7-409e-b97f-3352240903f4}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{fbb3477e-c9e4-4b3b-a2ba-d3f5d3cd46f9}\TasksItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{fbb3477e-c9e4-4b3b-a2ba-d3f5d3cd46f9}\TasksNoItemsSelected]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\VisualEffects\TaskbarAnimations]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\VisualEffects\TaskbarAnimations]
"ValueName"="TaskbarAnimations"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\AskPartnerNetwork\Toolbar\CLM-V7\Updater\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\AskPartnerNetwork\Toolbar\CLM-V7\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\AskPartnerNetwork\Toolbar\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\AskPartnerNetwork\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\Source\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\CLM-V7\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\AskPartnerNetwork\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\CLM-V7\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\AskPartnerNetwork\Toolbar\CLM-V7\CRX\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\Updater\Shutdown\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\VersionCompareDigits"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B]
"D2D4C4347365A600677A7A857BC06000"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\PlatformVersion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\InvokePath"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\39CD4DA0B13C22D4386E84F5A41DFAB5]
"0EE40AFB04287664D8355494A609C133"="C:\Program Files (x86)\TechSmith\Camtasia Studio 8\TaskbarFeaturesHelper.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\613DDC3B41356AE46861931D6F5529F6]
"D2D4C4347365A600677A7A857BC06000"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\Updater\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4]
"D2D4C4347365A600677A7A857BC06000"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\UpdateManager.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36]
"D2D4C4347365A600677A7A857BC06000"="01:\SOFTWARE\AskPartnerNetwork\Toolbar\Updater\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\shared\TotalTBEverLanded"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\CheckInterval"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03]
"D2D4C4347365A600677A7A857BC06000"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\LastCheckTimestamp"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4]
"D2D4C4347365A600677A7A857BC06000"="01:\SOFTWARE\AskPartnerNetwork\Toolbar\shared\EnableSA"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6A54B56C58C82a4688AFB93F42EA17B]
"D2D4C4347365A600677A7A857BC06000"="01:\SOFTWARE\AskPartnerNetwork\Toolbar\Updater\hpgdisable"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F]
"D2D4C4347365A600677A7A857BC06000"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\ask-search.xml"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\UpdateAllSubPackageToVersion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB47487C]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\timeinstalled_cr"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB4748E6]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\timeinstalled"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB477508]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\lastInstallOperation"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB478757]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\Reporting_URL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB47877E]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\ProductVersion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB47C77A]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\productguid"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB47F670]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0850AB67CA07]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Macro\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A0CF64469657A]
"D2D4C4347365A600677A7A857BC06000"="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\CLM-V7\config.xml"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A7A8684D4677A]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\Updater\CLM-V7\Macro\apnuguid"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677A7B7987A75C7A]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\Browsers"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677AA75C6CAD4777]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\CLM-V7\CmdArgs"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677AA75CE8770476]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\CLM-V7\Version"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677AA787E647CD97]
