 |
Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
|
| View previous topic :: View next topic |
| Author |
Message |
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
 Posted: Wed Jul 04, 2012 4:04 pm Post subject: I've been taken over by something called "babylon " |
 |
|
Hi;
I was trying to fix a vista system that has no sound when on youtube
and now I have been taken over by something called babylon.
The last program I installed before seeing this was "Realplayer".
Here are my DDs files thanks in advance.
WES
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.19272 BrowserJavaVersion: 10.5.1
Run by Dad at 18:50:08 on 2012-07-04
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2046.1268 [GMT -5:00]
.
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wuauclt.exe
C:\Users\Dad\Downloads\Downloads\HijackThis.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.babylon.com/?affID=114066&tt=010712_8&babsrc=HP_ss&mntrId=bc85204100000000000000e04c502370
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.5.0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{5E09BD9B-5071-42CA-BD8E-DA9984F1DA17} : DhcpNameServer = 192.168.0.1
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\dad\appdata\roaming\mozilla\firefox\profiles\a4fiz7fl.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?affID=114066&tt=010712_8&babsrc=KW_ss&mntrId=bc85204100000000000000e04c502370&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_262.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [2012-7-1 36000]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\avira\antivir desktop\sched.exe [2012-7-1 86224]
R2 AntiVirService;Avira Realtime Protection;c:\program files\avira\antivir desktop\avguard.exe [2012-7-1 110032]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2012-7-1 83392]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2012-7-2 21504]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\common files\creative labs shared\service\CTAELicensing.exe [2012-7-1 79360]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-7-2 113120]
.
=============== Created Last 30 ================
.
2012-07-04 21:56:48 -------- d-----w- c:\programdata\Babylon
2012-07-04 21:56:47 -------- d-----w- c:\users\dad\appdata\roaming\Babylon
2012-07-04 21:18:37 650752 ----a-w- c:\windows\system32\xvidcore.dll
2012-07-04 21:18:37 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2012-07-04 21:18:36 178688 ----a-w- c:\windows\system32\unrar.dll
2012-07-04 21:18:36 151552 ----a-w- c:\windows\system32\ac3acm.acm
2012-07-04 21:18:33 79872 ----a-w- c:\windows\system32\ff_vfw.dll
2012-07-04 21:18:30 -------- d-----w- c:\program files\K-Lite Codec Pack
2012-07-04 19:48:50 -------- d-----w- c:\users\dad\appdata\local\ATI
2012-07-04 19:45:44 0 ----a-w- c:\windows\ativpsrm.bin
2012-07-04 05:18:23 -------- d-----w- c:\program files\common files\ATI Technologies
2012-07-04 05:13:12 -------- d-----w- c:\program files\ATI Technologies
2012-07-04 05:13:07 -------- d-----w- c:\program files\ATI
2012-07-04 00:32:35 -------- d-----w- c:\program files\Windows Portable Devices
2012-07-04 00:20:40 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2012-07-04 00:20:39 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2012-07-04 00:20:39 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2012-07-04 00:19:45 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2012-07-04 00:19:43 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2012-07-04 00:19:43 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2012-07-04 00:19:43 252928 ----a-w- c:\windows\system32\dxdiag.exe
2012-07-04 00:19:43 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2012-07-04 00:19:43 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2012-07-04 00:19:42 519680 ----a-w- c:\windows\system32\d3d11.dll
2012-07-04 00:19:03 81920 ----a-w- c:\windows\system32\wpdbusenum.dll
2012-07-04 00:19:03 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll
2012-07-04 00:19:03 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe
2012-07-04 00:19:01 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2012-07-04 00:19:01 134144 ----a-w- c:\program files\windows portable devices\sqmapi.dll
2012-07-04 00:18:57 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll
2012-07-04 00:18:57 546816 ----a-w- c:\windows\system32\wpd_ci.dll
2012-07-04 00:18:57 350208 ----a-w- c:\windows\system32\WPDSp.dll
2012-07-04 00:18:57 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2012-07-04 00:18:57 2537472 ----a-w- c:\windows\system32\wpdshext.dll
2012-07-04 00:18:57 227840 ----a-w- c:\windows\system32\drivers\umdf\WpdFs.dll
2012-07-04 00:18:57 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2012-07-04 00:18:57 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2012-07-04 00:18:57 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2012-07-04 00:15:56 5120 ----a-w- c:\windows\system32\wmi.dll
2012-07-04 00:15:56 172032 ----a-w- c:\windows\system32\wintrust.dll
2012-07-04 00:15:56 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-07-04 00:15:56 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-07-04 00:02:09 322560 ----a-w- c:\windows\system32\sbe.dll
2012-07-04 00:02:09 177664 ----a-w- c:\windows\system32\mpg2splt.ax
2012-07-04 00:02:09 153088 ----a-w- c:\windows\system32\sbeio.dll
2012-07-04 00:02:08 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-07-04 00:02:07 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-07-04 00:02:03 2048 ----a-w- c:\windows\system32\tzres.dll
2012-07-03 23:59:54 36864 ----a-w- c:\windows\system32\rtutils.dll
2012-07-03 23:58:59 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-07-03 23:45:04 531968 ----a-w- c:\windows\system32\comctl32.dll
2012-07-03 21:45:00 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2012-07-03 21:43:27 71680 ----a-w- c:\windows\system32\iesetup.dll
2012-07-03 21:41:26 231424 ----a-w- c:\windows\system32\msshsq.dll
2012-07-03 21:09:58 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-07-03 21:09:22 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-07-03 21:09:09 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-07-03 21:09:09 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-07-03 04:57:56 -------- d-----w- c:\users\dad\appdata\local\Macromedia
2012-07-03 03:17:01 -------- d-----w- c:\windows\system32\eu-ES
2012-07-03 03:17:01 -------- d-----w- c:\windows\system32\ca-ES
2012-07-03 03:16:59 -------- d-----w- c:\windows\system32\vi-VN
2012-07-03 03:14:33 -------- d-----w- c:\windows\system32\SPReview
2012-07-03 02:56:59 723968 ----a-w- c:\windows\system32\powercpl.dll
2012-07-03 02:55:59 288256 ----a-w- c:\windows\system32\modemui.dll
2012-07-03 02:54:57 1055232 ----a-w- c:\windows\system32\VSSVC.exe
2012-07-03 02:33:21 -------- d-----w- C:\PerfLogs
2012-07-03 01:56:15 193024 ----a-w- c:\windows\system32\recdisc.exe
2012-07-03 01:56:11 6656 ----a-w- c:\windows\system32\sdspres.dll
2012-07-03 01:54:59 81408 ----a-w- c:\program files\windows mail\oeimport.dll
2012-07-03 01:53:59 6144 ----a-w- c:\windows\system32\csrss.exe
2012-07-03 01:52:58 18944 ----a-w- c:\windows\system32\ias.dll
2012-07-03 01:51:59 72192 ----a-w- c:\windows\system32\wpclsp.dll
2012-07-02 21:29:43 -------- d-----w- c:\windows\CheckSur
2012-07-02 02:44:53 -------- d-----w- c:\windows\system32\EventProviders
2012-07-02 01:08:30 -------- d-----w- c:\users\dad\appdata\local\ElevatedDiagnostics
2012-07-02 00:27:22 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2012-07-02 00:27:22 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2012-07-02 00:27:20 2902495 ------w- c:\windows\system32\Sens_oal.dll
2012-07-02 00:26:39 -------- d-----w- c:\program files\common files\Creative Labs Shared
2012-07-02 00:26:10 -------- d-----w- c:\program files\Creative
2012-07-02 00:25:57 -------- d-----w- c:\program files\RocketFish
2012-07-02 00:25:36 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2012-07-02 00:25:35 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\ctor.dll
2012-07-02 00:25:35 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iscript.dll
2012-07-02 00:25:35 192512 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iuser.dll
2012-07-02 00:25:34 729088 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iKernel.dll
2012-07-02 00:25:34 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\DotNetInstaller.exe
2012-07-02 00:25:33 188548 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iGdi.dll
2012-07-02 00:25:32 311428 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\setup.dll
2012-07-02 00:24:31 73728 ----a-w- c:\windows\system32\CmdRtr.DLL
2012-07-02 00:24:31 166912 ----a-w- c:\windows\system32\APOMngr.DLL
2012-07-02 00:23:38 613503 ----a-w- c:\windows\system32\APOIM32.exe
2012-07-02 00:23:38 506368 ----a-w- c:\windows\system32\P17APO32.dll
2012-07-02 00:23:38 47104 ----a-w- c:\windows\system32\P17pld32.dll
2012-07-02 00:23:38 42496 ----a-w- c:\windows\system32\AddCat.exe
2012-07-02 00:23:37 140800 ----a-w- c:\windows\system32\P17res.dll
2012-07-02 00:23:36 8704 ----a-w- c:\windows\ResDefE.exe
2012-07-02 00:23:36 86016 ----a-w- c:\windows\system32\ctcoins1.dll
2012-07-02 00:23:36 22146048 ----a-w- c:\windows\system32\AppSetup.exe
2012-07-02 00:23:36 181760 ----a-w- c:\windows\system32\ctdvins1.dll
2012-07-02 00:23:36 14848 ----a-w- c:\windows\system32\P17RunE.dll
2012-07-02 00:23:36 144384 ----a-w- c:\windows\system32\OemSpiE.dll
2012-07-02 00:23:36 1166336 ----a-w- c:\windows\system32\drivers\P17.sys
2012-07-01 23:26:39 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2012-07-01 23:26:39 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2012-07-01 23:26:39 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2012-07-01 23:26:39 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2012-07-01 23:26:38 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2012-07-01 23:26:38 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2012-07-01 23:26:38 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2012-07-01 23:23:46 -------- d-----w- c:\users\dad\appdata\local\Apple
2012-07-01 23:17:27 -------- d-----w- c:\windows\system32\Adobe
2012-07-01 22:44:48 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-01 22:44:48 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-01 16:03:25 -------- d-----w- c:\program files\Oracle
2012-07-01 16:03:06 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-01 16:03:06 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-01 15:46:12 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-07-01 15:35:48 -------- d-----w- c:\windows\pss
2012-07-01 14:24:38 -------- d-----w- c:\users\dad\appdata\roaming\Avira
2012-07-01 14:18:51 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-07-01 14:18:51 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-07-01 14:18:49 -------- d-----w- c:\programdata\Avira
2012-07-01 14:18:49 -------- d-----w- c:\program files\Avira
2012-07-01 13:05:18 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2012-07-01 13:03:57 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-07-01 03:22:21 -------- d-----w- c:\users\dad\appdata\local\Google
2012-07-01 03:22:18 -------- d-----w- c:\users\dad\appdata\roaming\SUPERAntiSpyware.com
2012-07-01 03:21:46 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-07-01 03:21:46 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-07-01 00:54:28 -------- d-----w- c:\users\dad\appdata\roaming\Auslogics
2012-07-01 00:54:23 -------- d-----w- c:\program files\Auslogics
2012-07-01 00:14:15 -------- d-----w- c:\program files\SystemRequirementsLab
2012-06-30 23:01:45 23552 ----a-w- c:\windows\system32\lpk.dll
2012-06-30 23:01:45 10240 ----a-w- c:\windows\system32\dciman32.dll
2012-06-30 22:58:49 61440 ----a-w- c:\windows\system32\winipsec.dll
2012-06-30 22:58:48 272896 ----a-w- c:\windows\system32\polstore.dll
2012-06-30 22:56:57 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2012-06-30 22:56:57 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2012-06-30 22:56:57 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2012-06-30 22:56:57 105984 ----a-w- c:\windows\system32\netiohlp.dll
2012-06-30 22:56:56 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2012-06-30 22:56:56 19968 ----a-w- c:\windows\system32\ARP.EXE
2012-06-30 22:56:56 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2012-06-30 22:56:56 10240 ----a-w- c:\windows\system32\finger.exe
2012-06-30 22:55:36 2048 ----a-w- c:\windows\system32\msxml3r.dll
2012-06-30 22:55:36 1401856 ----a-w- c:\windows\system32\msxml6.dll
2012-06-30 22:55:35 2048 ----a-w- c:\windows\system32\msxml6r.dll
2012-06-30 22:54:57 218624 ----a-w- c:\windows\system32\msv1_0.dll
2012-06-30 22:53:22 53248 ----a-w- c:\windows\system32\rrinstaller.exe
2012-06-30 22:53:22 24576 ----a-w- c:\windows\system32\mfpmp.exe
2012-06-30 22:53:22 2048 ----a-w- c:\windows\system32\mferror.dll
2012-06-30 22:50:39 71680 ----a-w- c:\windows\system32\atl.dll
2012-06-30 22:48:08 160256 ----a-w- c:\windows\system32\wkssvc.dll
2012-06-30 22:47:38 136192 ----a-w- c:\windows\system32\aaclient.dll
2012-06-30 22:47:37 53248 ----a-w- c:\windows\system32\tsgqec.dll
2012-06-30 22:44:12 23040 ----a-w- c:\program files\movie maker\WMM2EXT.dll
2012-06-30 22:44:12 195072 ----a-w- c:\program files\movie maker\WMM2AE.dll
2012-06-30 22:40:44 623616 ----a-w- c:\windows\system32\localspl.dll
2012-06-30 22:38:38 499712 ----a-w- c:\windows\system32\kerberos.dll
2012-06-30 22:38:38 175104 ----a-w- c:\windows\system32\wdigest.dll
2012-06-30 22:34:09 6656 ----a-w- c:\windows\system32\kbd106n.dll
2012-06-30 22:32:40 62464 ----a-w- c:\windows\system32\l3codeca.acm
2012-06-30 22:32:40 220672 ----a-w- c:\windows\system32\l3codecp.acm
2012-06-30 22:32:05 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
2012-06-30 22:32:05 200704 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-06-30 22:32:04 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-06-30 22:32:04 15360 ----a-w- c:\windows\system32\drivers\TUNMP.SYS
2012-06-30 22:31:26 98304 ----a-w- c:\windows\system32\cabview.dll
2012-06-30 22:31:10 37888 ----a-w- c:\windows\system32\printcom.dll
2012-06-30 22:30:38 14848 ----a-w- c:\windows\system32\wshrm.dll
2012-06-30 22:30:17 43520 ----a-w- c:\windows\system32\msdxm.tlb
2012-06-30 22:30:17 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2012-06-30 22:30:17 18432 ----a-w- c:\windows\system32\amcompat.tlb
2012-06-30 22:27:46 -------- d-sh--w- c:\windows\Installer
2012-06-30 20:54:16 714240 ----a-w- c:\windows\system32\timedate.cpl
2012-06-30 20:51:37 8704 ----a-w- c:\windows\system32\hccoin.dll
2012-06-30 20:51:37 15872 ----a-w- c:\windows\system32\hcrstco.dll
2012-06-30 20:48:36 518144 ----a-w- c:\windows\system32\RMActivate.exe
2012-06-30 20:48:36 471552 ----a-w- c:\windows\system32\secproc.dll
2012-06-30 20:48:36 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2012-06-30 20:48:36 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2012-06-30 20:48:36 332288 ----a-w- c:\windows\system32\msdrm.dll
2012-06-30 20:48:36 152576 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2012-06-30 20:48:36 152064 ----a-w- c:\windows\system32\secproc_ssp.dll
2012-06-30 20:48:35 526336 ----a-w- c:\windows\system32\RMActivate_isv.exe
2012-06-30 20:48:35 471552 ----a-w- c:\windows\system32\secproc_isv.dll
2012-06-30 20:46:40 310784 ----a-w- c:\windows\system32\unregmp2.exe
2012-06-30 20:46:40 1418752 ----a-w- c:\program files\windows media player\setup_wm.exe
2012-06-30 20:46:38 7680 ----a-w- c:\windows\system32\spwmp.dll
2012-06-30 20:46:38 4096 ----a-w- c:\windows\system32\dxmasf.dll
2012-06-30 20:46:38 107520 ----a-w- c:\program files\windows media player\wmpshare.exe
2012-06-30 20:46:37 4096 ----a-w- c:\windows\system32\msdxm.ocx
2012-06-30 20:46:37 107520 ----a-w- c:\program files\windows media player\wmpconfig.exe
2012-06-30 20:25:27 -------- d-----w- c:\windows\Panther
2012-06-30 20:16:54 2565432 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2012-06-30 20:16:46 6762896 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{70cfd377-46b6-433e-baef-61c6614c01db}\mpengine.dll
2012-06-30 20:16:45 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-06-30 20:15:35 -------- d-----w- C:\Windows.old
2012-06-30 20:11:48 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2012-06-30 20:11:45 68096 ----a-w- c:\windows\system32\wlanhlp.dll
2012-06-30 20:11:45 65024 ----a-w- c:\windows\system32\wlanapi.dll
2012-06-30 20:11:45 513536 ----a-w- c:\windows\system32\wlansvc.dll
2012-06-30 20:11:45 302592 ----a-w- c:\windows\system32\wlansec.dll
2012-06-30 20:11:45 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2012-06-30 20:11:37 15181 ----a-w- c:\windows\system32\gatherWirelessInfo.vbs
2012-06-30 19:39:30 41984 ----a-w- c:\windows\system32\netfxperf.dll
2012-06-30 19:25:08 84480 ----a-w- c:\windows\system32\INETRES.dll
2012-06-30 19:24:53 60928 ----a-w- c:\windows\system32\msasn1.dll
2012-06-30 19:24:26 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2012-06-30 19:23:52 411648 ----a-w- c:\windows\system32\drivers\http.sys
2012-06-30 19:23:52 30720 ----a-w- c:\windows\system32\httpapi.dll
2012-06-30 19:23:52 24064 ----a-w- c:\windows\system32\nshhttp.dll
2012-06-30 19:22:07 243712 ----a-w- c:\windows\system32\rastls.dll
2012-06-30 19:21:52 355328 ----a-w- c:\windows\system32\WSDApi.dll
2012-06-30 19:21:09 91136 ----a-w- c:\windows\system32\avifil32.dll
2012-06-30 19:21:09 82944 ----a-w- c:\windows\system32\mciavi32.dll
2012-06-30 19:21:09 65024 ----a-w- c:\windows\system32\avicap32.dll
2012-06-30 19:21:09 31744 ----a-w- c:\windows\system32\msvidc32.dll
2012-06-30 19:21:09 13312 ----a-w- c:\windows\system32\msrle32.dll
2012-06-30 19:21:09 123904 ----a-w- c:\windows\system32\msvfw32.dll
2012-06-30 19:21:08 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2012-06-30 19:21:08 22528 ----a-w- c:\windows\system32\msyuv.dll
2012-06-30 19:21:08 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2012-06-30 19:20:22 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2012-06-30 17:10:42 -------- d-sha-w- C:\Boot
.
==================== Find3M ====================
.
2012-07-03 02:23:24 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2012-07-03 02:23:21 82432 ----a-w- c:\windows\system32\axaltocm.dll
2012-06-30 20:48:09 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2012-05-15 19:51:08 2045440 ----a-w- c:\windows\system32\win32k.sys
2012-05-15 06:37:49 916992 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 06:32:25 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-05-15 06:32:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2012-05-15 06:31:44 109056 ----a-w- c:\windows\system32\iesysprep.dll
2012-05-15 05:01:56 385024 ----a-w- c:\windows\system32\html.iec
2012-05-15 03:26:05 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2012-05-15 03:23:41 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2012-05-01 14:03:49 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-23 16:00:53 984064 ----a-w- c:\windows\system32\crypt32.dll
2012-04-23 16:00:53 98304 ----a-w- c:\windows\system32\cryptnet.dll
2012-04-23 16:00:53 133120 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-19 01:56:30 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-04-19 01:56:30 69632 ----a-w- c:\windows\system32\QuickTime.qts
.
============= FINISH: 18:51:21.03 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 6/30/2012 1:18:01 PM
System Uptime: 7/4/2012 6:18:25 PM (0 hours ago)
.
Motherboard: Intel Corporation | | D865GLC
Processor: Intel(R) Pentium(R) 4 CPU 3.20GHz | J2E1 | 3192/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 77 GiB total, 31.167 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP32: 7/4/2012 12:13:53 AM - Device Driver Package Install: ATI Technologies Sound, video and game controllers
RP34: 7/4/2012 12:15:24 AM - Installed USB Video Driver
RP35: 7/4/2012 12:16:06 AM - Device Driver Package Install: Advanced Micro Devices, Inc. Sound, video and game controllers
RP36: 7/4/2012 12:17:05 AM - Device Driver Package Install: eMPIA Technology Inc, Sound, video and game controllers
RP38: 7/4/2012 12:25:15 AM - Removed USB Video Driver
RP39: 7/4/2012 2:44:19 PM - Device Driver Package Install: ATI Technologies Inc. Display adapters
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Shockwave Player 11.6
Apple Application Support
Apple Software Update
ATI AVIVO Codecs
ATI Catalyst Install Manager
Audio Control Panel
Auslogics Disk Defrag
Avira Free Antivirus
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center HydraVision Full
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Host OpenAL
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Java Auto Updater
Java(TM) 7 Update 5
JavaFX 2.1.1
K-Lite Mega Codec Pack 8.9.5
Microsoft .NET Framework 3.5 SP1
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 13.0.1 (x86 en-US)
Mozilla Maintenance Service
QuickTime
Skins
SUPERAntiSpyware
swMSM
System Requirements Lab for Intel
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
.
==== Event Viewer Messages From Past Week ========
.
7/4/2012 3:37:34 PM, Error: Service Control Manager [7030] - The Local System Utility service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
7/4/2012 1:55:18 PM, Error: atikmdag [45062] - CRT invalid display type
.
==== End Of File =========================== |
|
| Back to top |
|
 |
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Thu Jul 05, 2012 1:39 am Post subject: |
|
|
Hi and welcome back to Spyware Warrior Forum.
My name is Cypher, and I will be helping you with your malware problems.
This may or may not, solve other issues you have with your machine.
If you no longer require help i would be grateful if you would let me know.
Before we start please note the following important guidelines. - If you don't know or understand something, please don't hesitate to ask.
- Only post your problem at One help site. Applying fixes from multiple help sites can cause problems.
- Only reply to this thread do not start another, Please continue responding until I give you the "All Clean"
Remember, absence of symptoms does not mean the infection is all gone.
- Please DO NOT run any other tools or scans whilst I am helping you.
- Please DO NOT install any other software (or hardware) during the cleaning process.
- Print each set of instructions... if possible...your Internet connection will not be available during some fix processes.
- Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
- Note: No Reply Within 3 Days Will Result In Your Topic Being Closed!
Note: If you haven't done so already, please read this topic Things to know before you post where the conditions for receiving help here are explained.
| Quote: |
| Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop. |
Because of this, I advise you to backup any personal files and folders before you start
Please download OTL by Old Timer and save it to your Desktop.
- Right click on OTL.exe And select Run as administrator to run it.
- Under Output, ensure that Standard Output is selected.
- Under Extra Registry section, select Use SafeList.
- Click the Scan All Users checkbox.
- Click on Run Scan at the top left hand corner.
- When done, two Notepad files will open.
- OTL.txt <-- Will be opened
Extra.txt <-- Will be minimized
- Please post the contents of these 2 Notepad files in your next reply.
Next.
Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2
- Right-click SystemLook.exe And select Run as administrator to run it.
- Copy the content of the following codebox into the main textfield:
| Code: |
:filefind
*babylon*
:folderfind
*babylon*
:Regfind
*babylon* |
Click the Look button to start the scan.
When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt
Logs/Information to Post in your Next Reply
- OTL.txt and Extra.txt contents.
- SystemLook.txt
_________________
Admin/Teacher at Malware Removal University
Member of...
 |
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Thu Jul 05, 2012 9:26 am Post subject: Babylon |
|
|
HI Cypher:
I think I made a boo boo. After my first post I checked for a restore point and I had one for about 4 hours before the problem started so I restored my system to that point and all is working ok now. (except for the orginal youtube problem)
I am wondering if babylon is still in my computer and what should I do at this point?
Sorry if I am wasting your time.
Wes |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Thu Jul 05, 2012 9:31 am Post subject: |
|
|
Hi Wescomd,
| Quote: |
| Sorry if I am wasting your time. |
No problem.
Restoring your computer to an earlier point most likely solved your problem, but we should check things out just to be sure.
Better safe than sorry i say, go ahead with the instructions in my last post, and post the requested logs.
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Thu Jul 05, 2012 3:10 pm Post subject: |
|
|
Here are my OTL and Systemlook files.
OTL logfile created on: 7/5/2012 5:15:25 PM - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Dad\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.43 Gb Available Physical Memory | 71.63% Memory free
4.24 Gb Paging File | 3.23 Gb Available in Paging File | 76.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 76.68 Gb Total Space | 32.46 Gb Free Space | 42.33% Space Free | Partition Type: NTFS
Computer Name: NEW-LIVINGROOM | User Name: Dad | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/07/05 17:07:25 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Dad\Desktop\OTL.exe
PRC - [2012/06/26 12:33:03 | 003,906,432 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/02 00:31:38 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/04/24 02:11:59 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2009/04/10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
========== Modules (No Company Name) ==========
MOD - [2012/07/05 16:39:32 | 000,065,024 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/07/05 16:39:32 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/06/30 22:23:12 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/06/30 22:23:12 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2009/07/10 09:07:18 | 000,166,912 | ---- | M] () -- C:\Windows\System32\APOMngr.DLL
MOD - [2009/02/06 18:52:24 | 000,073,728 | ---- | M] () -- C:\Windows\System32\CmdRtr.DLL
MOD - [2007/06/27 01:51:00 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
========== Win32 Services (SafeList) ==========
SRV - [2012/07/01 19:26:39 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2012/06/14 17:20:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2008/01/18 23:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2012/04/27 10:20:04 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/04/25 00:32:27 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012/04/16 21:18:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011/07/22 11:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 16:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/06/23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010/06/17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009/08/24 22:13:59 | 001,166,336 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\P17.sys -- (P17)
DRV - [2007/06/27 02:00:42 | 002,770,432 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007/06/27 02:00:42 | 002,770,432 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EB 8C 18 A8 23 57 CD 01 [binary data]
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes,DefaultScope = {F640B77D-120E-4A20-90F7-89E1BE5E31DF}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes\{F640B77D-120E-4A20-90F7-89E1BE5E31DF}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/|http://www.ebay.com/|https://www.gatecitybank.com/home/home"
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/07/02 23:38:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012/07/02 23:38:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Extensions
[2012/07/03 23:40:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\a4fiz7fl.default\extensions
[2012/07/02 23:38:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/14 17:20:49 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/04 16:57:03 | 000,002,351 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/06/14 17:19:40 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/06/14 17:19:40 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
O1 HOSTS File: ([2012/07/01 08:28:25 | 000,442,859 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15217 more lines...
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [P17RunE] C:\Windows\System32\P17RunE.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.5.0.cab (SysInfo Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E09BD9B-5071-42CA-BD8E-DA9984F1DA17}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2012/07/05 17:07:21 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Dad\Desktop\OTL.exe
[2012/07/04 16:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/07/04 16:56:47 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Babylon
[2012/07/04 16:42:43 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2012/07/04 16:42:40 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Real
[2012/07/04 16:40:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/07/04 16:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2012/07/04 15:42:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\ATI
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\ATI
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012/07/04 14:43:57 | 000,000,000 | ---D | C] -- C:\Users\Dad\{e87fa0a6-a3ee-4c6f-954c-0fb60d44c5b5}
[2012/07/04 00:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2012/07/04 00:18:17 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012/07/04 00:13:12 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012/07/04 00:13:07 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/07/03 19:32:35 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2012/07/03 19:20:40 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2012/07/03 19:20:39 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2012/07/03 19:20:39 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2012/07/03 19:19:45 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2012/07/03 19:19:43 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2012/07/03 19:19:43 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2012/07/03 19:19:43 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2012/07/03 19:19:43 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2012/07/03 19:19:42 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2012/07/03 19:19:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2012/07/03 19:19:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2012/07/03 19:19:01 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2012/07/03 19:18:57 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2012/07/03 19:18:57 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2012/07/03 19:18:57 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2012/07/03 19:18:57 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2012/07/03 19:18:57 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2012/07/03 19:18:57 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2012/07/03 19:02:09 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2012/07/03 19:02:09 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2012/07/03 19:02:09 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2012/07/03 19:02:07 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/07/03 19:02:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/07/03 19:01:49 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2012/07/03 19:01:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2012/07/03 19:01:48 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2012/07/03 19:01:48 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2012/07/03 19:01:47 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2012/07/03 19:01:47 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2012/07/03 19:01:47 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/07/03 19:01:46 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/07/03 19:01:46 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2012/07/03 19:01:46 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2012/07/03 19:01:46 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2012/07/03 19:01:44 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2012/07/03 19:01:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2012/07/03 19:01:35 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/07/03 19:01:35 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/07/03 19:01:35 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/07/03 19:01:34 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2012/07/03 19:01:34 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/07/03 19:01:34 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2012/07/03 19:01:34 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2012/07/03 19:01:34 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/07/03 19:01:34 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2012/07/03 19:01:33 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2012/07/03 19:01:33 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2012/07/03 19:01:21 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2012/07/03 19:01:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2012/07/03 19:01:19 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2012/07/03 19:00:54 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2012/07/03 19:00:36 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2012/07/03 19:00:36 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2012/07/03 19:00:20 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2012/07/03 19:00:00 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2012/07/03 18:59:53 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2012/07/03 18:59:53 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2012/07/03 18:59:49 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2012/07/03 18:59:45 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2012/07/03 18:59:44 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2012/07/03 18:59:44 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2012/07/03 18:59:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2012/07/03 18:59:36 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2012/07/03 18:59:36 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2012/07/03 18:59:36 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2012/07/03 18:59:35 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/07/03 18:59:35 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/07/03 18:59:28 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012/07/03 18:59:28 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012/07/03 18:59:28 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012/07/03 18:59:27 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2012/07/03 18:59:22 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2012/07/03 18:59:16 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2012/07/03 18:59:16 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2012/07/03 18:59:11 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2012/07/03 18:59:06 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2012/07/03 18:59:03 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2012/07/03 18:58:59 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2012/07/03 18:58:58 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2012/07/03 18:58:56 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2012/07/03 18:58:55 | 002,045,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/07/03 18:58:51 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2012/07/03 18:58:50 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2012/07/03 18:58:48 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/07/03 18:58:39 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/07/03 18:58:38 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/07/03 16:45:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2012/07/03 16:44:45 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2012/07/03 16:44:45 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2012/07/03 16:44:45 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2012/07/03 16:44:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2012/07/03 16:44:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2012/07/03 16:44:42 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2012/07/03 16:44:42 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2012/07/03 16:44:42 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2012/07/03 16:44:42 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2012/07/03 16:44:41 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2012/07/03 16:44:37 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2012/07/03 16:44:37 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2012/07/03 16:44:37 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2012/07/03 16:44:34 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2012/07/03 16:44:34 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2012/07/03 16:43:27 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/07/03 16:43:27 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/07/03 16:43:27 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2012/07/03 16:43:27 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/07/03 16:43:27 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2012/07/03 16:43:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2012/07/03 16:43:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2012/07/03 16:43:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2012/07/03 16:43:26 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/07/03 16:43:24 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2012/07/03 16:43:24 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/07/03 16:43:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2012/07/03 16:43:24 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/07/03 16:43:23 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2012/07/03 16:43:23 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2012/07/03 16:43:23 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/07/03 16:43:21 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2012/07/03 16:43:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2012/07/03 16:41:26 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2012/07/03 16:09:59 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012/07/03 16:09:58 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012/07/03 16:09:22 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012/07/03 16:09:22 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012/07/03 16:09:22 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012/07/03 16:09:09 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012/07/03 16:09:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012/07/02 23:57:56 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Macromedia
[2012/07/02 23:38:17 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Mozilla
[2012/07/02 23:38:17 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Mozilla
[2012/07/02 23:38:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/02 23:38:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/02 23:38:09 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/07/02 22:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2012/07/02 22:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2012/07/02 22:16:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2012/07/02 22:14:33 | 000,000,000 | ---D | C] -- C:\Windows\System32\SPReview
[2012/07/02 21:57:46 | 000,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll
[2012/07/02 21:57:37 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe
[2012/07/02 21:57:04 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2012/07/02 21:57:03 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2012/07/02 21:57:02 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2012/07/02 21:57:02 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2012/07/02 21:57:02 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2012/07/02 21:57:02 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2012/07/02 21:57:01 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2012/07/02 21:57:01 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2012/07/02 21:56:59 | 001,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2012/07/02 21:56:59 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2012/07/02 21:56:59 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2012/07/02 21:56:59 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2012/07/02 21:56:59 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2012/07/02 21:56:59 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2012/07/02 21:56:59 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2012/07/02 21:56:59 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2012/07/02 21:56:59 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2012/07/02 21:56:59 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2012/07/02 21:56:59 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2012/07/02 21:56:59 | 000,043,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2012/07/02 21:56:59 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2012/07/02 21:56:57 | 001,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2012/07/02 21:56:57 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2012/07/02 21:56:57 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2012/07/02 21:56:57 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2012/07/02 21:56:57 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2012/07/02 21:56:56 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2012/07/02 21:56:55 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2012/07/02 21:56:55 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2012/07/02 21:56:55 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2012/07/02 21:56:54 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
[2012/07/02 21:56:54 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2012/07/02 21:56:54 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2012/07/02 21:56:54 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2012/07/02 21:56:54 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2012/07/02 21:56:53 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2012/07/02 21:56:52 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2012/07/02 21:56:52 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2012/07/02 21:56:52 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2012/07/02 21:56:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2012/07/02 21:56:51 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2012/07/02 21:56:51 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2012/07/02 21:56:51 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2012/07/02 21:56:51 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2012/07/02 21:56:51 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2012/07/02 21:56:51 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2012/07/02 21:56:50 | 000,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2012/07/02 21:56:50 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2012/07/02 21:56:50 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll
[2012/07/02 21:56:50 | 000,323,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2012/07/02 21:56:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2012/07/02 21:56:50 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2012/07/02 21:56:50 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2012/07/02 21:56:50 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2012/07/02 21:56:50 | 000,041,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2012/07/02 21:56:49 | 000,102,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2012/07/02 21:56:48 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2012/07/02 21:56:48 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2012/07/02 21:56:47 | 000,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2012/07/02 21:56:44 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2012/07/02 21:56:40 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2012/07/02 21:56:40 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2012/07/02 21:56:36 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2012/07/02 21:56:35 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2012/07/02 21:56:35 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2012/07/02 21:56:35 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2012/07/02 21:56:35 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2012/07/02 21:56:35 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2012/07/02 21:56:35 | 000,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2012/07/02 21:56:34 | 002,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/07/02 21:56:34 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2012/07/02 21:56:34 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/07/02 21:56:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2012/07/02 21:56:33 | 001,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2012/07/02 21:56:33 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2012/07/02 21:56:33 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2012/07/02 21:56:33 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2012/07/02 21:56:32 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2012/07/02 21:56:32 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2012/07/02 21:56:32 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2012/07/02 21:56:32 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2012/07/02 21:56:31 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2012/07/02 21:56:31 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2012/07/02 21:56:31 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2012/07/02 21:56:31 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2012/07/02 21:56:30 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2012/07/02 21:56:30 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2012/07/02 21:56:30 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2012/07/02 21:56:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2012/07/02 21:56:29 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2012/07/02 21:56:28 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2012/07/02 21:56:28 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2012/07/02 21:56:27 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe
[2012/07/02 21:56:27 | 000,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll
[2012/07/02 21:56:27 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2012/07/02 21:56:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2012/07/02 21:56:27 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2012/07/02 21:56:27 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2012/07/02 21:56:27 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2012/07/02 21:56:27 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2012/07/02 21:56:27 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2012/07/02 21:56:26 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2012/07/02 21:56:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2012/07/02 21:56:25 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2012/07/02 21:56:25 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2012/07/02 21:56:25 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2012/07/02 21:56:25 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2012/07/02 21:56:25 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2012/07/02 21:56:25 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2012/07/02 21:56:25 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2012/07/02 21:56:25 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2012/07/02 21:56:25 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2012/07/02 21:56:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2012/07/02 21:56:25 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2012/07/02 21:56:24 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2012/07/02 21:56:23 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2012/07/02 21:56:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2012/07/02 21:56:22 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll
[2012/07/02 21:56:22 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2012/07/02 21:56:21 | 001,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2012/07/02 21:56:21 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2012/07/02 21:56:21 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2012/07/02 21:56:21 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2012/07/02 21:56:21 | 000,109,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2012/07/02 21:56:21 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2012/07/02 21:56:21 | 000,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2012/07/02 21:56:21 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2012/07/02 21:56:20 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2012/07/02 21:56:20 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2012/07/02 21:56:19 | 001,216,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2012/07/02 21:56:19 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2012/07/02 21:56:18 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll
[2012/07/02 21:56:17 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2012/07/02 21:56:17 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2012/07/02 21:56:17 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2012/07/02 21:56:17 | 000,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2012/07/02 21:56:17 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2012/07/02 21:56:17 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2012/07/02 21:56:16 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2012/07/02 21:56:14 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2012/07/02 21:56:14 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2012/07/02 21:56:13 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2012/07/02 21:56:12 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2012/07/02 21:56:12 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2012/07/02 21:56:12 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2012/07/02 21:56:12 | 000,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2012/07/02 21:56:11 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2012/07/02 21:56:11 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2012/07/02 21:56:10 | 001,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2012/07/02 21:56:10 | 001,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2012/07/02 21:56:10 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2012/07/02 21:56:10 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2012/07/02 21:56:10 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2012/07/02 21:56:10 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2012/07/02 21:56:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2012/07/02 21:56:09 | 001,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2012/07/02 21:56:09 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2012/07/02 21:56:09 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2012/07/02 21:56:08 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2012/07/02 21:56:08 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2012/07/02 21:56:08 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2012/07/02 21:56:08 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2012/07/02 21:56:07 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2012/07/02 21:56:07 | 000,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2012/07/02 21:56:07 | 000,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2012/07/02 21:56:07 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2012/07/02 21:56:07 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2012/07/02 21:56:07 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2012/07/02 21:56:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2012/07/02 21:56:06 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2012/07/02 21:56:06 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2012/07/02 21:56:05 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2012/07/02 21:56:05 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2012/07/02 21:56:05 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2012/07/02 21:56:05 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2012/07/02 21:56:05 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2012/07/02 21:56:05 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2012/07/02 21:56:05 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2012/07/02 21:56:02 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2012/07/02 21:56:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2012/07/02 21:56:01 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2012/07/02 21:56:00 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2012/07/02 21:55:59 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2012/07/02 21:55:59 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2012/07/02 21:55:59 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2012/07/02 21:55:58 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2012/07/02 21:55:58 | 000,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2012/07/02 21:55:58 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2012/07/02 21:55:57 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2012/07/02 21:55:57 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2012/07/02 21:55:56 | 001,086,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2012/07/02 21:55:56 | 000,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2012/07/02 21:55:56 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/07/02 21:55:55 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2012/07/02 21:55:55 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2012/07/02 21:55:54 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2012/07/02 21:55:54 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2012/07/02 21:55:53 | 003,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2012/07/02 21:55:53 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2012/07/02 21:55:53 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2012/07/02 21:55:52 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2012/07/02 21:55:52 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2012/07/02 21:55:51 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2012/07/02 21:55:51 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2012/07/02 21:55:51 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL
[2012/07/02 21:55:51 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2012/07/02 21:55:51 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2012/07/02 21:55:51 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2012/07/02 21:55:51 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2012/07/02 21:55:51 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2012/07/02 21:55:51 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2012/07/02 21:55:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2012/07/02 21:55:51 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2012/07/02 21:55:51 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2012/07/02 21:55:51 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2012/07/02 21:55:50 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2012/07/02 21:55:50 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2012/07/02 21:55:50 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2012/07/02 21:55:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2012/07/02 21:55:49 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2012/07/02 21:55:49 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2012/07/02 21:55:49 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2012/07/02 21:55:49 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2012/07/02 21:55:49 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2012/07/02 21:55:49 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2012/07/02 21:55:49 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2012/07/02 21:55:49 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2012/07/02 21:55:49 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2012/07/02 21:55:48 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2012/07/02 21:55:47 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2012/07/02 21:55:47 | 000,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2012/07/02 21:55:45 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2012/07/02 21:55:45 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2012/07/02 21:55:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2012/07/02 21:55:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2012/07/02 21:55:41 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2012/07/02 21:55:40 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2012/07/02 21:55:40 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2012/07/02 21:55:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2012/07/02 21:55:39 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2012/07/02 21:55:38 | 000,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2012/07/02 21:55:38 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2012/07/02 21:55:38 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2012/07/02 21:55:38 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2012/07/02 21:55:38 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2012/07/02 21:55:38 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2012/07/02 21:55:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2012/07/02 21:55:38 | 000,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2012/07/02 21:55:37 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2012/07/02 21:55:37 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2012/07/02 21:55:37 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2012/07/02 21:55:37 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2012/07/02 21:55:37 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2012/07/02 21:55:31 | 002,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
[2012/07/02 21:55:30 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2012/07/02 21:55:29 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2012/07/02 21:55:29 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2012/07/02 21:55:28 | 002,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2012/07/02 21:55:28 | 001,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2012/07/02 21:55:27 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2012/07/02 21:55:27 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2012/07/02 21:55:27 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2012/07/02 21:55:25 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2012/07/02 21:55:25 | 000,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2012/07/02 21:55:25 | 000,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2012/07/02 21:55:25 | 000,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2012/07/02 21:55:24 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2012/07/02 21:55:24 | 000,852,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2012/07/02 21:55:24 | 000,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2012/07/02 21:55:24 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2012/07/02 21:55:24 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2012/07/02 21:55:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2012/07/02 21:55:21 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2012/07/02 21:55:21 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2012/07/02 21:55:20 | 001,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe
[2012/07/02 21:55:20 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2012/07/02 21:55:19 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2012/07/02 21:55:19 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2012/07/02 21:55:17 | 001,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
[2012/07/02 21:55:17 | 000,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2012/07/02 21:55:17 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2012/07/02 21:55:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2012/07/02 21:55:16 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2012/07/02 21:55:16 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2012/07/02 21:55:13 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2012/07/02 21:55:13 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2012/07/02 21:55:12 | 000,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2012/07/02 21:55:12 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2012/07/02 21:55:12 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2012/07/02 21:55:11 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2012/07/02 21:55:11 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2012/07/02 21:55:07 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2012/07/02 21:55:06 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2012/07/02 21:55:05 | 000,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll
[2012/07/02 21:55:04 | 001,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2012/07/02 21:54:54 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2012/07/02 21:54:54 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2012/07/02 21:54:54 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2012/07/02 21:54:54 | 000,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2012/07/02 21:54:54 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll
[2012/07/02 21:54:54 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
[2012/07/02 21:54:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2012/07/02 21:54:54 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2012/07/02 21:54:54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2012/07/02 21:54:54 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2012/07/02 21:54:53 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2012/07/02 21:54:53 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2012/07/02 21:54:53 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2012/07/02 21:54:53 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2012/07/02 21:54:53 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2012/07/02 21:54:52 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2012/07/02 21:54:52 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2012/07/02 21:54:52 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2012/07/02 21:54:52 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[ |
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Thu Jul 05, 2012 3:12 pm Post subject: |
|
|
Here are my OTL and Systemlook files.
OTL logfile created on: 7/5/2012 5:15:25 PM - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Dad\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.43 Gb Available Physical Memory | 71.63% Memory free
4.24 Gb Paging File | 3.23 Gb Available in Paging File | 76.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 76.68 Gb Total Space | 32.46 Gb Free Space | 42.33% Space Free | Partition Type: NTFS
Computer Name: NEW-LIVINGROOM | User Name: Dad | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/07/05 17:07:25 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Dad\Desktop\OTL.exe
PRC - [2012/06/26 12:33:03 | 003,906,432 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/02 00:31:38 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/04/24 02:11:59 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2009/04/10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
========== Modules (No Company Name) ==========
MOD - [2012/07/05 16:39:32 | 000,065,024 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/07/05 16:39:32 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/06/30 22:23:12 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/06/30 22:23:12 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2009/07/10 09:07:18 | 000,166,912 | ---- | M] () -- C:\Windows\System32\APOMngr.DLL
MOD - [2009/02/06 18:52:24 | 000,073,728 | ---- | M] () -- C:\Windows\System32\CmdRtr.DLL
MOD - [2007/06/27 01:51:00 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
========== Win32 Services (SafeList) ==========
SRV - [2012/07/01 19:26:39 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2012/06/14 17:20:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2008/01/18 23:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2012/04/27 10:20:04 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/04/25 00:32:27 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012/04/16 21:18:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011/07/22 11:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 16:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/06/23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010/06/17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009/08/24 22:13:59 | 001,166,336 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\P17.sys -- (P17)
DRV - [2007/06/27 02:00:42 | 002,770,432 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007/06/27 02:00:42 | 002,770,432 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EB 8C 18 A8 23 57 CD 01 [binary data]
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes,DefaultScope = {F640B77D-120E-4A20-90F7-89E1BE5E31DF}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes\{F640B77D-120E-4A20-90F7-89E1BE5E31DF}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/|http://www.ebay.com/|https://www.gatecitybank.com/home/home"
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/07/02 23:38:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012/07/02 23:38:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Extensions
[2012/07/03 23:40:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\a4fiz7fl.default\extensions
[2012/07/02 23:38:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/14 17:20:49 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/04 16:57:03 | 000,002,351 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/06/14 17:19:40 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/06/14 17:19:40 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
O1 HOSTS File: ([2012/07/01 08:28:25 | 000,442,859 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15217 more lines...
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [P17RunE] C:\Windows\System32\P17RunE.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.5.0.cab (SysInfo Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E09BD9B-5071-42CA-BD8E-DA9984F1DA17}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2012/07/05 17:07:21 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Dad\Desktop\OTL.exe
[2012/07/04 16:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/07/04 16:56:47 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Babylon
[2012/07/04 16:42:43 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2012/07/04 16:42:40 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Real
[2012/07/04 16:40:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/07/04 16:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2012/07/04 15:42:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\ATI
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\ATI
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012/07/04 14:43:57 | 000,000,000 | ---D | C] -- C:\Users\Dad\{e87fa0a6-a3ee-4c6f-954c-0fb60d44c5b5}
[2012/07/04 00:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2012/07/04 00:18:17 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012/07/04 00:13:12 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012/07/04 00:13:07 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/07/03 19:32:35 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2012/07/03 19:20:40 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2012/07/03 19:20:39 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2012/07/03 19:20:39 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2012/07/03 19:19:45 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2012/07/03 19:19:43 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2012/07/03 19:19:43 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2012/07/03 19:19:43 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2012/07/03 19:19:43 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2012/07/03 19:19:42 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2012/07/03 19:19:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2012/07/03 19:19:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2012/07/03 19:19:01 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2012/07/03 19:18:57 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2012/07/03 19:18:57 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2012/07/03 19:18:57 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2012/07/03 19:18:57 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2012/07/03 19:18:57 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2012/07/03 19:18:57 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2012/07/03 19:02:09 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2012/07/03 19:02:09 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2012/07/03 19:02:09 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2012/07/03 19:02:07 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/07/03 19:02:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/07/03 19:01:49 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2012/07/03 19:01:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2012/07/03 19:01:48 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2012/07/03 19:01:48 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2012/07/03 19:01:47 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2012/07/03 19:01:47 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2012/07/03 19:01:47 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/07/03 19:01:46 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/07/03 19:01:46 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2012/07/03 19:01:46 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2012/07/03 19:01:46 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2012/07/03 19:01:44 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2012/07/03 19:01:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2012/07/03 19:01:35 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/07/03 19:01:35 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/07/03 19:01:35 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/07/03 19:01:34 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2012/07/03 19:01:34 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/07/03 19:01:34 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2012/07/03 19:01:34 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2012/07/03 19:01:34 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/07/03 19:01:34 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2012/07/03 19:01:33 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2012/07/03 19:01:33 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2012/07/03 19:01:21 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2012/07/03 19:01:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2012/07/03 19:01:19 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2012/07/03 19:00:54 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2012/07/03 19:00:36 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2012/07/03 19:00:36 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2012/07/03 19:00:20 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2012/07/03 19:00:00 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2012/07/03 18:59:53 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2012/07/03 18:59:53 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2012/07/03 18:59:49 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2012/07/03 18:59:45 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2012/07/03 18:59:44 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2012/07/03 18:59:44 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2012/07/03 18:59:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2012/07/03 18:59:36 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2012/07/03 18:59:36 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2012/07/03 18:59:36 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2012/07/03 18:59:35 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/07/03 18:59:35 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/07/03 18:59:28 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012/07/03 18:59:28 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012/07/03 18:59:28 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012/07/03 18:59:27 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2012/07/03 18:59:22 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2012/07/03 18:59:16 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2012/07/03 18:59:16 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2012/07/03 18:59:11 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2012/07/03 18:59:06 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2012/07/03 18:59:03 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2012/07/03 18:58:59 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2012/07/03 18:58:58 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2012/07/03 18:58:56 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2012/07/03 18:58:55 | 002,045,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/07/03 18:58:51 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2012/07/03 18:58:50 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2012/07/03 18:58:48 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/07/03 18:58:39 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/07/03 18:58:38 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/07/03 16:45:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2012/07/03 16:44:45 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2012/07/03 16:44:45 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2012/07/03 16:44:45 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2012/07/03 16:44:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2012/07/03 16:44:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2012/07/03 16:44:42 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2012/07/03 16:44:42 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2012/07/03 16:44:42 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2012/07/03 16:44:42 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2012/07/03 16:44:41 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2012/07/03 16:44:37 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2012/07/03 16:44:37 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2012/07/03 16:44:37 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2012/07/03 16:44:34 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2012/07/03 16:44:34 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2012/07/03 16:43:27 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/07/03 16:43:27 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/07/03 16:43:27 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2012/07/03 16:43:27 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/07/03 16:43:27 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2012/07/03 16:43:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2012/07/03 16:43:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2012/07/03 16:43:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2012/07/03 16:43:26 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/07/03 16:43:24 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2012/07/03 16:43:24 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/07/03 16:43:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2012/07/03 16:43:24 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/07/03 16:43:23 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2012/07/03 16:43:23 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2012/07/03 16:43:23 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/07/03 16:43:21 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2012/07/03 16:43:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2012/07/03 16:41:26 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2012/07/03 16:09:59 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012/07/03 16:09:58 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012/07/03 16:09:22 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012/07/03 16:09:22 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012/07/03 16:09:22 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012/07/03 16:09:09 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012/07/03 16:09:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012/07/02 23:57:56 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Macromedia
[2012/07/02 23:38:17 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Mozilla
[2012/07/02 23:38:17 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Mozilla
[2012/07/02 23:38:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/02 23:38:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/02 23:38:09 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/07/02 22:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2012/07/02 22:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2012/07/02 22:16:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2012/07/02 22:14:33 | 000,000,000 | ---D | C] -- C:\Windows\System32\SPReview
[2012/07/02 21:57:46 | 000,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll
[2012/07/02 21:57:37 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe
[2012/07/02 21:57:04 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2012/07/02 21:57:03 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2012/07/02 21:57:02 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2012/07/02 21:57:02 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2012/07/02 21:57:02 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2012/07/02 21:57:02 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2012/07/02 21:57:01 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2012/07/02 21:57:01 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2012/07/02 21:56:59 | 001,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2012/07/02 21:56:59 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2012/07/02 21:56:59 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2012/07/02 21:56:59 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2012/07/02 21:56:59 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2012/07/02 21:56:59 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2012/07/02 21:56:59 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2012/07/02 21:56:59 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2012/07/02 21:56:59 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2012/07/02 21:56:59 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2012/07/02 21:56:59 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2012/07/02 21:56:59 | 000,043,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2012/07/02 21:56:59 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2012/07/02 21:56:57 | 001,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2012/07/02 21:56:57 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2012/07/02 21:56:57 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2012/07/02 21:56:57 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2012/07/02 21:56:57 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2012/07/02 21:56:56 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2012/07/02 21:56:55 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2012/07/02 21:56:55 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2012/07/02 21:56:55 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2012/07/02 21:56:54 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
[2012/07/02 21:56:54 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2012/07/02 21:56:54 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2012/07/02 21:56:54 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2012/07/02 21:56:54 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2012/07/02 21:56:53 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2012/07/02 21:56:52 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2012/07/02 21:56:52 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2012/07/02 21:56:52 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2012/07/02 21:56:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2012/07/02 21:56:51 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2012/07/02 21:56:51 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2012/07/02 21:56:51 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2012/07/02 21:56:51 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2012/07/02 21:56:51 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2012/07/02 21:56:51 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2012/07/02 21:56:50 | 000,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2012/07/02 21:56:50 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2012/07/02 21:56:50 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll
[2012/07/02 21:56:50 | 000,323,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2012/07/02 21:56:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2012/07/02 21:56:50 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2012/07/02 21:56:50 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2012/07/02 21:56:50 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2012/07/02 21:56:50 | 000,041,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2012/07/02 21:56:49 | 000,102,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2012/07/02 21:56:48 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2012/07/02 21:56:48 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2012/07/02 21:56:47 | 000,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2012/07/02 21:56:44 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2012/07/02 21:56:40 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2012/07/02 21:56:40 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2012/07/02 21:56:36 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2012/07/02 21:56:35 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2012/07/02 21:56:35 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2012/07/02 21:56:35 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2012/07/02 21:56:35 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2012/07/02 21:56:35 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2012/07/02 21:56:35 | 000,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2012/07/02 21:56:34 | 002,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/07/02 21:56:34 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2012/07/02 21:56:34 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/07/02 21:56:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2012/07/02 21:56:33 | 001,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2012/07/02 21:56:33 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2012/07/02 21:56:33 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2012/07/02 21:56:33 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2012/07/02 21:56:32 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2012/07/02 21:56:32 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2012/07/02 21:56:32 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2012/07/02 21:56:32 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2012/07/02 21:56:31 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2012/07/02 21:56:31 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2012/07/02 21:56:31 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2012/07/02 21:56:31 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2012/07/02 21:56:30 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2012/07/02 21:56:30 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2012/07/02 21:56:30 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2012/07/02 21:56:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2012/07/02 21:56:29 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2012/07/02 21:56:28 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2012/07/02 21:56:28 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2012/07/02 21:56:27 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe
[2012/07/02 21:56:27 | 000,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll
[2012/07/02 21:56:27 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2012/07/02 21:56:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2012/07/02 21:56:27 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2012/07/02 21:56:27 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2012/07/02 21:56:27 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2012/07/02 21:56:27 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2012/07/02 21:56:27 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2012/07/02 21:56:26 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2012/07/02 21:56:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2012/07/02 21:56:25 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2012/07/02 21:56:25 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2012/07/02 21:56:25 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2012/07/02 21:56:25 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2012/07/02 21:56:25 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2012/07/02 21:56:25 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2012/07/02 21:56:25 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2012/07/02 21:56:25 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2012/07/02 21:56:25 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2012/07/02 21:56:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2012/07/02 21:56:25 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2012/07/02 21:56:24 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2012/07/02 21:56:23 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2012/07/02 21:56:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2012/07/02 21:56:22 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll
[2012/07/02 21:56:22 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2012/07/02 21:56:21 | 001,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2012/07/02 21:56:21 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2012/07/02 21:56:21 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2012/07/02 21:56:21 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2012/07/02 21:56:21 | 000,109,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2012/07/02 21:56:21 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2012/07/02 21:56:21 | 000,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2012/07/02 21:56:21 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2012/07/02 21:56:20 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2012/07/02 21:56:20 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2012/07/02 21:56:19 | 001,216,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2012/07/02 21:56:19 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2012/07/02 21:56:18 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll
[2012/07/02 21:56:17 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2012/07/02 21:56:17 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2012/07/02 21:56:17 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2012/07/02 21:56:17 | 000,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2012/07/02 21:56:17 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2012/07/02 21:56:17 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2012/07/02 21:56:16 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2012/07/02 21:56:14 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2012/07/02 21:56:14 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2012/07/02 21:56:13 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2012/07/02 21:56:12 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2012/07/02 21:56:12 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2012/07/02 21:56:12 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2012/07/02 21:56:12 | 000,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2012/07/02 21:56:11 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2012/07/02 21:56:11 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2012/07/02 21:56:10 | 001,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2012/07/02 21:56:10 | 001,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2012/07/02 21:56:10 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2012/07/02 21:56:10 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2012/07/02 21:56:10 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2012/07/02 21:56:10 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2012/07/02 21:56:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2012/07/02 21:56:09 | 001,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2012/07/02 21:56:09 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2012/07/02 21:56:09 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2012/07/02 21:56:08 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2012/07/02 21:56:08 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2012/07/02 21:56:08 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2012/07/02 21:56:08 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2012/07/02 21:56:07 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2012/07/02 21:56:07 | 000,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2012/07/02 21:56:07 | 000,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2012/07/02 21:56:07 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2012/07/02 21:56:07 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2012/07/02 21:56:07 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2012/07/02 21:56:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2012/07/02 21:56:06 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2012/07/02 21:56:06 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2012/07/02 21:56:05 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2012/07/02 21:56:05 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2012/07/02 21:56:05 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2012/07/02 21:56:05 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2012/07/02 21:56:05 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2012/07/02 21:56:05 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2012/07/02 21:56:05 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2012/07/02 21:56:02 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2012/07/02 21:56:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2012/07/02 21:56:01 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2012/07/02 21:56:00 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2012/07/02 21:55:59 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2012/07/02 21:55:59 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2012/07/02 21:55:59 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2012/07/02 21:55:58 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2012/07/02 21:55:58 | 000,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2012/07/02 21:55:58 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2012/07/02 21:55:57 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2012/07/02 21:55:57 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2012/07/02 21:55:56 | 001,086,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2012/07/02 21:55:56 | 000,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2012/07/02 21:55:56 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/07/02 21:55:55 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2012/07/02 21:55:55 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2012/07/02 21:55:54 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2012/07/02 21:55:54 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2012/07/02 21:55:53 | 003,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2012/07/02 21:55:53 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2012/07/02 21:55:53 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2012/07/02 21:55:52 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2012/07/02 21:55:52 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2012/07/02 21:55:51 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2012/07/02 21:55:51 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2012/07/02 21:55:51 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL
[2012/07/02 21:55:51 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2012/07/02 21:55:51 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2012/07/02 21:55:51 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2012/07/02 21:55:51 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2012/07/02 21:55:51 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2012/07/02 21:55:51 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2012/07/02 21:55:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2012/07/02 21:55:51 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2012/07/02 21:55:51 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2012/07/02 21:55:51 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2012/07/02 21:55:50 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2012/07/02 21:55:50 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2012/07/02 21:55:50 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2012/07/02 21:55:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2012/07/02 21:55:49 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2012/07/02 21:55:49 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2012/07/02 21:55:49 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2012/07/02 21:55:49 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2012/07/02 21:55:49 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2012/07/02 21:55:49 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2012/07/02 21:55:49 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2012/07/02 21:55:49 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2012/07/02 21:55:49 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2012/07/02 21:55:48 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2012/07/02 21:55:47 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2012/07/02 21:55:47 | 000,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2012/07/02 21:55:45 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2012/07/02 21:55:45 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2012/07/02 21:55:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2012/07/02 21:55:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2012/07/02 21:55:41 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2012/07/02 21:55:40 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2012/07/02 21:55:40 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2012/07/02 21:55:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2012/07/02 21:55:39 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2012/07/02 21:55:38 | 000,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2012/07/02 21:55:38 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2012/07/02 21:55:38 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2012/07/02 21:55:38 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2012/07/02 21:55:38 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2012/07/02 21:55:38 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2012/07/02 21:55:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2012/07/02 21:55:38 | 000,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2012/07/02 21:55:37 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2012/07/02 21:55:37 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2012/07/02 21:55:37 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2012/07/02 21:55:37 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2012/07/02 21:55:37 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2012/07/02 21:55:31 | 002,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
[2012/07/02 21:55:30 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2012/07/02 21:55:29 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2012/07/02 21:55:29 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2012/07/02 21:55:28 | 002,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2012/07/02 21:55:28 | 001,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2012/07/02 21:55:27 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2012/07/02 21:55:27 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2012/07/02 21:55:27 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2012/07/02 21:55:25 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2012/07/02 21:55:25 | 000,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2012/07/02 21:55:25 | 000,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2012/07/02 21:55:25 | 000,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2012/07/02 21:55:24 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2012/07/02 21:55:24 | 000,852,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2012/07/02 21:55:24 | 000,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2012/07/02 21:55:24 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2012/07/02 21:55:24 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2012/07/02 21:55:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2012/07/02 21:55:21 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2012/07/02 21:55:21 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2012/07/02 21:55:20 | 001,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe
[2012/07/02 21:55:20 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2012/07/02 21:55:19 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2012/07/02 21:55:19 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2012/07/02 21:55:17 | 001,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
[2012/07/02 21:55:17 | 000,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2012/07/02 21:55:17 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2012/07/02 21:55:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2012/07/02 21:55:16 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2012/07/02 21:55:16 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2012/07/02 21:55:13 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2012/07/02 21:55:13 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2012/07/02 21:55:12 | 000,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2012/07/02 21:55:12 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2012/07/02 21:55:12 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2012/07/02 21:55:11 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2012/07/02 21:55:11 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2012/07/02 21:55:07 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2012/07/02 21:55:06 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2012/07/02 21:55:05 | 000,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll
[2012/07/02 21:55:04 | 001,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2012/07/02 21:54:54 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2012/07/02 21:54:54 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2012/07/02 21:54:54 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2012/07/02 21:54:54 | 000,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2012/07/02 21:54:54 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll
[2012/07/02 21:54:54 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
[2012/07/02 21:54:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2012/07/02 21:54:54 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2012/07/02 21:54:54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2012/07/02 21:54:54 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2012/07/02 21:54:53 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2012/07/02 21:54:53 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2012/07/02 21:54:53 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2012/07/02 21:54:53 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2012/07/02 21:54:53 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2012/07/02 21:54:52 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2012/07/02 21:54:52 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2012/07/02 21:54:52 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2012/07/02 21:54:52 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[ |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Fri Jul 06, 2012 1:37 am Post subject: |
|
|
Hi Wescomd,
The logs you posted are incomplete, they are being cut off by the forum post limiter due to their size.
I need you to post them again please, this time split them up into separate posts if needed to fit them in.
Thank you.
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Fri Jul 06, 2012 6:34 pm Post subject: babylon |
|
|
Here is my 2nd try for uploading files.
OTL logfile created on: 7/5/2012 5:15:25 PM - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Dad\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.43 Gb Available Physical Memory | 71.63% Memory free
4.24 Gb Paging File | 3.23 Gb Available in Paging File | 76.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 76.68 Gb Total Space | 32.46 Gb Free Space | 42.33% Space Free | Partition Type: NTFS
Computer Name: NEW-LIVINGROOM | User Name: Dad | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/07/05 17:07:25 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Dad\Desktop\OTL.exe
PRC - [2012/06/26 12:33:03 | 003,906,432 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/02 00:31:38 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/04/24 02:11:59 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2009/04/10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
========== Modules (No Company Name) ==========
MOD - [2012/07/05 16:39:32 | 000,065,024 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/07/05 16:39:32 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/06/30 22:23:12 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/06/30 22:23:12 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2009/07/10 09:07:18 | 000,166,912 | ---- | M] () -- C:\Windows\System32\APOMngr.DLL
MOD - [2009/02/06 18:52:24 | 000,073,728 | ---- | M] () -- C:\Windows\System32\CmdRtr.DLL
MOD - [2007/06/27 01:51:00 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
========== Win32 Services (SafeList) ==========
SRV - [2012/07/01 19:26:39 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2012/06/14 17:20:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/08/11 18:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2008/01/18 23:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2012/04/27 10:20:04 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/04/25 00:32:27 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012/04/16 21:18:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011/07/22 11:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 16:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/06/23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010/06/17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009/08/24 22:13:59 | 001,166,336 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\P17.sys -- (P17)
DRV - [2007/06/27 02:00:42 | 002,770,432 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007/06/27 02:00:42 | 002,770,432 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EB 8C 18 A8 23 57 CD 01 [binary data]
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes,DefaultScope = {F640B77D-120E-4A20-90F7-89E1BE5E31DF}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\..\SearchScopes\{F640B77D-120E-4A20-90F7-89E1BE5E31DF}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/|http://www.ebay.com/|https://www.gatecitybank.com/home/home"
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/07/02 23:38:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012/07/02 23:38:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Extensions
[2012/07/03 23:40:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\a4fiz7fl.default\extensions
[2012/07/02 23:38:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/14 17:20:49 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/04 16:57:03 | 000,002,351 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/06/14 17:19:40 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/06/14 17:19:40 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
O1 HOSTS File: ([2012/07/01 08:28:25 | 000,442,859 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15217 more lines...
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [P17RunE] C:\Windows\System32\P17RunE.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1104869137-3376993672-1900871839-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.5.0.cab (SysInfo Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E09BD9B-5071-42CA-BD8E-DA9984F1DA17}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2012/07/05 17:07:21 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Dad\Desktop\OTL.exe
[2012/07/04 16:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/07/04 16:56:47 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Babylon
[2012/07/04 16:42:43 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2012/07/04 16:42:40 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Real
[2012/07/04 16:40:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/07/04 16:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2012/07/04 15:42:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\ATI
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\ATI
[2012/07/04 14:48:50 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012/07/04 14:43:57 | 000,000,000 | ---D | C] -- C:\Users\Dad\{e87fa0a6-a3ee-4c6f-954c-0fb60d44c5b5}
[2012/07/04 00:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2012/07/04 00:18:17 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012/07/04 00:13:12 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012/07/04 00:13:07 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/07/03 19:32:35 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2012/07/03 19:20:40 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2012/07/03 19:20:39 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2012/07/03 19:20:39 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2012/07/03 19:19:45 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2012/07/03 19:19:43 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2012/07/03 19:19:43 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2012/07/03 19:19:43 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2012/07/03 19:19:43 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2012/07/03 19:19:42 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2012/07/03 19:19:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2012/07/03 19:19:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2012/07/03 19:19:01 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2012/07/03 19:18:57 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2012/07/03 19:18:57 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2012/07/03 19:18:57 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2012/07/03 19:18:57 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2012/07/03 19:18:57 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2012/07/03 19:18:57 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2012/07/03 19:02:09 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2012/07/03 19:02:09 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2012/07/03 19:02:09 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2012/07/03 19:02:07 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/07/03 19:02:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/07/03 19:01:49 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2012/07/03 19:01:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2012/07/03 19:01:48 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2012/07/03 19:01:48 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2012/07/03 19:01:47 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2012/07/03 19:01:47 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2012/07/03 19:01:47 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/07/03 19:01:46 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/07/03 19:01:46 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2012/07/03 19:01:46 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2012/07/03 19:01:46 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2012/07/03 19:01:44 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2012/07/03 19:01:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2012/07/03 19:01:35 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/07/03 19:01:35 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/07/03 19:01:35 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/07/03 19:01:34 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2012/07/03 19:01:34 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/07/03 19:01:34 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2012/07/03 19:01:34 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2012/07/03 19:01:34 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/07/03 19:01:34 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2012/07/03 19:01:33 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2012/07/03 19:01:33 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2012/07/03 19:01:21 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2012/07/03 19:01:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2012/07/03 19:01:19 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2012/07/03 19:00:54 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2012/07/03 19:00:36 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2012/07/03 19:00:36 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2012/07/03 19:00:20 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2012/07/03 19:00:00 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2012/07/03 18:59:53 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2012/07/03 18:59:53 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2012/07/03 18:59:49 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2012/07/03 18:59:45 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2012/07/03 18:59:44 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2012/07/03 18:59:44 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2012/07/03 18:59:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2012/07/03 18:59:36 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2012/07/03 18:59:36 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2012/07/03 18:59:36 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2012/07/03 18:59:35 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/07/03 18:59:35 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/07/03 18:59:28 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012/07/03 18:59:28 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012/07/03 18:59:28 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012/07/03 18:59:27 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2012/07/03 18:59:22 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2012/07/03 18:59:16 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2012/07/03 18:59:16 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2012/07/03 18:59:11 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2012/07/03 18:59:06 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2012/07/03 18:59:03 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2012/07/03 18:58:59 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2012/07/03 18:58:58 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2012/07/03 18:58:56 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2012/07/03 18:58:55 | 002,045,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/07/03 18:58:51 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2012/07/03 18:58:50 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2012/07/03 18:58:48 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/07/03 18:58:39 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/07/03 18:58:38 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/07/03 16:45:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2012/07/03 16:44:45 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2012/07/03 16:44:45 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2012/07/03 16:44:45 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2012/07/03 16:44:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2012/07/03 16:44:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2012/07/03 16:44:42 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2012/07/03 16:44:42 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2012/07/03 16:44:42 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2012/07/03 16:44:42 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2012/07/03 16:44:41 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2012/07/03 16:44:37 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2012/07/03 16:44:37 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2012/07/03 16:44:37 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2012/07/03 16:44:34 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2012/07/03 16:44:34 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2012/07/03 16:43:27 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/07/03 16:43:27 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/07/03 16:43:27 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2012/07/03 16:43:27 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/07/03 16:43:27 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2012/07/03 16:43:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2012/07/03 16:43:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2012/07/03 16:43:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2012/07/03 16:43:26 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/07/03 16:43:24 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2012/07/03 16:43:24 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/07/03 16:43:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2012/07/03 16:43:24 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/07/03 16:43:23 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2012/07/03 16:43:23 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2012/07/03 16:43:23 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/07/03 16:43:21 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2012/07/03 16:43:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2012/07/03 16:41:26 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2012/07/03 16:09:59 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012/07/03 16:09:58 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012/07/03 16:09:22 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012/07/03 16:09:22 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012/07/03 16:09:22 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012/07/03 16:09:09 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012/07/03 16:09:09 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012/07/02 23:57:56 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Macromedia
[2012/07/02 23:38:17 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Mozilla
[2012/07/02 23:38:17 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Mozilla
[2012/07/02 23:38:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/02 23:38:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/02 23:38:09 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/07/02 22:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2012/07/02 22:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2012/07/02 22:16:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2012/07/02 22:14:33 | 000,000,000 | ---D | C] -- C:\Windows\System32\SPReview
[2012/07/02 21:57:46 | 000,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll
[2012/07/02 21:57:37 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe
[2012/07/02 21:57:04 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2012/07/02 21:57:03 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2012/07/02 21:57:02 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2012/07/02 21:57:02 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2012/07/02 21:57:02 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2012/07/02 21:57:02 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2012/07/02 21:57:01 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2012/07/02 21:57:01 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2012/07/02 21:56:59 | 001,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2012/07/02 21:56:59 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2012/07/02 21:56:59 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2012/07/02 21:56:59 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2012/07/02 21:56:59 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2012/07/02 21:56:59 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2012/07/02 21:56:59 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2012/07/02 21:56:59 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2012/07/02 21:56:59 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2012/07/02 21:56:59 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2012/07/02 21:56:59 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2012/07/02 21:56:59 | 000,043,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2012/07/02 21:56:59 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2012/07/02 21:56:57 | 001,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2012/07/02 21:56:57 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2012/07/02 21:56:57 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2012/07/02 21:56:57 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2012/07/02 21:56:57 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2012/07/02 21:56:56 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2012/07/02 21:56:55 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2012/07/02 21:56:55 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2012/07/02 21:56:55 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2012/07/02 21:56:54 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
[2012/07/02 21:56:54 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2012/07/02 21:56:54 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2012/07/02 21:56:54 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2012/07/02 21:56:54 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2012/07/02 21:56:53 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2012/07/02 21:56:52 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2012/07/02 21:56:52 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2012/07/02 21:56:52 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2012/07/02 21:56:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2012/07/02 21:56:51 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2012/07/02 21:56:51 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2012/07/02 21:56:51 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2012/07/02 21:56:51 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2012/07/02 21:56:51 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2012/07/02 21:56:51 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2012/07/02 21:56:50 | 000,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2012/07/02 21:56:50 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2012/07/02 21:56:50 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll
[2012/07/02 21:56:50 | 000,323,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2012/07/02 21:56:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2012/07/02 21:56:50 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2012/07/02 21:56:50 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2012/07/02 21:56:50 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2012/07/02 21:56:50 | 000,041,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2012/07/02 21:56:49 | 000,102,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2012/07/02 21:56:48 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2012/07/02 21:56:48 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2012/07/02 21:56:47 | 000,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2012/07/02 21:56:44 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2012/07/02 21:56:40 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2012/07/02 21:56:40 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2012/07/02 21:56:36 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2012/07/02 21:56:35 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2012/07/02 21:56:35 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2012/07/02 21:56:35 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2012/07/02 21:56:35 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2012/07/02 21:56:35 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2012/07/02 21:56:35 | 000,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2012/07/02 21:56:34 | 002,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/07/02 21:56:34 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2012/07/02 21:56:34 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/07/02 21:56:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2012/07/02 21:56:33 | 001,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2012/07/02 21:56:33 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2012/07/02 21:56:33 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2012/07/02 21:56:33 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2012/07/02 21:56:32 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2012/07/02 21:56:32 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2012/07/02 21:56:32 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2012/07/02 21:56:32 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2012/07/02 21:56:31 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2012/07/02 21:56:31 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2012/07/02 21:56:31 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2012/07/02 21:56:31 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2012/07/02 21:56:30 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2012/07/02 21:56:30 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2012/07/02 21:56:30 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2012/07/02 21:56:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2012/07/02 21:56:29 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2012/07/02 21:56:28 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2012/07/02 21:56:28 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2012/07/02 21:56:27 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe
[2012/07/02 21:56:27 | 000,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll
[2012/07/02 21:56:27 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2012/07/02 21:56:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2012/07/02 21:56:27 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2012/07/02 21:56:27 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2012/07/02 21:56:27 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2012/07/02 21:56:27 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2012/07/02 21:56:27 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2012/07/02 21:56:26 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2012/07/02 21:56:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2012/07/02 21:56:25 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2012/07/02 21:56:25 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2012/07/02 21:56:25 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2012/07/02 21:56:25 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2012/07/02 21:56:25 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2012/07/02 21:56:25 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2012/07/02 21:56:25 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2012/07/02 21:56:25 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2012/07/02 21:56:25 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2012/07/02 21:56:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2012/07/02 21:56:25 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2012/07/02 21:56:24 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2012/07/02 21:56:23 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2012/07/02 21:56:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2012/07/02 21:56:22 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll
[2012/07/02 21:56:22 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2012/07/02 21:56:21 | 001,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2012/07/02 21:56:21 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2012/07/02 21:56:21 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2012/07/02 21:56:21 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2012/07/02 21:56:21 | 000,109,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2012/07/02 21:56:21 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2012/07/02 21:56:21 | 000,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2012/07/02 21:56:21 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2012/07/02 21:56:20 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2012/07/02 21:56:20 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2012/07/02 21:56:19 | 001,216,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2012/07/02 21:56:19 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2012/07/02 21:56:18 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll
[2012/07/02 21:56:17 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2012/07/02 21:56:17 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2012/07/02 21:56:17 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2012/07/02 21:56:17 | 000,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2012/07/02 21:56:17 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2012/07/02 21:56:17 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2012/07/02 21:56:16 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2012/07/02 21:56:14 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2012/07/02 21:56:14 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2012/07/02 21:56:13 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2012/07/02 21:56:12 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2012/07/02 21:56:12 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2012/07/02 21:56:12 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2012/07/02 21:56:12 | 000,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2012/07/02 21:56:11 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2012/07/02 21:56:11 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2012/07/02 21:56:10 | 001,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2012/07/02 21:56:10 | 001,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2012/07/02 21:56:10 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2012/07/02 21:56:10 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2012/07/02 21:56:10 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2012/07/02 21:56:10 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2012/07/02 21:56:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2012/07/02 21:56:09 | 001,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2012/07/02 21:56:09 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2012/07/02 21:56:09 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2012/07/02 21:56:08 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2012/07/02 21:56:08 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2012/07/02 21:56:08 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2012/07/02 21:56:08 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2012/07/02 21:56:07 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2012/07/02 21:56:07 | 000,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2012/07/02 21:56:07 | 000,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2012/07/02 21:56:07 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2012/07/02 21:56:07 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2012/07/02 21:56:07 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2012/07/02 21:56:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2012/07/02 21:56:06 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2012/07/02 21:56:06 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2012/07/02 21:56:05 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2012/07/02 21:56:05 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2012/07/02 21:56:05 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2012/07/02 21:56:05 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2012/07/02 21:56:05 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2012/07/02 21:56:05 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2012/07/02 21:56:05 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2012/07/02 21:56:02 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2012/07/02 21:56:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2012/07/02 21:56:01 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2012/07/02 21:56:00 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2012/07/02 21:55:59 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2012/07/02 21:55:59 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2012/07/02 21:55:59 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2012/07/02 21:55:58 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2012/07/02 21:55:58 | 000,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2012/07/02 21:55:58 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2012/07/02 21:55:57 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2012/07/02 21:55:57 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2012/07/02 21:55:56 | 001,086,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2012/07/02 21:55:56 | 000,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2012/07/02 21:55:56 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/07/02 21:55:55 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2012/07/02 21:55:55 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2012/07/02 21:55:54 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2012/07/02 21:55:54 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2012/07/02 21:55:53 | 003,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2012/07/02 21:55:53 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2012/07/02 21:55:53 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2012/07/02 21:55:52 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2012/07/02 21:55:52 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2012/07/02 21:55:51 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2012/07/02 21:55:51 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2012/07/02 21:55:51 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL
[2012/07/02 21:55:51 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2012/07/02 21:55:51 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2012/07/02 21:55:51 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2012/07/02 21:55:51 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2012/07/02 21:55:51 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2012/07/02 21:55:51 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2012/07/02 21:55:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2012/07/02 21:55:51 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2012/07/02 21:55:51 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2012/07/02 21:55:51 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2012/07/02 21:55:50 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2012/07/02 21:55:50 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2012/07/02 21:55:50 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2012/07/02 21:55:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2012/07/02 21:55:49 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2012/07/02 21:55:49 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2012/07/02 21:55:49 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2012/07/02 21:55:49 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2012/07/02 21:55:49 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2012/07/02 21:55:49 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2012/07/02 21:55:49 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2012/07/02 21:55:49 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2012/07/02 21:55:49 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2012/07/02 21:55:48 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2012/07/02 21:55:47 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2012/07/02 21:55:47 | 000,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2012/07/02 21:55:45 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2012/07/02 21:55:45 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2012/07/02 21:55:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2012/07/02 21:55:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2012/07/02 21:55:41 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2012/07/02 21:55:40 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2012/07/02 21:55:40 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2012/07/02 21:55:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2012/07/02 21:55:39 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2012/07/02 21:55:38 | 000,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2012/07/02 21:55:38 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2012/07/02 21:55:38 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2012/07/02 21:55:38 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2012/07/02 21:55:38 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2012/07/02 21:55:38 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2012/07/02 21:55:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2012/07/02 21:55:38 | 000,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2012/07/02 21:55:37 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2012/07/02 21:55:37 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2012/07/02 21:55:37 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2012/07/02 21:55:37 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2012/07/02 21:55:37 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2012/07/02 21:55:31 | 002,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
[2012/07/02 21:55:30 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2012/07/02 21:55:29 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2012/07/02 21:55:29 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2012/07/02 21:55:28 | 002,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2012/07/02 21:55:28 | 001,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2012/07/02 21:55:27 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2012/07/02 21:55:27 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2012/07/02 21:55:27 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2012/07/02 21:55:25 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2012/07/02 21:55:25 | 000,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2012/07/02 21:55:25 | 000,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2012/07/02 21:55:25 | 000,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2012/07/02 21:55:24 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2012/07/02 21:55:24 | 000,852,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2012/07/02 21:55:24 | 000,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2012/07/02 21:55:24 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2012/07/02 21:55:24 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2012/07/02 21:55:23 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2012/07/02 21:55:21 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2012/07/02 21:55:21 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2012/07/02 21:55:20 | 001,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe
[2012/07/02 21:55:20 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2012/07/02 21:55:19 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2012/07/02 21:55:19 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2012/07/02 21:55:17 | 001,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
[2012/07/02 21:55:17 | 000,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2012/07/02 21:55:17 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2012/07/02 21:55:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2012/07/02 21:55:16 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2012/07/02 21:55:16 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2012/07/02 21:55:13 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2012/07/02 21:55:13 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2012/07/02 21:55:12 | 000,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2012/07/02 21:55:12 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2012/07/02 21:55:12 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2012/07/02 21:55:11 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2012/07/02 21:55:11 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2012/07/02 21:55:07 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2012/07/02 21:55:06 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2012/07/02 21:55:05 | 000,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll
[2012/07/02 21:55:04 | 001,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2012/07/02 21:54:54 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2012/07/02 21:54:54 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2012/07/02 21:54:54 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2012/07/02 21:54:54 | 000,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2012/07/02 21:54:54 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll
[2012/07/02 21:54:54 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
[2012/07/02 21:54:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2012/07/02 21:54:54 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2012/07/02 21:54:54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2012/07/02 21:54:54 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2012/07/02 21:54:53 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2012/07/02 21:54:53 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2012/07/02 21:54:53 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2012/07/02 21:54:53 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2012/07/02 21:54:53 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2012/07/02 21:54:52 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2012/07/02 21:54:52 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2012/07/02 21:54:52 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2012/07/02 21:54:52 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Fri Jul 06, 2012 6:36 pm Post subject: Babylon |
|
|
SystemLook 30.07.11 by jpshortstuff
Log created at 17:58 on 05/07/2012 by Dad
Administrator - Elevation successful
========== filefind ==========
Searching for " *babylon*"
No files found.
Searching for " :folderfind"
No files found.
Searching for " *babylon*"
No files found.
Searching for " :Regfind"
No files found.
Searching for " *babylon*"
No files found.
-= EOF =- |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Sat Jul 07, 2012 1:46 am Post subject: |
|
|
Hi Wescomd,
The OTL log you posted is incomplete again, could you post the rest of the log starting at this point please.
| Quote: |
[2012/07/02 21:54:52 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2012/07/02 21:54:52 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2012/07/02 21:54:52 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2012/07/02 21:54:52 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll |
Thank you.
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Sat Jul 07, 2012 8:28 am Post subject: I think I got it now. |
|
|
2012/07/02 21:54:52 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[2012/07/02 21:54:52 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll
[2012/07/02 21:54:52 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2012/07/02 21:54:51 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe
[2012/07/02 21:54:51 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2012/07/02 21:54:51 | 000,986,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2012/07/02 21:54:51 | 000,926,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2012/07/02 21:54:51 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2012/07/02 21:54:50 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2012/07/02 21:54:50 | 000,122,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Storport.sys
[2012/07/02 21:54:50 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll
[2012/07/02 21:54:50 | 000,052,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys
[2012/07/02 21:54:49 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sud.dll
[2012/07/02 21:54:49 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2012/07/02 21:54:49 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2012/07/02 21:54:48 | 002,205,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
[2012/07/02 21:54:48 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll
[2012/07/02 21:54:47 | 000,777,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcc.dll
[2012/07/02 21:54:47 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll
[2012/07/02 21:54:47 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll
[2012/07/02 21:54:47 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2012/07/02 21:54:47 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2012/07/02 21:54:47 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2012/07/02 21:54:47 | 000,083,456 | ---- | C] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll
[2012/07/02 21:54:47 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2012/07/02 21:54:47 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2012/07/02 21:54:46 | 001,081,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCExt.dll
[2012/07/02 21:54:46 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2012/07/02 21:54:46 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll
[2012/07/02 21:54:46 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe
[2012/07/02 21:54:46 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll
[2012/07/02 21:54:46 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2012/07/02 21:54:46 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll
[2012/07/02 21:54:46 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe
[2012/07/02 21:54:46 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2012/07/02 21:54:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll
[2012/07/02 21:54:46 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll
[2012/07/02 21:54:45 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys
[2012/07/02 21:54:45 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe
[2012/07/02 21:54:45 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2012/07/02 21:54:45 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll
[2012/07/02 21:54:45 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2012/07/02 21:54:45 | 000,035,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2012/07/02 21:54:44 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2012/07/02 21:54:44 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscupgrd.exe
[2012/07/02 21:54:44 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys
[2012/07/02 21:54:44 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2012/07/02 21:54:43 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2012/07/02 21:54:43 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2012/07/02 21:54:43 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll
[2012/07/02 21:54:43 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys
[2012/07/02 21:54:41 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime
[2012/07/02 21:54:40 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2012/07/02 21:54:40 | 001,152,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll
[2012/07/02 21:54:40 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2012/07/02 21:54:40 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2012/07/02 21:33:21 | 000,000,000 | ---D | C] -- C:\PerfLogs
[2012/07/02 20:56:15 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\recdisc.exe
[2012/07/02 20:56:11 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdspres.dll
[2012/07/02 20:55:47 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxproxy.dll
[2012/07/02 20:55:13 | 000,464,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2012/07/02 20:55:13 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssha.dll
[2012/07/02 20:55:13 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrdc.dll
[2012/07/02 20:55:10 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mycomput.dll
[2012/07/02 20:55:10 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mystify.scr
[2012/07/02 20:55:10 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPMONTR.DLL
[2012/07/02 20:55:10 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtstocom.exe
[2012/07/02 20:55:10 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPHLPR.DLL
[2012/07/02 20:55:10 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\napdsnap.dll
[2012/07/02 20:55:10 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MuiUnattend.exe
[2012/07/02 20:55:10 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPCRYPT.DLL
[2012/07/02 20:55:10 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\napipsec.dll
[2012/07/02 20:55:10 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxlegih.dll
[2012/07/02 20:55:10 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxdm.dll
[2012/07/02 20:55:09 | 001,386,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvbvm60.dll
[2012/07/02 20:55:08 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswmdm.dll
[2012/07/02 20:55:08 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcuiu.dll
[2012/07/02 20:55:08 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcVSp1res.dll
[2012/07/02 20:55:06 | 000,506,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ENC.DLL
[2012/07/02 20:55:06 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2012/07/02 20:55:06 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ADEC.DLL
[2012/07/02 20:55:06 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdelta.dll
[2012/07/02 20:55:06 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdt.dll
[2012/07/02 20:55:06 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdt.exe
[2012/07/02 20:55:06 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdadiag.dll
[2012/07/02 20:55:06 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdart.dll
[2012/07/02 20:55:06 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtclog.dll
[2012/07/02 20:55:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
[2012/07/02 20:55:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2012/07/02 20:55:05 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspaint.exe
[2012/07/02 20:55:05 | 000,475,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msidcrl30.dll
[2012/07/02 20:55:05 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2012/07/02 20:55:05 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msorcl32.dll
[2012/07/02 20:55:05 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2012/07/02 20:55:05 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2012/07/02 20:55:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msident.dll
[2012/07/02 20:55:01 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Nlsdl.dll
[2012/07/02 20:55:00 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlmgp.dll
[2012/07/02 20:55:00 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlsbres.dll
