DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.17496 Run by rafał at 22:56:07 on 2014-12-14 Microsoft Windows 7 Home Premium 6.1.7601.1.1250.48.1045.18.8173.6037 [GMT 1:00] . SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\atieclxx.exe C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe C:\PROGRA~2\Raptr\raptr.exe C:\PROGRA~2\Raptr\raptr_im.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Raptr\raptr_ep64.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\wuauclt.exe C:\Windows\system32\NOTEPAD.EXE C:\Users\rafał\Downloads\vcredist_x64.exe C:\Users\rafał\Downloads\vcredist_x64.exe C:\Windows\system32\NOTEPAD.EXE e:\GameforgeLive\gfl_client.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Windows\system32\taskhost.exe C:\Windows\system32\NOTEPAD.EXE C:\Users\rafał\Desktop\OTL.scr C:\Windows\notepad.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\vssvc.exe C:\Windows\System32\svchost.exe -k swprv C:\Windows\SysWOW64\NOTEPAD.EXE C:\Windows\SysWOW64\NOTEPAD.EXE C:\Users\rafał\Desktop\dds.scr C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.pl/ uDefault_Page_URL = hxxp://isearch.omiga-plus.com/?type=hp&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888 mStart Page = hxxp://isearch.omiga-plus.com/?type=hp&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888 mSearch Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888&q={searchTerms} mDefault_Page_URL = hxxp://isearch.omiga-plus.com/?type=hp&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888 mDefault_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888&q={searchTerms} mWinlogon: Userinit = userinit.exe uRun: [Google Update] "C:\Users\rafał\AppData\Local\Google\Update\GoogleUpdate.exe" /c mRun: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun mRun: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup StartupFolder: C:\Users\RAFA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\HDDlife.lnk - C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 TCP: NameServer = 192.168.0.1 TCP: Interfaces\{42B9BFAE-2C79-451C-8257-51C3AC8ADB22} : DHCPNameServer = 192.168.0.1 SSODL: WebCheck - x64-mStart Page = hxxp://isearch.omiga-plus.com/?type=hp&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888 x64-mSearch Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888&q={searchTerms} x64-mDefault_Page_URL = hxxp://isearch.omiga-plus.com/?type=hp&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888 x64-mDefault_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418580831&from=cor&uid=WDCXWD5000AAKX-001CA0_WD-WMAYUA44188841888&q={searchTerms} x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s x64-SSODL: WebCheck - . ============= SERVICES / DRIVERS =============== . R1 {a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64;{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64;C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys [2014-12-14 48784] R1 RzFilter;RzFilter;C:\Windows\System32\drivers\RzFilter.sys [2014-12-12 74432] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-11-21 244736] R2 HDDlife HDD Access service;HDDlife HDD Access service;C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [2014-9-3 2078984] R2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2014-10-31 183488] R2 ReimageRealTimeProtector;Reimage Real Time Protector;C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2014-12-2 7138664] R2 RzOvlMon;Razer Overlay Subsystem Emergency