"D2D4C4347365A600677A7A857BC06000"="C:\ProgramData\AskPartnerNetwork\Toolbar\CLM-V7\CRX\ToolbarCR.crx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677AB8640F7C7477]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\hpr_cr"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2D4C4347365A600677AB8640F7CA77A]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\CLM-V7\Info\sa_cr"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\Toolbar\shared\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646]
"D2D4C4347365A600677A7A857BC06000"="02:\SOFTWARE\AskPartnerNetwork\PackageService\Register\ApnSetupV6\Version"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\619BC3DDA19F9B142B67AC0C099E0112\Features]
"gm_Langpack_Writer_en_US"="[r`]i}'sJVglk]7AsKmmgm_Langpack_r_en_US"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\619BC3DDA19F9B142B67AC0C099E0112\Features]
"gm_Langpack_Base_gu"="_aN{aI-LBNY`KM((i.MmlkDCB+wFLa&mn3gw$'vu1-!{ayd-KadFHz]sho's]+Jad'2p@hW4Rs35MaSF7DM-$AWBZGA=j,,N%U_h}5NEazD]]C&'I%KW9,Gr}JT3B(@$,dYOCWq[XwslKI^=w]4AsK82*@WWVODLgm_Langpack_r_gu"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\619BC3DDA19F9B142B67AC0C099E0112\Features]
"gm_Langpack_Basis_ru"=",!B]U,xu}e]Qcv51n8]P@ne+mM6XcDr2T9f2DtZ)su*H-ls~S)jjPFzC$${'`ptVxY)+,v[0eh[s1u!u0Ubc+987iVGh,o_T{v&R4?kVBFv(7TFzqF0'tCqm@a(ZOg&SYR)Ou_b7zY?kW=JXomRL&@}~1-MS[hQFyGE%Q)tBZ%Ps9h^Iw5!Q5zC+6tttu.-uEIA'YdIO-Yth1tMvR1fity`]8OaA'Ug9_.=7t?7Dg*?9wAOXiyXq'MB67$Xkc0mzWBh7PJ7T[^IV2`%DIPLCo{*lS4crI,LKo`G9?)gyZ?dcZ%{ASK&qSWoG0_b0g?DPRMF!=Qctb7iX1KhgrWXBGAX*h9~QKRKbdcaKJ=n]%tvh-+0j%.M5WV4nunMmvS'DZaZu.VaYvOl_MMVx,(Q@L=Z}*BMh@9&t~`y1gm_Langpack_r_ru"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2D4C4347365A600677A7A857BC06000\InstallProperties]
"HelpLink"="http://apnstatic.ask.com/static/toolbar/everest/documents/faq/index.html"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2D4C4347365A600677A7A857BC06000\InstallProperties]
"DisplayName"="Ask Toolbar"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\SO\AUTH\LOGON\ASK]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Media Center\Service\RecoveryTasks]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RenameFiles\Sys]
"TasksDir"="TASKS,4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-d..asks-sync.resources_31bf3856ad364e35_en-us_e0f21946c2e0fb6b]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-dxptasks-ringtone_31bf3856ad364e35_none_2f9b9e28061a1ed5]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-dxptasks-sync_31bf3856ad364e35_none_6b5b983d83088aea]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-ehome-devices-mcxtask_31bf3856ad364e35_none_135a352fdd10e2b2]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-r..bilityanalysistasks_31bf3856ad364e35_none_3c00894e28c87e16]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-s..-taskhost.resources_31bf3856ad364e35_en-us_c5915785cfbbb70f]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-sctasks.resources_31bf3856ad364e35_en-us_8febbc1c71c840c1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-sctasks_31bf3856ad364e35_none_22f77cb8bb10cbe0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskbarcpl.resources_31bf3856ad364e35_en-us_a0476b83e458a1f2]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskbarcpl_31bf3856ad364e35_none_e4d69a2258cb1533]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskhost_31bf3856ad364e35_none_0d566789a8bb84ef]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskkill.resources_31bf3856ad364e35_en-us_7865be9476859ada]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskkill_31bf3856ad364e35_none_0d99c4f1a88a5499]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-tasklist.resources_31bf3856ad364e35_en-us_ab31d8ca3b3e257c]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-tasklist_31bf3856ad364e35_none_0d560105a8bbfc89]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskmanager-events_31bf3856ad364e35_none_36deee2691de3530]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskmgr.resources_31bf3856ad364e35_en-us_2610d5286f512736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskmgr_31bf3856ad364e35_none_db077140bc69f411]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskscheduler-client_31bf3856ad364e35_none_44a084fc2f66d950]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskscheduler-engine_31bf3856ad364e35_none_a07984209d905801]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskscheduler-netapi_31bf3856ad364e35_none_345686cfc8fd1c4a]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskscheduler-proxy_31bf3856ad364e35_none_7338cdd79df5e9cd]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskscheduler-service_31bf3856ad364e35_none_ac460448f7530168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\amd64_microsoft-windows-taskschedulerv2_31bf3856ad364e35_none_2f7e1d013f9b34ac]
auto100
Regular Member
 
Posts: 22
Joined: October 10th, 2013, 9:23 am
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 306 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware