Solved Virus: b.exe, msa.exe, unable to run antivirus

[Resolved] Virus: b.exe, msa.exe, unable to run antivirus

Well, after getting my first virus of all time by a very stupid way, I have found myself in a little predicament

After downloading a torrent (which im never doing again), I executed a sketchy file and my system bluescreened because windows32k.sys had stopped responding.

Upon restart I see b.exe/msa.exe in my task manager processes which I have heard are known viruses, and I'm also unable to boot any anti-virus before it completley kills the process and corrupts the file from ever being started again. I've also tried running it in safe mode with the same result. (This inculdes DDS and gmer)

I found a.exe and b.exe in my Appdata/Local folder and deleted them, and I haven't seen b.exe run again yet. I also found msa.exe in my C:\Windows folder, but its unable to be deleted because "I don't have permission ".

I am running Vista 32 bit SP2.

Panda Activescan did not find anything malicious. I have also noticed that I'm now getting random IE popups directing me to a mess of different sites.

Kaspersky logs:

--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Sunday, September 20, 2009
Operating system: Microsoft Windows Vista Home Premium Edition, 32-bit Service Pack 2 (build 6002)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Sunday, September 20, 2009 15:09:02
Records in database: 2863787
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\

Scan statistics:
Objects scanned: 117935
Threats found: 1
Infected objects found: 1
Suspicious objects found: 0
Scan duration: 01:27:00


File name / Threat / Threats count
C:\Users\Tony\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y8RFCIYJ\beza[1].htm Infected: Trojan-Downloader.JS.LuckySploit.q 1

Selected area has been scanned.

 

Hi Insight1032

Please try to do the following.

We need to create an OTL Report

• Please download OTL from one of the following mirrors:
  
• This is THE Mirror

• Save it to your desktop.
• Double click on the icon on your desktop.
• Click the "Scan All Users" checkbox.
• Push the scan button.
• Two reports will open, copy and paste them in a reply here
  

• OTListIt.txt <-- Will be opened
• Extra.txt <-- Will be minimized

Thanks
Geri

 

Hi Geri! Thanks for the reply, you have my deepest gratitude in responding to my issue.

Before I post to logs, I'd just like to ask a quick question. Would you believe the virus I have is able to damage hardware? Just asking because I have a video card being shipped to me later today, and in between your responses here I could seat it in less than 5 minutes, do you think that'd be safe? Thanks!

I have to split these logs into a few different posts, let me get that done

EDIT: Okay, I just lost my spot in trying to split the post and I have to wait for the first post to be approved by admins, I'm having a slow day today.

 

OTL logfile created on: 9/20/2009 1:10:51 PM - Run 1
OTL by OldTimer - Version 3.0.14.0 Folder = C:\Users\Tony\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.91 Gb Available Physical Memory | 45.50% Memory free
4.00 Gb Paging File | 2.75 Gb Available in Paging File | 68.80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 119.55 Gb Free Space | 53.67% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.86 Gb Free Space | 58.59% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TONYSPC
Current User Name: Tony
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/07/21 11:40:28 | 00,733,184 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
PRC - [2009/07/21 11:40:28 | 00,733,184 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
PRC - [2009/07/09 12:22:18 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2006/10/29 09:03:30 | 00,208,896 | ---- | M] () -- C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
PRC - [2009/08/10 19:21:32 | 00,304,408 | ---- | M] () -- C:\Program Files\Dyyno\Dyyno Broadcaster\launcherd.exe
PRC - [2006/09/29 12:38:50 | 00,081,920 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
PRC - [2006/11/05 11:13:00 | 00,159,744 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
PRC - [2006/08/04 20:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe
PRC - [2008/01/19 03:38:38 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006/09/29 12:39:20 | 00,151,552 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2006/10/03 11:37:04 | 00,081,920 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [2006/09/26 10:56:00 | 00,423,424 | ---- | M] (Intel Corporation) -- C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
PRC - [2009/07/13 14:03:10 | 00,292,128 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009/09/05 17:44:38 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/07/21 11:00:28 | 00,061,440 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
PRC - [2009/04/10 23:27:38 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2006/09/22 09:35:58 | 00,045,056 | ---- | M] (Avanquest Software ) -- C:\Program Files\Digital Line Detect\DLG.exe
PRC - [2009/09/03 14:07:04 | 03,111,824 | ---- | M] (Xfire Inc.) -- C:\Program Files\Xfire\Xfire.exe
PRC - [2009/07/13 14:02:50 | 00,542,496 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/04/22 21:11:32 | 01,675,776 | ---- | M] (Flagship Industries, Inc.) -- C:\Program Files\Ventrilo\Ventrilo.exe
PRC - [2008/01/19 03:33:39 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2008/01/19 03:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2009/09/10 14:52:14 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/08/19 11:03:42 | 00,045,603 | ---- | M] (The Pidgin developer community) -- C:\Program Files\Pidgin\pidgin.exe
PRC - [2009/09/05 17:14:52 | 01,217,784 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2009/09/05 17:15:50 | 00,316,664 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe
PRC - [2009/09/19 10:23:27 | 00,158,720 | R--- | M] () -- C:\Windows\msa.exe
PRC - [2009/09/20 13:10:23 | 00,514,560 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2006/11/18 07:01:26 | 00,195,032 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\CCU\AlertService.exe -- (AlertService [On_Demand | Stopped])
SRV - [2009/07/09 12:22:18 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009/07/21 11:40:28 | 00,733,184 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility [Auto | Running])
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2009/03/29 21:42:16 | 00,066,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2006/10/29 09:03:30 | 00,208,896 | ---- | M] () -- C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe -- (DQLWinService [Auto | Running])
SRV - [2006/11/07 13:27:02 | 00,070,656 | ---- | M] () -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService [On_Demand | Stopped])
SRV - [2009/08/10 19:21:32 | 00,304,408 | ---- | M] () -- C:\Program Files\Dyyno\Dyyno Broadcaster\launcherd.exe -- (Dyyno Launcher [Auto | Running])
SRV - [2008/01/19 03:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2006/11/02 08:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006/11/02 08:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2009/04/10 23:28:26 | 01,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2009/02/18 11:39:22 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2006/09/29 12:38:50 | 00,081,920 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe -- (IAANTMON [Auto | Running])
SRV - [2004/10/22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2009/02/18 11:38:44 | 00,879,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2006/11/18 06:59:50 | 00,036,312 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe -- (IntelDHSvcConf [Auto | Stopped])
SRV - [2009/07/13 14:02:50 | 00,542,496 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Running])
SRV - [2006/11/18 06:59:38 | 00,081,880 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe -- (ISSM [On_Demand | Stopped])
SRV - [2006/11/18 06:59:02 | 00,032,216 | ---- | M] () -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe -- (M1 Server [On_Demand | Stopped])
SRV - [2006/11/18 07:00:06 | 00,174,552 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe -- (MCLServiceATL [On_Demand | Stopped])
SRV - [2009/02/18 11:38:44 | 00,129,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2006/11/18 07:00:48 | 00,550,872 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe -- (Remote UI Service [On_Demand | Stopped])
SRV - [2006/11/05 11:15:12 | 00,880,640 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9 [On_Demand | Stopped])
SRV - [2006/11/05 11:13:00 | 00,159,744 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe -- (RoxWatch9 [Auto | Running])
SRV - [2009/09/05 17:15:50 | 00,316,664 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service [On_Demand | Running])
SRV - [2006/09/14 14:54:34 | 00,073,728 | ---- | M] (MicroVision Development, Inc.) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr [On_Demand | Stopped])
SRV - [2008/01/19 03:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2008/01/19 03:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Running])
SRV - [2006/08/04 20:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe -- (XAudioService [Auto | Running])
SRV - [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService [Auto | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2006/11/02 05:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006/11/02 05:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006/11/02 05:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006/11/02 05:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006/11/02 05:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2007/05/04 05:13:49 | 00,017,592 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2006/11/02 05:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006/11/02 05:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2009/07/21 12:31:44 | 04,450,816 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\DRIVERS\atikmdag.sys -- (atikmdag [On_Demand | Running])
DRV - [2006/11/02 04:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006/11/02 04:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006/11/02 04:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006/11/02 04:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006/11/02 04:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006/11/02 04:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2007/05/04 05:13:49 | 00,019,128 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006/10/05 16:07:28 | 00,004,736 | ---- | M] (Gteko Ltd.) -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct [On_Demand | Stopped])
DRV - [2006/08/17 15:43:52 | 00,007,424 | --S- | M] (Gteko Ltd.) -- C:\Program Files\DellSupport\Drivers\dsunidrv.sys -- (dsunidrv [Auto | Running])
DRV - [2008/01/19 00:25:05 | 00,220,672 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\e1e6032.sys -- (e1express [On_Demand | Running])
DRV - [2006/11/02 03:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006/11/02 05:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2007/05/15 12:15:22 | 00,042,496 | ---- | M] (Eugene V. Muzychenko) -- C:\Windows\System32\DRIVERS\vrtaucbl.sys -- (EuMusDesignVirtualAudioCableWdm [On_Demand | Running])
DRV - [2009/03/19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [1996/04/03 15:33:26 | 00,005,248 | ---- | M] () -- C:\Windows\system32\giveio.sys -- (giveio [Boot | Running])
DRV - [2006/11/02 05:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006/10/18 14:09:26 | 00,986,624 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_DPV.sys -- (HSF_DPV [On_Demand | Running])
DRV - [2006/10/18 14:08:18 | 00,258,048 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSXHWBS2.sys -- (HSXHWBS2 [On_Demand | Running])
DRV - [2006/09/29 15:59:58 | 00,250,368 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastor.sys -- (iaStor [Boot | Running])
DRV - [2006/11/02 05:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006/11/02 05:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2007/05/03 21:39:05 | 00,005,504 | ---- | M] (Intel Corporation) -- C:\Windows\System32\Drivers\IntelDH.sys -- (IntelDH [On_Demand | Running])
DRV - [2006/11/02 05:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006/11/02 05:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006/11/02 05:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006/11/02 05:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006/11/02 05:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006/06/19 17:26:58 | 00,012,672 | ---- | M] (Conexant) -- C:\Windows\System32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Running])
DRV - [2006/11/02 05:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2006/11/02 05:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006/11/02 05:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006/09/27 16:37:24 | 00,028,672 | --S- | M] (Gteko Ltd.) -- C:\Windows\System32\DRIVERS\nmsgopro.sys -- (nmsgopro [Auto | Running])
DRV - [2006/10/19 15:49:48 | 00,007,424 | --S- | M] (Gteko Ltd.) -- C:\Windows\System32\DRIVERS\nmsunidr.sys -- (nmsunidr [Auto | Running])
DRV - [2006/11/02 03:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2007/03/30 02:21:12 | 07,478,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Stopped])
DRV - [2006/11/02 05:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006/11/02 05:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
DRV - [2006/07/24 03:00:00 | 00,036,528 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006/11/02 05:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006/11/02 05:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2009/07/21 12:31:44 | 04,450,816 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\DRIVERS\atikmdag.sys -- (R300 [On_Demand | Stopped])
DRV - [2006/11/02 02:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2006/11/02 05:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006/11/02 05:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006/09/24 09:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\system32\speedfan.sys -- (speedfan [Boot | Running])
DRV - [2007/02/08 01:16:26 | 00,647,680 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA [On_Demand | Stopped])
DRV - [2006/11/02 05:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006/11/02 05:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006/11/02 05:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006/11/18 07:01:08 | 00,018,904 | ---- | M] () -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys -- (TSHWMDTCP [On_Demand | Stopped])
DRV - [2006/11/02 05:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006/11/02 05:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006/11/02 05:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2009/07/09 12:16:16 | 00,039,424 | ---- | M] (Apple, Inc.) -- C:\Windows\System32\Drivers\usbaapl.sys -- (USBAAPL [On_Demand | Stopped])
DRV - [2009/04/10 21:42:56 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Running])
DRV - [2007/05/04 05:13:49 | 00,020,152 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006/11/02 05:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006/10/18 14:08:04 | 00,659,968 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_CNXT.sys -- (winachsf [On_Demand | Running])
DRV - [2006/08/04 20:39:10 | 00,008,192 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.sys -- (XAudio [Auto | Running])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0070504
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3056812085-512402971-1977195924-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3056812085-512402971-1977195924-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-3056812085-512402971-1977195924-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.com/
IE - HKU\S-1-5-21-3056812085-512402971-1977195924-1001\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3056812085-512402971-1977195924-1001\S-1-5-21-3056812085-512402971-1977195924-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3056812085-512402971-1977195924-1001\S-1-5-21-3056812085-512402971-1977195924-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "yahoo.com "
FF - prefs.js..extensions.enabledItems: {6614d11d-d21d-b211-ae23-815234e1ebb5}:1.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:0.0.0
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.9.8.86
FF - prefs.js..extensions.enabledItems: {e2c58150-9d72-11dd-ad8b-0800200c9a66}:1.2.2
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/10 21:33:34 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/09/10 14:52:16 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/09/14 23:20:45 | 00,000,000 | ---D | M]

[2009/09/05 16:46:10 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Extensions
[2009/09/05 16:46:10 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/09/20 00:02:26 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Firefox\Profiles\h9vgyo1g.default\extensions
[2009/09/19 07:23:18 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Firefox\Profiles\h9vgyo1g.default\extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}
[2009/09/15 00:59:37 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Firefox\Profiles\h9vgyo1g.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2009/09/05 17:24:17 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Firefox\Profiles\h9vgyo1g.default\extensions\{e2c58150-9d72-11dd-ad8b-0800200c9a66}
[2009/09/20 00:02:26 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/09/10 14:52:16 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/09/05 17:44:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
[2009/09/10 14:52:14 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/09/10 14:52:14 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/09/05 17:44:38 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009/09/10 14:52:14 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/09/05 17:40:21 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/07/30 03:24:20 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/07/30 03:24:20 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/07/30 03:24:20 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/07/30 03:24:20 | 00,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/07/30 03:24:20 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/07/30 03:24:20 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/07/30 03:24:20 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

 