Service;C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe [2014-4-18 32960] R2 rzpmgrk;rzpmgrk;C:\Windows\System32\drivers\rzpmgrk.sys [2014-12-12 37184] R2 rzpnk;rzpnk;C:\Windows\System32\drivers\rzpnk.sys [2014-12-12 129600] R2 WindowsMangerProtect;WindowsMangerProtect Service;C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service --> C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service [?] R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-6-2 128488] R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-6-2 401896] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2014-6-21 94720] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-12-12 533096] R3 RzDxgk;RzDxgk;C:\Windows\System32\drivers\RzDxgk.sys [2014-12-12 129472] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-12-14 114688] S3 rzjstk;Razer Virtual Joystick Driver;C:\Windows\System32\drivers\rzjstk.sys [2014-9-5 27816] S3 rzkeypadendpt;Razer Keypad Endpoint;C:\Windows\System32\drivers\rzkeypadendpt.sys [2014-9-5 33448] S3 rzp1endpt;Razer platform 1 end point;C:\Windows\System32\drivers\rzp1endpt.sys [2014-9-5 40104] S3 rzudd;Razer Mouse Driver;C:\Windows\System32\drivers\rzudd.sys [2014-9-5 160424] S3 rzvmouse;Razer Virtual Mouse;C:\Windows\System32\drivers\rzvmouse.sys [2014-9-5 31912] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232] . =============== File Associations =============== . ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1" . =============== Created Last 30 ================ . 2014-12-14 21:55:36 -------- d-----w- C:\Users\rafa?\AppData\Local\Microsoft 2014-12-14 21:43:13 -------- d-----w- C:\FRST 2014-12-14 20:08:45 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{53A9CF1C-D0BB-4432-9EE5-47C4EFCE1D27}\offreg.dll 2014-12-14 20:02:41 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment 2014-12-14 20:00:00 -------- d-----w- C:\Users\rafał\AppData\Roaming\AMD 2014-12-14 19:59:57 -------- d-----w- C:\Users\rafał\AppData\Roaming\Battle.net 2014-12-14 19:59:47 -------- d-----w- C:\ProgramData\Blizzard Entertainment 2014-12-14 19:59:47 -------- d-----w- C:\Program Files (x86)\Battle.net 2014-12-14 19:58:56 -------- d-----w- C:\ProgramData\Battle.net 2014-12-14 18:30:42 -------- d-----w- C:\Program Files (x86)\Futuremark 2014-12-14 18:23:42 48784 ----a-w- C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys 2014-12-14 18:13:58 -------- d-----w- C:\ProgramData\WindowsMangerProtect 2014-12-14 18:13:52 -------- d-----w- C:\Users\rafał\AppData\Roaming\omiga-plus 2014-12-14 13:03:45 -------- d-----w- C:\Users\rafał\AppData\Roaming\Adobe 2014-12-14 12:55:56 68608 ----a-w- C:\Windows\System32\taskhost.exe 2014-12-14 12:54:29 1887232 ----a-w- C:\Windows\System32\d3d11.dll 2014-12-14 12:54:29 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll 2014-12-14 12:51:41 -------- d-----w- C:\Windows\System32\MRT 2014-12-14 12:46:08 -------- d-----w- C:\ProgramData\Reimage Protector 2014-12-14 12:46:05 -------- d-----w- C:\Program Files\Reimage 2014-12-14 12:45:56 -------- d-----w- C:\rei 2014-12-14 12:30:32 -------- d-----w- C:\Program Files\CPUID 2014-12-14 12:12:37 -------- d-----w- C:\Users\rafał\AppData\Roaming\WinRAR 2014-12-14 11:32:07 163504 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin 2014-12-14 10:54:54 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2014-12-14 10:54:54 701616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2014-12-14 10:45:40 -------- d-----w- C:\Users\rafał\AppData\Roaming\IsolatedStorage 2014-12-14 10:45:40 -------- d-----w- C:\ProgramData\IsolatedStorage 2014-12-14 10:44:42 -------- d-----w- C:\Program Files\FileViewPro 2014-12-14 10:43:24 -------- d-----w- C:\Spacekace 2014-12-14 09:56:24 376768 ----a-w- C:\Windows\System32\drivers\netio.sys 2014-12-14 09:56:24 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-12-14 09:56:24 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-12-14 03:20:06 81408 ----a-w- C:\Windows\System32\imagehlp.dll 2014-12-14 03:20:06 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys 2014-12-14 03:20:06 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll 2014-12-14 03:20:05 5120 ----a-w- C:\Windows\SysWow64\wmi.dll 2014-12-14 03:20:05 5120 ----a-w- C:\Windows\System32\wmi.dll 2014-12-14 03:20:05 220672 ----a-w- C:\Windows\System32\wintrust.dll 2014-12-14 03:20:05 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll 2014-12-14 03:16:32 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL 2014-12-14 03:16:32 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL 2014-12-14 03:16:23 497152 ----a-w- C:\Windows\System32\drivers\afd.sys 2014-12-14 03:16:23 327168 ----a-w- C:\Windows\System32\mswsock.dll 2014-12-14 03:16:23 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll 2014-12-14 03:15:21 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-12-14 03:15:21 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2014-12-14 03:15:20 144384 ----a-w- C:\Windows\System32\cdd.dll 2014-12-14 03:13:03 613888 ----a-w- C:\Windows\System32\psisdecd.dll 2014-12-14 03:13:02 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax 2014-12-14 03:13:02 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll 2014-12-14 03:13:02 108032 ----a-w- C:\Windows\System32\psisrndr.ax 2014-12-13 23:45:06 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll 2014-12-13 23:45:04 11632448 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{53A9CF1C-D0BB-4432-9EE5-47C4EFCE1D27}\mpengine.dll 2014-12-13 23:42:59 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe 2014-12-13 23:41:51 331776 ----a-w- C:\Windows\System32\oleacc.dll 2014-12-13 23:41:51 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll 2014-12-13 23:41:47 458712 ----a-w- C:\Windows\System32\drivers\cng.sys 2014-12-13 23:41:31 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys 2014-12-13 23:41:31 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2014-12-13 23:41:31 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-12-13 23:41:31 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2014-12-13 23:41:28 956928 ----a-w- C:\Windows\System32\localspl.dll 2014-12-13 23:41:24 723456 ----a-w- C:\Windows\System32\EncDec.dll 2014-12-13 23:41:24 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll 2014-12-13 23:41:22 861696 ----a-w- C:\Windows\System32\oleaut32.dll 2014-12-13 23:41:22 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll 2014-12-13 22:35:49 -------- d-----w- C:\Users\rafał\AppData\Roaming\BinarySense 2014-12-13 22:35:47 -------- d-----w- C:\ProgramData\Licenses 2014-12-13 22:35:42 -------- d-----w- C:\Program Files (x86)\Common Files\BinarySense 2014-12-13 22:35:42 -------- d-----w- C:\Program Files (x86)\BinarySense 2014-12-13 21:26:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL 2014-12-13 21:26:21 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL 2014-12-13 21:26:20 830464 ----a-w- C:\Windows\System32\nshwfp.dll 2014-12-13 21:26:20 