[2012/07/02 20:54:59 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\objsel.dll
[2012/07/02 20:54:59 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2012/07/02 20:54:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2012/07/02 20:54:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2012/07/02 20:54:58 | 000,520,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntvdm.exe
[2012/07/02 20:54:58 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshipsec.dll
[2012/07/02 20:54:58 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2012/07/02 20:54:57 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netdiagfx.dll
[2012/07/02 20:54:57 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2012/07/02 20:54:57 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2012/07/02 20:54:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netbtugc.exe
[2012/07/02 20:54:56 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPSTAT.EXE
[2012/07/02 20:54:56 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netid.dll
[2012/07/02 20:54:56 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2012/07/02 20:54:56 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nci.dll
[2012/07/02 20:54:56 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2012/07/02 20:54:56 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nbtstat.exe
[2012/07/02 20:54:55 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\net1.exe
[2012/07/02 20:54:55 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfapi.dll
[2012/07/02 20:54:55 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\net.exe
[2012/07/02 20:54:55 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfetw.dll
[2012/07/02 20:54:53 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netprof.dll
[2012/07/02 20:54:53 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Netplwiz.exe
[2012/07/02 20:54:52 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\luainstall.dll
[2012/07/02 20:54:52 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\makecab.exe
[2012/07/02 20:54:52 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsmproxy.dll
[2012/07/02 20:54:51 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localsec.dll
[2012/07/02 20:54:51 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpksetup.exe
[2012/07/02 20:54:51 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loghours.dll
[2012/07/02 20:54:51 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpremove.exe
[2012/07/02 20:54:51 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2012/07/02 20:54:51 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localui.dll
[2012/07/02 20:54:50 | 005,714,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logon.scr
[2012/07/02 20:54:50 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfvdsp.dll
[2012/07/02 20:54:49 | 000,614,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFWMAAEC.DLL
[2012/07/02 20:54:48 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2012/07/02 20:54:48 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdminst.dll
[2012/07/02 20:54:48 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\McxDriv.dll
[2012/07/02 20:54:48 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MdSched.exe
[2012/07/02 20:54:48 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mcd.sys
[2012/07/02 20:54:47 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\intl.cpl
[2012/07/02 20:54:47 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsiwmi.dll
[2012/07/02 20:54:47 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsium.dll
[2012/07/02 20:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsied.dll
[2012/07/02 20:54:46 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\joy.cpl
[2012/07/02 20:54:46 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtrmgr.dll
[2012/07/02 20:54:46 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\keymgr.dll
[2012/07/02 20:54:46 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksproxy.ax
[2012/07/02 20:54:46 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2012/07/02 20:54:46 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kstvtune.ax
[2012/07/02 20:54:46 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2gpstore.dll
[2012/07/02 20:54:46 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksxbar.ax
[2012/07/02 20:54:46 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lnkstub.exe
[2012/07/02 20:54:46 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lltdapi.dll
[2012/07/02 20:54:46 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LangCleanupSysprepAction.dll
[2012/07/02 20:54:46 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ktmutil.exe
[2012/07/02 20:54:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ktmw32.dll
[2012/07/02 20:54:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtprio.dll
[2012/07/02 20:54:45 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprmsg.dll
[2012/07/02 20:54:45 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprddm.dll
[2012/07/02 20:54:45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDJPN.DLL
[2012/07/02 20:54:45 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDKOR.DLL
[2012/07/02 20:54:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mountvol.exe
[2012/07/02 20:54:43 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPG4DECD.DLL
[2012/07/02 20:54:43 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP43DECD.DLL
[2012/07/02 20:54:43 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msconfig.exe
[2012/07/02 20:54:43 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL
[2012/07/02 20:54:42 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSAC3ENC.DLL
[2012/07/02 20:54:42 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaatext.dll
[2012/07/02 20:54:40 | 000,301,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcbase.dll
[2012/07/02 20:54:38 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\migisol.dll
[2012/07/02 20:54:38 | 000,094,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MigAutoPlay.exe
[2012/07/02 20:54:31 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdshext.dll
[2012/07/02 20:54:31 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SecEdit.exe
[2012/07/02 20:54:28 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shrink.dll
[2012/07/02 20:54:27 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shrpubw.exe
[2012/07/02 20:54:27 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
[2012/07/02 20:54:27 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shutdown.exe
[2012/07/02 20:54:26 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiInstaller.dll
[2012/07/02 20:54:25 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\smclib.sys
[2012/07/02 20:54:23 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2012/07/02 20:54:23 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\serialui.dll
[2012/07/02 20:54:22 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupcln.dll
[2012/07/02 20:54:22 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupugc.exe
[2012/07/02 20:54:22 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupcl.exe
[2012/07/02 20:54:22 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sfc.exe
[2012/07/02 20:54:22 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupSNK.exe
[2012/07/02 20:54:19 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercfg.cpl
[2012/07/02 20:54:19 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssocPrx.dll
[2012/07/02 20:54:19 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pots.dll
[2012/07/02 20:54:19 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpts.dll
[2012/07/02 20:54:18 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiobj.dll
[2012/07/02 20:54:18 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\provthrd.dll
[2012/07/02 20:54:18 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
[2012/07/02 20:54:18 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWiaCompat.dll
[2012/07/02 20:54:17 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prntvpt.dll
[2012/07/02 20:54:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2012/07/02 20:54:16 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pcollab.dll
[2012/07/02 20:54:16 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2P.dll
[2012/07/02 20:54:16 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2phost.exe
[2012/07/02 20:54:16 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pnetsh.dll
[2012/07/02 20:54:16 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\profprov.dll
[2012/07/02 20:54:16 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\procinst.dll
[2012/07/02 20:54:15 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ogldrv.dll
[2012/07/02 20:54:15 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olecli32.dll
[2012/07/02 20:54:15 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olethk32.dll
[2012/07/02 20:54:15 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olesvr32.dll
[2012/07/02 20:54:15 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcadm.dll
[2012/07/02 20:54:14 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OptionalFeatures.exe
[2012/07/02 20:54:14 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osblprov.dll
[2012/07/02 20:54:14 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osbaseln.dll
[2012/07/02 20:54:13 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PING.EXE
[2012/07/02 20:54:12 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdhui.dll
[2012/07/02 20:54:12 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
[2012/07/02 20:54:11 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfmon.exe
[2012/07/02 20:54:11 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfnet.dll
[2012/07/02 20:54:11 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfts.dll
[2012/07/02 20:54:10 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2012/07/02 20:54:10 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Ribbons.scr
[2012/07/02 20:54:10 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rgb9rast.dll
[2012/07/02 20:54:10 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RstrtMgr.dll
[2012/07/02 20:54:10 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtm.dll
[2012/07/02 20:54:10 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\runonce.exe
[2012/07/02 20:54:09 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL
[2012/07/02 20:54:09 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
[2012/07/02 20:54:09 | 000,087,552 | ---- | C] (Microsoft) -- C:\Windows\System32\Robocopy.exe
[2012/07/02 20:54:09 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RpcPing.exe
[2012/07/02 20:54:09 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2012/07/02 20:54:08 | 000,730,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdengin2.dll
[2012/07/02 20:54:08 | 000,142,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\scsiport.sys
[2012/07/02 20:54:08 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdchange.exe
[2012/07/02 20:54:08 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2012/07/02 20:54:05 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2012/07/02 20:54:05 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacAgent.exe
[2012/07/02 20:54:05 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasctrs.dll
[2012/07/02 20:54:04 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdv.dll
[2012/07/02 20:54:04 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll
[2012/07/02 20:54:04 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qcap.dll
[2012/07/02 20:54:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QSVRMGMT.DLL
[2012/07/02 20:54:04 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QCLIPROV.DLL
[2012/07/02 20:54:03 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QSHVHOST.DLL
[2012/07/02 20:54:03 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RDPENCDD.dll
[2012/07/02 20:54:03 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regini.exe
[2012/07/02 20:54:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrleakdiag.exe
[2012/07/02 20:54:02 | 000,975,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RASMM.dll
[2012/07/02 20:54:02 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raserver.exe
[2012/07/02 20:54:02 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegCtrl.dll
[2012/07/02 20:54:02 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasphone.exe
[2012/07/02 20:54:01 | 001,039,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d8.dll
[2012/07/02 20:54:01 | 000,816,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dim700.dll
[2012/07/02 20:54:01 | 000,384,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dim.dll
[2012/07/02 20:54:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcfgex.dll
[2012/07/02 20:54:00 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
[2012/07/02 20:54:00 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\desk.cpl
[2012/07/02 20:54:00 | 000,226,816 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\Defrag.exe
[2012/07/02 20:54:00 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbnetlib.dll
[2012/07/02 20:54:00 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll
[2012/07/02 20:54:00 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dxof.dll
[2012/07/02 20:53:58 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dinput8.dll
[2012/07/02 20:53:58 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispdiag.exe
[2012/07/02 20:53:58 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diantz.exe
[2012/07/02 20:53:58 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2012/07/02 20:53:58 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
[2012/07/02 20:53:57 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfrgui.exe
[2012/07/02 20:53:57 | 000,163,840 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\DfrgNtfs.exe
[2012/07/02 20:53:57 | 000,096,768 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\dfrgfat.exe
[2012/07/02 20:53:57 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfrgifc.exe
[2012/07/02 20:53:57 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfdts.dll
[2012/07/02 20:53:57 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispex.dll
[2012/07/02 20:53:56 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
[2012/07/02 20:53:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DFDWiz.exe
[2012/07/02 20:53:56 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DHCPQEC.DLL
[2012/07/02 20:53:56 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpsapi.dll
[2012/07/02 20:53:56 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmcfg32.dll
[2012/07/02 20:53:55 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmipnpinstall.dll
[2012/07/02 20:53:55 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdl32.exe
[2012/07/02 20:53:55 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2012/07/02 20:53:55 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmicryptinstall.dll
[2012/07/02 20:53:55 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmlua.dll
[2012/07/02 20:53:54 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comsnap.dll
[2012/07/02 20:53:54 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cic.dll
[2012/07/02 20:53:54 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comrepl.dll
[2012/07/02 20:53:54 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clfsw32.dll
[2012/07/02 20:53:54 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ComputerDefaults.exe
[2012/07/02 20:53:53 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompatUI.dll
[2012/07/02 20:53:53 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compstui.dll
[2012/07/02 20:53:53 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompMgmtLauncher.exe
[2012/07/02 20:53:53 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\convert.exe
[2012/07/02 20:53:52 | 000,686,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\colorui.dll
[2012/07/02 20:53:52 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COLORCNV.DLL
[2012/07/02 20:53:52 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmstp.exe
[2012/07/02 20:53:52 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmutil.dll
[2012/07/02 20:53:52 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cofiredm.dll
[2012/07/02 20:53:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmpbk32.dll
[2012/07/02 20:53:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmstplua.dll
[2012/07/02 20:53:51 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\els.dll
[2012/07/02 20:53:50 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDump.dll
[2012/07/02 20:53:50 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esentutl.exe
[2012/07/02 20:53:50 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esentprf.dll
[2012/07/02 20:53:49 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efsadu.dll
[2012/07/02 20:53:49 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EAPQEC.DLL
[2012/07/02 20:53:48 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\filemgmt.dll
[2012/07/02 20:53:48 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fde.dll
[2012/07/02 20:53:47 | 002,585,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallControlPanel.exe
[2012/07/02 20:53:47 | 002,249,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Firewall.cpl
[2012/07/02 20:53:47 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2012/07/02 20:53:47 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findnetprinters.dll
[2012/07/02 20:53:47 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fmifs.dll
[2012/07/02 20:53:46 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2012/07/02 20:53:46 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eventcls.dll
[2012/07/02 20:53:43 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\expand.exe
[2012/07/02 20:53:42 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpui.dll
[2012/07/02 20:53:42 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3ui.dll
[2012/07/02 20:53:42 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\extrac32.exe
[2012/07/02 20:53:41 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2012/07/02 20:53:41 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2012/07/02 20:53:41 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskmgr.dll
[2012/07/02 20:53:41 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmime.dll
[2012/07/02 20:53:41 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DpiScaling.exe
[2012/07/02 20:53:41 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2012/07/02 20:53:41 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\driverquery.exe
[2012/07/02 20:53:41 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpclnt.dll
[2012/07/02 20:53:41 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmloader.dll
[2012/07/02 20:53:40 | 000,388,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdlgs.dll
[2012/07/02 20:53:40 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmvdsitf.dll
[2012/07/02 20:53:40 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmview.ocx
[2012/07/02 20:53:40 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmscript.dll
[2012/07/02 20:53:40 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnshc.dll
[2012/07/02 20:53:40 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmocx.dll
[2012/07/02 20:53:40 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmutil.dll
[2012/07/02 20:53:40 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskres2.dll
[2012/07/02 20:53:39 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2012/07/02 20:53:39 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
[2012/07/02 20:53:39 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxapi.sys
[2012/07/02 20:53:38 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsdmo.dll
[2012/07/02 20:53:38 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dskquota.dll
[2012/07/02 20:53:38 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll
[2012/07/02 20:53:38 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsauth.dll
[2012/07/02 20:53:37 | 004,595,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWSnapin.dll
[2012/07/02 20:53:37 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWGP.dll
[2012/07/02 20:53:37 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
[2012/07/02 20:53:37 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AUDIOKSE.dll
[2012/07/02 20:53:37 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authfwcfg.dll
[2012/07/02 20:53:37 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AtBroker.exe
[2012/07/02 20:53:37 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\at.exe
[2012/07/02 20:53:36 | 001,370,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Aurora.scr
[2012/07/02 20:53:36 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdedit.exe
[2012/07/02 20:53:36 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsadmin.exe
[2012/07/02 20:53:36 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basesrv.dll
[2012/07/02 20:53:36 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2012/07/02 20:53:36 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2012/07/02 20:53:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2012/07/02 20:53:35 | 000,317,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroleui.dll
[2012/07/02 20:53:35 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdsrv.dll
[2012/07/02 20:53:35 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayApi.dll
[2012/07/02 20:53:35 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdprov.dll
[2012/07/02 20:53:35 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AzSqlExt.dll
[2012/07/02 20:53:35 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\bdasup.sys
[2012/07/02 20:53:34 | 001,405,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActiveContentWizard.dll
[2012/07/02 20:53:34 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActionQueue.dll
[2012/07/02 20:53:34 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\activeds.tlb
[2012/07/02 20:53:34 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ACW.exe
[2012/07/02 20:53:34 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
[2012/07/02 20:53:33 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aclui.dll
[2012/07/02 20:53:32 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amstream.dll
[2012/07/02 20:53:32 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2012/07/02 20:53:31 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apircl.dll
[2012/07/02 20:53:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2012/07/02 20:53:30 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsnt.dll
[2012/07/02 20:53:30 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apss.dll
[2012/07/02 20:53:29 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsldp.dll
[2012/07/02 20:53:28 | 000,879,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Bubbles.scr
[2012/07/02 20:53:28 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\btpanui.dll
[2012/07/02 20:53:26 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cacls.exe
[2012/07/02 20:53:26 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capisp.dll
[2012/07/02 20:53:25 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcplsdw.dll
[2012/07/02 20:53:25 | 000,024,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BOOTVID.DLL
[2012/07/02 20:53:25 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootstr.dll
[2012/07/02 20:53:24 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bridgeunattend.exe
[2012/07/02 20:53:23 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollCtrl.exe
[2012/07/02 20:53:22 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cewmdm.dll
[2012/07/02 20:53:22 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cfgbkend.dll
[2012/07/02 20:53:21 | 000,805,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2012/07/02 20:53:19 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootcfg.exe
[2012/07/02 20:53:03 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imagesp1.dll
[2012/07/02 20:53:01 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetmib1.dll
[2012/07/02 20:53:00 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InfDefaultInstall.exe
[2012/07/02 20:52:58 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ias.dll
[2012/07/02 20:52:57 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2012/07/02 20:52:54 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifsutil.dll
[2012/07/02 20:52:52 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
[2012/07/02 20:52:52 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsfiltr.dll
[2012/07/02 20:52:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\idndl.dll
[2012/07/02 20:52:52 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2012/07/02 20:52:51 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2012/07/02 20:52:51 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icacls.exe
[2012/07/02 20:52:48 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hlink.dll
[2012/07/02 20:52:48 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
[2012/07/02 20:52:48 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hnetmon.dll
[2012/07/02 20:52:41 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framedyn.dll
[2012/07/02 20:52:41 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2012/07/02 20:52:41 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fphc.dll
[2012/07/02 20:52:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framebuf.dll
[2012/07/02 20:52:40 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
[2012/07/02 20:52:40 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fwcfg.dll
[2012/07/02 20:52:40 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\fveupdate.exe
[2012/07/02 20:52:39 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GuidedHelp.dll
[2012/07/02 20:52:39 | 000,016,896 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2012/07/02 20:52:38 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HelpPaneProxy.dll
[2012/07/02 20:52:38 | 000,025,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2012/07/02 20:52:37 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2012/07/02 20:52:37 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\getmac.exe
[2012/07/02 20:52:37 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gacinstall.dll
[2012/07/02 20:52:37 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\g711codc.ax
[2012/07/02 20:52:36 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\graftabl.com
[2012/07/02 20:52:26 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgrade.exe
[2012/07/02 20:52:16 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiadefui.dll
[2012/07/02 20:52:16 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiadss.dll
[2012/07/02 20:52:16 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaacmgr.exe
[2012/07/02 20:52:16 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2012/07/02 20:52:15 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiascanprofiles.dll
[2012/07/02 20:52:15 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiarpc.dll
[2012/07/02 20:52:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WINSRPC.DLL
[2012/07/02 20:52:14 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winusb.dll
[2012/07/02 20:52:13 | 000,383,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
[2012/07/02 20:52:12 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WLanConn.dll
[2012/07/02 20:52:12 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlancfg.dll
[2012/07/02 20:52:11 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winethc.dll
[2012/07/02 20:52:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
[2012/07/02 20:52:09 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
[2012/07/02 20:52:09 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wavemsp.dll
[2012/07/02 20:52:09 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\w32tm.exe
[2012/07/02 20:52:09 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WavDest.dll
[2012/07/02 20:52:08 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vssadmin.exe
[2012/07/02 20:52:08 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\waitfor.exe
[2012/07/02 20:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vss_ps.dll
[2012/07/02 20:52:05 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2012/07/02 20:52:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werdiagcontroller.dll
[2012/07/02 20:52:05 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wertargets.wtl
[2012/07/02 20:52:04 | 000,035,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2012/07/02 20:52:02 | 001,295,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsecedit.dll
[2012/07/02 20:52:02 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscmisetup.dll
[2012/07/02 20:52:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshcon.dll
[2012/07/02 20:52:02 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscproxystub.dll
[2012/07/02 20:52:02 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
[2012/07/02 20:52:00 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2012/07/02 20:51:59 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpdwcn.dll
[2012/07/02 20:51:59 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpclsp.dll
[2012/07/02 20:51:59 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpnpinst.exe
[2012/07/02 20:51:58 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactsrv.dll
[2012/07/02 20:51:58 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2012/07/02 20:51:58 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xcopy.exe
[2012/07/02 20:51:58 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlprovi.dll
[2012/07/02 20:51:57 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wvc.dll
[2012/07/02 20:51:57 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2012/07/02 20:51:57 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2012/07/02 20:51:57 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wzcdlg.dll
[2012/07/02 20:51:56 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsqmcons.exe
[2012/07/02 20:51:56 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2012/07/02 20:51:55 | 001,675,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpssvcs.dll
[2012/07/02 20:51:55 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSTPager.ax
[2012/07/02 20:51:54 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwizards.dll
[2012/07/02 20:51:53 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmidx.dll
[2012/07/02 20:51:53 | 000,041,472 | ---- | C] (Microsoft) -- C:\Windows\System32\WlanMmHC.dll
[2012/07/02 20:51:53 | 000,017,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmilib.sys
[2012/07/02 20:51:52 | 000,913,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WlanMM.dll
[2012/07/02 20:51:52 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlandlg.dll
[2012/07/02 20:51:52 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmdev.dll
[2012/07/02 20:51:52 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WLanHC.dll
[2012/07/02 20:51:51 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOE.DLL
[2012/07/02 20:51:51 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOD.DLL
[2012/07/02 20:51:51 | 000,347,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmnet.dll
[2012/07/02 20:51:51 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2012/07/02 20:51:50 | 001,329,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOE.DLL
[2012/07/02 20:51:50 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpsrcwp.dll
[2012/07/02 20:51:49 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2012/07/02 20:51:49 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSENCD.DLL
[2012/07/02 20:51:49 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmvdspa.dll
[2012/07/02 20:51:48 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmiprop.dll
[2012/07/02 20:51:47 | 001,642,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPEncEn.dll
[2012/07/02 20:51:47 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpcm.dll
[2012/07/02 20:51:46 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systeminfo.exe
[2012/07/02 20:51:45 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Tabbtn.dll
[2012/07/02 20:51:43 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tasklist.exe
[2012/07/02 20:51:43 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskkill.exe
[2012/07/02 20:51:42 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TabletPC.cpl
[2012/07/02 20:51:42 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2012/07/02 20:51:42 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdi.sys
[2012/07/02 20:51:42 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tbs.dll
[2012/07/02 20:51:41 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srrstr.dll
[2012/07/02 20:51:41 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqmapi.dll
[2012/07/02 20:51:41 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TapiMigPlugin.dll
[2012/07/02 20:51:41 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2012/07/02 20:51:41 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TabbtnEx.dll
[2012/07/02 20:51:41 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\takeown.exe
[2012/07/02 20:51:41 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tape.sys
[2012/07/02 20:51:40 | 008,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr
[2012/07/02 20:51:40 | 000,604,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlceqp30.dll
[2012/07/02 20:51:40 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlcese30.dll
[2012/07/02 20:51:40 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssText3d.scr
[2012/07/02 20:51:40 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SoundRecorder.exe
[2012/07/02 20:51:40 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SSShim.dll
[2012/07/02 20:51:40 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srwmi.dll
[2012/07/02 20:51:40 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2012/07/02 20:51:39 | 008,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizimg.dll
[2012/07/02 20:51:39 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizeng.dll
[2012/07/02 20:51:39 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2012/07/02 20:51:39 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spbcd.dll
[2012/07/02 20:51:39 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syssetup.dll
[2012/07/02 20:51:39 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppnp.dll
[2012/07/02 20:51:39 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syskey.exe
[2012/07/02 20:51:39 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxstrace.exe
[2012/07/02 20:51:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxsstore.dll
[2012/07/02 20:51:39 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spopk.dll
[2012/07/02 20:51:39 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizres.dll
[2012/07/02 20:51:38 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sti_ci.dll
[2012/07/02 20:51:38 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbui.dll
[2012/07/02 20:51:38 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\userinit.exe
[2012/07/02 20:51:38 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\upnpcont.exe
[2012/07/02 20:51:38 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbperf.dll
[2012/07/02 20:51:37 | 001,298,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TMM.dll
[2012/07/02 20:51:37 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2012/07/02 20:51:37 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VAN.dll
[2012/07/02 20:51:37 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VIDRESZR.DLL
[2012/07/02 20:51:37 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VBICodec.ax
[2012/07/02 20:51:37 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verifier.dll
[2012/07/02 20:51:37 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsbas.dll
[2012/07/02 20:51:37 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uudf.dll
[2012/07/02 20:51:37 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verifier.exe
[2012/07/02 20:51:37 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\videoprt.sys
[2012/07/02 20:51:37 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwtpw32.dll
[2012/07/02 20:51:37 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TpmInit.exe
[2012/07/02 20:51:37 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vfwwdm32.dll
[2012/07/02 20:51:37 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga256.dll
[2012/07/02 20:51:37 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmredir.dll
[2012/07/02 20:51:37 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vds_ps.dll
[2012/07/02 20:51:37 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbisurf.ax
[2012/07/02 20:51:37 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\utildll.dll
[2012/07/02 20:51:37 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga64k.dll
[2012/07/02 20:51:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsldr.exe
[2012/07/02 20:51:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsddd.dll
[2012/07/02 20:51:37 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga.dll
[2012/07/02 20:51:37 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2012/07/02 20:51:36 | 002,588,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIHub.dll
[2012/07/02 20:51:36 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unbcl.dll
[2012/07/02 20:51:36 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\termmgr.dll
[2012/07/02 20:51:36 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unattend.dll
[2012/07/02 20:51:36 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ufat.dll
[2012/07/02 20:51:36 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\txflog.dll
[2012/07/02 20:51:36 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uexfat.dll
[2012/07/02 20:51:36 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\umb.dll
[2012/07/02 20:51:36 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ucsvc.exe
[2012/07/02 20:51:36 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TimeDateMUICallback.dll
[2012/07/02 20:51:36 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2012/07/02 20:51:36 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unattendedjoin.exe
[2012/07/02 20:51:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\txfw32.dll
[2012/07/02 16:29:43 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2012/07/01 21:44:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2012/07/01 20:08:30 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\ElevatedDiagnostics
[2012/07/01 19:59:59 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 1.0
[2012/07/01 19:59:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2012/07/01 19:27:22 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2012/07/01 19:27:22 | 000,109,080 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2012/07/01 19:27:20 | 002,902,495 | ---- | C] (Creative) -- C:\Windows\System32\Sens_oal.dll
[2012/07/01 19:26:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketFish
[2012/07/01 19:26:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Creative Labs Shared
[2012/07/01 19:26:10 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2012/07/01 19:25:57 | 000,000,000 | ---D | C] -- C:\Program Files\RocketFish
[2012/07/01 19:25:37 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012/07/01 19:25:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012/07/01 19:25:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2012/07/01 19:23:38 | 000,613,503 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\APOIM32.exe
[2012/07/01 19:23:38 | 000,506,368 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\P17APO32.dll
[2012/07/01 19:23:38 | 000,047,104 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\P17pld32.dll
[2012/07/01 19:23:38 | 000,042,496 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\AddCat.exe
[2012/07/01 19:23:37 | 000,140,800 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\P17res.dll
[2012/07/01 19:23:36 | 022,146,048 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\AppSetup.exe
[2012/07/01 19:23:36 | 001,166,336 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\P17.sys
[2012/07/01 19:23:36 | 000,181,760 | ---- | C] (Creative Technology Limited) -- C:\Windows\System32\ctdvins1.dll
[2012/07/01 19:23:36 | 000,144,384 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\OemSpiE.dll
[2012/07/01 19:23:36 | 000,086,016 | ---- | C] (Creative Technology Limited) -- C:\Windows\System32\ctcoins1.dll
[2012/07/01 19:23:36 | 000,014,848 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\P17RunE.dll
[2012/07/01 19:23:36 | 000,008,704 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\ResDefE.exe
[2012/07/01 18:39:11 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Apple Computer
[2012/07/01 18:24:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/07/01 18:23:46 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Apple
[2012/07/01 18:23:43 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012/07/01 18:23:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/07/01 18:17:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
[2012/07/01 17:45:09 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Macromedia
[2012/07/01 17:45:09 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Adobe
[2012/07/01 17:44:47 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2012/07/01 11:04:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/07/01 11:04:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/07/01 11:03:25 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle
[2012/07/01 11:03:06 | 000,772,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2012/07/01 11:03:06 | 000,687,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2012/07/01 11:03:06 | 000,227,720 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2012/07/01 11:02:26 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2012/07/01 11:02:26 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2012/07/01 11:01:33 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/07/01 11:01:09 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012/07/01 10:46:12 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll
[2012/07/01 10:46:12 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2012/07/01 10:35:48 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2012/07/01 09:24:38 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Avira
[2012/07/01 09:19:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2012/07/01 09:18:55 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2012/07/01 09:18:51 | 000,137,928 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2012/07/01 09:18:51 | 000,083,392 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2012/07/01 09:18:51 | 000,036,000 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avkmgr.sys
[2012/07/01 09:18:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2012/07/01 09:18:49 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2012/07/01 08:05:18 | 000,000,000 | ---D | C] -- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[2012/07/01 08:03:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012/06/30 22:22:21 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Google
[2012/06/30 22:22:18 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\SUPERAntiSpyware.com
[2012/06/30 22:22:17 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012/06/30 22:22:16 | |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Sat Jul 07, 2012 8:44 am Post subject: |
|
|
Hi Wescomd,
We need to try something different, your OTL logs are to big to fit into the posts.