Hosts file not found
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [CCUTRAYICON] File not found
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NMSSupport] C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe (Intel Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [NCsoft Launcher] C:\Program Files\NCSoft\Launcher\NCLauncher.exe (NCSoft)
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [PlayNC Launcher] File not found
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-3056812085-512402971-1977195924-1001..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe File not found
O4 - Startup: C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk = C:\Program Files\Xfire\Xfire.exe (Xfire Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\NLAapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[2009/09/20 13:10:20 | 00,514,560 | ---- | C] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
[2009/09/20 05:59:10 | 00,028,544 | ---- | C] (Panda Security, S.L.) -- C:\Windows\System32\drivers\pavboot.sys
[2009/09/20 05:58:09 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2009/09/20 05:57:10 | 00,175,888 | ---- | C] () -- C:\Users\Tony\Desktop\activescan2_en.exe
[2009/09/20 05:35:08 | 00,000,000 | -H-D | C] -- C:\Windows\PIF
[2009/09/20 05:32:06 | 04,045,528 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Tony\Desktop\mbam-setup.exe
[2009/09/19 15:48:51 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009/09/19 15:48:51 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2009/09/19 15:29:18 | 21,453,08672 | -HS- | C] () -- C:\hiberfil.sys
[2009/09/19 15:27:45 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/09/19 10:51:24 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Malwarebytes
[2009/09/19 10:51:19 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/09/19 10:38:01 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2009/09/19 10:23:32 | 00,158,720 | R--- | C] () -- C:\Windows\msa.exe
[2009/09/19 10:23:28 | 00,000,238 | -H-- | C] () -- C:\Windows\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2009/09/19 10:23:26 | 00,000,230 | -H-- | C] () -- C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
[2009/09/19 10:23:23 | 00,000,000 | ---- | C] () -- C:\Windows\win32k.sys
[2009/09/19 03:32:54 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Microsoft Games
[2009/09/18 08:56:12 | 00,000,534 | ---- | C] () -- C:\Users\Tony\Desktop\AudioRepeater - Shortcut.lnk
[2009/09/18 08:45:22 | 00,042,496 | ---- | C] (Eugene V. Muzychenko) -- C:\Windows\System32\drivers\vrtaucbl.sys
[2009/09/18 08:45:22 | 00,000,000 | ---D | C] -- C:\Program Files\Virtual Audio Cable
[2009/09/18 08:44:13 | 00,000,000 | ---D | C] -- C:\Users\Tony\Desktop\VAC
[2009/09/17 10:07:48 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\ATI
[2009/09/17 10:07:48 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\ATI
[2009/09/17 10:07:48 | 00,000,000 | ---D | C] -- C:\ProgramData\ATI
[2009/09/16 05:04:18 | 00,000,000 | ---D | C] -- C:\Users\Tony\Documents\Downloads
[2009/09/16 05:04:17 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\DMCache
[2009/09/15 23:01:24 | 00,000,000 | ---D | C] -- C:\Program Files\VTFEdit
[2009/09/14 23:15:46 | 00,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2009/09/14 23:15:46 | 00,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2009/09/14 23:15:46 | 00,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2009/09/14 23:15:01 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009/09/14 23:13:35 | 00,000,000 | ---D | C] -- C:\Windows\System32\SPReview
[2009/09/14 22:59:51 | 00,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll
[2009/09/14 22:59:37 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe
[2009/09/14 22:53:51 | 00,476,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2009/09/14 22:53:51 | 00,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2009/09/14 22:53:51 | 00,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2009/09/14 22:53:51 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2009/09/14 22:53:50 | 01,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2009/09/14 22:53:50 | 00,441,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
[2009/09/14 22:53:50 | 00,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2009/09/14 22:53:50 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
[2009/09/14 22:53:50 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
[2009/09/14 22:53:49 | 00,241,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
[2009/09/14 22:53:49 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2009/09/14 22:53:46 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
[2009/09/14 22:53:46 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2009/09/14 22:53:45 | 00,550,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcss.dll
[2009/09/14 22:53:45 | 00,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2009/09/14 22:53:45 | 00,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2009/09/14 22:53:45 | 00,466,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
[2009/09/14 22:53:45 | 00,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2009/09/14 22:53:45 | 00,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2009/09/14 22:53:45 | 00,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2009/09/14 22:53:45 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2009/09/14 22:53:44 | 00,483,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\samsrv.dll
[2009/09/14 22:53:44 | 00,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2009/09/14 22:53:44 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrrun.dll
[2009/09/14 22:53:44 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2009/09/14 22:53:44 | 00,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SCardSvr.dll
[2009/09/14 22:53:43 | 00,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schedsvc.dll
[2009/09/14 22:53:43 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2009/09/14 22:53:43 | 00,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scecli.dll
[2009/09/14 22:53:43 | 00,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2009/09/14 22:53:42 | 00,306,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scesrv.dll
[2009/09/14 22:53:39 | 01,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2009/09/14 22:53:39 | 01,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2009/09/14 22:53:39 | 00,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2009/09/14 22:53:39 | 00,644,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2psvc.dll
[2009/09/14 22:53:39 | 00,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2009/09/14 22:53:39 | 00,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2009/09/14 22:53:39 | 00,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2009/09/14 22:53:39 | 00,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll
[2009/09/14 22:53:39 | 00,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2009/09/14 22:53:39 | 00,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2009/09/14 22:53:39 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2009/09/14 22:53:39 | 00,149,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pci.sys
[2009/09/14 22:53:39 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2009/09/14 22:53:39 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2009/09/14 22:53:39 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pacer.sys
[2009/09/14 22:53:39 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2009/09/14 22:53:39 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2009/09/14 22:53:39 | 00,054,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\partmgr.sys
[2009/09/14 22:53:39 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2009/09/14 22:53:39 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfdisk.dll
[2009/09/14 22:53:38 | 00,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\photowiz.dll
[2009/09/14 22:53:38 | 00,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2009/09/14 22:53:37 | 03,601,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009/09/14 22:53:37 | 01,202,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
[2009/09/14 22:53:37 | 01,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2009/09/14 22:53:37 | 01,083,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ntfs.sys
[2009/09/14 22:53:37 | 00,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2009/09/14 22:53:37 | 00,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2009/09/14 22:53:37 | 00,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2009/09/14 22:53:37 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2009/09/14 22:53:37 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2009/09/14 22:53:37 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\npfs.sys
[2009/09/14 22:53:36 | 02,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2009/09/14 22:53:35 | 12,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2009/09/14 22:53:35 | 00,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2009/09/14 22:53:35 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2009/09/14 22:53:34 | 01,316,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
[2009/09/14 22:53:34 | 00,563,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
[2009/09/14 22:53:34 | 00,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2009/09/14 22:53:34 | 00,392,170 | ---- | C] () -- C:\Windows\System32\onex.tmf
[2009/09/14 22:53:34 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2009/09/14 22:53:34 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2009/09/14 22:53:33 | 02,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
[2009/09/14 22:53:33 | 01,541,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\onex.dll
[2009/09/14 22:53:33 | 00,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2009/09/14 22:53:33 | 00,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\nwifi.sys
[2009/09/14 22:53:33 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\occache.dll
[2009/09/14 22:53:33 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2009/09/14 22:53:33 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
[2009/09/14 22:53:33 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2009/09/14 22:53:32 | 03,549,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009/09/14 22:53:32 | 00,825,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdlg.dll
[2009/09/14 22:53:32 | 00,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2009/09/14 22:53:32 | 00,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
[2009/09/14 22:53:31 | 01,381,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Query.dll
[2009/09/14 22:53:31 | 01,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2009/09/14 22:53:31 | 00,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qmgr.dll
[2009/09/14 22:53:31 | 00,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2009/09/14 22:53:31 | 00,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2009/09/14 22:53:31 | 00,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2009/09/14 22:53:31 | 00,286,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
[2009/09/14 22:53:31 | 00,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2009/09/14 22:53:31 | 00,262,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmans.dll
[2009/09/14 22:53:31 | 00,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasppp.dll
[2009/09/14 22:53:31 | 00,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2009/09/14 22:53:31 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2009/09/14 22:53:31 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2009/09/14 22:53:31 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2009/09/14 22:53:31 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastapi.dll
[2009/09/14 22:53:31 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rassstp.sys
[2009/09/14 22:53:31 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2009/09/14 22:53:31 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\raspppoe.sys
[2009/09/14 22:53:31 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2009/09/14 22:53:31 | 00,009,212 | ---- | C] () -- C:\Windows\System32\RacUR.xml
[2009/09/14 22:53:30 | 00,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2009/09/14 22:53:30 | 00,612,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2009/09/14 22:53:30 | 00,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll
[2009/09/14 22:53:30 | 00,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdbss.sys
[2009/09/14 22:53:30 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdpwd.sys
[2009/09/14 22:53:30 | 00,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regsvc.dll
[2009/09/14 22:53:30 | 00,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2009/09/14 22:53:30 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regapi.dll
[2009/09/14 22:53:30 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2009/09/14 22:53:30 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2009/09/14 22:53:30 | 00,000,153 | ---- | C] () -- C:\Windows\System32\RacUREx.xml
[2009/09/14 22:53:29 | 00,869,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printui.dll
[2009/09/14 22:53:29 | 00,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2009/09/14 22:53:29 | 00,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2009/09/14 22:53:29 | 00,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2009/09/14 22:53:29 | 00,323,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2009/09/14 22:53:29 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2009/09/14 22:53:29 | 00,102,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2009/09/14 22:53:29 | 00,041,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2009/09/14 22:53:29 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2009/09/14 22:53:28 | 00,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2009/09/14 22:53:28 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
[2009/09/14 22:53:27 | 00,754,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
[2009/09/14 22:53:27 | 00,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2009/09/14 22:53:27 | 00,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QAGENTRT.DLL
[2009/09/14 22:53:27 | 00,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2009/09/14 22:53:27 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\profsvc.dll
[2009/09/14 22:53:27 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2009/09/14 22:53:26 | 00,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2009/09/14 22:53:26 | 00,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2009/09/14 22:53:23 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sendmail.dll
[2009/09/14 22:53:21 | 11,584,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
[2009/09/14 22:53:21 | 01,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
[2009/09/14 22:53:21 | 00,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2009/09/14 22:53:21 | 00,353,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
[2009/09/14 22:53:21 | 00,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\services.exe
[2009/09/14 22:53:20 | 01,591,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
[2009/09/14 22:53:13 | 00,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2009/09/14 22:53:13 | 00,141,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ecache.sys
[2009/09/14 22:53:13 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2009/09/14 22:53:11 | 00,344,698 | ---- | C] () -- C:\Windows\System32\eaphost.tmf
[2009/09/14 22:53:11 | 00,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2009/09/14 22:53:11 | 00,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappcfg.dll
[2009/09/14 22:53:11 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2009/09/14 22:53:10 | 00,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgkrnl.sys
[2009/09/14 22:53:10 | 00,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2009/09/14 22:53:10 | 00,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2009/09/14 22:53:10 | 00,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2009/09/14 22:53:10 | 00,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2009/09/14 22:53:10 | 00,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\exfat.sys
[2009/09/14 22:53:10 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
[2009/09/14 22:53:10 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2009/09/14 22:53:10 | 00,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2009/09/14 22:53:10 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2009/09/14 22:53:09 | 02,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2009/09/14 22:53:09 | 01,459,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esent.dll
[2009/09/14 22:53:09 | 00,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\extmgr.dll
[2009/09/14 22:53:09 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2009/09/14 22:53:08 | 00,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\emdmgmt.dll
[2009/09/14 22:53:08 | 00,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2009/09/14 22:53:08 | 00,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\es.dll
[2009/09/14 22:53:08 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/09/14 22:53:08 | 00,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
[2009/09/14 22:53:08 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2009/09/14 22:53:05 | 01,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2009/09/14 22:53:05 | 00,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2009/09/14 22:53:05 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2009/09/14 22:53:04 | 00,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2009/09/14 22:53:04 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2009/09/14 22:53:04 | 00,053,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\disk.sys
[2009/09/14 22:53:04 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2009/09/14 22:53:03 | 02,092,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfsr.exe
[2009/09/14 22:53:03 | 00,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2009/09/14 22:53:03 | 00,093,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfshim.dll
[2009/09/14 22:53:03 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.sys
[2009/09/14 22:53:02 | 00,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
[2009/09/14 22:53:01 | 00,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2009/09/14 22:53:01 | 00,442,788 | ---- | C] () -- C:\Windows\System32\dot3.tmf
[2009/09/14 22:53:01 | 00,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2009/09/14 22:53:01 | 00,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2009/09/14 22:53:01 | 00,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2009/09/14 22:53:01 | 00,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2009/09/14 22:53:01 | 00,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3svc.dll
[2009/09/14 22:53:01 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2009/09/14 22:53:01 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2009/09/14 22:53:00 | 00,561,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hdaudbus.sys
[2009/09/14 22:53:00 | 00,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\HdAudio.sys
[2009/09/14 22:53:00 | 00,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
[2009/09/14 22:53:00 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2009/09/14 22:53:00 | 00,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2009/09/14 22:53:00 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2009/09/14 22:53:00 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnsrslvr.dll
[2009/09/14 22:53:00 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2009/09/14 22:52:59 | 00,576,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpsvc.dll
[2009/09/14 22:52:59 | 00,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe
[2009/09/14 22:52:59 | 00,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll
[2009/09/14 22:52:59 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\http.sys
[2009/09/14 22:52:59 | 00,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2009/09/14 22:52:59 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2009/09/14 22:52:59 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2009/09/14 22:52:59 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2009/09/14 22:52:59 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2009/09/14 22:52:59 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2009/09/14 22:52:59 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2009/09/14 22:52:58 | 00,190,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fltMgr.sys
[2009/09/14 22:52:58 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontext.dll
[2009/09/14 22:52:58 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2009/09/14 22:52:58 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2009/09/14 22:52:58 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2009/09/14 22:52:58 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hidserv.dll
[2009/09/14 22:52:58 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidusb.sys
[2009/09/14 22:52:57 | 00,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
[2009/09/14 22:52:57 | 00,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2009/09/14 22:52:57 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fastfat.sys
[2009/09/14 22:52:57 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2009/09/14 22:52:57 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2009/09/14 22:52:57 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2009/09/14 22:52:57 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2009/09/14 22:52:57 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2009/09/14 22:52:57 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2009/09/14 22:52:57 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2009/09/14 22:52:57 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2009/09/14 22:52:57 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2009/09/14 22:52:57 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2009/09/14 22:52:56 | 00,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2009/09/14 22:52:55 | 02,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll
[2009/09/14 22:52:55 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2009/09/14 22:52:55 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2009/09/14 22:52:55 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2009/09/14 22:52:54 | 01,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2009/09/14 22:52:54 | 00,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autochk.exe
[2009/09/14 22:52:54 | 00,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2009/09/14 22:52:54 | 00,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiosrv.dll
[2009/09/14 22:52:54 | 00,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2009/09/14 22:52:54 | 00,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2009/09/14 22:52:54 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authz.dll
[2009/09/14 22:52:53 | 01,216,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2009/09/14 22:52:53 | 00,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2009/09/14 22:52:53 | 00,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2009/09/14 22:52:53 | 00,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2009/09/14 22:52:53 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2009/09/14 22:52:53 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2009/09/14 22:52:53 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2009/09/14 22:52:50 | 01,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll
[2009/09/14 22:52:50 | 01,324,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browseui.dll
[2009/09/14 22:52:50 | 00,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2009/09/14 22:52:50 | 00,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2009/09/14 22:52:50 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2009/09/14 22:52:50 | 00,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2009/09/14 22:52:50 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\bridge.sys
[2009/09/14 22:52:50 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2009/09/14 22:52:50 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2009/09/14 22:52:49 | 02,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2009/09/14 22:52:49 | 00,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BFE.DLL
[2009/09/14 22:52:49 | 00,265,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\acpi.sys
[2009/09/14 22:52:48 | 01,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2009/09/14 22:52:48 | 01,122,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appwiz.cpl
[2009/09/14 22:52:48 | 00,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2009/09/14 22:52:48 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\afd.sys
[2009/09/14 22:52:48 | 00,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsldpc.dll
[2009/09/14 22:52:48 | 00,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
[2009/09/14 22:52:48 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2009/09/14 22:52:47 | 01,209,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comsvcs.dll
[2009/09/14 22:52:47 | 00,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
[2009/09/14 22:52:47 | 00,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
[2009/09/14 22:52:47 | 00,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2009/09/14 22:52:47 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\credui.dll
[2009/09/14 22:52:47 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2009/09/14 22:52:47 | 00,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2009/09/14 22:52:45 | 01,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2009/09/14 22:52:45 | 00,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2009/09/14 22:52:44 | 01,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2009/09/14 22:52:44 | 01,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2009/09/14 22:52:44 | 00,450,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
[2009/09/14 22:52:44 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\davclnt.dll
[2009/09/14 22:52:44 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2009/09/14 22:52:44 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2009/09/14 22:52:43 | 01,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2009/09/14 22:52:43 | 00,971,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptui.dll
[2009/09/14 22:52:43 | 00,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2009/09/14 22:52:43 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2009/09/14 22:52:43 | 00,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptsvc.dll
[2009/09/14 22:52:43 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\cdrom.sys
[2009/09/14 22:52:43 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2009/09/14 22:52:43 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2009/09/14 22:52:43 | 00,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2009/09/14 22:52:43 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2009/09/14 22:52:43 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
[2009/09/14 22:52:43 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2009/09/14 22:52:43 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscdll.dll
[2009/09/14 22:52:42 | 01,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2009/09/14 22:52:42 | 00,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2009/09/14 22:52:42 | 00,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2009/09/14 22:52:42 | 00,323,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certcli.dll
[2009/09/14 22:52:42 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthserv.dll
[2009/09/14 22:52:42 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2009/09/14 22:52:41 | 01,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2009/09/14 22:52:41 | 00,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2009/09/14 22:52:41 | 00,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2009/09/14 22:52:41 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2009/09/14 22:52:41 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2009/09/14 22:52:41 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2009/09/14 22:52:41 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2009/09/14 22:52:40 | 06,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2009/09/14 22:52:40 | 00,245,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clfs.sys
[2009/09/14 22:52:40 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2009/09/14 22:52:40 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certprop.dll
[2009/09/14 22:52:39 | 01,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2009/09/14 22:52:39 | 00,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2009/09/14 22:52:39 | 00,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2009/09/14 22:52:39 | 00,461,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009/09/14 22:52:39 | 00,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2009/09/14 22:52:39 | 00,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2009/09/14 22:52:39 | 00,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2009/09/14 22:52:39 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2009/09/14 22:52:39 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2009/09/14 22:52:38 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msiexec.exe
[2009/09/14 22:52:37 | 02,241,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
[2009/09/14 22:52:37 | 00,477,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmled.dll
[2009/09/14 22:52:35 | 00,807,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
[2009/09/14 22:52:35 | 00,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009/09/14 22:52:35 | 00,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2009/09/14 22:52:35 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2009/09/14 22:52:35 | 00,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfp.dll
[2009/09/14 22:52:35 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2009/09/14 22:52:34 | 00,407,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPSSVC.dll
[2009/09/14 22:52:34 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprapi.dll
[2009/09/14 22:52:34 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
[2009/09/14 22:52:34 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2009/09/14 22:52:33 | 01,102,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmsys.cpl
[2009/09/14 22:52:33 | 00,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2009/09/14 22:52:33 | 00,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2009/09/14 22:52:33 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2009/09/14 22:52:30 | 00,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2009/09/14 22:52:30 | 00,278,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
[2009/09/14 22:52:30 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2009/09/14 22:52:30 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb10.sys
[2009/09/14 22:52:30 | 00,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009/09/14 22:52:30 | 00,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009/09/14 22:52:29 | 00,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll
[2009/09/14 22:52:29 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxdav.sys
[2009/09/14 22:52:29 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb.sys
[2009/09/14 22:52:29 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb20.sys
[2009/09/14 22:52:29 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv
[2009/09/14 22:52:28 | 02,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2009/09/14 22:52:28 | 01,086,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2009/09/14 22:52:28 | 00,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netlogon.dll
[2009/09/14 22:52:28 | 00,527,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndis.sys
[2009/09/14 22:52:28 | 00,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2009/09/14 22:52:28 | 00,310,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxclu.dll
[2009/09/14 22:52:28 | 00,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2009/09/14 22:52:28 | 00,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2009/09/14 22:52:28 | 00,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netbt.sys
[2009/09/14 22:52:28 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netplwiz.dll
[2009/09/14 22:52:28 | 00,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndiswan.sys
[2009/09/14 22:52:28 | 00,048,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mup.sys
[2009/09/14 22:52:25 | 01,336,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
[2009/09/14 22:52:24 | 03,174,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
[2009/09/14 22:52:24 | 01,183,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll
[2009/09/14 22:52:24 | 00,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2009/09/14 22:52:24 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2009/09/14 22:52:23 | 03,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2009/09/14 22:52:23 | 02,226,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkexplorer.dll
[2009/09/14 22:52:23 | 00,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2009/09/14 22:52:23 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2009/09/14 22:52:23 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2009/09/14 22:52:22 | 00,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2009/09/14 22:52:22 | 00,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL
[2009/09/14 22:52:22 | 00,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2009/09/14 22:52:22 | 00,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2009/09/14 22:52:22 | 00,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2009/09/14 22:52:22 | 00,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2009/09/14 22:52:22 | 00,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2009/09/14 22:52:22 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2009/09/14 22:52:22 | 00,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2009/09/14 22:52:22 | 00,161,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\msrpc.sys
[2009/09/14 22:52:22 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2009/09/14 22:52:22 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2009/09/14 22:52:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2009/09/14 22:52:22 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2009/09/14 22:52:21 | 01,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2009/09/14 22:52:21 | 00,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp60.dll
[2009/09/14 22:52:21 | 00,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2009/09/14 22:52:21 | 00,180,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\msiscsi.sys
[2009/09/14 22:52:21 | 00,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
[2009/09/14 22:52:21 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2009/09/14 22:52:21 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2009/09/14 22:52:21 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2009/09/14 22:52:20 | 01,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSVidCtl.dll
[2009/09/14 22:52:20 | 00,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2009/09/14 22:52:20 | 00,679,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
[2009/09/14 22:52:20 | 00,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2009/09/14 22:52:20 | 00,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2009/09/14 22:52:20 | 00,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2009/09/14 22:52:20 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
[2009/09/14 22:52:20 | 00,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2009/09/14 22:52:19 | 01,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2009/09/14 22:52:19 | 00,678,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstsc.exe

 

Hi

No, There is no infections that do "actual damage" to hardware, it's the files and programs that become infected.

I would wait until we get you cleaned up. Adding any files or drivers for the graphics card would not be a good idea while you are infected.

Geri

 

Sounds good, thanks for the answer!

I keep on losing my spot so I'm just waiting for the post to be approved.

 

[2009/09/14 22:52:19 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2009/09/14 22:52:19 | 00,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2009/09/14 22:52:19 | 00,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2009/09/14 22:52:19 | 00,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2009/09/14 22:52:19 | 00,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2009/09/14 22:52:19 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2009/09/14 22:52:19 | 00,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstlsapi.dll
[2009/09/14 22:52:19 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2009/09/14 22:52:19 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2009/09/14 22:52:19 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2009/09/14 22:52:18 | 01,827,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2009/09/14 22:52:18 | 00,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcomm.dll
[2009/09/14 22:52:18 | 00,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2009/09/14 22:52:18 | 00,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2009/09/14 22:52:17 | 00,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2009/09/14 22:52:17 | 00,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetpp.dll
[2009/09/14 22:52:17 | 00,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2009/09/14 22:52:17 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2009/09/14 22:52:16 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
[2009/09/14 22:52:15 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2009/09/14 22:52:15 | 00,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2009/09/14 22:52:15 | 00,364,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IPSECSVC.DLL
[2009/09/14 22:52:15 | 00,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2009/09/14 22:52:15 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2009/09/14 22:52:15 | 00,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iphlpsvc.dll
[2009/09/14 22:52:15 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
[2009/09/14 22:52:15 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2009/09/14 22:52:15 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2009/09/14 22:52:13 | 00,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2009/09/14 22:52:13 | 00,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2009/09/14 22:52:13 | 00,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2009/09/14 22:52:13 | 00,398,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009/09/14 22:52:13 | 00,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2009/09/14 22:52:13 | 00,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2009/09/14 22:52:13 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2009/09/14 22:52:13 | 00,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2009/09/14 22:52:13 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2009/09/14 22:52:13 | 00,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2009/09/14 22:52:13 | 00,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2009/09/14 22:52:13 | 00,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2009/09/14 22:52:13 | 00,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2009/09/14 22:52:13 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2009/09/14 22:52:13 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2009/09/14 22:52:13 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2009/09/14 22:52:13 | 00,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2009/09/14 22:52:12 | 00,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2009/09/14 22:52:12 | 00,438,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IKEEXT.DLL
[2009/09/14 22:52:10 | 01,135,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2009/09/14 22:52:10 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2009/09/14 22:52:09 | 02,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
[2009/09/14 22:52:09 | 01,160,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2009/09/14 22:52:09 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2009/09/14 22:52:08 | 02,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2009/09/14 22:52:08 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2009/09/14 22:52:08 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll
[2009/09/14 22:52:08 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2009/09/14 22:52:07 | 01,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2009/09/14 22:52:04 | 00,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2009/09/14 22:52:04 | 00,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2009/09/14 22:52:04 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2009/09/14 22:52:03 | 11,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2009/09/14 22:52:02 | 00,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2009/09/14 22:52:02 | 00,891,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
[2009/09/14 22:52:02 | 00,852,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2009/09/14 22:52:02 | 00,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2009/09/14 22:52:02 | 00,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2009/09/14 22:52:02 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009/09/14 22:52:02 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2009/09/14 22:52:02 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2009/09/14 22:52:02 | 00,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2009/09/14 22:52:02 | 00,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2009/09/14 22:52:02 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\kbdhid.sys
[2009/09/14 22:52:02 | 00,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2009/09/14 22:52:00 | 03,662,128 | ---- | C] () -- C:\Windows\System32\locale.nls
[2009/09/14 22:51:59 | 00,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2009/09/14 22:51:59 | 00,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WebClnt.dll
[2009/09/14 22:51:59 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2009/09/14 22:51:58 | 01,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe
[2009/09/14 22:51:58 | 00,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webcheck.dll
[2009/09/14 22:51:57 | 00,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2009/09/14 22:51:57 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2009/09/14 22:51:56 | 01,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2009/09/14 22:51:56 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv
[2009/09/14 22:51:50 | 00,712,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2009/09/14 22:51:49 | 00,347,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2009/09/14 22:51:44 | 01,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
[2009/09/14 22:51:43 | 01,017,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll
[2009/09/14 22:51:43 | 00,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2009/09/14 22:51:43 | 00,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
[2009/09/14 22:51:43 | 00,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2009/09/14 22:51:43 | 00,217,088 | ---- | C] () -- C:\Windows\System32\WerFault.exe
[2009/09/14 22:51:43 | 00,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2009/09/14 22:51:43 | 00,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2009/09/14 22:51:43 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2009/09/14 22:51:38 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wersvc.dll
[2009/09/14 22:51:36 | 00,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2009/09/14 22:51:32 | 00,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2009/09/14 22:51:32 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaservc.dll
[2009/09/14 22:51:32 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\version.dll
[2009/09/14 22:51:32 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2009/09/14 22:51:31 | 00,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2009/09/14 22:51:31 | 00,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2009/09/14 22:51:31 | 00,385,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vds.exe
[2009/09/14 22:51:31 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2009/09/14 22:51:29 | 00,627,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
[2009/09/14 22:51:29 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2009/09/14 22:51:29 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uxsms.dll
[2009/09/14 22:51:28 | 00,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2009/09/14 22:51:27 | 00,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
[2009/09/14 22:51:26 | 01,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2009/09/14 22:51:25 | 00,502,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
[2009/09/14 22:51:21 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2009/09/14 22:51:19 | 00,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcncsvc.dll
[2009/09/14 22:51:19 | 00,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2009/09/14 22:51:16 | 00,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll
[2009/09/14 22:51:09 | 01,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2009/09/14 22:51:07 | 00,292,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgrx.sys
[2009/09/14 22:50:57 | 01,055,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VSSVC.exe
[2009/09/14 22:50:55 | 00,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\w32time.dll
[2009/09/14 22:50:54 | 01,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
[2009/09/14 22:50:54 | 00,226,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\volsnap.sys
[2009/09/14 22:50:52 | 01,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2009/09/14 22:50:52 | 00,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009/09/14 22:50:52 | 00,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll
[2009/09/14 22:50:52 | 00,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
[2009/09/14 22:50:52 | 00,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2009/09/14 22:50:52 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscript.exe
[2009/09/14 22:50:52 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2009/09/14 22:50:52 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2009/09/14 22:50:52 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2009/09/14 22:50:48 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscsvc.dll
[2009/09/14 22:50:47 | 01,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2009/09/14 22:50:47 | 00,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2009/09/14 22:50:46 | 01,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2009/09/14 22:50:46 | 01,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2009/09/14 22:50:46 | 00,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2009/09/14 22:50:46 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2009/09/14 22:50:46 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2009/09/14 22:50:46 | 00,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcsvc.dll
[2009/09/14 22:50:46 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshext.dll
[2009/09/14 22:50:46 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2009/09/14 22:50:46 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshbth.dll
[2009/09/14 22:50:46 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2009/09/14 22:50:45 | 03,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe
[2009/09/14 22:50:45 | 01,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2009/09/14 22:50:45 | 00,986,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2009/09/14 22:50:45 | 00,926,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2009/09/14 22:50:45 | 00,747,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmSvc.dll
[2009/09/14 22:50:45 | 00,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2009/09/14 22:50:45 | 00,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2009/09/14 22:50:45 | 00,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe
[2009/09/14 22:50:45 | 00,287,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
[2009/09/14 22:50:45 | 00,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
[2009/09/14 22:50:45 | 00,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wisptis.exe
[2009/09/14 22:50:45 | 00,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2009/09/14 22:50:45 | 00,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
[2009/09/14 22:50:45 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshom.ocx
[2009/09/14 22:50:45 | 00,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSCard.dll
[2009/09/14 22:50:45 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[2009/09/14 22:50:45 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll
[2009/09/14 22:50:45 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
[2009/09/14 22:50:44 | 00,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009/09/14 22:50:44 | 00,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2009/09/14 22:50:44 | 00,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2009/09/14 22:50:44 | 00,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2009/09/14 22:50:43 | 01,224,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sud.dll
[2009/09/14 22:50:43 | 00,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
[2009/09/14 22:50:43 | 00,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2009/09/14 22:50:43 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2009/09/14 22:50:43 | 00,122,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Storport.sys
[2009/09/14 22:50:43 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll
[2009/09/14 22:50:43 | 00,052,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys
[2009/09/14 22:50:42 | 00,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2009/09/14 22:50:42 | 00,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2009/09/14 22:50:42 | 00,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv.sys
[2009/09/14 22:50:42 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys
[2009/09/14 22:50:42 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srvsvc.dll
[2009/09/14 22:50:42 | 00,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/09/14 22:50:42 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\srvnet.sys
[2009/09/14 22:50:42 | 00,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/09/14 22:50:41 | 02,205,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
[2009/09/14 22:50:41 | 00,558,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmain.dll
[2009/09/14 22:50:41 | 00,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2009/09/14 22:50:41 | 00,311,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\swprv.dll
[2009/09/14 22:50:41 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2009/09/14 22:50:41 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll
[2009/09/14 22:50:41 | 00,083,456 | ---- | C] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll
[2009/09/14 22:50:41 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2009/09/14 22:50:41 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\smb.sys
[2009/09/14 22:50:40 | 03,408,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe
[2009/09/14 22:50:40 | 01,081,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCExt.dll
[2009/09/14 22:50:40 | 00,777,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcc.dll
[2009/09/14 22:50:40 | 00,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll
[2009/09/14 22:50:40 | 00,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2009/09/14 22:50:40 | 00,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll
[2009/09/14 22:50:40 | 00,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2009/09/14 22:50:40 | 00,289,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe
[2009/09/14 22:50:40 | 00,247,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsvcs.dll
[2009/09/14 22:50:40 | 00,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
[2009/09/14 22:50:40 | 00,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2009/09/14 22:50:40 | 00,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spoolss.dll
[2009/09/14 22:50:40 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
[2009/09/14 22:50:40 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe
[2009/09/14 22:50:40 | 00,092,918 | ---- | C] () -- C:\Windows\System32\slmgr.vbs
[2009/09/14 22:50:40 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\smss.exe
[2009/09/14 22:50:40 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUINotify.dll
[2009/09/14 22:50:40 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2009/09/14 22:50:40 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll
[2009/09/14 22:50:40 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2009/09/14 22:50:39 | 00,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys
[2009/09/14 22:50:39 | 00,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll
[2009/09/14 22:50:39 | 00,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe
[2009/09/14 22:50:39 | 00,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2009/09/14 22:50:39 | 00,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll
[2009/09/14 22:50:39 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll
[2009/09/14 22:50:39 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll
[2009/09/14 22:50:39 | 00,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe
[2009/09/14 22:50:39 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2009/09/14 22:50:39 | 00,035,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2009/09/14 22:50:39 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll
[2009/09/14 22:50:39 | 00,009,239 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man
[2009/09/14 22:50:38 | 00,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\zipfldr.dll
[2009/09/14 22:50:38 | 00,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2009/09/14 22:50:38 | 00,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unimdm.tsp
[2009/09/14 22:50:38 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\udfs.sys
[2009/09/14 22:50:38 | 00,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2009/09/14 22:50:38 | 00,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbhub.sys
[2009/09/14 22:50:38 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBAUDIO.sys
[2009/09/14 22:50:38 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscupgrd.exe
[2009/09/14 22:50:38 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbehci.sys
[2009/09/14 22:50:38 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys
[2009/09/14 22:50:38 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys
[2009/09/14 22:50:38 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2009/09/14 22:50:37 | 00,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2009/09/14 22:50:37 | 00,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\umpnpmgr.dll
[2009/09/14 22:50:37 | 00,130,008 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2009/09/14 22:50:37 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll
[2009/09/14 22:50:36 | 01,576,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2009/09/14 22:50:36 | 01,152,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll
[2009/09/14 22:50:36 | 00,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2009/09/14 22:50:36 | 00,615,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themeui.dll
[2009/09/14 22:50:36 | 00,449,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\termsrv.dll
[2009/09/14 22:50:36 | 00,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2009/09/14 22:50:36 | 00,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2009/09/14 22:50:36 | 00,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tapisrv.dll
[2009/09/14 22:50:36 | 00,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2009/09/14 22:50:36 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2009/09/14 22:50:36 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmon.dll
[2009/09/14 22:50:36 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime
[2009/09/14 22:50:36 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdx.sys
[2009/09/14 22:50:36 | 00,053,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\termdd.sys
[2009/09/14 22:50:36 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsbyuv.dll
[2009/09/14 22:48:21 | 00,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2009/09/14 07:56:07 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Dyyno
[2009/09/14 05:15:11 | 00,001,672 | ---- | C] () -- C:\Users\Tony\Desktop\CCleaner.lnk
[2009/09/14 05:15:11 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/09/14 04:42:49 | 00,000,000 | ---D | C] -- C:\PerfLogs
[2009/09/13 00:20:50 | 00,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imagesp1.dll
[2009/09/13 00:20:48 | 02,455,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2009/09/13 00:20:46 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sstpsvc.dll
[2009/09/13 00:20:44 | 00,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2009/09/13 00:20:40 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2009/09/13 00:20:32 | 01,675,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpssvcs.dll
[2009/09/13 00:20:28 | 08,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizimg.dll
[2009/09/13 00:20:28 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2009/09/13 00:20:28 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpremove.exe
[2009/09/13 00:20:24 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\recdisc.exe
[2009/09/13 00:20:23 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompMgmtLauncher.exe
[2009/09/13 00:20:20 | 01,386,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvbvm60.dll
[2009/09/13 00:20:18 | 00,220,672 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\e1e6032.sys
[2009/09/13 00:20:17 | 00,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ADEC.DLL
[2009/09/13 00:20:16 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009/09/13 00:20:14 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SSShim.dll
[2009/09/13 00:20:13 | 00,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlmgp.dll
[2009/09/13 00:20:13 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DfsShlEx.dll
[2009/09/13 00:20:11 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clusapi.dll
[2009/09/13 00:20:09 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2009/09/13 00:20:08 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsbas.dll
[2009/09/13 00:20:07 | 00,531,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comctl32.dll
[2009/09/13 00:20:06 | 00,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XPSSHHDR.dll
[2009/09/13 00:20:06 | 00,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtckrm.dll
[2009/09/13 00:20:05 | 00,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2009/09/13 00:20:04 | 00,730,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdengin2.dll
[2009/09/13 00:20:04 | 00,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmipnpinstall.dll
[2009/09/13 00:20:04 | 00,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2009/09/13 00:20:04 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmicryptinstall.dll
[2009/09/13 00:20:04 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gacinstall.dll
[2009/09/13 00:20:03 | 00,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2009/09/13 00:20:01 | 00,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2009/09/13 00:20:00 | 00,604,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlceqp30.dll
[2009/09/13 00:20:00 | 00,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
[2009/09/13 00:20:00 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecsvc.dll
[2009/09/13 00:19:59 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll
[2009/09/13 00:19:57 | 00,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authfwcfg.dll
[2009/09/13 00:19:57 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2009/09/13 00:19:56 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2009/09/13 00:19:56 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmvdsitf.dll
[2009/09/13 00:19:54 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2009/09/13 00:19:54 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uexfat.dll
[2009/09/13 00:19:53 | 00,308,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlcese30.dll
[2009/09/13 00:19:53 | 00,163,840 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\DfrgNtfs.exe
[2009/09/13 00:19:50 | 00,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssha.dll
[2009/09/13 00:19:49 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfrgui.exe
[2009/09/13 00:19:49 | 00,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlasvc.dll
[2009/09/13 00:19:49 | 00,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2009/09/13 00:19:48 | 00,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmdev.dll
[2009/09/13 00:19:47 | 00,531,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\objsel.dll
[2009/09/13 00:19:47 | 00,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
[2009/09/13 00:19:47 | 00,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2009/09/13 00:19:46 | 00,798,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbghelp.dll
[2009/09/13 00:19:46 | 00,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
[2009/09/13 00:19:45 | 00,503,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Wdf01000.sys
[2009/09/13 00:19:45 | 00,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
[2009/09/13 00:19:44 | 00,347,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmnet.dll
[2009/09/13 00:19:44 | 00,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtrmgr.dll
[2009/09/13 00:19:44 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\raspptp.sys
[2009/09/13 00:19:43 | 00,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2009/09/13 00:19:43 | 00,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdedit.exe
[2009/09/13 00:19:42 | 00,397,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
[2009/09/13 00:19:42 | 00,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
[2009/09/13 00:19:42 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rasl2tp.sys
[2009/09/13 00:19:41 | 00,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfgx.dll
[2009/09/13 00:19:41 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
[2009/09/13 00:19:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll
[2009/09/13 00:19:40 | 00,805,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2009/09/13 00:19:40 | 00,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpksetup.exe
[2009/09/13 00:19:39 | 00,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcuiu.dll
[2009/09/13 00:19:38 | 00,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AUDIOKSE.dll
[2009/09/13 00:19:38 | 00,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprddm.dll
[2009/09/13 00:19:38 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapsvc.dll
[2009/09/13 00:19:37 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdsrv.dll
[2009/09/13 00:19:36 | 00,475,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msidcrl30.dll

 