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll 2014-12-13 21:26:20 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL 2014-12-13 21:02:27 461312 ----a-w- C:\Windows\System32\scavengeui.dll 2014-12-13 08:35:20 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll 2014-12-13 08:35:20 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll 2014-12-13 06:00:14 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll 2014-12-13 06:00:14 8856 ----a-w- C:\Windows\SysWow64\icardres.dll 2014-12-13 06:00:14 8856 ----a-w- C:\Windows\System32\icardres.dll 2014-12-13 06:00:14 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe 2014-12-13 06:00:14 171160 ----a-w- C:\Windows\System32\infocardapi.dll 2014-12-13 06:00:14 1389208 ----a-w- C:\Windows\System32\icardagt.exe 2014-12-13 06:00:11 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe 2014-12-13 06:00:11 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2014-12-12 23:13:04 -------- d-----w- C:\Users\rafał\AppData\Roaming\TS3Client 2014-12-12 23:13:02 -------- d-----w- C:\Program Files (x86)\TeamSpeak 3 Client 2014-12-12 23:03:08 -------- d-----w- C:\Users\rafał\AppData\Roaming\TERA 2014-12-12 23:01:14 -------- d-----w- C:\Users\rafał\AppData\Roaming\Opera Software 2014-12-12 22:51:19 129600 ----a-w- C:\Windows\System32\drivers\rzpnk.sys 2014-12-12 22:51:10 37184 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys 2014-12-12 22:48:16 74432 ----a-w- C:\Windows\System32\drivers\RzFilter.sys 2014-12-12 22:48:15 129472 ----a-w- C:\Windows\System32\drivers\RzDxgk.sys 2014-12-12 22:48:05 -------- d-----w- C:\Windows\Razer Core 2014-12-12 22:29:49 53248 ----a-r- C:\Windows\SysWow64\CSVer.dll 2014-12-12 22:29:19 -------- d-----w- C:\Intel 2014-12-12 22:23:18 -------- d-----w- C:\Program Files (x86)\ASM104xUSB3 2014-12-12 22:12:07 -------- d-----w- C:\Users\rafał\AppData\Roaming\ATI 2014-12-12 22:11:18 0 ----a-w- C:\Windows\ativpsrm.bin 2014-12-12 22:08:09 -------- d-----w- C:\Users\rafał\AppData\Roaming\library_dir 2014-12-12 22:07:47 -------- d-----w- C:\Users\rafał\AppData\Roaming\Raptr 2014-12-12 22:07:47 -------- d-----w- C:\Program Files (x86)\Raptr 2014-12-12 22:07:45 -------- d-----w- C:\ProgramData\AMD 2014-12-12 22:07:44 -------- d-----w- C:\Program Files (x86)\AMD AVT 2014-12-12 22:07:43 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies 2014-12-12 22:07:07 -------- d-----w- C:\Program Files (x86)\AMD 2014-12-12 22:06:40 -------- d-----w- C:\Program Files\Common Files\ATI Technologies 2014-12-12 22:04:04 -------- d-----w- C:\ProgramData\Package Cache 2014-12-12 22:03:51 -------- d-----w- C:\Program Files\AMD 2014-12-12 22:01:32 -------- d-----w- C:\AMD 2014-12-12 22:01:10 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll 2014-12-12 22:01:10 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys 2014-12-12 22:01:10 1031680 ----a-w- C:\Windows\System32\rdpcore.dll 2014-12-12 21:56:49 -------- d-sh--w- C:\Windows\Installer 2014-12-12 21:52:59 603472 ----a-w- C:\Windows\System32\KAAPORT64.dll 2014-12-12 21:51:42 533096 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys 2014-12-12 21:51:41 74272 ----a-w- C:\Windows\System32\RtNicProp64.dll 2014-12-12 21:51:41 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll 2014-12-12 21:51:37 -------- d-----w- C:\Program Files (x86)\Realtek 2014-12-12 21:24:04 -------- d-----w- C:\Windows\Panther 2014-11-21 02:44:42 78432 ----a-w- C:\Windows\System32\atimpc64.dll 2014-11-21 02:44:42 