See if you can post the logs from this scanner.
Please download RSIT by random/random... and save it to your desktop.- Right click on RSIT.exe and select "Run As Administrator" to run it. If Windows UAC prompts you, please allow it.
- Please read the disclaimer... click on Continue.
- RSIT will start running. When done... 2 logs files...will be produced.
- The first one, "log.txt", << will be maximized
- The second one, "info.txt", << will be minimized.
Please post both... "log.txt" and "info.txt", file contents in your next reply.
(These logs can be lengthy, so post 1 log per reply please.)
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Sat Jul 07, 2012 9:45 am Post subject: Babylon |
|
|
Here is the first file.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Dad at 2012-07-07 12:39:10
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 29 GB (37%) free of 79 GB
Total RAM: 2046 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:39:54 PM, on 7/7/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19272)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\RocketFish\RF7.1\Volume Panel\VolPanlu.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Dad\Desktop\RSIT.exe
C:\Program Files\trend micro\Dad.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\RocketFish\RF7.1\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.5.0.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
--
End of file - 4426 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\a4fiz7fl.default
prefs.js - "browser.startup.homepage" - "http://www.yahoo.com/|http://www.ebay.com/|https://www.gatecitybank.com/home/home"
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\searchplugins\
amazondotcom.xml
babylon.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-05-04 453504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-05-04 157576]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2012-05-02 348624]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-02-20 59240]
"P17RunE"=RunDll32 P17RunE.dll,RunDLLEntry []
"VolPanel"=C:\Program Files\RocketFish\RF7.1\Volume Panel\VolPanlu.exe [2009-07-07 241789]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2012-04-18 421888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-06-26 3906432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-18 113024]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-07-07 12:39:11 ----D---- C:\Program Files\trend micro
2012-07-07 12:39:10 ----D---- C:\rsit
2012-07-07 09:51:06 ----D---- C:\Program Files\QuickTime
2012-07-07 09:51:05 ----D---- C:\ProgramData\Apple Computer
2012-07-07 08:21:12 ----D---- C:\ProgramData\CAM Development
2012-07-07 08:21:12 ----D---- C:\Program Files\CAM Development
2012-07-06 21:14:05 ----D---- C:\Program Files\Common Files\Creative
2012-07-06 21:13:59 ----HD---- C:\Program Files\Creative Installation Information
2012-07-04 16:56:48 ----D---- C:\ProgramData\Babylon
2012-07-04 16:56:47 ----D---- C:\Users\Dad\AppData\Roaming\Babylon
2012-07-04 16:42:43 ----D---- C:\Program Files\Real
2012-07-04 16:42:40 ----D---- C:\Users\Dad\AppData\Roaming\Real
2012-07-04 16:40:50 ----D---- C:\ProgramData\Real
2012-07-04 16:18:30 ----D---- C:\Program Files\K-Lite Codec Pack
2012-07-04 15:42:09 ----D---- C:\ProgramData\Google
2012-07-04 14:48:50 ----D---- C:\Users\Dad\AppData\Roaming\ATI
2012-07-04 14:48:50 ----D---- C:\ProgramData\ATI
2012-07-04 00:18:23 ----D---- C:\Program Files\Common Files\ATI Technologies
2012-07-04 00:18:17 ----D---- C:\Program Files\DIFX
2012-07-04 00:13:12 ----D---- C:\Program Files\ATI Technologies
2012-07-04 00:13:07 ----D---- C:\Program Files\ATI
2012-07-03 19:32:35 ----D---- C:\Program Files\Windows Portable Devices
2012-07-03 19:20:40 ----A---- C:\Windows\system32\UIAnimation.dll
2012-07-03 19:20:39 ----A---- C:\Windows\system32\UIRibbonRes.dll
2012-07-03 19:20:39 ----A---- C:\Windows\system32\UIRibbon.dll
2012-07-03 19:19:45 ----A---- C:\Windows\system32\WMPhoto.dll
2012-07-03 19:19:43 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2012-07-03 19:19:43 ----A---- C:\Windows\system32\WindowsCodecs.dll
2012-07-03 19:19:43 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2012-07-03 19:19:43 ----A---- C:\Windows\system32\dxdiagn.dll
2012-07-03 19:19:43 ----A---- C:\Windows\system32\dxdiag.exe
2012-07-03 19:19:42 ----A---- C:\Windows\system32\d3d11.dll
2012-07-03 19:19:03 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2012-07-03 19:19:03 ----A---- C:\Windows\system32\wpdbusenum.dll
2012-07-03 19:19:03 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2012-07-03 19:19:01 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\WPDSp.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\wpdshext.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\wpd_ci.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2012-07-03 19:18:57 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2012-07-03 19:15:56 ----A---- C:\Windows\system32\wmi.dll
2012-07-03 19:15:56 ----A---- C:\Windows\system32\wintrust.dll
2012-07-03 19:15:56 ----A---- C:\Windows\system32\imagehlp.dll
2012-07-03 19:15:56 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-07-03 19:02:09 ----A---- C:\Windows\system32\sbeio.dll
2012-07-03 19:02:09 ----A---- C:\Windows\system32\sbe.dll
2012-07-03 19:02:08 ----A---- C:\Windows\system32\ntdll.dll
2012-07-03 19:02:07 ----A---- C:\Windows\system32\winsrv.dll
2012-07-03 19:02:03 ----A---- C:\Windows\system32\tzres.dll
2012-07-03 19:01:49 ----A---- C:\Windows\system32\MFH264Dec.dll
2012-07-03 19:01:49 ----A---- C:\Windows\system32\dxgi.dll
2012-07-03 19:01:48 ----A---- C:\Windows\system32\XpsRasterService.dll
2012-07-03 19:01:48 ----A---- C:\Windows\system32\XpsPrint.dll
2012-07-03 19:01:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2012-07-03 19:01:47 ----A---- C:\Windows\system32\mfreadwrite.dll
2012-07-03 19:01:47 ----A---- C:\Windows\system32\mfmp4src.dll
2012-07-03 19:01:47 ----A---- C:\Windows\system32\MFHEAACdec.dll
2012-07-03 19:01:46 ----A---- C:\Windows\system32\stobject.dll
2012-07-03 19:01:46 ----A---- C:\Windows\system32\shdocvw.dll
2012-07-03 19:01:46 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2012-07-03 19:01:46 ----A---- C:\Windows\system32\mfplat.dll
2012-07-03 19:01:46 ----A---- C:\Windows\system32\mf.dll
2012-07-03 19:01:46 ----A---- C:\Windows\system32\cdd.dll
2012-07-03 19:01:44 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2012-07-03 19:01:44 ----A---- C:\Windows\system32\mfps.dll
2012-07-03 19:01:35 ----A---- C:\Windows\system32\d3d10warp.dll
2012-07-03 19:01:35 ----A---- C:\Windows\system32\d3d10_1.dll
2012-07-03 19:01:35 ----A---- C:\Windows\system32\d2d1.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\xpsservices.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\FntCache.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\DWrite.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\d3d10level9.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\d3d10core.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-07-03 19:01:34 ----A---- C:\Windows\system32\d3d10.dll
2012-07-03 19:01:33 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-07-03 19:01:33 ----A---- C:\Windows\system32\OpcServices.dll
2012-07-03 19:01:21 ----A---- C:\Windows\system32\gameux.dll
2012-07-03 19:01:20 ----A---- C:\Windows\system32\Apphlpdm.dll
2012-07-03 19:01:19 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2012-07-03 19:01:09 ----A---- C:\Windows\system32\shsvcs.dll
2012-07-03 19:00:55 ----A---- C:\Windows\system32\wmp.dll
2012-07-03 19:00:54 ----A---- C:\Windows\system32\wmploc.DLL
2012-07-03 19:00:36 ----A---- C:\Windows\system32\UIAutomationCore.dll
2012-07-03 19:00:36 ----A---- C:\Windows\system32\oleaut32.dll
2012-07-03 19:00:36 ----A---- C:\Windows\system32\oleaccrc.dll
2012-07-03 19:00:36 ----A---- C:\Windows\system32\oleacc.dll
2012-07-03 19:00:26 ----A---- C:\Windows\system32\shell32.dll
2012-07-03 19:00:25 ----A---- C:\Windows\system32\shlwapi.dll
2012-07-03 19:00:20 ----A---- C:\Windows\system32\srvsvc.dll
2012-07-03 19:00:20 ----A---- C:\Windows\system32\netevent.dll
2012-07-03 19:00:10 ----A---- C:\Windows\system32\cryptsvc.dll
2012-07-03 19:00:10 ----A---- C:\Windows\system32\cryptnet.dll
2012-07-03 19:00:10 ----A---- C:\Windows\system32\crypt32.dll
2012-07-03 19:00:04 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-07-03 19:00:02 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-07-03 19:00:02 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-07-03 19:00:02 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-07-03 19:00:01 ----A---- C:\Windows\system32\spoolsv.exe
2012-07-03 19:00:00 ----A---- C:\Windows\system32\wmpmde.dll
2012-07-03 18:59:54 ----A---- C:\Windows\system32\rtutils.dll
2012-07-03 18:59:53 ----A---- C:\Windows\system32\mfc40u.dll
2012-07-03 18:59:53 ----A---- C:\Windows\system32\mfc40.dll
2012-07-03 18:59:51 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-07-03 18:59:51 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-07-03 18:59:49 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-07-03 18:59:49 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-07-03 18:59:49 ----A---- C:\Windows\system32\dnsapi.dll
2012-07-03 18:59:47 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-07-03 18:59:46 ----A---- C:\Windows\system32\schedsvc.dll
2012-07-03 18:59:45 ----A---- C:\Windows\system32\taskschd.dll
2012-07-03 18:59:44 ----A---- C:\Windows\system32\wmicmiplugin.dll
2012-07-03 18:59:44 ----A---- C:\Windows\system32\taskeng.exe
2012-07-03 18:59:44 ----A---- C:\Windows\system32\taskcomp.dll
2012-07-03 18:59:42 ----A---- C:\Windows\system32\odbc32.dll
2012-07-03 18:59:38 ----A---- C:\Windows\system32\ole32.dll
2012-07-03 18:59:36 ----A---- C:\Windows\system32\psisdecd.dll
2012-07-03 18:59:35 ----A---- C:\Windows\system32\quartz.dll
2012-07-03 18:59:35 ----A---- C:\Windows\system32\qdvd.dll
2012-07-03 18:59:30 ----A---- C:\Windows\system32\jscript.dll
2012-07-03 18:59:29 ----A---- C:\Windows\system32\drivers\afd.sys
2012-07-03 18:59:28 ----A---- C:\Windows\system32\fontsub.dll
2012-07-03 18:59:28 ----A---- C:\Windows\system32\atmlib.dll
2012-07-03 18:59:28 ----A---- C:\Windows\system32\atmfd.dll
2012-07-03 18:59:27 ----A---- C:\Windows\system32\iccvid.dll
2012-07-03 18:59:26 ----A---- C:\Windows\system32\vbscript.dll
2012-07-03 18:59:22 ----A---- C:\Windows\system32\sdclt.exe
2012-07-03 18:59:18 ----A---- C:\Windows\system32\winhttp.dll
2012-07-03 18:59:18 ----A---- C:\Windows\system32\secur32.dll
2012-07-03 18:59:18 ----A---- C:\Windows\system32\schannel.dll
2012-07-03 18:59:18 ----A---- C:\Windows\system32\lsass.exe
2012-07-03 18:59:18 ----A---- C:\Windows\system32\lsasrv.dll
2012-07-03 18:59:18 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-07-03 18:59:16 ----A---- C:\Windows\system32\mfc42u.dll
2012-07-03 18:59:16 ----A---- C:\Windows\system32\mfc42.dll
2012-07-03 18:59:14 ----A---- C:\Windows\system32\drivers\srv.sys
2012-07-03 18:59:12 ----A---- C:\Windows\system32\xmllite.dll
2012-07-03 18:59:11 ----A---- C:\Windows\system32\winmm.dll
2012-07-03 18:59:11 ----A---- C:\Windows\system32\mciseq.dll
2012-07-03 18:59:08 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-07-03 18:59:07 ----A---- C:\Windows\system32\kernel32.dll
2012-07-03 18:59:06 ----A---- C:\Windows\system32\consent.exe
2012-07-03 18:59:05 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-07-03 18:59:03 ----A---- C:\Windows\system32\MP4SDECD.DLL
2012-07-03 18:58:59 ----A---- C:\Windows\system32\rdpencom.dll
2012-07-03 18:58:58 ----A---- C:\Windows\system32\t2embed.dll
2012-07-03 18:58:57 ----A---- C:\Windows\system32\usp10.dll
2012-07-03 18:58:56 ----A---- C:\Windows\system32\asycfilt.dll
2012-07-03 18:58:55 ----A---- C:\Windows\system32\win32k.sys
2012-07-03 18:58:52 ----A---- C:\Windows\system32\mstscax.dll
2012-07-03 18:58:52 ----A---- C:\Windows\system32\mstsc.exe
2012-07-03 18:58:51 ----A---- C:\Windows\system32\csrsrv.dll
2012-07-03 18:58:50 ----A---- C:\Windows\system32\EncDec.dll
2012-07-03 18:58:49 ----A---- C:\Windows\system32\msvcrt.dll
2012-07-03 18:58:48 ----A---- C:\Windows\system32\packager.dll
2012-07-03 18:58:46 ----A---- C:\Windows\system32\drivers\dfsc.sys
2012-07-03 18:58:45 ----A---- C:\Windows\system32\msxml3.dll
2012-07-03 18:58:44 ----A---- C:\Windows\system32\inetcomm.dll
2012-07-03 18:58:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-07-03 18:58:38 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-07-03 18:45:04 ----A---- C:\Windows\system32\comctl32.dll
2012-07-03 16:45:00 ----A---- C:\Windows\system32\winrsmgr.dll
2012-07-03 16:44:45 ----A---- C:\Windows\system32\wsmprovhost.exe
2012-07-03 16:44:45 ----A---- C:\Windows\system32\winrshost.exe
2012-07-03 16:44:45 ----A---- C:\Windows\system32\winrs.exe
2012-07-03 16:44:43 ----A---- C:\Windows\system32\wsmplpxy.dll
2012-07-03 16:44:43 ----A---- C:\Windows\system32\winrssrv.dll
2012-07-03 16:44:42 ----A---- C:\Windows\system32\WsmRes.dll
2012-07-03 16:44:42 ----A---- C:\Windows\system32\wevtfwd.dll
2012-07-03 16:44:42 ----A---- C:\Windows\system32\wecutil.exe
2012-07-03 16:44:42 ----A---- C:\Windows\system32\wecsvc.dll
2012-07-03 16:44:42 ----A---- C:\Windows\system32\wecapi.dll
2012-07-03 16:44:41 ----A---- C:\Windows\system32\pwrshplugin.dll
2012-07-03 16:44:38 ----A---- C:\Windows\system32\winrm.vbs
2012-07-03 16:44:37 ----A---- C:\Windows\system32\WsmWmiPl.dll
2012-07-03 16:44:37 ----A---- C:\Windows\system32\WsmAuto.dll
2012-07-03 16:44:37 ----A---- C:\Windows\system32\winrscmd.dll
2012-07-03 16:44:34 ----A---- C:\Windows\system32\WsmSvc.dll
2012-07-03 16:44:34 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2012-07-03 16:44:34 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2012-07-03 16:43:27 ----A---- C:\Windows\system32\urlmon.dll
2012-07-03 16:43:27 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-07-03 16:43:27 ----A---- C:\Windows\system32\ieUnatt.exe
2012-07-03 16:43:27 ----A---- C:\Windows\system32\iesysprep.dll
2012-07-03 16:43:27 ----A---- C:\Windows\system32\iesetup.dll
2012-07-03 16:43:27 ----A---- C:\Windows\system32\iernonce.dll
2012-07-03 16:43:27 ----A---- C:\Windows\system32\iedkcs32.dll
2012-07-03 16:43:26 ----A---- C:\Windows\system32\msfeeds.dll
2012-07-03 16:43:25 ----A---- C:\Windows\system32\wininet.dll
2012-07-03 16:43:25 ----A---- C:\Windows\system32\occache.dll
2012-07-03 16:43:24 ----A---- C:\Windows\system32\licmgr10.dll
2012-07-03 16:43:24 ----A---- C:\Windows\system32\jsproxy.dll
2012-07-03 16:43:24 ----A---- C:\Windows\system32\ieui.dll
2012-07-03 16:43:24 ----A---- C:\Windows\system32\iepeers.dll
2012-07-03 16:43:24 ----A---- C:\Windows\system32\ieframe.dll
2012-07-03 16:43:23 ----A---- C:\Windows\system32\url.dll
2012-07-03 16:43:23 ----A---- C:\Windows\system32\mstime.dll
2012-07-03 16:43:23 ----A---- C:\Windows\system32\mshtmled.dll
2012-07-03 16:43:23 ----A---- C:\Windows\system32\mshtml.dll
2012-07-03 16:43:22 ----A---- C:\Windows\system32\iertutil.dll
2012-07-03 16:43:21 ----A---- C:\Windows\system32\msfeedssync.exe
2012-07-03 16:43:21 ----A---- C:\Windows\system32\ie4uinit.exe
2012-07-03 16:41:26 ----A---- C:\Windows\system32\msshsq.dll
2012-07-03 16:09:59 ----A---- C:\Windows\system32\wups2.dll
2012-07-03 16:09:59 ----A---- C:\Windows\system32\wuauclt.exe
2012-07-03 16:09:58 ----A---- C:\Windows\system32\wucltux.dll
2012-07-03 16:09:58 ----A---- C:\Windows\system32\wuaueng.dll
2012-07-03 16:09:22 ----A---- C:\Windows\system32\wups.dll
2012-07-03 16:09:22 ----A---- C:\Windows\system32\wudriver.dll
2012-07-03 16:09:22 ----A---- C:\Windows\system32\wuapi.dll
2012-07-03 16:09:09 ----A---- C:\Windows\system32\wuwebv.dll
2012-07-03 16:09:09 ----A---- C:\Windows\system32\wuapp.exe
2012-07-02 23:38:17 ----D---- C:\Users\Dad\AppData\Roaming\Mozilla
2012-07-02 23:38:11 ----D---- C:\ProgramData\Mozilla
2012-07-02 23:38:11 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-07-02 23:38:09 ----D---- C:\Program Files\Mozilla Firefox
2012-07-02 22:17:01 ----D---- C:\Windows\system32\eu-ES
2012-07-02 22:17:01 ----D---- C:\Windows\system32\ca-ES
2012-07-02 22:16:59 ----D---- C:\Windows\system32\vi-VN
2012-07-02 22:14:33 ----D---- C:\Windows\system32\SPReview
2012-07-02 21:57:46 ----A---- C:\Windows\system32\scavenge.dll
2012-07-02 21:57:37 ----A---- C:\Windows\system32\compcln.exe
2012-07-02 21:57:05 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-07-02 21:57:05 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-07-02 21:57:04 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-07-02 21:57:04 ----A---- C:\Windows\system32\sdohlp.dll
2012-07-02 21:57:03 ----A---- C:\Windows\system32\samlib.dll
2012-07-02 21:57:03 ----A---- C:\Windows\system32\rtffilt.dll
2012-07-02 21:57:03 ----A---- C:\Windows\system32\rsaenh.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\scrrun.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\SCardSvr.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\scansetting.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\samsrv.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\rpcss.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\rpchttp.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\riched20.dll
2012-07-02 21:57:02 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-07-02 21:57:02 ----A---- C:\Windows\system32\drivers\rmcast.sys
2012-07-02 21:57:01 ----A---- C:\Windows\system32\scrobj.dll
2012-07-02 21:57:01 ----A---- C:\Windows\system32\scksp.dll
2012-07-02 21:57:01 ----A---- C:\Windows\system32\scesrv.dll
2012-07-02 21:57:01 ----A---- C:\Windows\system32\scecli.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\powercpl.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\PNPXAssoc.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\PnPutil.exe
2012-07-02 21:56:59 ----A---- C:\Windows\system32\PnPUnattend.exe
2012-07-02 21:56:59 ----A---- C:\Windows\system32\pnpui.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\pnpsetup.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\pnidui.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\perfdisk.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\pdh.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\pcaui.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\p2psvc.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\P2PGraph.dll
2012-07-02 21:56:59 ----A---- C:\Windows\system32\drivers\portcls.sys
2012-07-02 21:56:59 ----A---- C:\Windows\system32\drivers\pciidex.sys
2012-07-02 21:56:59 ----A---- C:\Windows\system32\drivers\pci.sys
2012-07-02 21:56:59 ----A---- C:\Windows\system32\drivers\pacer.sys
2012-07-02 21:56:58 ----A---- C:\Windows\system32\photowiz.dll
2012-07-02 21:56:57 ----A---- C:\Windows\system32\PkgMgr.exe
2012-07-02 21:56:57 ----A---- C:\Windows\system32\pidgenx.dll
2012-07-02 21:56:57 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2012-07-02 21:56:57 ----A---- C:\Windows\system32\nslookup.exe
2012-07-02 21:56:57 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-07-02 21:56:57 ----A---- C:\Windows\system32\drivers\npfs.sys
2012-07-02 21:56:56 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2012-07-02 21:56:55 ----A---- C:\Windows\system32\offfilt.dll
2012-07-02 21:56:55 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2012-07-02 21:56:55 ----A---- C:\Windows\system32\nlhtml.dll
2012-07-02 21:56:54 ----A---- C:\Windows\system32\osk.exe
2012-07-02 21:56:54 ----A---- C:\Windows\system32\oobefldr.dll
2012-07-02 21:56:54 ----A---- C:\Windows\system32\onex.dll
2012-07-02 21:56:54 ----A---- C:\Windows\system32\olepro32.dll
2012-07-02 21:56:54 ----A---- C:\Windows\system32\oleprn.dll
2012-07-02 21:56:54 ----A---- C:\Windows\system32\odbccp32.dll
2012-07-02 21:56:54 ----A---- C:\Windows\system32\odbcconf.dll
2012-07-02 21:56:53 ----A---- C:\Windows\system32\ocsetup.exe
2012-07-02 21:56:53 ----A---- C:\Windows\system32\ntmarta.dll
2012-07-02 21:56:53 ----A---- C:\Windows\system32\drivers\nwifi.sys
2012-07-02 21:56:52 ----A---- C:\Windows\system32\rasmontr.dll
2012-07-02 21:56:52 ----A---- C:\Windows\system32\rasgcw.dll