[2009/09/13 00:19:35 | 01,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2009/09/13 00:19:35 | 01,502,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pla.dll
[2009/09/13 00:19:34 | 00,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpui.dll
[2009/09/13 00:19:34 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2009/09/13 00:19:33 | 00,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comsnap.dll
[2009/09/13 00:19:33 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll
[2009/09/13 00:19:31 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2009/09/13 00:19:31 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2009/09/13 00:19:30 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msconfig.exe
[2009/09/13 00:19:28 | 00,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2009/09/13 00:19:28 | 00,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
[2009/09/13 00:19:28 | 00,240,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
[2009/09/13 00:19:28 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskmgr.dll
[2009/09/13 00:19:28 | 00,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SessEnv.dll
[2009/09/13 00:19:28 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3api.dll
[2009/09/13 00:19:27 | 04,595,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWSnapin.dll
[2009/09/13 00:19:26 | 01,291,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comres.dll
[2009/09/13 00:19:26 | 00,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2009/09/13 00:19:26 | 00,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2009/09/13 00:19:26 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlancfg.dll
[2009/09/13 00:19:26 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcVSp1res.dll
[2009/09/13 00:19:25 | 00,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localsec.dll
[2009/09/13 00:19:25 | 00,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2009/09/13 00:19:25 | 00,289,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hnetcfg.dll
[2009/09/13 00:19:25 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpdd.dll
[2009/09/13 00:19:24 | 00,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOD.DLL
[2009/09/13 00:19:24 | 00,383,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
[2009/09/13 00:19:24 | 00,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsqmcons.exe
[2009/09/13 00:19:24 | 00,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPMONTR.DLL
[2009/09/13 00:19:24 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\profprov.dll
[2009/09/13 00:19:23 | 01,295,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsecedit.dll
[2009/09/13 00:19:23 | 00,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\filemgmt.dll
[2009/09/13 00:19:23 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2009/09/13 00:19:23 | 00,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RDPENCDD.dll
[2009/09/13 00:19:23 | 00,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MuiUnattend.exe
[2009/09/13 00:19:23 | 00,016,896 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2009/09/13 00:19:22 | 00,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009/09/13 00:19:22 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
[2009/09/13 00:19:21 | 00,317,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroleui.dll
[2009/09/13 00:19:21 | 00,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QSHVHOST.DLL
[2009/09/13 00:19:21 | 00,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
[2009/09/13 00:19:20 | 00,498,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2009/09/13 00:19:20 | 00,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2009/09/13 00:19:20 | 00,052,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgr.sys
[2009/09/13 00:19:20 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2009/09/13 00:19:19 | 00,736,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unbcl.dll
[2009/09/13 00:19:19 | 00,464,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2009/09/13 00:19:19 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizeng.dll
[2009/09/13 00:19:19 | 00,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srrstr.dll
[2009/09/13 00:19:19 | 00,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lltdsvc.dll
[2009/09/13 00:19:19 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shrink.dll
[2009/09/13 00:19:19 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2009/09/13 00:19:18 | 01,642,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPEncEn.dll
[2009/09/13 00:19:18 | 00,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
[2009/09/13 00:19:17 | 00,415,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2009/09/13 00:19:17 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
[2009/09/13 00:19:16 | 00,520,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntvdm.exe
[2009/09/13 00:19:16 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\advpack.dll
[2009/09/13 00:19:16 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
[2009/09/13 00:19:15 | 02,537,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpdshext.dll
[2009/09/13 00:19:15 | 00,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysdm.cpl
[2009/09/13 00:19:15 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntlanman.dll
[2009/09/13 00:19:14 | 00,913,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WlanMM.dll
[2009/09/13 00:19:14 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netman.dll
[2009/09/13 00:19:14 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsnt.dll
[2009/09/13 00:19:14 | 00,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framedyn.dll
[2009/09/13 00:19:14 | 00,155,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dssenh.dll
[2009/09/13 00:19:14 | 00,035,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2009/09/13 00:19:13 | 00,628,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WLanConn.dll
[2009/09/13 00:19:13 | 00,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
[2009/09/13 00:19:13 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KMSVC.DLL
[2009/09/13 00:19:12 | 00,142,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\scsiport.sys
[2009/09/13 00:19:12 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmProv.dll
[2009/09/13 00:19:10 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
[2009/09/13 00:19:10 | 00,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2009/09/13 00:19:10 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IPBusEnum.dll
[2009/09/13 00:19:09 | 00,487,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\catsrvut.dll
[2009/09/13 00:19:09 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VAN.dll
[2009/09/13 00:19:09 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009/09/13 00:19:09 | 00,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\umb.dll
[2009/09/13 00:19:08 | 00,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiobj.dll
[2009/09/13 00:19:08 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dps.dll
[2009/09/13 00:19:08 | 00,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MdSched.exe
[2009/09/13 00:19:08 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netid.dll
[2009/09/13 00:19:07 | 00,016,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\msisadrv.sys
[2009/09/13 00:19:06 | 00,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2009/09/13 00:19:06 | 00,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPSTAT.EXE
[2009/09/13 00:19:06 | 00,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
[2009/09/13 00:19:06 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntdsapi.dll
[2009/09/13 00:19:06 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spbcd.dll
[2009/09/13 00:19:06 | 00,057,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mountmgr.sys
[2009/09/13 00:19:06 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2009/09/13 00:19:06 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2009/09/13 00:19:05 | 00,058,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fileinfo.sys
[2009/09/13 00:19:05 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\intelppm.sys
[2009/09/13 00:19:04 | 08,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr
[2009/09/13 00:19:04 | 00,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\catsrv.dll
[2009/09/13 00:19:04 | 00,388,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdlgs.dll
[2009/09/13 00:19:04 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\activeds.dll
[2009/09/13 00:19:04 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
[2009/09/13 00:19:04 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netdiagfx.dll
[2009/09/13 00:19:04 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpsapi.dll
[2009/09/13 00:19:03 | 02,585,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallControlPanel.exe
[2009/09/13 00:19:03 | 00,096,768 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\dfrgfat.exe
[2009/09/13 00:19:03 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSpkg.dll
[2009/09/13 00:19:02 | 00,506,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ENC.DLL
[2009/09/13 00:19:02 | 00,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wvc.dll
[2009/09/13 00:19:02 | 00,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qwave.dll
[2009/09/13 00:19:02 | 00,195,122 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2009/09/13 00:19:02 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2009/09/13 00:19:01 | 00,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsldp.dll
[2009/09/13 00:19:01 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPHLPR.DLL
[2009/09/13 00:19:01 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
[2009/09/13 00:19:00 | 00,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
[2009/09/13 00:19:00 | 00,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
[2009/09/13 00:19:00 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdt.dll
[2009/09/13 00:19:00 | 00,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\els.dll
[2009/09/13 00:18:59 | 00,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipnathlp.dll
[2009/09/13 00:18:59 | 00,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdrsvc.dll
[2009/09/13 00:18:59 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL
[2009/09/13 00:18:58 | 00,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hhctrl.ocx
[2009/09/13 00:18:58 | 00,226,816 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\Defrag.exe
[2009/09/13 00:18:58 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\net1.exe
[2009/09/13 00:18:57 | 00,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\upnphost.dll
[2009/09/13 00:18:57 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprmsg.dll
[2009/09/13 00:18:57 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nci.dll
[2009/09/13 00:18:56 | 01,405,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActiveContentWizard.dll
[2009/09/13 00:18:56 | 00,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompatUI.dll
[2009/09/13 00:18:56 | 00,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2P.dll
[2009/09/13 00:18:56 | 00,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll
[2009/09/13 00:18:55 | 00,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSAC3ENC.DLL
[2009/09/13 00:18:55 | 00,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fde.dll
[2009/09/13 00:18:55 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2009/09/13 00:18:55 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loghours.dll
[2009/09/13 00:18:54 | 00,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2009/09/13 00:18:54 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2009/09/13 00:18:54 | 00,094,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MigAutoPlay.exe
[2009/09/13 00:18:54 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DFDWiz.exe
[2009/09/13 00:18:53 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprdim.dll
[2009/09/13 00:18:53 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupcl.exe
[2009/09/13 00:18:52 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtm.dll
[2009/09/13 00:18:52 | 00,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\videoprt.sys
[2009/09/13 00:18:52 | 00,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPCRYPT.DLL
[2009/09/13 00:18:51 | 00,326,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
[2009/09/13 00:18:51 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifsutil.dll
[2009/09/13 00:18:51 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdi.dll
[2009/09/13 00:18:50 | 00,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswmdm.dll
[2009/09/13 00:18:50 | 00,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinFXDocObj.exe
[2009/09/13 00:18:49 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlandlg.dll
[2009/09/13 00:18:49 | 00,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mycomput.dll
[2009/09/13 00:18:49 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2009/09/13 00:18:49 | 00,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2009/09/13 00:18:49 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
[2009/09/13 00:18:49 | 00,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\activeds.tlb
[2009/09/13 00:18:49 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vssadmin.exe
[2009/09/13 00:18:49 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbmon.dll
[2009/09/13 00:18:49 | 00,024,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BOOTVID.DLL
[2009/09/13 00:18:48 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSTPager.ax
[2009/09/13 00:18:48 | 00,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uudf.dll
[2009/09/13 00:18:47 | 00,485,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspaint.exe
[2009/09/13 00:18:47 | 00,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\termmgr.dll
[2009/09/13 00:18:47 | 00,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstask.dll
[2009/09/13 00:18:46 | 00,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
[2009/09/13 00:18:46 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cic.dll
[2009/09/13 00:18:46 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssdpsrv.dll
[2009/09/13 00:18:46 | 00,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxoci.dll
[2009/09/13 00:18:46 | 00,035,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\kbdclass.sys
[2009/09/13 00:18:46 | 00,034,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mouclass.sys
[2009/09/13 00:18:45 | 00,087,552 | ---- | C] (Microsoft) -- C:\Windows\System32\Robocopy.exe
[2009/09/13 00:18:45 | 00,031,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mssmbios.sys
[2009/09/13 00:18:45 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AzSqlExt.dll
[2009/09/13 00:18:45 | 00,021,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spldr.sys
[2009/09/13 00:18:44 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdshext.dll
[2009/09/13 00:18:44 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\luafv.sys
[2009/09/13 00:18:44 | 00,017,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmilib.sys
[2009/09/13 00:18:44 | 00,015,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\swenum.sys
[2009/09/13 00:18:43 | 01,039,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d8.dll
[2009/09/13 00:18:43 | 00,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2009/09/13 00:18:43 | 00,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdt.exe
[2009/09/13 00:18:43 | 00,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verifier.exe
[2009/09/13 00:18:43 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtclog.dll
[2009/09/13 00:18:43 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmview.ocx
[2009/09/13 00:18:42 | 00,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2009/09/13 00:18:42 | 00,301,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcbase.dll
[2009/09/13 00:18:42 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
[2009/09/13 00:18:42 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oledlg.dll
[2009/09/13 00:18:42 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clfsw32.dll
[2009/09/13 00:18:42 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsldr.exe
[2009/09/13 00:18:41 | 00,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
[2009/09/13 00:18:41 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaatext.dll
[2009/09/13 00:18:41 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2009/09/13 00:18:41 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasqec.dll
[2009/09/13 00:18:41 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardie.dll
[2009/09/13 00:18:41 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncobjapi.dll
[2009/09/13 00:18:40 | 00,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2009/09/13 00:18:39 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2009/09/13 00:18:39 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\cdfs.sys
[2009/09/13 00:18:39 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syssetup.dll
[2009/09/13 00:18:39 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2009/09/13 00:18:39 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2009/09/13 00:18:39 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
[2009/09/13 00:18:38 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\trkwks.dll
[2009/09/13 00:18:38 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll
[2009/09/13 00:18:38 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mcx2Svc.dll
[2009/09/13 00:18:37 | 01,107,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ogldrv.dll
[2009/09/13 00:18:37 | 00,201,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unattend.dll
[2009/09/13 00:18:37 | 00,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cabview.dll
[2009/09/13 00:18:37 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2009/09/13 00:18:37 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lnkstub.exe
[2009/09/13 00:18:37 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2009/09/13 00:18:36 | 00,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ipnat.sys
[2009/09/13 00:18:36 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfdts.dll
[2009/09/13 00:18:35 | 00,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pcollab.dll
[2009/09/13 00:18:35 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basesrv.dll
[2009/09/13 00:18:35 | 00,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DHCPQEC.DLL
[2009/09/13 00:18:34 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispdiag.exe
[2009/09/13 00:18:33 | 00,394,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsquery.dll
[2009/09/13 00:18:33 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcss.dll
[2009/09/13 00:18:33 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\umbus.sys
[2009/09/13 00:18:32 | 00,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verifier.dll
[2009/09/13 00:18:32 | 00,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RstrtMgr.dll
[2009/09/13 00:18:32 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efsadu.dll
[2009/09/13 00:18:32 | 00,083,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WUDFRd.sys
[2009/09/13 00:18:31 | 02,249,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Firewall.cpl
[2009/09/13 00:18:31 | 00,349,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2009/09/13 00:18:31 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercplsupport.dll
[2009/09/13 00:18:30 | 00,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2009/09/13 00:18:30 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2009/09/13 00:18:30 | 00,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pnetsh.dll
[2009/09/13 00:18:30 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
[2009/09/13 00:18:30 | 00,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsiexe.dll
[2009/09/13 00:18:30 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiascanprofiles.dll
[2009/09/13 00:18:30 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupugc.exe
[2009/09/13 00:18:30 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QSVRMGMT.DLL
[2009/09/13 00:18:30 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2009/09/13 00:18:30 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
[2009/09/13 00:18:30 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2009/09/13 00:18:30 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icacls.exe
[2009/09/13 00:18:29 | 00,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrdc.dll
[2009/09/13 00:18:29 | 00,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactsrv.dll
[2009/09/13 00:18:29 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssocPrx.dll
[2009/09/13 00:18:29 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
[2009/09/13 00:18:28 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systeminfo.exe
[2009/09/13 00:18:28 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappprxy.dll
[2009/09/13 00:18:28 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcadm.dll
[2009/09/13 00:18:27 | 00,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TabletPC.cpl
[2009/09/13 00:18:27 | 00,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwizards.dll
[2009/09/13 00:18:27 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2009/09/13 00:18:27 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdl32.exe
[2009/09/13 00:18:27 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2009/09/13 00:18:27 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\resutils.dll
[2009/09/13 00:18:27 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\alg.exe
[2009/09/13 00:18:27 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndproxy.sys
[2009/09/13 00:18:27 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2009/09/13 00:18:26 | 00,614,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFWMAAEC.DLL
[2009/09/13 00:18:26 | 00,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VBICodec.ax
[2009/09/13 00:18:26 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3ui.dll
[2009/09/13 00:18:26 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbnetlib.dll
[2009/09/13 00:18:26 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfrgifc.exe
[2009/09/13 00:18:26 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dssec.dll
[2009/09/13 00:18:25 | 00,669,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netprof.dll
[2009/09/13 00:18:25 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\intl.cpl
[2009/09/13 00:18:25 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\regedit.exe
[2009/09/13 00:18:24 | 00,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apircl.dll
[2009/09/13 00:18:24 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\btpanui.dll
[2009/09/13 00:18:24 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\txflog.dll
[2009/09/13 00:18:24 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2009/09/13 00:18:24 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbuhci.sys
[2009/09/13 00:18:23 | 01,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2009/09/13 00:18:23 | 00,975,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RASMM.dll
[2009/09/13 00:18:23 | 00,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msieftp.dll
[2009/09/13 00:18:23 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssText3d.scr
[2009/09/13 00:18:23 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2009/09/13 00:18:23 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActionQueue.dll
[2009/09/13 00:18:23 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskkill.exe
[2009/09/13 00:18:23 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll
[2009/09/13 00:18:23 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tbssvc.dll
[2009/09/13 00:18:23 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdprov.dll
[2009/09/13 00:18:23 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
[2009/09/13 00:18:22 | 00,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\provthrd.dll
[2009/09/13 00:18:22 | 00,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syncui.dll
[2009/09/13 00:18:22 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EAPQEC.DLL
[2009/09/13 00:18:22 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmocx.dll
[2009/09/13 00:18:22 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe
[2009/09/13 00:18:21 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aclui.dll
[2009/09/13 00:18:20 | 00,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodev.dll
[2009/09/13 00:18:20 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2009/09/13 00:18:20 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raserver.exe
[2009/09/13 00:18:20 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcplsdw.dll
[2009/09/13 00:18:20 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2009/09/13 00:18:19 | 02,588,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIHub.dll
[2009/09/13 00:18:19 | 00,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\upnp.dll
[2009/09/13 00:18:19 | 00,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskmgr.exe
[2009/09/13 00:18:19 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsfiltr.dll
[2009/09/13 00:18:19 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QCLIPROV.DLL
[2009/09/13 00:18:19 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xcopy.exe
[2009/09/13 00:18:19 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ias.dll
[2009/09/13 00:18:18 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcshext.dll
[2009/09/13 00:18:18 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayApi.dll
[2009/09/13 00:18:18 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2009/09/13 00:18:18 | 00,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmstp.exe
[2009/09/13 00:18:18 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browser.dll
[2009/09/13 00:18:18 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanext.exe
[2009/09/13 00:18:18 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wanarp.sys
[2009/09/13 00:18:18 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll
[2009/09/13 00:18:18 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appinfo.dll
[2009/09/13 00:18:18 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfts.dll
[2009/09/13 00:18:18 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mountvol.exe
[2009/09/13 00:18:17 | 00,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cewmdm.dll
[2009/09/13 00:18:17 | 00,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsadmin.exe
[2009/09/13 00:18:17 | 00,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dskquoui.dll
[2009/09/13 00:18:17 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetmib1.dll
[2009/09/13 00:18:17 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WpdUsb.sys
[2009/09/13 00:18:17 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PING.EXE
[2009/09/13 00:18:16 | 00,616,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsuiext.dll
[2009/09/13 00:18:16 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll
[2009/09/13 00:18:16 | 00,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qcap.dll
[2009/09/13 00:18:16 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2009/09/13 00:18:16 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SoundRecorder.exe
[2009/09/13 00:18:16 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2009/09/13 00:18:16 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2009/09/13 00:18:16 | 00,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WUDFPf.sys
[2009/09/13 00:18:16 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2009/09/13 00:18:15 | 00,338,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SysFxUI.dll
[2009/09/13 00:18:15 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFSvc.dll
[2009/09/13 00:18:15 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2009/09/13 00:18:14 | 00,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSENCD.DLL
[2009/09/13 00:18:14 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpsrcwp.dll
[2009/09/13 00:18:14 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtstocom.exe
[2009/09/13 00:18:14 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\makecab.exe
[2009/09/13 00:18:14 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Sens.dll
[2009/09/13 00:18:14 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SecEdit.exe
[2009/09/13 00:18:14 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsmproxy.dll
[2009/09/13 00:18:14 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2009/09/13 00:18:13 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2009/09/13 00:18:13 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfapi.dll
[2009/09/13 00:18:13 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shimgvw.dll
[2009/09/13 00:18:13 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
[2009/09/13 00:18:13 | 00,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwtpw32.dll
[2009/09/13 00:18:13 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpclnt.dll
[2009/09/13 00:18:13 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\seclogon.dll
[2009/09/13 00:18:12 | 00,443,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiashext.dll
[2009/09/13 00:18:12 | 00,415,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiadefui.dll
[2009/09/13 00:18:12 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2009/09/13 00:18:12 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apss.dll
[2009/09/13 00:18:12 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msorcl32.dll
[2009/09/13 00:18:12 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdadiag.dll
[2009/09/13 00:18:12 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
[2009/09/13 00:18:12 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wzcdlg.dll
[2009/09/13 00:18:12 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscmisetup.dll
[2009/09/13 00:18:12 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppnp.dll
[2009/09/13 00:18:11 | 01,329,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOE.DLL
[2009/09/13 00:18:11 | 00,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpdwcn.dll
[2009/09/13 00:18:11 | 00,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2phost.exe
[2009/09/13 00:18:11 | 00,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\keymgr.dll
[2009/09/13 00:18:11 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfmon.exe
[2009/09/13 00:18:11 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tasklist.exe
[2009/09/13 00:18:11 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HelpPaneProxy.dll
[2009/09/13 00:18:11 | 00,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2009/09/13 00:18:11 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2009/09/13 00:18:11 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\napipsec.dll
[2009/09/13 00:18:11 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxstrace.exe
[2009/09/13 00:18:11 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\userinit.exe
[2009/09/13 00:18:11 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2009/09/13 00:18:11 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ktmutil.exe
[2009/09/13 00:18:10 | 00,816,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dim700.dll
[2009/09/13 00:18:10 | 00,686,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\colorui.dll
[2009/09/13 00:18:10 | 00,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2009/09/13 00:18:10 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2009/09/13 00:18:10 | 00,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\notepad.exe
[2009/09/13 00:18:10 | 00,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\notepad.exe
[2009/09/13 00:18:10 | 00,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prntvpt.dll
[2009/09/13 00:18:10 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TapiMigPlugin.dll
[2009/09/13 00:18:10 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fmifs.dll
[2009/09/13 00:18:09 | 00,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshipsec.dll
[2009/09/13 00:18:09 | 00,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2009/09/13 00:18:09 | 00,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksproxy.ax
[2009/09/13 00:18:09 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2009/09/13 00:18:09 | 00,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\driverquery.exe
[2009/09/13 00:18:09 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winethc.dll
[2009/09/13 00:18:09 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdll.dll
[2009/09/13 00:18:09 | 00,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\takeown.exe
[2009/09/13 00:18:09 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcasvc.dll
[2009/09/13 00:18:09 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2009/09/13 00:18:09 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\txfw32.dll
[2009/09/13 00:18:09 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscproxystub.dll
[2009/09/13 00:18:08 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpdbusenum.dll
[2009/09/13 00:18:08 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findnetprinters.dll
[2009/09/13 00:18:08 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2009/09/13 00:18:08 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnshc.dll
[2009/09/13 00:18:08 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmiprop.dll
[2009/09/13 00:18:08 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capisp.dll
[2009/09/13 00:18:08 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pots.dll
[2009/09/13 00:18:07 | 00,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\joy.cpl
[2009/09/13 00:18:07 | 00,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shrpubw.exe
[2009/09/13 00:18:07 | 00,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL
[2009/09/13 00:18:07 | 00,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WLanHC.dll
[2009/09/13 00:18:07 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\luainstall.dll
[2009/09/13 00:18:07 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olecli32.dll
[2009/09/13 00:18:07 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll
[2009/09/13 00:18:07 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfnet.dll
[2009/09/13 00:18:07 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nsisvc.dll
[2009/09/13 00:18:07 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdPHost.dll
[2009/09/13 00:18:06 | 01,298,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TMM.dll
[2009/09/13 00:18:06 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shgina.dll
[2009/09/13 00:18:06 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2009/09/13 00:18:06 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rshx32.dll
[2009/09/13 00:18:06 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RpcPing.exe
[2009/09/13 00:18:06 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ktmw32.dll
[2009/09/13 00:18:04 | 01,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOE.DLL
[2009/09/13 00:18:04 | 00,384,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dim.dll
[2009/09/13 00:18:04 | 00,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2009/09/13 00:18:04 | 00,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compstui.dll
[2009/09/13 00:18:04 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaacmgr.exe
[2009/09/13 00:18:04 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\getmac.exe
[2009/09/13 00:18:04 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\runonce.exe
[2009/09/13 00:18:04 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe
[2009/09/13 00:18:04 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
[2009/09/13 00:18:04 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmlua.dll
[2009/09/13 00:18:03 | 00,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPG4DECD.DLL
[2009/09/13 00:18:03 | 00,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP43DECD.DLL
[2009/09/13 00:18:03 | 00,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdminst.dll
[2009/09/13 00:18:03 | 00,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\irda.sys
[2009/09/13 00:18:03 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\w32tm.exe
[2009/09/13 00:18:03 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\net.exe
[2009/09/13 00:18:03 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\monitor.sys
[2009/09/13 00:18:03 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsauth.dll
[2009/09/13 00:18:02 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpshell.dll
[2009/09/13 00:18:02 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdc.ocx
[2009/09/13 00:18:02 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2009/09/13 00:18:01 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWiaCompat.dll
[2009/09/13 00:18:01 | 00,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\migisol.dll
[2009/09/13 00:18:01 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdchange.exe
[2009/09/13 00:18:01 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ACW.exe
[2009/09/13 00:18:01 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmutil.dll
[2009/09/13 00:18:01 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2009/09/13 00:18:01 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpts.dll
[2009/09/13 00:18:00 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dinput8.dll
[2009/09/13 00:18:00 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diantz.exe
[2009/09/13 00:18:00 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comrepl.dll
[2009/09/13 00:18:00 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2009/09/13 00:18:00 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sfc.exe
[2009/09/13 00:17:59 | 01,370,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Aurora.scr
[2009/09/13 00:17:58 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDump.dll
[2009/09/13 00:17:58 | 00,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmidx.dll
[2009/09/13 00:17:58 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\colbact.dll
[2009/09/13 00:17:58 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\remotepg.dll
[2009/09/13 00:17:58 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fwcfg.dll
[2009/09/13 00:17:58 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\expand.exe
[2009/09/13 00:17:58 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
[2009/09/13 00:17:58 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cfgbkend.dll
[2009/09/13 00:17:58 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdhui.dll
[2009/09/13 00:17:58 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmredir.dll
[2009/09/13 00:17:58 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2009/09/13 00:17:57 | 00,879,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Bubbles.scr
[2009/09/13 00:17:57 | 00,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\desk.cpl
[2009/09/13 00:17:57 | 00,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmvdspa.dll
[2009/09/13 00:17:57 | 00,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\McxDriv.dll
[2009/09/13 00:17:57 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TpmInit.exe
[2009/09/13 00:17:57 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hlink.dll
[2009/09/13 00:17:57 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amstream.dll
[2009/09/13 00:17:57 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2009/09/13 00:17:57 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\utildll.dll
[2009/09/13 00:17:57 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bridgeunattend.exe
[2009/09/13 00:17:56 | 00,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sti_ci.dll
[2009/09/13 00:17:56 | 00,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esentutl.exe
[2009/09/13 00:17:56 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootcfg.exe
[2009/09/13 00:17:56 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vds_ps.dll
[2009/09/13 00:17:56 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\waitfor.exe
[2009/09/13 00:17:56 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmcfg32.dll
[2009/09/13 00:17:56 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrleakdiag.exe
[2009/09/13 00:17:55 | 00,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2009/09/13 00:17:55 | 00,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdv.dll
[2009/09/13 00:17:55 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mystify.scr
[2009/09/13 00:17:55 | 00,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Ribbons.scr
[2009/09/13 00:17:55 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2009/09/13 00:17:55 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osblprov.dll
[2009/09/13 00:17:55 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shutdown.exe
[2009/09/13 00:17:55 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsium.dll
[2009/09/13 00:17:55 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cacls.exe
[2009/09/13 00:17:54 | 00,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DpiScaling.exe
[2009/09/13 00:17:54 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtc.exe
[2009/09/13 00:17:54 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olesvr32.dll
[2009/09/13 00:17:54 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpcm.dll
[2009/09/13 00:17:54 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2009/09/13 00:17:54 | 00,001,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmCl.dll
[2009/09/13 00:17:53 | 00,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COLORCNV.DLL
[2009/09/13 00:17:53 | 00,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasauto.dll
[2009/09/13 00:17:53 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olethk32.dll
[2009/09/13 00:17:53 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsiwmi.dll
[2009/09/13 00:17:53 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfvdsp.dll
[2009/09/13 00:17:53 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpnpinst.exe
[2009/09/13 00:17:53 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werdiagcontroller.dll
[2009/09/13 00:17:52 | 00,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wavemsp.dll
[2009/09/13 00:17:52 | 00,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercfg.cpl
[2009/09/13 00:17:52 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2009/09/13 00:17:52 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ufat.dll
[2009/09/13 00:17:52 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxproxy.dll
[2009/09/13 00:17:52 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\at.exe
[2009/09/13 00:17:51 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rgb9rast.dll
[2009/09/13 00:17:51 | 00,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\itss.dll
[2009/09/13 00:17:51 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ucsvc.exe