78432 ----a-w- C:\Windows\System32\amdpcom64.dll 2014-11-21 02:44:40 71704 ----a-w- C:\Windows\SysWow64\atimpc32.dll 2014-11-21 02:44:40 71704 ----a-w- C:\Windows\SysWow64\amdpcom32.dll 2014-11-21 02:44:28 144328 ----a-w- C:\Windows\System32\atiuxp64.dll 2014-11-21 02:44:26 126848 ----a-w- C:\Windows\SysWow64\atiuxpag.dll 2014-11-21 02:44:24 118096 ----a-w- C:\Windows\System32\atiu9p64.dll 2014-11-21 02:44:22 100032 ----a-w- C:\Windows\SysWow64\atiu9pag.dll 2014-11-21 02:44:20 1348928 ----a-w- C:\Windows\System32\aticfx64.dll 2014-11-21 02:44:16 1127496 ----a-w- C:\Windows\SysWow64\aticfx32.dll 2014-11-21 02:44:10 11076784 ----a-w- C:\Windows\System32\atidxx64.dll 2014-11-21 02:44:04 9401480 ----a-w- C:\Windows\SysWow64\atidxx32.dll 2014-11-21 02:43:56 7558816 ----a-w- C:\Windows\SysWow64\atiumdva.dll 2014-11-21 02:43:50 7077776 ----a-w- C:\Windows\SysWow64\atiumdag.dll 2014-11-21 02:43:42 8379720 ----a-w- C:\Windows\System32\atiumd6a.dll 2014-11-21 02:43:38 8369408 ----a-w- C:\Windows\System32\atiumd64.dll 2014-11-21 02:41:36 294600 ----a-w- C:\Windows\System32\drivers\amdacpksd.sys 2014-11-21 02:40:00 18959360 ----a-w- C:\Windows\System32\drivers\atikmdag.sys 2014-11-21 02:33:12 235008 ----a-w- C:\Windows\System32\clinfo.exe 2014-11-21 02:33:08 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe 2014-11-21 02:33:08 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe 2014-11-21 02:33:08 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe 2014-11-21 02:33:08 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe 2014-11-21 02:33:06 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll 2014-11-21 02:33:06 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll 2014-11-21 02:33:04 86528 ----a-w- C:\Windows\System32\OVDecode64.dll 2014-11-21 02:33:02 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll 2014-11-21 02:33:00 47899136 ----a-w- C:\Windows\System32\amdocl64.dll 2014-11-21 02:32:08 40987136 ----a-w- C:\Windows\SysWow64\amdocl.dll 2014-11-21 02:31:18 65024 ----a-w- C:\Windows\System32\OpenCL.dll 2014-11-21 02:31:16 58880 ----a-w- C:\Windows\SysWow64\OpenCL.dll 2014-11-21 02:24:50 28354560 ----a-w- C:\Windows\System32\atio6axx.dll 2014-11-21 02:19:36 23621632 ----a-w- C:\Windows\SysWow64\atioglxx.dll 2014-11-21 02:19:26 49664 ----a-w- C:\Windows\System32\amdmmcl6.dll 2014-11-21 02:19:22 38912 ----a-w- C:\Windows\SysWow64\amdmmcl.dll 2014-11-21 02:18:46 127488 ----a-w- C:\Windows\System32\mantle64.dll 2014-11-21 02:18:42 113664 ----a-w- C:\Windows\SysWow64\mantle32.dll 2014-11-21 02:18:36 5837312 ----a-w- C:\Windows\System32\amdmantle64.dll 2014-11-21 02:17:04 367104 ----a-w- C:\Windows\System32\atiapfxx.exe 2014-11-21 02:17:02 62464 ----a-w- C:\Windows\System32\aticalrt64.dll 2014-11-21 02:17:02 52224 ----a-w- C:\Windows\SysWow64\aticalrt.dll 2014-11-21 02:16:58 55808 ----a-w- C:\Windows\System32\aticalcl64.dll 2014-11-21 02:16:58 49152 ----a-w- C:\Windows\SysWow64\aticalcl.dll 2014-11-21 02:16:52 15716352 ----a-w- C:\Windows\System32\aticaldd64.dll 2014-11-21 02:16:04 14302208 ----a-w- C:\Windows\SysWow64\aticaldd.dll 2014-11-21 02:15:42 4590592 ----a-w- C:\Windows\SysWow64\amdmantle32.dll 2014-11-21 02:13:12 91648 ----a-w- C:\Windows\System32\mantleaxl64.dll 2014-11-21 02:13:10 85504 ----a-w- C:\Windows\SysWow64\mantleaxl32.dll 2014-11-21 02:12:50 442368 ----a-w- C:\Windows\System32\atidemgy.dll 2014-11-21 02:12:50 31232 ----a-w- C:\Windows\System32\atimuixx.dll 2014-11-21 