2012-07-02 21:56:52 ----A---- C:\Windows\system32\rasdlg.dll
2012-07-02 21:56:52 ----A---- C:\Windows\system32\rasdial.exe
2012-07-02 21:56:52 ----A---- C:\Windows\system32\ntprint.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\regsvc.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\rastapi.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\rasppp.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\rasplap.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\rasmans.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\rasdiag.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\raschap.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\rasapi32.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\RacEngn.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\Query.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\qmgr.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\qedit.dll
2012-07-02 21:56:51 ----A---- C:\Windows\system32\drivers\rassstp.sys
2012-07-02 21:56:51 ----A---- C:\Windows\system32\drivers\raspppoe.sys
2012-07-02 21:56:50 ----A---- C:\Windows\system32\RelMon.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\rekeywiz.exe
2012-07-02 21:56:50 ----A---- C:\Windows\system32\regapi.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\reg.exe
2012-07-02 21:56:50 ----A---- C:\Windows\system32\rdpwsx.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\prnntfy.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\printui.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\PresentationSettings.exe
2012-07-02 21:56:50 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2012-07-02 21:56:50 ----A---- C:\Windows\system32\PresentationHost.exe
2012-07-02 21:56:50 ----A---- C:\Windows\system32\drivers\rdbss.sys
2012-07-02 21:56:49 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2012-07-02 21:56:49 ----A---- C:\Windows\system32\powrprof.dll
2012-07-02 21:56:48 ----A---- C:\Windows\system32\QAGENTRT.DLL
2012-07-02 21:56:48 ----A---- C:\Windows\system32\puiapi.dll
2012-07-02 21:56:48 ----A---- C:\Windows\system32\propsys.dll
2012-07-02 21:56:48 ----A---- C:\Windows\system32\propdefs.dll
2012-07-02 21:56:48 ----A---- C:\Windows\system32\profsvc.dll
2012-07-02 21:56:47 ----A---- C:\Windows\system32\PSHED.DLL
2012-07-02 21:56:45 ----A---- C:\Windows\system32\sendmail.dll
2012-07-02 21:56:44 ----A---- C:\Windows\system32\setupapi.dll
2012-07-02 21:56:44 ----A---- C:\Windows\system32\sethc.exe
2012-07-02 21:56:44 ----A---- C:\Windows\system32\services.exe
2012-07-02 21:56:40 ----A---- C:\Windows\system32\eapphost.dll
2012-07-02 21:56:40 ----A---- C:\Windows\system32\eappgnui.dll
2012-07-02 21:56:40 ----A---- C:\Windows\system32\drivers\ecache.sys
2012-07-02 21:56:36 ----A---- C:\Windows\system32\eappcfg.dll
2012-07-02 21:56:36 ----A---- C:\Windows\system32\eapp3hst.dll
2012-07-02 21:56:35 ----A---- C:\Windows\system32\evr.dll
2012-07-02 21:56:35 ----A---- C:\Windows\system32\EhStorAPI.dll
2012-07-02 21:56:35 ----A---- C:\Windows\system32\dwm.exe
2012-07-02 21:56:35 ----A---- C:\Windows\system32\dsprop.dll
2012-07-02 21:56:35 ----A---- C:\Windows\system32\dsound.dll
2012-07-02 21:56:35 ----A---- C:\Windows\system32\drivers\dxg.sys
2012-07-02 21:56:35 ----A---- C:\Windows\system32\drivers\Dumpata.sys
2012-07-02 21:56:34 ----A---- C:\Windows\system32\f3ahvoas.dll
2012-07-02 21:56:34 ----A---- C:\Windows\system32\ExplorerFrame.dll
2012-07-02 21:56:34 ----A---- C:\Windows\system32\eudcedit.exe
2012-07-02 21:56:34 ----A---- C:\Windows\system32\esent.dll
2012-07-02 21:56:34 ----A---- C:\Windows\system32\drivers\exfat.sys
2012-07-02 21:56:34 ----A---- C:\Windows\explorer.exe
2012-07-02 21:56:33 ----A---- C:\Windows\system32\es.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\emdmgmt.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\EhStorShell.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\EhStorAuthn.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\dimsroam.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\diagperf.dll
2012-07-02 21:56:33 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-07-02 21:56:32 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-07-02 21:56:32 ----A---- C:\Windows\system32\drivers\disk.sys
2012-07-02 21:56:32 ----A---- C:\Windows\system32\diskraid.exe
2012-07-02 21:56:32 ----A---- C:\Windows\system32\diskpart.exe
2012-07-02 21:56:32 ----A---- C:\Windows\system32\dfsr.exe
2012-07-02 21:56:32 ----A---- C:\Windows\system32\dfshim.dll
2012-07-02 21:56:32 ----A---- C:\Windows\system32\devmgr.dll
2012-07-02 21:56:31 ----A---- C:\Windows\system32\drvstore.dll
2012-07-02 21:56:31 ----A---- C:\Windows\system32\dpapimig.exe
2012-07-02 21:56:31 ----A---- C:\Windows\system32\dot3svc.dll
2012-07-02 21:56:31 ----A---- C:\Windows\system32\dot3msm.dll
2012-07-02 21:56:31 ----A---- C:\Windows\system32\dot3cfg.dll
2012-07-02 21:56:31 ----A---- C:\Windows\system32\dhcpcsvc.dll
2012-07-02 21:56:30 ----A---- C:\Windows\system32\drvinst.exe
2012-07-02 21:56:30 ----A---- C:\Windows\system32\drmv2clt.dll
2012-07-02 21:56:30 ----A---- C:\Windows\system32\drmmgrtn.dll
2012-07-02 21:56:29 ----A---- C:\Windows\system32\dmusic.dll
2012-07-02 21:56:29 ----A---- C:\Windows\system32\dmsynth.dll
2012-07-02 21:56:28 ----A---- C:\Windows\system32\hbaapi.dll
2012-07-02 21:56:28 ----A---- C:\Windows\system32\gpresult.exe
2012-07-02 21:56:27 ----A---- C:\Windows\system32\iasnap.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\IasMigReader.exe
2012-07-02 21:56:27 ----A---- C:\Windows\system32\IasMigPlugin.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\iashlpr.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\iasdatastore.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\iasads.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\iasacct.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\gpupdate.exe
2012-07-02 21:56:27 ----A---- C:\Windows\system32\gpsvc.dll
2012-07-02 21:56:27 ----A---- C:\Windows\system32\drivers\hidclass.sys
2012-07-02 21:56:26 ----A---- C:\Windows\system32\hidserv.dll
2012-07-02 21:56:26 ----A---- C:\Windows\system32\hdwwiz.exe
2012-07-02 21:56:26 ----A---- C:\Windows\system32\fontext.dll
2012-07-02 21:56:26 ----A---- C:\Windows\system32\findstr.exe
2012-07-02 21:56:26 ----A---- C:\Windows\system32\drivers\hidusb.sys
2012-07-02 21:56:26 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2012-07-02 21:56:25 ----A---- C:\Windows\system32\gpapi.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\gdi32.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\feclient.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdWSD.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdWCN.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdSSDP.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdProxy.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdeploy.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdBthProxy.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fdBth.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\fc.exe
2012-07-02 21:56:25 ----A---- C:\Windows\system32\Faultrep.dll
2012-07-02 21:56:25 ----A---- C:\Windows\system32\drivers\fastfat.sys
2012-07-02 21:56:24 ----A---- C:\Windows\system32\gpedit.dll
2012-07-02 21:56:23 ----A---- C:\Windows\system32\fundisc.dll
2012-07-02 21:56:23 ----A---- C:\Windows\system32\ftp.exe
2012-07-02 21:56:22 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2012-07-02 21:56:22 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2012-07-02 21:56:21 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-07-02 21:56:21 ----A---- C:\Windows\system32\drivers\ataport.sys
2012-07-02 21:56:21 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\autochk.exe
2012-07-02 21:56:21 ----A---- C:\Windows\system32\authz.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\authui.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\audiosrv.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\AudioSes.dll
2012-07-02 21:56:21 ----A---- C:\Windows\system32\audiodg.exe
2012-07-02 21:56:20 ----A---- C:\Windows\system32\autofmt.exe
2012-07-02 21:56:20 ----A---- C:\Windows\system32\autoconv.exe
2012-07-02 21:56:19 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2012-07-02 21:56:19 ----A---- C:\Windows\system32\autoplay.dll
2012-07-02 21:56:18 ----A---- C:\Windows\system32\drivers\atapi.sys
2012-07-02 21:56:18 ----A---- C:\Windows\system32\brcpl.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\drivers\bridge.sys
2012-07-02 21:56:17 ----A---- C:\Windows\system32\bthci.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\browseui.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\blackbox.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\bitsigd.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\bcrypt.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\basecsp.dll
2012-07-02 21:56:17 ----A---- C:\Windows\system32\azroles.dll
2012-07-02 21:56:16 ----A---- C:\Windows\system32\drivers\acpi.sys
2012-07-02 21:56:16 ----A---- C:\Windows\system32\BFE.DLL
2012-07-02 21:56:16 ----A---- C:\Windows\system32\accessibilitycpl.dll
2012-07-02 21:56:15 ----A---- C:\Windows\system32\apphelp.dll
2012-07-02 21:56:14 ----A---- C:\Windows\system32\apds.dll
2012-07-02 21:56:14 ----A---- C:\Windows\system32\adsmsext.dll
2012-07-02 21:56:13 ----A---- C:\Windows\system32\advapi32.dll
2012-07-02 21:56:13 ----A---- C:\Windows\system32\adtschema.dll
2012-07-02 21:56:13 ----A---- C:\Windows\system32\adsldpc.dll
2012-07-02 21:56:12 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2012-07-02 21:56:12 ----A---- C:\Windows\system32\credui.dll
2012-07-02 21:56:12 ----A---- C:\Windows\system32\connect.dll
2012-07-02 21:56:12 ----A---- C:\Windows\system32\conime.exe
2012-07-02 21:56:12 ----A---- C:\Windows\system32\comuid.dll
2012-07-02 21:56:12 ----A---- C:\Windows\system32\comsvcs.dll
2012-07-02 21:56:11 ----A---- C:\Windows\system32\comdlg32.dll
2012-07-02 21:56:11 ----A---- C:\Windows\system32\cmmon32.exe
2012-07-02 21:56:11 ----A---- C:\Windows\system32\cmdial32.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2012-07-02 21:56:10 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\DevicePairing.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\DeviceEject.exe
2012-07-02 21:56:10 ----A---- C:\Windows\system32\dbgeng.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\davclnt.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\dataclen.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\d3d9.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\cscdll.dll
2012-07-02 21:56:10 ----A---- C:\Windows\system32\cscapi.dll
2012-07-02 21:56:09 ----A---- C:\Windows\system32\drivers\cdrom.sys
2012-07-02 21:56:09 ----A---- C:\Windows\system32\csrstub.exe
2012-07-02 21:56:09 ----A---- C:\Windows\system32\cscript.exe
2012-07-02 21:56:09 ----A---- C:\Windows\system32\cryptui.dll
2012-07-02 21:56:09 ----A---- C:\Windows\system32\certmgr.dll
2012-07-02 21:56:09 ----A---- C:\Windows\system32\certcli.dll
2012-07-02 21:56:08 ----A---- C:\Windows\system32\CertEnrollUI.dll
2012-07-02 21:56:08 ----A---- C:\Windows\system32\CertEnroll.dll
2012-07-02 21:56:08 ----A---- C:\Windows\system32\bthudtask.exe
2012-07-02 21:56:08 ----A---- C:\Windows\system32\bthserv.dll
2012-07-02 21:56:07 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2012-07-02 21:56:07 ----A---- C:\Windows\system32\cipher.exe
2012-07-02 21:56:07 ----A---- C:\Windows\system32\ci.dll
2012-07-02 21:56:07 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2012-07-02 21:56:07 ----A---- C:\Windows\system32\chsbrkr.dll
2012-07-02 21:56:07 ----A---- C:\Windows\system32\cbsra.exe
2012-07-02 21:56:06 ----A---- C:\Windows\system32\clfs.sys
2012-07-02 21:56:06 ----A---- C:\Windows\system32\chtbrkr.dll
2012-07-02 21:56:06 ----A---- C:\Windows\system32\certreq.exe
2012-07-02 21:56:06 ----A---- C:\Windows\system32\certprop.dll
2012-07-02 21:56:05 ----A---- C:\Windows\system32\msihnd.dll
2012-07-02 21:56:05 ----A---- C:\Windows\system32\msiexec.exe
2012-07-02 21:56:05 ----A---- C:\Windows\system32\msftedit.dll
2012-07-02 21:56:05 ----A---- C:\Windows\system32\msexcl40.dll
2012-07-02 21:56:05 ----A---- C:\Windows\system32\msexch40.dll
2012-07-02 21:56:05 ----A---- C:\Windows\system32\msdtctm.dll
2012-07-02 21:56:05 ----A---- C:\Windows\system32\certutil.exe
2012-07-02 21:56:04 ----A---- C:\Windows\system32\msi.dll
2012-07-02 21:56:02 ----A---- C:\Windows\system32\msdtcprx.dll
2012-07-02 21:56:02 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2012-07-02 21:56:02 ----A---- C:\Windows\system32\msctf.dll
2012-07-02 21:56:01 ----A---- C:\Windows\system32\msctfui.dll
2012-07-02 21:56:01 ----A---- C:\Windows\system32\msctfp.dll
2012-07-02 21:56:00 ----A---- C:\Windows\system32\msimsg.dll
2012-07-02 21:56:00 ----A---- C:\Windows\system32\MPSSVC.dll
2012-07-02 21:56:00 ----A---- C:\Windows\system32\mprapi.dll
2012-07-02 21:56:00 ----A---- C:\Windows\system32\mpr.dll
2012-07-02 21:55:59 ----A---- C:\Windows\system32\mscandui.dll
2012-07-02 21:55:59 ----A---- C:\Windows\system32\modemui.dll
2012-07-02 21:55:59 ----A---- C:\Windows\system32\MMDevAPI.dll
2012-07-02 21:55:58 ----A---- C:\Windows\system32\mscories.dll
2012-07-02 21:55:58 ----A---- C:\Windows\system32\mscorier.dll
2012-07-02 21:55:58 ----A---- C:\Windows\system32\mscoree.dll
2012-07-02 21:55:58 ----A---- C:\Windows\system32\mscms.dll
2012-07-02 21:55:58 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2012-07-02 21:55:57 ----A---- C:\Windows\system32\netcenter.dll
2012-07-02 21:55:57 ----A---- C:\Windows\system32\netapi32.dll
2012-07-02 21:55:57 ----A---- C:\Windows\system32\ncryptui.dll
2012-07-02 21:55:57 ----A---- C:\Windows\system32\drivers\netbt.sys
2012-07-02 21:55:56 ----A---- C:\Windows\system32\NetProjW.dll
2012-07-02 21:55:56 ----A---- C:\Windows\system32\netplwiz.dll
2012-07-02 21:55:56 ----A---- C:\Windows\system32\netlogon.dll
2012-07-02 21:55:56 ----A---- C:\Windows\system32\ncrypt.dll
2012-07-02 21:55:56 ----A---- C:\Windows\system32\mtxclu.dll
2012-07-02 21:55:56 ----A---- C:\Windows\system32\drivers\netio.sys
2012-07-02 21:55:56 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2012-07-02 21:55:56 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-07-02 21:55:56 ----A---- C:\Windows\system32\drivers\mup.sys
2012-07-02 21:55:55 ----A---- C:\Windows\system32\netshell.dll
2012-07-02 21:55:55 ----A---- C:\Windows\system32\NcdProp.dll
2012-07-02 21:55:55 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2012-07-02 21:55:54 ----A---- C:\Windows\system32\newdev.exe
2012-07-02 21:55:54 ----A---- C:\Windows\system32\newdev.dll
2012-07-02 21:55:54 ----A---- C:\Windows\system32\networkexplorer.dll
2012-07-02 21:55:53 ----A---- C:\Windows\system32\networkmap.dll
2012-07-02 21:55:53 ----A---- C:\Windows\system32\networkitemfactory.dll
2012-07-02 21:55:52 ----A---- C:\Windows\system32\msnetobj.dll
2012-07-02 21:55:52 ----A---- C:\Windows\system32\msltus40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msscntrs.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msscb.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msrepl40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msrd3x40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msrd2x40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\mspbde40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msjtes40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msjter40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msjint40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msjetoledb40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msjet40.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msinfo32.exe
2012-07-02 21:55:51 ----A---- C:\Windows\system32\msimtf.dll
2012-07-02 21:55:51 ----A---- C:\Windows\system32\drivers\msrpc.sys
2012-07-02 21:55:51 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2012-07-02 21:55:50 ----A---- C:\Windows\system32\msxbde40.dll
2012-07-02 21:55:50 ----A---- C:\Windows\system32\mswstr10.dll
2012-07-02 21:55:50 ----A---- C:\Windows\system32\mswsock.dll
2012-07-02 21:55:50 ----A---- C:\Windows\system32\mswdat10.dll
2012-07-02 21:55:50 ----A---- C:\Windows\system32\msvcp60.dll
2012-07-02 21:55:50 ----A---- C:\Windows\system32\msutb.dll
2012-07-02 21:55:50 ----A---- C:\Windows\system32\msisip.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\MSVidCtl.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mstlsapi.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mssvp.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\msstrc.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mssrch.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mssprxy.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mssphtb.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mssph.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\mssitlb.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\msshooks.dll
2012-07-02 21:55:49 ----A---- C:\Windows\system32\msscp.dll
2012-07-02 21:55:48 ----A---- C:\Windows\system32\mstext40.dll
2012-07-02 21:55:47 ----A---- C:\Windows\system32\InkEd.dll
2012-07-02 21:55:45 ----A---- C:\Windows\system32\infocardapi.dll
2012-07-02 21:55:45 ----A---- C:\Windows\system32\inetppui.dll
2012-07-02 21:55:45 ----A---- C:\Windows\system32\inetpp.dll
2012-07-02 21:55:42 ----A---- C:\Windows\system32\iscsilog.dll
2012-07-02 21:55:42 ----A---- C:\Windows\system32\IPSECSVC.DLL
2012-07-02 21:55:42 ----A---- C:\Windows\system32\imm32.dll
2012-07-02 21:55:41 ----A---- C:\Windows\system32\ipsmsnap.dll
2012-07-02 21:55:40 ----A---- C:\Windows\system32\ipsecsnp.dll
2012-07-02 21:55:40 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2012-07-02 21:55:40 ----A---- C:\Windows\system32\ipconfig.exe
2012-07-02 21:55:40 ----A---- C:\Windows\system32\input.dll
2012-07-02 21:55:39 ----A---- C:\Windows\system32\ifmon.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\icardres.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\icardagt.exe
2012-07-02 21:55:38 ----A---- C:\Windows\system32\iassvcs.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\iassdo.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\iassam.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\iasrecst.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\iasrad.dll
2012-07-02 21:55:38 ----A---- C:\Windows\system32\iaspolcy.dll
2012-07-02 21:55:37 ----A---- C:\Windows\system32\IMJP10K.DLL
2012-07-02 21:55:37 ----A---- C:\Windows\system32\imapi2fs.dll
2012-07-02 21:55:37 ----A---- C:\Windows\system32\imapi2.dll
2012-07-02 21:55:37 ----A---- C:\Windows\system32\imapi.dll
2012-07-02 21:55:36 ----A---- C:\Windows\system32\IKEEXT.DLL
2012-07-02 21:55:31 ----A---- C:\Windows\system32\milcore.dll
2012-07-02 21:55:30 ----A---- C:\Windows\system32\mimefilt.dll
2012-07-02 21:55:29 ----A---- C:\Windows\system32\mmcico.dll
2012-07-02 21:55:29 ----A---- C:\Windows\system32\mmci.dll
2012-07-02 21:55:29 ----A---- C:\Windows\system32\midimap.dll
2012-07-02 21:55:28 ----A---- C:\Windows\system32\mmcndmgr.dll
2012-07-02 21:55:28 ----A---- C:\Windows\system32\mmc.exe
2012-07-02 21:55:27 ----A---- C:\Windows\system32\korwbrkr.dll
2012-07-02 21:55:27 ----A---- C:\Windows\system32\drivers\ks.sys
2012-07-02 21:55:25 ----A---- C:\Windows\system32\l2nacp.dll
2012-07-02 21:55:25 ----A---- C:\Windows\system32\kdusb.dll
2012-07-02 21:55:25 ----A---- C:\Windows\system32\kdcom.dll
2012-07-02 21:55:25 ----A---- C:\Windows\system32\kd1394.dll
2012-07-02 21:55:25 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2012-07-02 21:55:24 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2012-07-02 21:55:24 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2012-07-02 21:55:24 ----A---- C:\Windows\system32\mcmde.dll
2012-07-02 21:55:24 ----A---- C:\Windows\system32\mblctr.exe
2012-07-02 21:55:24 ----A---- C:\Windows\system32\logagent.exe
2012-07-02 21:55:23 ----A---- C:\Windows\system32\logman.exe
2012-07-02 21:55:21 ----A---- C:\Windows\system32\shsetup.dll
2012-07-02 21:55:21 ----A---- C:\Windows\system32\Magnify.exe