 

[2009/09/13 00:17:51 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshta.exe
[2009/09/13 00:17:51 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegCtrl.dll
[2009/09/13 00:17:51 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll
[2009/09/13 00:17:51 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\convert.exe
[2009/09/13 00:17:51 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlprovi.dll
[2009/09/13 00:17:50 | 00,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWGP.dll
[2009/09/13 00:17:50 | 00,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mobsync.exe
[2009/09/13 00:17:50 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dskquota.dll
[2009/09/13 00:17:50 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TimeDateMUICallback.dll
[2009/09/13 00:17:50 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2009/09/13 00:17:50 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2009/09/13 00:17:50 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netbtugc.exe
[2009/09/13 00:17:50 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsied.dll
[2009/09/13 00:17:49 | 00,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmime.dll
[2009/09/13 00:17:49 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupcln.dll
[2009/09/13 00:17:49 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GuidedHelp.dll
[2009/09/13 00:17:49 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\i8042prt.sys
[2009/09/13 00:17:49 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fphc.dll
[2009/09/13 00:17:49 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
[2009/09/13 00:17:49 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unattendedjoin.exe
[2009/09/13 00:17:49 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AtBroker.exe
[2009/09/13 00:17:49 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tbs.dll
[2009/09/13 00:17:48 | 05,714,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logon.scr
[2009/09/13 00:17:48 | 00,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsdmo.dll
[2009/09/13 00:17:48 | 00,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mydocs.dll
[2009/09/13 00:17:48 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kstvtune.ax
[2009/09/13 00:17:48 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\napdsnap.dll
[2009/09/13 00:17:48 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll
[2009/09/13 00:17:48 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2gpstore.dll
[2009/09/13 00:17:48 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regini.exe
[2009/09/13 00:17:48 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmpbk32.dll
[2009/09/13 00:17:48 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009/09/13 00:17:48 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
[2009/09/13 00:17:48 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009/09/13 00:17:47 | 00,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VIDRESZR.DLL
[2009/09/13 00:17:47 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdart.dll
[2009/09/13 00:17:47 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbui.dll
[2009/09/13 00:17:47 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2009/09/13 00:17:47 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2009/09/13 00:17:47 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpclsp.dll
[2009/09/13 00:17:47 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msident.dll
[2009/09/13 00:17:47 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3dlg.dll
[2009/09/13 00:17:47 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tape.sys
[2009/09/13 00:17:47 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacAgent.exe
[2009/09/13 00:17:47 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\asyncmac.sys
[2009/09/13 00:17:47 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmstplua.dll
[2009/09/13 00:17:46 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\graftabl.com
[2009/09/13 00:17:46 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdtcp.sys
[2009/09/13 00:17:46 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\filetrace.sys
[2009/09/13 00:17:46 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxlegih.dll
[2009/09/13 00:17:46 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfcsubs.dll
[2009/09/13 00:17:46 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vss_ps.dll
[2009/09/13 00:17:46 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srwmi.dll
[2009/09/13 00:17:46 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\upnpcont.exe
[2009/09/13 00:17:46 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxdm.dll
[2009/09/13 00:17:46 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndistapi.sys
[2009/09/13 00:17:46 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WINSRPC.DLL
[2009/09/13 00:17:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nbtstat.exe
[2009/09/13 00:17:46 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fs_rec.sys
[2009/09/13 00:17:46 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
[2009/09/13 00:17:46 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
[2009/09/13 00:17:45 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbccgp.sys
[2009/09/13 00:17:45 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vfwwdm32.dll
[2009/09/13 00:17:45 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\extrac32.exe
[2009/09/13 00:17:45 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WavDest.dll
[2009/09/13 00:17:45 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksxbar.ax
[2009/09/13 00:17:45 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasphone.exe
[2009/09/13 00:17:45 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiarpc.dll
[2009/09/13 00:17:45 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfetw.dll
[2009/09/13 00:17:45 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcbcp.dll
[2009/09/13 00:17:45 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syskey.exe
[2009/09/13 00:17:45 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
[2009/09/13 00:17:44 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL
[2009/09/13 00:17:44 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eventcls.dll
[2009/09/13 00:17:44 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\procinst.dll
[2009/09/13 00:17:43 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgrade.exe
[2009/09/13 00:17:43 | 00,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiadss.dll
[2009/09/13 00:17:43 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmscript.dll
[2009/09/13 00:17:43 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rspndr.sys
[2009/09/13 00:17:43 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dxof.dll
[2009/09/13 00:17:43 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TabbtnEx.dll
[2009/09/13 00:17:43 | 00,041,472 | ---- | C] (Microsoft) -- C:\Windows\System32\WlanMmHC.dll
[2009/09/13 00:17:43 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psbase.dll
[2009/09/13 00:17:43 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tssecsrv.sys
[2009/09/13 00:17:43 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdpipe.sys
[2009/09/13 00:17:43 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe
[2009/09/13 00:17:42 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Tabbtn.dll
[2009/09/13 00:17:42 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmloader.dll
[2009/09/13 00:17:42 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\fveupdate.exe
[2009/09/13 00:17:42 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollCtrl.exe
[2009/09/13 00:17:41 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\lltdio.sys
[2009/09/13 00:17:41 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshcon.dll
[2009/09/13 00:17:41 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Netplwiz.exe
[2009/09/13 00:17:41 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdi.sys
[2009/09/13 00:17:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
[2009/09/13 00:17:41 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2009/09/13 00:17:40 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ComputerDefaults.exe
[2009/09/13 00:17:40 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lltdapi.dll
[2009/09/13 00:17:40 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxsstore.dll
[2009/09/13 00:17:40 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
[2009/09/13 00:17:40 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
[2009/09/13 00:17:40 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2009/09/13 00:17:40 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL
[2009/09/13 00:17:40 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
[2009/09/13 00:17:39 | 00,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OptionalFeatures.exe
[2009/09/13 00:17:39 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\bowser.sys
[2009/09/13 00:17:39 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ipfltdrv.sys
[2009/09/13 00:17:39 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\g711codc.ax
[2009/09/13 00:17:39 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LangCleanupSysprepAction.dll
[2009/09/13 00:17:39 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icaapi.dll
[2009/09/13 00:17:39 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localui.dll
[2009/09/13 00:17:39 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupSNK.exe
[2009/09/13 00:17:39 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2009/09/13 00:17:38 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbisurf.ax
[2009/09/13 00:17:38 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tunnel.sys
[2009/09/13 00:17:38 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmutil.dll
[2009/09/13 00:17:38 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spopk.dll
[2009/09/13 00:17:38 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\serialui.dll
[2009/09/13 00:17:38 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbperf.dll
[2009/09/13 00:17:37 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cofiredm.dll
[2009/09/13 00:17:36 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpsdrv.sys
[2009/09/13 00:17:36 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2009/09/13 00:17:36 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\corpol.dll
[2009/09/13 00:17:36 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasctrs.dll
[2009/09/13 00:17:36 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2009/09/13 00:17:35 | 00,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2009/09/13 00:17:35 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netbios.sys
[2009/09/13 00:17:35 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\modem.sys
[2009/09/13 00:17:35 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\qwavedrv.sys
[2009/09/13 00:17:35 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndisuio.sys
[2009/09/13 00:17:35 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\TUNMP.SYS
[2009/09/13 00:17:35 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hnetmon.dll
[2009/09/13 00:17:35 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InfDefaultInstall.exe
[2009/09/13 00:17:34 | 00,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2009/09/13 00:17:34 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2009/09/13 00:17:34 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlsbres.dll
[2009/09/13 00:17:34 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esentprf.dll
[2009/09/13 00:17:34 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LogonUI.exe
[2009/09/13 00:17:34 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtprio.dll
[2009/09/13 00:17:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdspres.dll
[2009/09/13 00:17:32 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osbaseln.dll
[2009/09/13 00:17:32 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
[2009/09/13 00:17:31 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\msfs.sys
[2009/09/13 00:17:31 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2009/09/13 00:17:30 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispex.dll
[2009/09/13 00:17:30 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\sermouse.sys
[2009/09/13 00:17:30 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winusb.dll
[2009/09/13 00:17:30 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcfgex.dll
[2009/09/13 00:17:29 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mouhid.sys
[2009/09/13 00:17:28 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Nlsdl.dll
[2009/09/13 00:17:28 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mcd.sys
[2009/09/13 00:17:28 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\nsiproxy.sys
[2009/09/13 00:17:28 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ws2ifsl.sys
[2009/09/13 00:17:28 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\irenum.sys
[2009/09/13 00:17:28 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msidle.dll
[2009/09/13 00:17:28 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2009/09/13 00:17:27 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\idndl.dll
[2009/09/13 00:17:27 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rasacd.sys
[2009/09/13 00:17:27 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rootmdm.sys
[2009/09/13 00:17:26 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\smclib.sys
[2009/09/13 00:17:26 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\bdasup.sys
[2009/09/13 00:17:26 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDJPN.DLL
[2009/09/13 00:17:26 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDKOR.DLL
[2009/09/13 00:17:26 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mskssrv.sys
[2009/09/13 00:17:25 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\vga.sys
[2009/09/13 00:17:25 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxapi.sys
[2009/09/13 00:17:25 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\umpass.sys
[2009/09/13 00:17:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\beep.sys
[2009/09/13 00:17:25 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\null.sys
[2009/09/13 00:17:24 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga256.dll
[2009/09/13 00:17:24 | 00,025,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2009/09/13 00:17:24 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga64k.dll
[2009/09/13 00:17:24 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsddd.dll
[2009/09/13 00:17:24 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framebuf.dll
[2009/09/13 00:17:24 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPENCDD.sys
[2009/09/13 00:17:24 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPCDD.sys
[2009/09/13 00:17:24 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mstee.sys
[2009/09/13 00:17:24 | 00,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2009/09/13 00:17:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmkaud.sys
[2009/09/13 00:17:23 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga.dll
[2009/09/13 00:17:23 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizres.dll
[2009/09/13 00:17:23 | 00,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mspclock.sys
[2009/09/13 00:17:23 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mspqm.sys
[2009/09/13 00:17:23 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootstr.dll
[2009/09/13 00:17:23 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskres2.dll
[2009/09/13 00:17:22 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wertargets.wtl
[2009/09/13 00:17:21 | 00,012,198 | ---- | C] () -- C:\Windows\System32\gatherWiredInfo.vbs
[2009/09/13 00:17:19 | 00,144,909 | ---- | C] () -- C:\Windows\System32\fsmgmt.msc
[2009/09/13 00:17:15 | 00,145,455 | ---- | C] () -- C:\Windows\System32\perfmon.msc
[2009/09/13 00:17:15 | 00,001,820 | ---- | C] () -- C:\Windows\System32\rasctrnm.h
[2009/09/13 00:17:14 | 00,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01007_Inbox_Critical.Wdf
[2009/09/13 00:16:47 | 00,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
[2009/09/13 00:16:47 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
[2009/09/13 00:16:43 | 00,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiInstaller.dll
[2009/09/13 00:16:43 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqmapi.dll
[2009/09/13 00:16:28 | 00,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdelta.dll
[2009/09/13 00:16:28 | 00,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2009/09/13 00:16:28 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspatcha.dll
[2009/09/12 23:13:41 | 00,004,608 | ---- | C] () -- C:\Users\Tony\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/12 21:59:00 | 72,267,6885 | ---- | C] () -- C:\Users\Tony\Desktop\Niero First Bg9 Warrior PvP final.wmv
[2009/09/11 02:10:30 | 00,000,000 | ---D | C] -- C:\Program Files\World of Warcraft Public Test
[2009/09/11 02:01:12 | 00,000,000 | ---D | C] -- C:\Program Files\3.0.1.8874 US PTR Installer
[2009/09/11 01:56:18 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Blizzard Entertainment
[2009/09/11 01:38:05 | 00,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2009/09/11 00:01:55 | 00,000,000 | ---D | C] -- C:\ProgramData\Blizzard
[2009/09/10 23:58:01 | 00,000,754 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2009/09/10 23:58:01 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2009/09/10 23:57:42 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\uTorrent
[2009/09/10 23:23:48 | 00,000,995 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2009/09/10 22:49:37 | 00,000,000 | ---D | C] -- C:\Program Files\World of Warcraft
[2009/09/09 20:16:24 | 00,000,952 | ---- | C] () -- C:\Users\Tony\Desktop\Dyyno Broadcaster.lnk
[2009/09/09 20:16:21 | 00,000,000 | ---D | C] -- C:\Program Files\Dyyno
[2009/09/09 15:39:41 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\assembly
[2009/09/09 15:39:18 | 00,001,811 | ---- | C] () -- C:\Users\Public\Desktop\NCsoft Launcher.lnk
[2009/09/09 15:39:16 | 00,000,000 | ---D | C] -- C:\Program Files\NCSoft
[2009/09/09 15:38:51 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\InstallShield
[2009/09/09 15:38:09 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\GetRightToGo
[2009/09/09 12:00:18 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2009/09/09 12:00:16 | 04,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2009/09/09 12:00:16 | 01,696,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2009/09/09 03:29:07 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2009/09/09 03:29:07 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009/09/09 03:29:07 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009/09/09 03:29:07 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009/09/09 03:29:07 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2009/09/09 03:29:07 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009/09/09 03:29:07 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009/09/09 03:29:07 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2009/09/09 03:29:07 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009/09/09 03:29:06 | 00,904,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpip.sys
[2009/09/09 03:29:06 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpipreg.sys
[2009/09/09 03:28:48 | 02,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2009/09/09 03:28:48 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2009/09/09 03:28:48 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2009/09/09 03:28:48 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2009/09/09 03:28:47 | 00,513,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansvc.dll
[2009/09/09 03:28:47 | 00,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2009/09/09 03:28:47 | 00,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2009/09/09 03:28:46 | 00,015,181 | ---- | C] () -- C:\Windows\System32\gatherWirelessInfo.vbs
[2009/09/09 03:28:37 | 02,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2009/09/09 03:28:37 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009/09/09 03:28:37 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009/09/09 03:28:37 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009/09/09 03:28:37 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009/09/09 03:28:36 | 02,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009/09/09 03:27:03 | 00,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2009/09/09 03:23:54 | 00,001,743 | ---- | C] () -- C:\Users\Tony\Desktop\Frozen Throne.lnk
[2009/09/09 03:18:59 | 00,055,680 | ---- | C] () -- C:\Windows\War3Unin.dat
[2009/09/09 03:18:58 | 00,139,264 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
[2009/09/09 03:18:58 | 00,002,829 | ---- | C] () -- C:\Windows\War3Unin.pif
[2009/09/09 03:16:32 | 00,000,000 | ---D | C] -- C:\Program Files\Warcraft III
[2009/09/08 21:46:20 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Adobe
[2009/09/08 19:18:35 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2009/09/08 19:17:02 | 00,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2009/09/08 19:17:02 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winipsec.dll
[2009/09/08 19:12:17 | 02,034,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2009/09/08 19:10:13 | 00,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2009/09/08 19:10:13 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2009/09/08 19:10:13 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009/09/08 19:10:13 | 00,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2009/09/08 19:10:13 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
[2009/09/08 19:10:13 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009/09/08 19:05:19 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
[2009/09/08 19:00:38 | 00,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wkssvc.dll
[2009/09/08 18:59:38 | 02,066,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstscax.dll
[2009/09/08 18:59:38 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2009/09/08 18:59:38 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2009/09/08 18:57:35 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2009/09/08 18:52:07 | 00,623,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2009/09/08 18:51:13 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2009/09/08 18:51:12 | 00,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2009/09/08 18:51:12 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2009/09/08 18:51:12 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2009/09/08 18:51:12 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvidc32.dll
[2009/09/08 18:51:12 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrle32.dll
[2009/09/08 18:45:38 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kerberos.dll
[2009/09/08 18:45:38 | 00,439,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecdd.sys
[2009/09/08 18:45:38 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
[2009/09/08 18:45:38 | 00,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdigest.dll
[2009/09/08 18:45:38 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
[2009/09/08 18:45:38 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
[2009/09/08 18:45:37 | 01,259,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009/09/08 18:45:37 | 00,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
[2009/09/08 18:42:27 | 01,793,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2009/09/08 18:42:26 | 01,808,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2009/09/08 18:42:26 | 01,558,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2009/09/08 18:42:26 | 01,411,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2009/09/08 18:42:26 | 01,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2009/09/08 18:42:25 | 05,499,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2009/09/08 18:42:25 | 02,136,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2009/09/08 18:42:25 | 01,782,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2009/09/08 18:42:24 | 07,964,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2009/09/08 18:42:24 | 06,224,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2009/09/08 18:42:24 | 05,791,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2009/09/08 18:42:23 | 04,981,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2009/09/08 18:42:23 | 04,175,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2009/09/08 18:42:23 | 02,466,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2009/09/08 18:42:22 | 06,781,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2009/09/08 18:42:22 | 03,331,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2009/09/08 18:42:21 | 11,722,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2009/09/08 18:42:21 | 04,164,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2009/09/08 18:42:21 | 01,452,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2009/09/08 18:42:20 | 03,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2009/09/08 18:42:19 | 04,093,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2009/09/08 18:42:19 | 04,045,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2009/09/08 18:42:19 | 01,972,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2009/09/08 18:42:19 | 01,702,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2009/09/08 18:42:19 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2009/09/08 18:42:18 | 06,585,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2009/09/08 18:42:18 | 06,014,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2009/09/08 18:42:17 | 09,892,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2009/09/08 18:42:17 | 06,346,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2009/09/08 18:42:16 | 06,237,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2009/09/08 18:42:16 | 05,654,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2009/09/08 18:42:16 | 01,722,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2009/09/08 18:42:15 | 05,090,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2009/09/08 18:42:15 | 05,031,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2009/09/08 18:42:15 | 04,616,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2009/09/08 18:42:14 | 07,042,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2009/09/08 18:42:14 | 05,071,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2009/09/08 18:42:14 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2009/09/08 18:42:12 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2009/09/08 18:42:12 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2009/09/08 18:42:12 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2009/09/08 18:42:12 | 01,801,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2009/09/08 18:42:12 | 01,801,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2009/09/08 18:42:10 | 04,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2009/09/08 18:42:10 | 01,966,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2009/09/08 18:42:09 | 03,466,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2009/09/08 18:42:09 | 02,657,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2009/09/08 18:42:09 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2009/09/08 18:42:09 | 01,523,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2009/09/08 18:42:08 | 04,497,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2009/09/08 18:42:08 | 02,599,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2009/09/08 18:42:08 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2009/09/08 18:42:08 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2009/09/08 18:42:07 | 04,875,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2009/09/08 18:42:07 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2009/09/08 18:42:07 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2009/09/08 18:42:07 | 02,243,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2009/09/08 18:42:06 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2009/09/08 18:42:06 | 03,104,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2009/09/08 18:42:06 | 01,801,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2009/09/08 18:42:06 | 01,801,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2009/09/08 18:42:05 | 09,847,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2009/09/08 18:42:05 | 04,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2009/09/08 18:42:05 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2009/09/08 18:42:05 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2009/09/08 18:42:04 | 04,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2009/09/08 18:42:04 | 02,643,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2009/09/08 18:42:04 | 02,342,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2009/09/08 18:42:04 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2009/09/08 18:42:03 | 04,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2009/09/08 18:42:03 | 04,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2009/09/08 18:42:03 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2009/09/08 18:42:02 | 06,917,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2009/09/08 18:42:02 | 01,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2009/09/08 18:39:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2009/09/08 18:32:52 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009/09/08 18:32:51 | 06,079,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/09/08 18:32:50 | 03,599,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/09/08 18:32:49 | 01,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/09/08 18:32:48 | 00,828,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/09/08 18:32:47 | 01,167,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/09/08 18:32:47 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2009/09/08 18:32:47 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/09/08 18:32:46 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2009/09/08 18:32:43 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009/09/08 18:32:43 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2009/09/08 18:31:26 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2009/09/08 18:30:55 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2009/09/08 18:30:18 | 08,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2009/09/08 18:30:18 | 00,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpdxm.dll
[2009/09/08 18:30:18 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009/09/08 18:30:18 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009/09/08 18:30:17 | 10,628,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmp.dll
[2009/09/08 18:30:17 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009/09/08 18:30:16 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009/09/08 18:30:16 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009/09/08 18:16:29 | 23,789,568 | ---- | C] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009/09/08 18:16:29 | 00,327,680 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009/09/08 18:16:29 | 00,065,536 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009/09/08 18:13:35 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009/09/08 18:07:26 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009/09/08 18:05:57 | 00,784,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
[2009/09/08 18:04:59 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009/09/06 22:08:39 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\WinRAR
[2009/09/06 22:08:23 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009/09/06 22:04:57 | 00,000,750 | ---- | C] () -- C:\Users\Tony\Desktop\Wow - Shortcut.lnk
[2009/09/06 22:02:40 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment
[2009/09/06 20:19:31 | 00,000,000 | ---D | C] -- C:\Program Files\wbcps
[2009/09/06 20:19:31 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2009/09/06 16:36:37 | 04,918,784 | ---- | C] (i-Funbox.com) -- C:\Users\Tony\Desktop\iFunBox.exe
[2009/09/06 16:31:52 | 01,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009/09/06 16:31:52 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
[2009/09/06 16:31:52 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009/09/06 16:31:51 | 01,809,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuaueng.dll
[2009/09/06 16:31:35 | 00,561,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009/09/06 16:31:35 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009/09/06 16:31:35 | 00,034,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009/09/06 16:31:16 | 00,162,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009/09/06 16:31:16 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009/09/06 14:54:03 | 00,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2009/09/06 14:54:01 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\SystemRequirementsLab
[2009/09/06 14:53:54 | 00,000,000 | ---D | C] -- C:\Windows\Sun
[2009/09/05 18:51:57 | 00,000,806 | ---- | C] () -- C:\Users\Tony\Desktop\SpeedFan.lnk
[2009/09/05 18:51:56 | 00,000,045 | ---- | C] () -- C:\Windows\System32\initdebug.nfo
[2009/09/05 18:51:56 | 00,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2009/09/05 18:02:16 | 00,001,740 | ---- | C] () -- C:\Users\Tony\Desktop\Team Fortress 2.lnk
[2009/09/05 17:44:56 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2009/09/05 17:44:56 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009/09/05 17:44:56 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009/09/05 17:44:56 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009/09/05 17:41:09 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Apple Computer
[2009/09/05 17:41:08 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Apple Computer
[2009/09/05 17:41:04 | 00,002,231 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009/09/05 17:41:02 | 00,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2009/09/05 17:41:02 | 00,023,400 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys
[2009/09/05 17:41:02 | 00,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2009/09/05 17:40:53 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/09/05 17:40:51 | 00,000,000 | ---D | C] -- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/09/05 17:40:51 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/09/05 17:40:28 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/09/05 17:40:14 | 00,001,728 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2009/09/05 17:40:04 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009/09/05 17:40:04 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/09/05 17:39:46 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Apple
[2009/09/05 17:39:45 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/09/05 17:39:04 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009/09/05 17:39:04 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/09/05 17:36:50 | 00,000,000 | ---D | C] -- C:\Program Files\SigmaTel
[2009/09/05 17:35:59 | 00,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009/09/05 17:35:03 | 00,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2009/09/05 17:35:01 | 00,000,000 | ---D | C] -- C:\Program Files\ATI
[2009/09/05 17:34:37 | 00,000,000 | ---D | C] -- C:\ATI
[2009/09/05 17:21:57 | 00,000,762 | ---- | C] () -- C:\Users\Tony\Desktop\Xfire.lnk
[2009/09/05 17:21:07 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Xfire
[2009/09/05 17:21:06 | 00,000,798 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
[2009/09/05 17:21:05 | 00,000,000 | ---D | C] -- C:\ProgramData\Xfire
[2009/09/05 17:21:05 | 00,000,000 | ---D | C] -- C:\Program Files\Xfire
[2009/09/05 17:14:42 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2009/09/05 17:14:41 | 00,002,301 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2009/09/05 17:14:41 | 00,000,000 | ---D | C] -- C:\Program Files\Steam
[2009/09/05 17:13:05 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Adobe
[2009/09/05 17:10:42 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\.purple
[2009/09/05 17:10:32 | 00,000,790 | ---- | C] () -- C:\Users\Tony\Desktop\Pidgin.lnk
[2009/09/05 17:10:24 | 00,000,000 | ---D | C] -- C:\Program Files\Pidgin
[2009/09/05 17:10:20 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\GTK
[2009/09/05 16:49:30 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Ventrilo
[2009/09/05 16:49:25 | 00,000,760 | ---- | C] () -- C:\Users\Public\Desktop\Ventrilo.lnk