02:12:48 774656 ----a-w- C:\Windows\System32\atieclxx.exe 2014-11-21 02:12:40 244736 ----a-w- C:\Windows\System32\atiesrxx.exe 2014-11-21 02:12:26 190976 ----a-w- C:\Windows\System32\atitmm64.dll 2014-11-21 02:10:02 843776 ----a-w- C:\Windows\System32\coinst_14.50.dll 2014-11-21 02:09:06 1214976 ----a-w- C:\Windows\System32\atiadlxx.dll 2014-11-21 02:09:04 903168 ----a-w- C:\Windows\SysWow64\atiadlxy.dll 2014-11-21 02:09:00 75264 ----a-w- C:\Windows\System32\atig6pxx.dll 2014-11-21 02:09:00 69632 ----a-w- C:\Windows\SysWow64\atiglpxx.dll 2014-11-21 02:09:00 69632 ----a-w- C:\Windows\System32\atiglpxx.dll 2014-11-21 02:08:58 146944 ----a-w- C:\Windows\System32\atig6txx.dll 2014-11-21 02:08:56 133632 ----a-w- C:\Windows\SysWow64\atigktxx.dll 2014-11-21 02:08:54 589312 ----a-w- C:\Windows\System32\drivers\atikmpag.sys 2014-11-21 02:08:54 43520 ----a-w- C:\Windows\System32\drivers\ati2erec.dll 2014-11-20 20:36:32 51200 ----a-w- C:\Windows\System32\kdbsdk64.dll 2014-11-20 20:35:00 38912 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll . ==================== Find3M ==================== . 2014-12-14 12:55:35 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2014-11-24 13:04:56 275080 ------w- C:\Windows\System32\MpSigStub.exe 2014-11-11 04:27:16 80384 ----a-w- C:\Windows\System32\RazerCoinstaller.dll 2014-11-08 03:16:08 2048 ----a-w- C:\Windows\System32\tzres.dll 2014-11-08 02:45:09 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2014-10-25 01:57:59 77824 ----a-w- C:\Windows\System32\packager.dll 2014-10-25 01:32:37 67584 ----a-w- C:\Windows\SysWow64\packager.dll 2014-10-14 02:13:00 3241984 ----a-w- C:\Windows\System32\msi.dll 2014-10-14 01:50:41 2363904 ----a-w- C:\Windows\SysWow64\msi.dll 2014-10-10 00:57:42 3198976 ----a-w- C:\Windows\System32\win32k.sys 2014-09-19 09:46:25 155064 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2014-09-19 09:46:24 95672 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2014-09-19 09:42:52 210944 ----a-w- C:\Windows\System32\wdigest.dll 2014-09-19 09:42:51 86528 ----a-w- C:\Windows\System32\TSpkg.dll 2014-09-19 09:42:50 29184 ----a-w- C:\Windows\System32\sspisrv.dll 2014-09-19 09:42:50 136192 ----a-w- C:\Windows\System32\sspicli.dll 2014-09-19 09:42:49 342016 ----a-w- C:\Windows\System32\schannel.dll 2014-09-19 09:42:49 28160 ----a-w- C:\Windows\System32\secur32.dll 2014-09-19 09:42:47 314880 ----a-w- C:\Windows\System32\msv1_0.dll 2014-09-19 09:42:47 309760 ----a-w- C:\Windows\System32\ncrypt.dll 2014-09-19 09:42:44 728064 ----a-w- C:\Windows\System32\kerberos.dll 2014-09-19 09:42:44 1461248 ----a-w- C:\Windows\System32\lsasrv.dll 2014-09-19 09:42:41 22016 ----a-w- C:\Windows\System32\credssp.dll 2014-09-19 09:42:18 31232 ----a-w- C:\Windows\System32\lsass.exe 2014-09-19 09:23:55 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll 2014-09-19 09:23:52 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll 2014-09-19 09:23:49 248832 ----a-w- C:\Windows\SysWow64\schannel.dll 2014-09-19 09:23:49 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2014-09-19 09:23:46 221184 ----a-w- C:\Windows\SysWow64\ncrypt.dll 2014-09-19 09:23:45 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll 2014-09-19 09:23:42 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll 2014-09-19 09:23:36 17408 ----a-w- C:\Windows\SysWow64\credssp.dll 2014-09-19 09:22:48 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll . ============= FINISH: 22:56:13,12 ===============