2012-07-02 21:55:20 ----A---- C:\Windows\system32\wercon.exe
2012-07-02 21:55:20 ----A---- C:\Windows\system32\wer.dll
2012-07-02 21:55:20 ----A---- C:\Windows\system32\WebClnt.dll
2012-07-02 21:55:19 ----A---- C:\Windows\system32\wdscore.dll
2012-07-02 21:55:19 ----A---- C:\Windows\system32\wdc.dll
2012-07-02 21:55:17 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2012-07-02 21:55:17 ----A---- C:\Windows\system32\whealogr.dll
2012-07-02 21:55:17 ----A---- C:\Windows\system32\wevtutil.exe
2012-07-02 21:55:17 ----A---- C:\Windows\system32\wevtsvc.dll
2012-07-02 21:55:17 ----A---- C:\Windows\system32\WerFaultSecure.exe
2012-07-02 21:55:16 ----A---- C:\Windows\system32\wevtapi.dll
2012-07-02 21:55:16 ----A---- C:\Windows\system32\wersvc.dll
2012-07-02 21:55:16 ----A---- C:\Windows\system32\WerFault.exe
2012-07-02 21:55:15 ----A---- C:\Windows\system32\win32spl.dll
2012-07-02 21:55:13 ----A---- C:\Windows\system32\wiaservc.dll
2012-07-02 21:55:13 ----A---- C:\Windows\system32\wiaaut.dll
2012-07-02 21:55:13 ----A---- C:\Windows\system32\version.dll
2012-07-02 21:55:13 ----A---- C:\Windows\system32\vdmdbg.dll
2012-07-02 21:55:12 ----A---- C:\Windows\system32\vdsutil.dll
2012-07-02 21:55:12 ----A---- C:\Windows\system32\vdsdyn.dll
2012-07-02 21:55:12 ----A---- C:\Windows\system32\vds.exe
2012-07-02 21:55:12 ----A---- C:\Windows\system32\user32.dll
2012-07-02 21:55:12 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-07-02 21:55:12 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-07-02 21:55:11 ----A---- C:\Windows\system32\uxsms.dll
2012-07-02 21:55:11 ----A---- C:\Windows\system32\Utilman.exe
2012-07-02 21:55:11 ----A---- C:\Windows\system32\userenv.dll
2012-07-02 21:55:11 ----A---- C:\Windows\system32\usercpl.dll
2012-07-02 21:55:07 ----A---- C:\Windows\system32\drivers\watchdog.sys
2012-07-02 21:55:06 ----A---- C:\Windows\system32\WcnNetsh.dll
2012-07-02 21:55:06 ----A---- C:\Windows\system32\wcncsvc.dll
2012-07-02 21:55:05 ----A---- C:\Windows\system32\wcnwiz2.dll
2012-07-02 21:55:04 ----A---- C:\Windows\system32\wcnwiz.dll
2012-07-02 21:55:02 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2012-07-02 21:54:57 ----A---- C:\Windows\system32\VSSVC.exe
2012-07-02 21:54:56 ----A---- C:\Windows\system32\w32time.dll
2012-07-02 21:54:56 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-07-02 21:54:54 ----A---- C:\Windows\system32\WSDMon.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\wsdchngr.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\wscsvc.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\wscript.exe
2012-07-02 21:54:54 ----A---- C:\Windows\system32\wscntfy.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\wscisvif.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\WscEapPr.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\wscapi.dll
2012-07-02 21:54:54 ----A---- C:\Windows\system32\WMVXENCD.DLL
2012-07-02 21:54:54 ----A---- C:\Windows\system32\WMVSDECD.DLL
2012-07-02 21:54:54 ----A---- C:\Windows\system32\WMVENCOD.DLL
2012-07-02 21:54:54 ----A---- C:\Windows\system32\vssapi.dll
2012-07-02 21:54:53 ----A---- C:\Windows\system32\xmlfilter.dll
2012-07-02 21:54:53 ----A---- C:\Windows\system32\wusa.exe
2012-07-02 21:54:53 ----A---- C:\Windows\system32\wpcsvc.dll
2012-07-02 21:54:53 ----A---- C:\Windows\system32\wpccpl.dll
2012-07-02 21:54:53 ----A---- C:\Windows\system32\wpcao.dll
2012-07-02 21:54:53 ----A---- C:\Windows\system32\wow32.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wsnmp32.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wshext.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wshbth.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wsepno.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wlgpclnt.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\Wldap32.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wlanui.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wlanpref.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wlangpui.dll
2012-07-02 21:54:52 ----A---- C:\Windows\system32\wisptis.exe
2012-07-02 21:54:51 ----A---- C:\Windows\system32\wmpeffects.dll
2012-07-02 21:54:51 ----A---- C:\Windows\system32\WMNetMgr.dll
2012-07-02 21:54:51 ----A---- C:\Windows\system32\WinSCard.dll
2012-07-02 21:54:51 ----A---- C:\Windows\system32\WinSAT.exe
2012-07-02 21:54:51 ----A---- C:\Windows\system32\winrnr.dll
2012-07-02 21:54:51 ----A---- C:\Windows\system32\winresume.exe
2012-07-02 21:54:51 ----A---- C:\Windows\system32\winlogon.exe
2012-07-02 21:54:51 ----A---- C:\Windows\system32\winload.exe
2012-07-02 21:54:50 ----A---- C:\Windows\system32\wmdrmsdk.dll
2012-07-02 21:54:50 ----A---- C:\Windows\system32\Storprop.dll
2012-07-02 21:54:50 ----A---- C:\Windows\system32\drivers\stream.sys
2012-07-02 21:54:50 ----A---- C:\Windows\system32\drivers\Storport.sys
2012-07-02 21:54:49 ----A---- C:\Windows\system32\sud.dll
2012-07-02 21:54:49 ----A---- C:\Windows\system32\srcore.dll
2012-07-02 21:54:49 ----A---- C:\Windows\system32\srchadmin.dll
2012-07-02 21:54:48 ----A---- C:\Windows\system32\sysmain.dll
2012-07-02 21:54:48 ----A---- C:\Windows\system32\sysclass.dll
2012-07-02 21:54:48 ----A---- C:\Windows\system32\SyncCenter.dll
2012-07-02 21:54:48 ----A---- C:\Windows\system32\swprv.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\smss.exe
2012-07-02 21:54:47 ----A---- C:\Windows\system32\SmiEngine.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\SMBHelperClass.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\slwmi.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\slwga.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\SLUI.exe
2012-07-02 21:54:47 ----A---- C:\Windows\system32\SLsvc.exe
2012-07-02 21:54:47 ----A---- C:\Windows\system32\slmgr.vbs
2012-07-02 21:54:47 ----A---- C:\Windows\system32\slcc.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\SLC.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\shwebsvc.dll
2012-07-02 21:54:47 ----A---- C:\Windows\system32\drivers\smb.sys
2012-07-02 21:54:46 ----A---- C:\Windows\system32\sqlsrv32.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spwizui.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spwinsat.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spreview.exe
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spp.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spoolss.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spinstall.exe
2012-07-02 21:54:46 ----A---- C:\Windows\system32\sperror.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\spcmsg.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\SLUINotify.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\SLLUA.exe
2012-07-02 21:54:46 ----A---- C:\Windows\system32\SLCommDlg.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\slcinst.dll
2012-07-02 21:54:46 ----A---- C:\Windows\system32\SLCExt.dll
2012-07-02 21:54:45 ----A---- C:\Windows\system32\TsWpfWrp.exe
2012-07-02 21:54:45 ----A---- C:\Windows\system32\TSTheme.exe
2012-07-02 21:54:45 ----A---- C:\Windows\system32\softkbd.dll
2012-07-02 21:54:45 ----A---- C:\Windows\system32\SnippingTool.exe
2012-07-02 21:54:45 ----A---- C:\Windows\system32\SndVol.exe
2012-07-02 21:54:45 ----A---- C:\Windows\system32\drivers\spsys.sys
2012-07-02 21:54:44 ----A---- C:\Windows\system32\zipfldr.dll
2012-07-02 21:54:44 ----A---- C:\Windows\system32\untfs.dll
2012-07-02 21:54:44 ----A---- C:\Windows\system32\tscupgrd.exe
2012-07-02 21:54:44 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2012-07-02 21:54:44 ----A---- C:\Windows\system32\drivers\usb8023.sys
2012-07-02 21:54:44 ----A---- C:\Windows\system32\drivers\udfs.sys
2012-07-02 21:54:43 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-07-02 21:54:43 ----A---- C:\Windows\system32\ulib.dll
2012-07-02 21:54:43 ----A---- C:\Windows\system32\uDWM.dll
2012-07-02 21:54:43 ----A---- C:\Windows\system32\systemcpl.dll
2012-07-02 21:54:43 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-07-02 21:54:43 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-07-02 21:54:43 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2012-07-02 21:54:40 ----A---- C:\Windows\system32\tquery.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\themeui.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\themecpl.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\thawbrkr.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\termsrv.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\tcpmon.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\tcpipcfg.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\tapisrv.dll
2012-07-02 21:54:40 ----A---- C:\Windows\system32\drivers\termdd.sys
2012-07-02 21:54:40 ----A---- C:\Windows\system32\drivers\tdx.sys
2012-07-02 21:33:21 ----D---- C:\PerfLogs
2012-07-02 20:56:15 ----A---- C:\Windows\system32\recdisc.exe
2012-07-02 20:56:11 ----A---- C:\Windows\system32\sdspres.dll
2012-07-02 20:55:47 ----A---- C:\Windows\system32\sxproxy.dll
2012-07-02 20:55:13 ----A---- C:\Windows\system32\mstask.dll
2012-07-02 20:55:13 ----A---- C:\Windows\system32\mssha.dll
2012-07-02 20:55:13 ----A---- C:\Windows\system32\msrdc.dll
2012-07-02 20:55:13 ----A---- C:\Windows\system32\msra.exe
2012-07-02 20:55:13 ----A---- C:\Windows\system32\drivers\mstee.sys
2012-07-02 20:55:12 ----A---- C:\Windows\system32\drivers\mssmbios.sys
2012-07-02 20:55:12 ----A---- C:\Windows\system32\drivers\mspqm.sys
2012-07-02 20:55:12 ----A---- C:\Windows\system32\drivers\mspclock.sys
2012-07-02 20:55:10 ----A---- C:\Windows\system32\NAPMONTR.DLL
2012-07-02 20:55:10 ----A---- C:\Windows\system32\napipsec.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\NapiNSP.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\NAPHLPR.DLL
2012-07-02 20:55:10 ----A---- C:\Windows\system32\napdsnap.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2012-07-02 20:55:10 ----A---- C:\Windows\system32\Mystify.scr
2012-07-02 20:55:10 ----A---- C:\Windows\system32\mydocs.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\mycomput.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\MuiUnattend.exe
2012-07-02 20:55:10 ----A---- C:\Windows\system32\mtxoci.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\mtxlegih.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\mtxdm.dll
2012-07-02 20:55:10 ----A---- C:\Windows\system32\mtstocom.exe
2012-07-02 20:55:09 ----A---- C:\Windows\system32\msvbvm60.dll
2012-07-02 20:55:08 ----A---- C:\Windows\system32\mswmdm.dll
2012-07-02 20:55:08 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2012-07-02 20:55:08 ----A---- C:\Windows\system32\msdtcuiu.dll
2012-07-02 20:55:08 ----A---- C:\Windows\system32\drivers\msfs.sys
2012-07-02 20:55:06 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2012-07-02 20:55:06 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msmmsp.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdtclog.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdtckrm.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdtc.exe
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdt.exe
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdt.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdri.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdmo.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdelta.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdart.dll
2012-07-02 20:55:06 ----A---- C:\Windows\system32\msdadiag.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\mspatcha.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\mspaint.exe
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msorcl32.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msoert2.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msoeacct.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msobjs.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msidle.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msident.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\msidcrl30.dll
2012-07-02 20:55:05 ----A---- C:\Windows\system32\drivers\mskssrv.sys
2012-07-02 20:55:04 ----A---- C:\Windows\system32\msieftp.dll
2012-07-02 20:55:03 ----A---- C:\Windows\system32\drivers\msisadrv.sys
2012-07-02 20:55:01 ----A---- C:\Windows\system32\notepad.exe
2012-07-02 20:55:01 ----A---- C:\Windows\system32\Nlsdl.dll
2012-07-02 20:55:01 ----A---- C:\Windows\notepad.exe
2012-07-02 20:55:00 ----A---- C:\Windows\system32\nlsbres.dll
2012-07-02 20:55:00 ----A---- C:\Windows\system32\nlmgp.dll
2012-07-02 20:54:59 ----A---- C:\Windows\system32\odbctrac.dll
2012-07-02 20:54:59 ----A---- C:\Windows\system32\odbccu32.dll
2012-07-02 20:54:59 ----A---- C:\Windows\system32\odbccr32.dll
2012-07-02 20:54:59 ----A---- C:\Windows\system32\odbcbcp.dll
2012-07-02 20:54:59 ----A---- C:\Windows\system32\objsel.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\odbcjt32.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\ntvdm.exe
2012-07-02 20:54:58 ----A---- C:\Windows\system32\ntshrui.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\ntdsapi.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\nsisvc.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\nsi.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\nshipsec.dll
2012-07-02 20:54:58 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2012-07-02 20:54:57 ----A---- C:\Windows\system32\ntlanman.dll
2012-07-02 20:54:57 ----A---- C:\Windows\system32\netdiagfx.dll
2012-07-02 20:54:57 ----A---- C:\Windows\system32\netcorehc.dll
2012-07-02 20:54:57 ----A---- C:\Windows\system32\netcfgx.dll
2012-07-02 20:54:57 ----A---- C:\Windows\system32\netcfg.exe
2012-07-02 20:54:57 ----A---- C:\Windows\system32\netbtugc.exe
2012-07-02 20:54:57 ----A---- C:\Windows\system32\drivers\null.sys
2012-07-02 20:54:57 ----A---- C:\Windows\system32\drivers\netbios.sys
2012-07-02 20:54:56 ----A---- C:\Windows\system32\netiougc.exe
2012-07-02 20:54:56 ----A---- C:\Windows\system32\netid.dll
2012-07-02 20:54:56 ----A---- C:\Windows\system32\ncsi.dll
2012-07-02 20:54:56 ----A---- C:\Windows\system32\ncobjapi.dll
2012-07-02 20:54:56 ----A---- C:\Windows\system32\nci.dll
2012-07-02 20:54:56 ----A---- C:\Windows\system32\nbtstat.exe
2012-07-02 20:54:56 ----A---- C:\Windows\system32\NAPSTAT.EXE
2012-07-02 20:54:55 ----A---- C:\Windows\system32\net1.exe
2012-07-02 20:54:55 ----A---- C:\Windows\system32\net.exe
2012-07-02 20:54:55 ----A---- C:\Windows\system32\ndfetw.dll
2012-07-02 20:54:55 ----A---- C:\Windows\system32\ndfapi.dll
2012-07-02 20:54:55 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2012-07-02 20:54:55 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2012-07-02 20:54:55 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2012-07-02 20:54:54 ----A---- C:\Windows\system32\nlasvc.dll
2012-07-02 20:54:54 ----A---- C:\Windows\system32\nlaapi.dll
2012-07-02 20:54:54 ----A---- C:\Windows\system32\netman.dll
2012-07-02 20:54:53 ----A---- C:\Windows\system32\netprofm.dll
2012-07-02 20:54:53 ----A---- C:\Windows\system32\netprof.dll
2012-07-02 20:54:53 ----A---- C:\Windows\system32\Netplwiz.exe
2012-07-02 20:54:52 ----A---- C:\Windows\system32\makecab.exe
2012-07-02 20:54:52 ----A---- C:\Windows\system32\luainstall.dll
2012-07-02 |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Sat Jul 07, 2012 12:01 pm Post subject: |
|
|
Hi Wescomd,
How is your computer running, are you having any problems?
ESET online scannner
Note: You can use either Internet Explorer or Mozilla FireFox for this scan.
Note: If you are using Windows Vista or Windows 7, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.
- First please Disable any Antivirus you have active, as shown in This topic.
- Note: Don't forget to re-enable it after the scan.
- Next hold down Control then click on the following link to open a new window to ESET online scannner
- Select the option YES, I accept the Terms of Use then click on Start.
| Quote: |
Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox. |
When prompted allow the Add-On/Active X to install.
Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
Now click on Advanced Settings and select the following:- Scan for potentially unwanted applications
- Scan for potentially unsafe applications
- Enable Anti-Stealth Technology
- Now click on Start.
- The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
- When completed the Online Scan will begin automatically.
- Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
- When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
- Now click on Finish.
- Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
- Copy and paste that log as a reply to this topic.
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Sun Jul 08, 2012 6:39 am Post subject: Babylon |
|
|
My computer seems to be running fine.
Here is the scan from eset. AFter so many scans I just missed the part about making sure the delete threats box is not checked.
C:\Windows.old\Program Files\Mozilla Firefox\plugins\NPZoneSB.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Windows.old\Program Files\ZoneAlarmSB\bar\1.bin\NPZONESB.DLL Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Windows.old\Program Files\ZoneAlarmSB\bar\1.bin\Z4PLUGIN.DLL a variant of Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\WINNT\system32\Process.exe Win32/PrcView application cleaned by deleting - quarantined
C:\Zone_alarm\zlsSetup_70_483_000_en.exe a variant of Win32/AdInstaller application cleaned by deleting - quarantined
Wes |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Sun Jul 08, 2012 7:48 am Post subject: |
|
|
Hi Wescomd,
The good news is your logs appear to be clean.
If you are having no further problems you should be good to go.
Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:
Clean up with OTL
- Right click on OTL.exe And select Run as administrator to run it.
- This will remove some of the tools we used to clean your pc.
- Close all other programs apart from OTL as this step will require a reboot
- On the OTL main screen, press the CleanUp! button
- Say Yes to the prompt and then allow the program to reboot your computer.
You can now delete any tools/logs we used if they remain on your Desktop.
Protection Programs
Don't forget to re-enable any protection programs we disabled during your fix.
Update your Antivirus programs and other security products regularly to avoid new threats that could infect your system.
You can use one of these sites to check if any updates are needed for your pc.
Secunia Software Inspector
F-secure Health Check
Microsoft Windows Update
Microsoft releases patches for Windows and Office products regularly to patch up Windows and Office products loopholes and fix any bugs found. Install the updates immediately if they are found.
To update Windows
Go to Start > All Programs > Windows Update > Check for updates.
To update Office
Open up any Office program.
Go to Help > Check for Updates
I would be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can be closed.
Safe surfing!
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Wescomd
Junior Member
Joined: 06 May 2006
Last Visit: 08 Nov 2012
Posts: 28
Location: The Hundred Acre Wood Fargo, ND
|
| Posted: Sun Jul 08, 2012 10:17 am Post subject: Babylon |
|
|
Thank you for everything.
WEs |
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Mon Jul 09, 2012 12:58 am Post subject: |
|
|
Hi Wescomd,
| Quote: |
| Thank you for everything. |
You're most welcome, glad we could help.
Good luck and stay safe.
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
Cypher
Moderator
Joined: 05 Jul 2009
Last Visit: 17 May 2013
Posts: 4041
Location: Land Of The Leprechauns
|
| Posted: Mon Jul 09, 2012 12:59 am Post subject: |
|
|
| Quote: |
As your issues appear to be resolved, this topic is now closed.
If you have been helped and wish to donate to help with the costs of this volunteer site, please read Spyware Warrior Donations |
_________________
Admin/Teacher at Malware Removal University
Member of...
|
|
| Back to top |
|
|
|
|
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group
|