 

[2009/09/05 16:49:25 | 00,000,000 | ---D | C] -- C:\Program Files\Ventrilo
[2009/09/05 16:49:24 | 00,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/09/05 16:49:07 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2009/09/05 16:46:06 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Mozilla
[2009/09/05 16:46:05 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Mozilla
[2009/09/05 16:46:04 | 00,001,726 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/09/05 16:46:00 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009/09/05 16:44:29 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Macromedia
[2009/09/05 15:22:35 | 00,000,000 | ---D | C] -- C:\Windows\Minidump
[2009/09/05 13:34:04 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Google
[2009/09/05 13:32:36 | 00,000,000 | ---D | C] -- C:\Users\Tony\Documents\My Google Gadgets
[2009/09/05 13:31:42 | 00,081,248 | ---- | C] () -- C:\Users\Tony\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/09/05 13:31:41 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Google
[2009/09/05 13:31:38 | 00,000,000 | -H-D | C] -- C:\Users\Tony\AppData\Roaming\GTek
[2009/09/05 13:31:24 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Identities
[2009/09/05 13:31:22 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\VirtualStore
[2009/09/05 13:31:10 | 00,000,680 | ---- | C] () -- C:\Users\Tony\AppData\Local\d3d9caps.dat
[2009/09/05 13:31:09 | 00,000,000 | --SD | C] -- C:\Users\Tony\AppData\Roaming\Microsoft
[2009/09/05 13:31:09 | 00,000,000 | -HSD | C] -- C:\Users\Tony\Documents\My Videos
[2009/09/05 13:31:09 | 00,000,000 | -HSD | C] -- C:\Users\Tony\Documents\My Pictures
[2009/09/05 13:31:09 | 00,000,000 | -HSD | C] -- C:\Users\Tony\Documents\My Music
[2009/09/05 13:31:09 | 00,000,000 | -HSD | C] -- C:\Users\Tony\AppData\Local\Temporary Internet Files
[2009/09/05 13:31:09 | 00,000,000 | -HSD | C] -- C:\Users\Tony\AppData\Local\History
[2009/09/05 13:31:09 | 00,000,000 | -HSD | C] -- C:\Users\Tony\AppData\Local\Application Data
[2009/09/05 13:31:09 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Roaming\Media Center Programs
[2009/09/05 13:31:09 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Temp
[2009/09/05 13:31:09 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\Microsoft
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Videos
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Pictures
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Music
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\ProgramData\Templates
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\ProgramData\Start Menu
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\ProgramData\Favorites
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\ProgramData\Desktop
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2009/09/05 13:28:32 | 00,000,000 | -HSD | C] -- C:\Documents and Settings
[2009/09/03 17:47:53 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009/09/03 14:07:10 | 00,041,872 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2006/11/07 15:25:58 | 00,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006/11/02 08:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:25:44 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 06:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 06:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 04:43:04 | 00,061,952 | ---- | C] () -- C:\Windows\System32\cngaudit.dll
[2006/11/02 03:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/09/16 23:36:50 | 00,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/09/16 23:36:50 | 00,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006/06/23 09:09:34 | 00,019,968 | R--- | C] () -- C:\Windows\System32\cpuinf32.dll
[1996/04/03 15:33:26 | 00,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== Files - Modified Within 30 Days ==========

[2009/09/20 13:10:23 | 00,514,560 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
[2009/09/20 13:00:07 | 00,000,230 | -H-- | M] () -- C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
[2009/09/20 13:00:04 | 00,000,238 | -H-- | M] () -- C:\Windows\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2009/09/20 11:30:05 | 00,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/09/20 11:30:05 | 00,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/09/20 05:58:53 | 00,175,888 | ---- | M] () -- C:\Users\Tony\Desktop\activescan2_en.exe
[2009/09/20 05:33:47 | 04,045,528 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Tony\Desktop\mbam-setup.exe
[2009/09/20 02:51:42 | 00,000,995 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2009/09/19 15:36:27 | 00,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/09/19 15:36:27 | 00,595,446 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/09/19 15:36:27 | 00,101,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/09/19 15:29:36 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/09/19 15:29:23 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/09/19 15:29:23 | 00,000,000 | ---- | M] () -- C:\Windows\win32k.sys
[2009/09/19 15:29:18 | 21,453,08672 | -HS- | M] () -- C:\hiberfil.sys
[2009/09/19 15:20:53 | 00,319,752 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/09/19 10:38:19 | 00,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2009/09/19 10:23:27 | 00,158,720 | R--- | M] () -- C:\Windows\msa.exe
[2009/09/18 09:15:07 | 00,000,760 | ---- | M] () -- C:\Users\Public\Desktop\Ventrilo.lnk
[2009/09/18 08:56:12 | 00,000,534 | ---- | M] () -- C:\Users\Tony\Desktop\AudioRepeater - Shortcut.lnk
[2009/09/14 23:21:18 | 00,004,608 | ---- | M] () -- C:\Users\Tony\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/14 23:15:01 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009/09/14 05:15:11 | 00,001,672 | ---- | M] () -- C:\Users\Tony\Desktop\CCleaner.lnk
[2009/09/14 04:50:14 | 00,000,749 | RH-- | M] () -- C:\Windows\WindowsShell.Manifest
[2009/09/14 04:24:41 | 00,101,888 | ---- | M] (Infineon Technologies AG) -- C:\Windows\System32\ifxcardm.dll
[2009/09/14 04:24:40 | 00,082,432 | ---- | M] (Gemalto, Inc.) -- C:\Windows\System32\axaltocm.dll
[2009/09/12 23:02:03 | 72,267,6885 | ---- | M] () -- C:\Users\Tony\Desktop\Niero First Bg9 Warrior PvP final.wmv
[2009/09/11 15:55:05 | 00,002,301 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2009/09/10 23:58:01 | 00,000,754 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2009/09/09 20:16:24 | 00,000,952 | ---- | M] () -- C:\Users\Tony\Desktop\Dyyno Broadcaster.lnk
[2009/09/09 15:39:18 | 00,001,811 | ---- | M] () -- C:\Users\Public\Desktop\NCsoft Launcher.lnk
[2009/09/09 12:00:18 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2009/09/09 12:00:16 | 04,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2009/09/09 12:00:16 | 01,696,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2009/09/09 03:29:07 | 00,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2009/09/09 03:29:07 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009/09/09 03:29:07 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009/09/09 03:29:07 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009/09/09 03:29:07 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2009/09/09 03:29:07 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009/09/09 03:29:07 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009/09/09 03:29:07 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2009/09/09 03:29:07 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009/09/09 03:29:06 | 00,904,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpip.sys
[2009/09/09 03:29:06 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpipreg.sys
[2009/09/09 03:28:48 | 02,501,921 | ---- | M] () -- C:\Windows\System32\wlan.tmf
[2009/09/09 03:28:48 | 00,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2009/09/09 03:28:48 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2009/09/09 03:28:48 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2009/09/09 03:28:47 | 00,513,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansvc.dll
[2009/09/09 03:28:47 | 00,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2009/09/09 03:28:47 | 00,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2009/09/09 03:28:46 | 00,015,181 | ---- | M] () -- C:\Windows\System32\gatherWirelessInfo.vbs
[2009/09/09 03:28:37 | 02,868,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2009/09/09 03:28:37 | 00,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009/09/09 03:28:37 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009/09/09 03:28:37 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009/09/09 03:28:37 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009/09/09 03:28:36 | 02,386,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009/09/09 03:27:03 | 00,512,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2009/09/09 03:23:54 | 00,055,680 | ---- | M] () -- C:\Windows\War3Unin.dat
[2009/09/09 03:23:54 | 00,001,743 | ---- | M] () -- C:\Users\Tony\Desktop\Frozen Throne.lnk
[2009/09/09 03:23:07 | 00,139,264 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
[2009/09/09 03:23:07 | 00,002,829 | ---- | M] () -- C:\Windows\War3Unin.pif
[2009/09/09 03:20:08 | 23,789,568 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2009/09/09 03:20:08 | 00,327,680 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2009/09/09 03:20:08 | 00,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[2009/09/08 19:18:35 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2009/09/08 19:17:02 | 00,272,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2009/09/08 19:17:02 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winipsec.dll
[2009/09/08 19:12:19 | 02,034,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2009/09/08 19:10:13 | 00,289,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2009/09/08 19:10:13 | 00,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2009/09/08 19:10:13 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009/09/08 19:10:13 | 00,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2009/09/08 19:10:13 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
[2009/09/08 19:10:13 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009/09/08 19:05:19 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
[2009/09/08 19:00:38 | 00,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkssvc.dll
[2009/09/08 18:59:38 | 02,066,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstscax.dll
[2009/09/08 18:59:38 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2009/09/08 18:59:38 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2009/09/08 18:57:35 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2009/09/08 18:52:07 | 00,623,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2009/09/08 18:51:13 | 00,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2009/09/08 18:51:12 | 00,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2009/09/08 18:51:12 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2009/09/08 18:51:12 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2009/09/08 18:51:12 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvidc32.dll
[2009/09/08 18:51:12 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrle32.dll
[2009/09/08 18:45:38 | 01,259,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009/09/08 18:45:38 | 00,499,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kerberos.dll
[2009/09/08 18:45:38 | 00,439,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecdd.sys
[2009/09/08 18:45:38 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
[2009/09/08 18:45:38 | 00,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdigest.dll
[2009/09/08 18:45:38 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
[2009/09/08 18:45:38 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
[2009/09/08 18:45:37 | 00,270,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
[2009/09/08 18:42:27 | 01,793,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2009/09/08 18:42:26 | 01,808,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2009/09/08 18:42:26 | 01,558,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2009/09/08 18:42:26 | 01,411,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2009/09/08 18:42:26 | 01,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2009/09/08 18:42:25 | 05,499,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2009/09/08 18:42:25 | 02,136,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2009/09/08 18:42:25 | 01,782,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2009/09/08 18:42:24 | 07,964,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2009/09/08 18:42:24 | 06,224,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2009/09/08 18:42:24 | 05,791,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2009/09/08 18:42:23 | 04,981,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2009/09/08 18:42:23 | 04,175,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2009/09/08 18:42:23 | 02,466,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2009/09/08 18:42:22 | 06,781,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2009/09/08 18:42:22 | 03,331,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2009/09/08 18:42:21 | 11,722,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2009/09/08 18:42:21 | 04,164,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2009/09/08 18:42:21 | 01,452,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2009/09/08 18:42:20 | 03,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2009/09/08 18:42:20 | 01,702,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2009/09/08 18:42:19 | 04,093,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2009/09/08 18:42:19 | 04,045,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2009/09/08 18:42:19 | 01,972,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2009/09/08 18:42:19 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2009/09/08 18:42:18 | 06,585,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2009/09/08 18:42:18 | 06,014,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2009/09/08 18:42:17 | 09,892,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2009/09/08 18:42:17 | 06,346,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2009/09/08 18:42:16 | 06,237,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2009/09/08 18:42:16 | 05,654,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2009/09/08 18:42:16 | 04,616,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2009/09/08 18:42:16 | 01,722,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2009/09/08 18:42:15 | 05,090,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2009/09/08 18:42:15 | 05,031,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2009/09/08 18:42:14 | 07,042,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2009/09/08 18:42:14 | 05,071,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2009/09/08 18:42:14 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2009/09/08 18:42:14 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2009/09/08 18:42:13 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2009/09/08 18:42:12 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2009/09/08 18:42:12 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2009/09/08 18:42:12 | 01,801,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2009/09/08 18:42:12 | 01,801,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2009/09/08 18:42:10 | 04,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2009/09/08 18:42:10 | 01,966,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2009/09/08 18:42:09 | 03,466,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2009/09/08 18:42:09 | 02,657,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2009/09/08 18:42:09 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2009/09/08 18:42:09 | 01,523,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2009/09/08 18:42:08 | 04,497,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2009/09/08 18:42:08 | 02,599,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2009/09/08 18:42:08 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2009/09/08 18:42:08 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2009/09/08 18:42:07 | 04,875,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2009/09/08 18:42:07 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2009/09/08 18:42:07 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2009/09/08 18:42:07 | 02,243,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2009/09/08 18:42:06 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2009/09/08 18:42:06 | 03,104,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2009/09/08 18:42:06 | 01,801,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2009/09/08 18:42:06 | 01,801,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2009/09/08 18:42:05 | 09,847,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2009/09/08 18:42:05 | 04,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2009/09/08 18:42:05 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2009/09/08 18:42:05 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2009/09/08 18:42:04 | 04,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2009/09/08 18:42:04 | 02,643,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2009/09/08 18:42:04 | 02,342,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2009/09/08 18:42:04 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2009/09/08 18:42:03 | 04,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2009/09/08 18:42:03 | 04,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2009/09/08 18:42:03 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2009/09/08 18:42:02 | 06,917,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2009/09/08 18:42:02 | 01,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2009/09/08 18:39:33 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2009/09/08 18:32:52 | 06,079,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/09/08 18:32:52 | 00,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009/09/08 18:32:50 | 03,599,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/09/08 18:32:49 | 01,383,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/09/08 18:32:48 | 00,828,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/09/08 18:32:48 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/09/08 18:32:47 | 01,167,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/09/08 18:32:47 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2009/09/08 18:32:46 | 00,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2009/09/08 18:32:43 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009/09/08 18:32:43 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2009/09/08 18:31:26 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2009/09/08 18:30:55 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2009/09/08 18:30:18 | 08,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2009/09/08 18:30:18 | 00,313,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpdxm.dll
[2009/09/08 18:30:18 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009/09/08 18:30:18 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009/09/08 18:30:17 | 10,628,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmp.dll
[2009/09/08 18:30:17 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009/09/08 18:30:16 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009/09/08 18:30:16 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009/09/08 18:13:35 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009/09/08 18:07:26 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009/09/08 18:05:57 | 00,784,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
[2009/09/08 18:04:59 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009/09/06 22:09:53 | 00,000,750 | ---- | M] () -- C:\Users\Tony\Desktop\Wow - Shortcut.lnk
[2009/09/06 16:36:37 | 04,918,784 | ---- | M] (i-Funbox.com) -- C:\Users\Tony\Desktop\iFunBox.exe
[2009/09/06 16:31:52 | 01,524,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009/09/06 16:31:52 | 00,051,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
[2009/09/06 16:31:52 | 00,043,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009/09/06 16:31:51 | 01,809,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuaueng.dll
[2009/09/06 16:31:35 | 00,561,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009/09/06 16:31:35 | 00,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009/09/06 16:31:35 | 00,034,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009/09/06 16:31:16 | 00,162,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009/09/06 16:31:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009/09/06 16:30:38 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009/09/06 16:27:53 | 00,002,231 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009/09/05 18:51:57 | 00,000,806 | ---- | M] () -- C:\Users\Tony\Desktop\SpeedFan.lnk
[2009/09/05 18:51:56 | 00,000,045 | ---- | M] () -- C:\Windows\System32\initdebug.nfo
[2009/09/05 18:02:16 | 00,001,740 | ---- | M] () -- C:\Users\Tony\Desktop\Team Fortress 2.lnk
[2009/09/05 17:44:38 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2009/09/05 17:44:38 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009/09/05 17:44:38 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009/09/05 17:44:38 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009/09/05 17:40:14 | 00,001,728 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2009/09/05 17:35:59 | 00,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2009/09/05 17:21:06 | 00,000,798 | ---- | M] () -- C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
[2009/09/05 17:21:06 | 00,000,762 | ---- | M] () -- C:\Users\Tony\Desktop\Xfire.lnk
[2009/09/05 17:10:32 | 00,000,790 | ---- | M] () -- C:\Users\Tony\Desktop\Pidgin.lnk
[2009/09/05 16:49:27 | 00,000,262 | ---- | M] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/09/05 16:46:04 | 00,001,726 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/09/05 13:37:45 | 00,000,680 | ---- | M] () -- C:\Users\Tony\AppData\Local\d3d9caps.dat
[2009/09/05 13:31:42 | 00,081,248 | ---- | M] () -- C:\Users\Tony\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/09/03 14:07:10 | 00,041,872 | ---- | M] () -- C:\Windows\System32\xfcodec.dll
[2009/08/28 17:38:20 | 24,689,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
< End of report >

 

Here's the Extras.txt:

OTL Extras logfile created on: 9/20/2009 1:10:51 PM - Run 1
OTL by OldTimer - Version 3.0.14.0 Folder = C:\Users\Tony\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.91 Gb Available Physical Memory | 45.50% Memory free
4.00 Gb Paging File | 2.75 Gb Available in Paging File | 68.80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 119.55 Gb Free Space | 53.67% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.86 Gb Free Space | 58.59% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TONYSPC
Current User Name: Tony
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3056812085-512402971-1977195924-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1 ",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DisabledInterfaces" = {0F97CC09-6942-4890-877A-5696AD66B927}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{31AF3536-457A-4375-A357-919294BDC14E}" = lport=9442 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server discovery |
"{637917B9-8674-4CFE-8DAE-06F01CD6A699}" = lport=1900 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server upnp discovery |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A693E18-CC5E-40B8-87A7-67E0DDECFF59}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{265E5021-7FB9-47B5-9302-26B9881808E7}" = protocol=17 | dir=in | app=c:\program files\wbcps\wow.exe |
"{42A1FC8A-B9AA-4229-8C2E-570D51DC78DF}" = protocol=17 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\tshwmdtcp.exe |
"{49631387-7274-4EE3-ADE5-984BD1EABFA5}" = protocol=17 | dir=in | app=c:\program files\yahoo!\yahoo! music jukebox\yahoomusicengine.exe |
"{57CC9E6E-0C3B-4B56-9DB8-908591290C32}" = protocol=17 | dir=in | app=c:\program files\dyyno\dyyno broadcaster\dgcsrv.exe |
"{68004B50-C4C7-4ACC-8BD3-37E7629C0A08}" = protocol=6 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\tshwmdtcp.exe |
"{6FFAD7DB-0FD3-4904-86E8-A85AC74FD9B7}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{7C8FE20B-621A-4997-9D23-A148D2585FC8}" = protocol=6 | dir=in | app=c:\program files\dyyno\dyyno broadcaster\dgcsrv.exe |
"{83A917AF-DE24-4537-BEE1-88F7481E9EE3}" = protocol=6 | dir=in | app=c:\program files\yahoo!\yahoo! music jukebox\yahoomusicengine.exe |
"{8E176749-357E-4E52-9D61-45859FE5C5BE}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{92645C67-E523-4D49-BA8E-AE3528A2C3B8}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{92AE9EF1-18AE-4963-B4F7-B61028925C8A}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{9F8A10CC-DBCB-42CB-9773-A80AEB56A31D}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A759189C-9FD5-43F1-A5C0-665FFF06F46C}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{AEAE7446-2A58-4DAE-B663-6CD51DFF3283}" = protocol=17 | dir=in | app=c:\program files\intel\inteldh\intel media server\shells\remote ui service.exe |
"{AF0D10E2-27D0-4078-AFEB-7020EF2A497A}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mna\mcnasvc.exe |
"{B75AC61E-551B-4CB4-935A-C0CCBC9FCD87}" = protocol=6 | dir=in | app=c:\program files\intel\inteldh\intel media server\shells\remote ui service.exe |
"{BDD96DAF-EA6C-4F0C-BA45-CDC1FFFA46FA}" = protocol=6 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\mediaserver.exe |
"{C7B5FFDD-67B3-4D2F-B578-3CE88D21EEB5}" = protocol=17 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\mediaserver.exe |
"{C8D183E6-8559-43B8-93CE-D268902E2F6D}" = protocol=17 | dir=in | app=c:\program files\dyyno\dyyno broadcaster\dppm_source.exe |
"{DA9C7119-7262-4FD1-A232-E4F363919F4F}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{F01C31C5-50EF-4FF1-AC7F-EE36DBCF1C05}" = protocol=6 | dir=in | app=c:\program files\wbcps\wow.exe |
"{FCEC3738-C837-428F-B1D5-BC5523E3C31A}" = protocol=6 | dir=in | app=c:\program files\dyyno\dyyno broadcaster\dppm_source.exe |
"TCP Query User{1F5946A2-0725-49F5-87B4-98BFFE1358C1}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{C40891B9-8E19-4E0F-A6C3-471605C90B1A}C:\program files\steam\steamapps\qik1072\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\qik1072\team fortress 2\hl2.exe |
"UDP Query User{63A3A3B5-4D4A-45E3-A1B6-12B869A43DC0}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{D25A7095-9F60-429A-BF7B-2F9E0627B7C8}C:\program files\steam\steamapps\qik1072\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\qik1072\team fortress 2\hl2.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0AFC55D4-9CDF-B140-2E4F-0B818B9B8C0E}" = CCC Help Italian
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{0DE39AB6-D1BF-535C-F342-2F9986801936}" = CCC Help Japanese
"{226EA3C9-0EAF-9546-46C4-F2FF55F7A6F1}" = CCC Help Dutch
"{22980C46-EBB6-C22C-016A-E0CFAC15118B}" = CCC Help Czech
"{250755EE-312C-3B38-1BAF-501A71A3851D}" = CCC Help Turkish
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{26C610BF-761B-4209-BD6A-A0F1B73D6DDE}" = Intel(R) Viiv(TM) Software
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{30D71FC9-E909-330C-57F9-C649C8837AA5}" = CCC Help Greek
"{3154CFC9-2E4F-B839-2944-2A27200B4D64}" = CCC Help Swedish
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Sonic Activation Module
"{361D8754-326D-B7CC-8DC7-95966DD01ED4}" = Catalyst Control Center Graphics Previews Common
"{36E89A40-DD04-239B-A69E-532A27547089}" = CCC Help English
"{37EC24B2-2E75-0AEB-F8A1-12A0C7EB5EED}" = Catalyst Control Center InstallProxy
"{37FD8D84-7B88-6B5A-376A-34E2B7C28816}" = ccc-core-static
"{3E73E80C-2C31-3CCB-735F-D611C3230893}" = ccc-utility
"{4807FDA4-7AF3-66CA-C167-779A333D6FFC}" = Catalyst Control Center Localization All
"{5A154586-7AEB-4305-3B12-D73F0886B839}" = Catalyst Control Center HydraVision Full
"{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}" = User's Guides
"{5DF79887-598B-DE65-9755-4B7D8C3D87BE}" = CCC Help Chinese Standard
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{61A0F92B-89A0-F7AD-4CA2-97991862EB10}" = CCC Help Hungarian
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler
"{687E8557-CBF3-A7FF-33EC-00BE6266BFAA}" = CCC Help Russian
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A44A28A-5D79-8100-7BDF-FB637E62715B}" = CCC Help Polish
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72FA4B28-3A99-1533-0E7C-94E6D20CD1A8}" = CCC Help Chinese Traditional
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7ADE3A47-B425-45E9-8FF6-11BE2B775645}" = Corel Snapfire Plus
"{7C49EA42-5647-4051-84C2-E6404F25A931}" = Yahoo! Music Jukebox
"{7CA26B08-BEFD-D4D2-52E1-24E730284594}" = Catalyst Control Center Graphics Light
"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}" = Roxio Creator BDAV Plugin
"{8E5CDC9B-CB0A-6E78-5BBE-C3D3F67B50E3}" = CCC Help Norwegian
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{93A1B09E-BAFA-4628-A5B6-921CB026955A}" = Corel Paint Shop Pro Photo XI
"{96A8FABC-AADB-F299-0826-AF2246CE012F}" = CCC Help Danish
"{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}" = iTunes
"{9B0A8A6F-FC9E-796F-CC5D-290161F8E92A}" = ATI Catalyst Install Manager
"{9D98630B-BD50-3C44-58D2-1571AEA889D3}" = CCC Help Portuguese
"{9E4EFA2A-4344-4C56-F927-7F7C53845BE2}" = CCC Help German
"{A37CA3F0-B0C6-8256-02BA-B06CEE1E5BEB}" = CCC Help Korean
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A724AEC6-494E-6BD5-C12A-9F51AF6C1123}" = Skins
"{AC76BA86-7AD7-1033-7B44-A70800000002}" = Adobe Reader 7.0.8
"{AC814121-74BA-A025-358E-B706354ED7F5}" = Catalyst Control Center Graphics Full New
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3}" = Apple Mobile Device Support
"{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator DE
"{CC2B3907-3DEA-6E0E-E5A5-C6FCF876ECD5}" = CCC Help French
"{CCFF1E13-77A2-4032-8B12-7566982A27DF}" = Internet Service Offers Launcher
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1F9CD55-A15A-846F-B2B1-D73F37C65B3E}" = CCC Help Spanish
"{D639085F-4B6E-4105-9F37-A0DBB023E2FB}" = Roxio MyDVD DE
"{D9D93D74-107D-4BD3-87D0-AABCF7C98BD5}" = Catalyst Control Center - Branding
"{DEAC1EEB-48FD-36A6-B87B-58E365C92EFB}" = Catalyst Control Center Graphics Previews Vista
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{E9E871B9-4E1D-38D7-7ECF-4DFD3708CC67}" = Catalyst Control Center Core Implementation
"{EF7F8782-0E8D-A566-195F-8FF2360CA6C8}" = CCC Help Thai
"{F15DDD54-CA1A-6764-2CF4-1C601725E96C}" = Catalyst Control Center Graphics Full Existing
"{F9A4662C-775D-32CF-4B6B-DEC701FDD516}" = CCC Help Finnish
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"CCleaner" = CCleaner (remove only)
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1" = Conexant D850 PCI V.92 Modem
"Dyyno Broadcaster" = Dyyno Broadcaster
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (remove only)
"Intel(R) Configuration Center" = Intel(R) Viiv(TM) Software
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3)
"Pidgin" = Pidgin
"SpeedFan" = SpeedFan (remove only)
"Steam App 440" = Team Fortress 2
"SystemRequirementsLab" = System Requirements Lab
"uTorrent" = µTorrent
"Virtual Audio Cable 4.6" = Virtual Audio Cable 4.6
"VTFEdit_is1" = VTFEdit 1.2.5
"Warcraft III" = Warcraft III
"WinRAR archiver" = WinRAR archiver
"World of Warcraft" = World of Warcraft
"Xfire" = Xfire (remove only)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3056812085-512402971-1977195924-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Warcraft III" = Warcraft III: All Products

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9/14/2009 4:12:03 AM | Computer Name = TonysPC | Source = VSS | ID = 12305
Description =

Error - 9/14/2009 4:12:03 AM | Computer Name = TonysPC | Source = VSS | ID = 12293
Description =

Error - 9/14/2009 4:12:03 AM | Computer Name = TonysPC | Source = VSS | ID = 8194
Description =

Error - 9/14/2009 4:44:40 AM | Computer Name = TonysPC | Source = WerSvc | ID = 5007
Description =

Error - 9/14/2009 5:37:09 AM | Computer Name = TonysPC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module ole32.dll, version 6.0.6001.18000, time stamp 0x4791a74c,
exception code 0xc0000005, fault offset 0x00038925, process id 0x17b0, application
start time 0x01ca351e17144c09.

Error - 9/16/2009 11:53:26 PM | Computer Name = TonysPC | Source = Application Error | ID = 1000
Description = Faulting application xfencoder.exe, version 0.0.0.0, time stamp 0x4aa001fe,
faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821, exception
code 0xc0000005, fault offset 0x000666ab, process id 0x169c, application start time
0x01ca374a687f8f70.

Error - 9/16/2009 11:53:34 PM | Computer Name = TonysPC | Source = Application Error | ID = 1000
Description = Faulting application xfencoder.exe, version 0.0.0.0, time stamp 0x4aa001fe,
faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821, exception
code 0xc0000005, fault offset 0x000666ab, process id 0xdc4, application start time
0x01ca374a6d917910.

Error - 9/17/2009 4:18:47 AM | Computer Name = TonysPC | Source = Application Error | ID = 1000
Description = Faulting application xfencoder.exe, version 0.0.0.0, time stamp 0x4aa001fe,
faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821, exception
code 0xc0000005, fault offset 0x000666ab, process id 0x1430, application start time
0x01ca376f79717b70.

Error - 9/17/2009 4:18:51 AM | Computer Name = TonysPC | Source = Application Error | ID = 1000
Description = Faulting application xfencoder.exe, version 0.0.0.0, time stamp 0x4aa001fe,
faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821, exception
code 0xc0000005, fault offset 0x000666ab, process id 0x590, application start time
0x01ca376f7cc5fda0.

Error - 9/17/2009 4:22:30 AM | Computer Name = TonysPC | Source = Application Error | ID = 1000
Description = Faulting application xfencoder.exe, version 0.0.0.0, time stamp 0x4aa001fe,
faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821, exception
code 0xc0000005, fault offset 0x000666ab, process id 0x1614, application start time
0x01ca376fff873240.

[ System Events ]
Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7026
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =

Error - 9/19/2009 3:28:07 PM | Computer Name = TonysPC | Source = Service Control Manager | ID = 7001
Description =


< End of report >

 

Hi

Please go into Programs and Features and remove uTorrent and any other P2P software you have installed.

Now please do this.

Download ComboFix from Here to your Desktop.

It's best to disable realtime protection applications as they sometimes interfere with the tool.
Check this link for any applicable programs you may have.

• Close all open programs and windows
• Double click combofix.exe and follow the prompts.
• Vista users right click Combofix.exe and select Run As Administrator.
• When finished, it shall produce a log for you. Post the Combofix log

Note: Do not mouse click combofix's window while its running. That may cause it to stall

If you are prompted to install the Recovery Console, Please do so.

Thanks
Geri

 

Hi Geri.

I ran combofix and it did its thing and restarted my pc a few times and produced a log in my C:\ folder. Although whenever I try to click on anything, it says "Illegal operation attempted on a registry key that has been marked for deletion. "

I am currently posting from my notebook.

 

Hi
Please restart your computer again and let me know if you can post the log.

Geri

 

Hi Geri.

I'd also like to say that as I was trying to run ComboFix, it said that Spybot was running although it wasn't in my task bar and wasn't a running process. I had no other choice but to run it even though spybot was "running ".

Restarting my PC fixed the problem.

Here is the ComboFix log:

ComboFix 09-09-18.02 - Tony 09/20/2009 14:21.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2045.1232 [GMT -4:00]
Running from: c:\users\Tony\Desktop\ComboFix.exe
SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-1400113804-1914402855-3429530994-500
c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500
c:\$recycle.bin\S-1-5-21-3056812085-512402971-1977195924-500
c:\windows\msa.exe
c:\windows\system32\gatherWirelessInfo.vbs

Infected copy of c:\windows\system32\cngaudit.dll was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_{79007602-0CDB-4405-9DBF-1257BB3226ED}
-------\Legacy_{79007602-0CDB-4405-9DBF-1257BB3226EE}


((((((((((((((((((((((((( Files Created from 2009-08-20 to 2009-09-20 )))))))))))))))))))))))))))))))
.

2009-09-20 18:25 . 2009-09-20 18:27 -------- d-----w- c:\users\Tony\AppData\Local\temp
2009-09-20 18:25 . 2009-09-20 18:25 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp
2009-09-20 18:25 . 2009-09-20 18:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-09-20 09:59 . 2008-06-19 21:24 28544 ----a-w- c:\windows\system32\drivers\pavboot.sys
2009-09-20 09:58 . 2009-09-20 09:58 -------- d-----w- c:\program files\Panda Security
2009-09-20 09:35 . 2009-09-20 09:35 -------- d--h--w- c:\windows\PIF
2009-09-19 19:48 . 2009-09-20 04:39 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2009-09-19 19:48 . 2009-09-19 19:49 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-09-19 19:27 . 2009-09-20 18:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-19 14:51 . 2009-09-19 14:51 -------- d-----w- c:\users\Tony\AppData\Roaming\Malwarebytes
2009-09-19 14:51 . 2009-09-19 14:51 -------- d-----w- c:\programdata\Malwarebytes
2009-09-19 14:38 . 2009-09-19 14:38 -------- d-----w- c:\program files\Alwil Software
2009-09-19 14:23 . 2009-09-19 19:29 0 ----a-r- c:\windows\win32k.sys
2009-09-19 07:32 . 2009-09-19 07:33 -------- d-----w- c:\users\Tony\AppData\Local\Microsoft Games
2009-09-18 12:45 . 2009-09-18 12:46 -------- d-----w- c:\program files\Virtual Audio Cable
2009-09-18 12:45 . 2007-05-15 16:15 42496 ----a-w- c:\windows\system32\drivers\vrtaucbl.sys
2009-09-17 14:07 . 2009-09-17 14:07 -------- d-----w- c:\users\Tony\AppData\Roaming\ATI
2009-09-17 14:07 . 2009-09-17 14:07 -------- d-----w- c:\users\Tony\AppData\Local\ATI
2009-09-17 14:07 . 2009-09-17 14:07 -------- d-----w- c:\programdata\ATI
2009-09-16 09:04 . 2009-09-19 15:10 -------- d-----w- c:\users\Tony\AppData\Roaming\DMCache
2009-09-16 03:01 . 2009-09-16 03:03 -------- d-----w- c:\program files\VTFEdit
2009-09-15 03:15 . 2009-09-15 03:16 -------- d-----w- c:\windows\system32\ca-ES
2009-09-15 03:15 . 2009-09-15 03:16 -------- d-----w- c:\windows\system32\eu-ES
2009-09-15 03:15 . 2009-09-15 03:15 -------- d-----w- c:\windows\system32\vi-VN
2009-09-15 03:13 . 2009-09-15 03:13 -------- d-----w- c:\windows\system32\SPReview
2009-09-15 02:59 . 2009-04-11 03:28 928768 ----a-w- c:\windows\system32\scavenge.dll
2009-09-15 02:59 . 2009-04-11 03:27 57856 ----a-w- c:\windows\system32\compcln.exe
2009-09-15 02:52 . 2009-04-11 03:28 454144 ----a-w- c:\windows\system32\IasMigPlugin.dll
2009-09-15 02:51 . 2009-04-11 03:28 199680 ----a-w- c:\windows\system32\WebClnt.dll
2009-09-15 02:50 . 2009-04-11 03:28 1055232 ----a-w- c:\windows\system32\VSSVC.exe
2009-09-15 02:48 . 2009-09-15 02:48 -------- d-----w- c:\windows\system32\EventProviders
2009-09-14 11:56 . 2009-09-14 11:56 -------- d-----w- c:\users\Tony\AppData\Local\Dyyno
2009-09-14 09:15 . 2009-09-14 09:15 -------- d-----w- c:\program files\CCleaner
2009-09-14 08:42 . 2009-09-14 08:42 -------- d-----w- C:\PerfLogs
2009-09-13 04:19 . 2008-01-19 07:36 80384 ----a-w- c:\windows\system32\thumbcache.dll
2009-09-13 04:18 . 2008-01-19 07:36 104960 ----a-w- c:\windows\system32\sdrsvc.dll
2009-09-13 04:17 . 2008-01-19 07:32 1370624 ----a-w- c:\windows\system32\Aurora.scr
2009-09-13 04:16 . 2008-01-19 07:36 357888 ----a-w- c:\windows\system32\wbemcomn.dll
2009-09-13 04:16 . 2008-01-19 07:34 102400 ----a-w- c:\windows\system32\wbem\mofinstall.dll
2009-09-13 04:16 . 2008-01-19 07:36 129536 ----a-w- c:\windows\system32\sqmapi.dll
2009-09-13 04:16 . 2008-01-19 07:36 139264 ----a-w- c:\windows\system32\SmiInstaller.dll
2009-09-13 04:16 . 2008-01-19 07:35 35328 ----a-w- c:\windows\system32\mspatcha.dll
2009-09-13 04:16 . 2008-01-19 07:34 305152 ----a-w- c:\windows\system32\msdelta.dll
2009-09-13 04:16 . 2008-01-19 07:34 258560 ----a-w- c:\windows\system32\dpx.dll
2009-09-11 06:10 . 2009-09-20 13:41 -------- d-----w- c:\program files\World of Warcraft Public Test
2009-09-11 06:01 . 2009-09-11 06:10 -------- d-----w- c:\program files\3.0.1.8874 US PTR Installer
2009-09-11 05:56 . 2009-09-11 05:56 -------- d-----w- c:\users\Tony\AppData\Local\Blizzard Entertainment
2009-09-11 05:38 . 2009-09-11 05:52 -------- d-----w- c:\programdata\Blizzard Entertainment
2009-09-11 04:01 . 2009-09-11 04:01 -------- d-----w- c:\programdata\Blizzard
2009-09-11 03:57 . 2009-09-20 18:10 -------- d-----w- c:\users\Tony\AppData\Roaming\uTorrent
2009-09-11 02:49 . 2009-09-18 08:04 -------- d-----w- c:\program files\World of Warcraft
2009-09-10 00:16 . 2009-09-10 00:16 -------- d-----w- c:\program files\Dyyno
2009-09-09 19:39 . 2009-09-09 19:39 -------- d-----w- c:\users\Tony\AppData\Local\assembly
2009-09-09 19:39 . 2009-09-14 21:38 -------- d-----w- c:\program files\NCSoft
2009-09-09 19:38 . 2009-09-09 19:38 -------- d-----w- c:\users\Tony\AppData\Roaming\InstallShield
2009-09-09 19:38 . 2009-09-09 19:38 -------- d-----w- c:\users\Tony\AppData\Roaming\GetRightToGo
2009-09-09 16:00 . 2009-09-09 16:00 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-09-09 16:00 . 2009-09-09 16:00 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-09-09 16:00 . 2009-09-09 16:00 1696768 ----a-w- c:\windows\system32\gameux.dll
2009-09-09 07:29 . 2009-09-09 07:29 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-09-09 07:29 . 2009-09-09 07:29 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-09-09 07:29 . 2009-09-09 07:29 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-09-09 07:29 . 2009-09-09 07:29 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-09-09 07:29 . 2009-09-09 07:29 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-09-09 07:29 . 2009-09-09 07:29 17920 ----a-w- c:\windows\system32\netevent.dll
2009-09-09 07:29 . 2009-09-09 07:29 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-09-09 07:29 . 2009-09-09 07:29 105984 ----a-w- c:\windows\system32\netiohlp.dll
2009-09-09 07:29 . 2009-09-09 07:29 10240 ----a-w- c:\windows\system32\finger.exe
2009-09-09 07:29 . 2009-09-09 07:29 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-09-09 07:29 . 2009-09-09 07:29 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-09-09 07:28 . 2009-09-09 07:28 68096 ----a-w- c:\windows\system32\wlanhlp.dll
2009-09-09 07:28 . 2009-09-09 07:28 65024 ----a-w- c:\windows\system32\wlanapi.dll
2009-09-09 07:28 . 2009-09-09 07:28 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2009-09-09 07:28 . 2009-09-09 07:28 513536 ----a-w- c:\windows\system32\wlansvc.dll
2009-09-09 07:28 . 2009-09-09 07:28 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-09-09 07:28 . 2009-09-09 07:28 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-09-09 07:28 . 2009-09-09 07:28 98816 ----a-w- c:\windows\system32\mfps.dll
2009-09-09 07:28 . 2009-09-09 07:28 53248 ----a-w- c:\windows\system32\rrinstaller.exe
2009-09-09 07:28 . 2009-09-09 07:28 2868224 ----a-w- c:\windows\system32\mf.dll
2009-09-09 07:28 . 2009-09-09 07:28 24576 ----a-w- c:\windows\system32\mfpmp.exe
2009-09-09 07:28 . 2009-09-09 07:28 2048 ----a-w- c:\windows\system32\mferror.dll
2009-09-09 07:18 . 2009-09-09 07:23 55680 ----a-w- c:\windows\War3Unin.dat
2009-09-09 07:18 . 2009-09-09 07:23 2829 ----a-w- c:\windows\War3Unin.pif
2009-09-09 07:18 . 2009-09-09 07:23 139264 ----a-w- c:\windows\War3Unin.exe
2009-09-09 07:16 . 2009-09-09 07:23 -------- d-----w- c:\program files\Warcraft III
2009-09-09 01:46 . 2009-09-09 01:46 -------- d-----w- c:\users\Tony\AppData\Local\Adobe
2009-09-08 23:18 . 2009-09-08 23:18 2048 ----a-w- c:\windows\system32\tzres.dll
2009-09-08 23:17 . 2009-09-08 23:17 61440 ----a-w- c:\windows\system32\winipsec.dll
2009-09-08 23:17 . 2009-09-08 23:17 272896 ----a-w- c:\windows\system32\polstore.dll
2009-09-08 23:12 . 2009-09-08 23:12 2034688 ----a-w- c:\windows\system32\win32k.sys
2009-09-08 23:10 . 2009-09-08 23:10 72704 ----a-w- c:\windows\system32\fontsub.dll
2009-09-08 23:10 . 2009-09-08 23:10 34304 ----a-w- c:\windows\system32\atmlib.dll
2009-09-08 23:10 . 2009-09-08 23:10 289792 ----a-w- c:\windows\system32\atmfd.dll
2009-09-08 23:10 . 2009-09-08 23:10 23552 ----a-w- c:\windows\system32\lpk.dll
2009-09-08 23:10 . 2009-09-08 23:10 156672 ----a-w- c:\windows\system32\t2embed.dll
2009-09-08 23:10 . 2009-09-08 23:10 10240 ----a-w- c:\windows\system32\dciman32.dll
2009-09-08 23:05 . 2009-09-08 23:05 71680 ----a-w- c:\windows\system32\atl.dll
2009-09-08 23:00 . 2009-09-08 23:00 160256 ----a-w- c:\windows\system32\wkssvc.dll
2009-09-08 22:59 . 2009-09-08 22:59 53248 ----a-w- c:\windows\system32\tsgqec.dll
2009-09-08 22:59 . 2009-09-08 22:59 2066432 ----a-w- c:\windows\system32\mstscax.dll
2009-09-08 22:59 . 2009-09-08 22:59 136192 ----a-w- c:\windows\system32\aaclient.dll
2009-09-08 22:57 . 2009-09-08 22:57 2048 ----a-w- c:\windows\system32\msxml3r.dll
2009-09-08 22:52 . 2009-09-08 22:52 623616 ----a-w- c:\windows\system32\localspl.dll
2009-09-08 22:51 . 2009-09-08 22:51 91136 ----a-w- c:\windows\system32\avifil32.dll
2009-09-08 22:51 . 2009-09-08 22:51 82944 ----a-w- c:\windows\system32\mciavi32.dll
2009-09-08 22:51 . 2009-09-08 22:51 65024 ----a-w- c:\windows\system32\avicap32.dll
2009-09-08 22:51 . 2009-09-08 22:51 31232 ----a-w- c:\windows\system32\msvidc32.dll
2009-09-08 22:51 . 2009-09-08 22:51 12800 ----a-w- c:\windows\system32\msrle32.dll
2009-09-08 22:51 . 2009-09-08 22:51 123904 ----a-w- c:\windows\system32\msvfw32.dll
2009-09-08 22:45 . 2009-09-08 22:45 9728 ----a-w- c:\windows\system32\lsass.exe
2009-09-08 22:45 . 2009-09-08 22:45 72704 ----a-w- c:\windows\system32\secur32.dll
2009-09-08 22:45 . 2009-09-08 22:45 499712 ----a-w- c:\windows\system32\kerberos.dll
2009-09-08 22:45 . 2009-09-08 22:45 439864 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-09-08 22:45 . 2009-09-08 22:45 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-08 22:45 . 2009-09-08 22:45 175104 ----a-w- c:\windows\system32\wdigest.dll
2009-09-08 22:45 . 2009-09-08 22:45 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2009-09-08 22:45 . 2009-09-08 22:45 270848 ----a-w- c:\windows\system32\schannel.dll
2009-09-08 22:39 . 2009-09-08 22:39 6656 ----a-w- c:\windows\system32\kbd106n.dll
2009-09-08 22:32 . 2009-09-08 22:32 828416 ----a-w- c:\windows\system32\wininet.dll
2009-09-08 22:32 . 2009-09-08 22:32 72704 ----a-w- c:\windows\system32\admparse.dll
2009-09-08 22:32 . 2009-09-08 22:32 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-09-08 22:32 . 2009-09-08 22:32 48128 ----a-w- c:\windows\system32\mshtmler.dll
2009-09-08 22:31 . 2009-09-08 22:31 37888 ----a-w- c:\windows\system32\printcom.dll
2009-09-08 22:30 . 2009-09-08 22:30 14848 ----a-w- c:\windows\system32\wshrm.dll
2009-09-08 22:30 . 2009-09-08 22:30 8147456 ----a-w- c:\windows\system32\wmploc.DLL

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-16 06:25 . 2007-05-04 01:47 -------- d-----w- c:\program files\Dell
2009-09-16 06:25 . 2007-05-04 01:36 -------- d-----w- c:\program files\Dell Games
2009-09-16 06:22 . 2007-05-04 01:36 -------- d-----w- c:\programdata\WildTangent
2009-09-15 03:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-09-15 03:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2009-09-15 03:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2009-09-15 03:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-09-15 03:16 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-15 03:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2009-09-15 03:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2009-09-15 03:15 . 2009-09-15 03:15 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-09-14 08:24 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2009-09-14 08:24 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2009-09-13 20:55 . 2007-05-04 01:42 -------- d-----w- c:\program files\Google
2009-09-09 19:39 . 2007-05-04 01:26 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-06 16:45 . 2007-05-04 01:40 -------- d-----w- c:\programdata\McAfee
2009-09-05 21:44 . 2007-05-04 01:26 -------- d-----w- c:\program files\Java
2009-09-05 17:37 . 2009-09-05 17:31 680 ----a-w- c:\users\Tony\AppData\Local\d3d9caps.dat
2009-09-05 17:31 . 2009-09-05 17:31 81248 ----a-w- c:\users\Tony\AppData\Local\GDIPFONTCACHEV1.DAT
2009-09-05 17:31 . 2009-09-05 17:31 -------- d--h--w- c:\users\Tony\AppData\Roaming\GTek
2009-09-05 17:28 . 2009-09-05 17:28 -------- d-sh--we c:\programdata\Templates
2009-09-05 17:28 . 2009-09-05 17:28 -------- d-sh--we c:\programdata\Start Menu
2009-09-05 17:28 . 2009-09-05 17:28 -------- d-sh--we c:\programdata\Favorites
2009-09-05 17:28 . 2009-09-05 17:28 -------- d-sh--we c:\programdata\Documents
2009-09-05 17:28 . 2009-09-05 17:28 -------- d-sh--we c:\programdata\Desktop
2009-07-21 16:31 . 2009-07-21 16:31 4450816 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2009-07-21 15:44 . 2009-07-21 15:44 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2009-07-21 15:42 . 2006-11-02 10:25 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2009-07-21 15:42 . 2009-02-25 21:34 348160 ----a-w- c:\windows\system32\atipdlxx.dll
2009-07-21 15:42 . 2009-07-21 15:42 274432 ----a-w- c:\windows\system32\Oemdspif.dll
2009-07-21 15:41 . 2009-07-21 15:41 12288 ----a-w- c:\windows\system32\atimuixx.dll
2009-07-21 15:41 . 2009-07-21 15:41 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2009-07-21 15:41 . 2009-07-21 15:41 278528 ----a-w- c:\windows\system32\Ati2evxx.dll
2009-07-21 15:40 . 2009-07-21 15:40 733184 ----a-w- c:\windows\system32\Ati2evxx.exe
2009-07-21 15:29 . 2006-11-02 10:25 3839488 ----a-w- c:\windows\system32\atiumdag.dll
2009-07-21 15:16 . 2009-07-21 15:16 11513856 ----a-w- c:\windows\system32\atioglxx.dll
2009-07-21 15:12 . 2009-07-21 15:12 4945920 ----a-w- c:\windows\system32\atiumdva.dll
2009-07-21 15:00 . 2009-07-21 15:00 51712 ----a-w- c:\windows\system32\amdpcom32.dll
2009-07-21 15:00 . 2009-07-21 15:00 135168 ----a-w- c:\windows\system32\atiadlxx.dll
2009-07-21 14:54 . 2009-07-21 14:54 53248 ----a-w- c:\windows\system32\aticalrt.dll
2009-07-21 14:53 . 2009-07-21 14:53 53248 ----a-w- c:\windows\system32\aticalcl.dll
2009-07-21 14:52 . 2009-07-21 14:52 3235840 ----a-w- c:\windows\system32\aticaldd.dll
2009-07-21 14:46 . 2009-07-21 14:46 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2009-07-09 16:16 . 2009-07-09 16:16 39424 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2009-07-09 16:16 . 2009-07-09 16:16 2060288 ----a-w- c:\windows\system32\usbaaplrc.dll
2007-05-04 09:13 . 2007-05-04 09:13 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar "= "c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"DellSupport "= "c:\program files\DellSupport\DSAgnt.exe" [2006-11-12 446976]
"Steam "= "c:\program files\Steam\Steam.exe" [2009-09-05 1217784]
"NCsoft Launcher "= "c:\program files\NCSoft\Launcher\NCLauncher.exe" [2009-09-19 38184]
"SpybotSD TeaTimer "= "c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCUTRAYICON "= "FactoryMode" [X]
"Windows Defender "= "c:\program files\Windows Defender\MSASCui.exe" [2008-01-19 1008184]
"IAAnotif "= "c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-09-29 151552]
"ISUSScheduler "= "c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2006-10-03 81920]
"NMSSupport "= "c:\program files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2006-09-26 423424]
"ISUSPM Startup "= "c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2006-10-03 221184]
"QuickTime Task "= "c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"iTunesHelper "= "c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"SunJavaUpdateSched "= "c:\program files\Java\jre6\bin\jusched.exe" [2009-09-05 149280]
"StartCCC "= "c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-21 61440]

c:\users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2009-9-3 3111824]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2007-5-3 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA "= 0 (0x0)
"EnableUIADesktopToggle "= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@= "Service "

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring "=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2 "=hex(b):aa,7b,c1,93,b3,35,ca,01

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{68004B50-C4C7-4ACC-8BD3-37E7629C0A08} "= UDProfile=Private|Profile=Public:LocalSubnet:LocalSubnet|c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
"{42A1FC8A-B9AA-4229-8C2E-570D51DC78DF} "= TCProfile=Private|Profile=Public:LocalSubnet:LocalSubnet|c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
"{B75AC61E-551B-4CB4-935A-C0CCBC9FCD87} "= UDProfile=Private|Profile=Public:LocalSubnet:LocalSubnet|c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel(R) Remoting Service
"{AEAE7446-2A58-4DAE-B663-6CD51DFF3283} "= TCProfile=Private|Profile=Public:LocalSubnet:LocalSubnet|c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel(R) Remoting Service
"{BDD96DAF-EA6C-4F0C-BA45-CDC1FFFA46FA} "= UDProfile=Private|Profile=Public:LocalSubnet:LocalSubnet|c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel(R) Viiv(TM) Media Server
"{C7B5FFDD-67B3-4D2F-B578-3CE88D21EEB5} "= TCProfile=Private|Profile=Public:LocalSubnet:LocalSubnet|c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel(R) Viiv(TM) Media Server
"{31AF3536-457A-4375-A357-919294BDC14E} "= TCProfile=Private|Profile=Public|9442:127.0.0.1:Intel(R) Viiv(TM) Media Server Discovery
"{637917B9-8674-4CFE-8DAE-06F01CD6A699} "= TCProfile=Private|Profile=Public|1900:LocalSubnet:LocalSubnet:Intel(R) Viiv(TM) Media Server UPnP Discovery
"{AF0D10E2-27D0-4078-AFEB-7020EF2A497A} "= UDP:c:\program files\Common Files\McAfee\MNA\McNASvc.exe:McAfee Network Agent
"{83A917AF-DE24-4537-BEE1-88F7481E9EE3} "= UDP:c:\program files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe:Yahoo! Music Jukebox
"{49631387-7274-4EE3-ADE5-984BD1EABFA5} "= TCP:c:\program files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe:Yahoo! Music Jukebox
"{A759189C-9FD5-43F1-A5C0-665FFF06F46C} "= UDP:c:\program files\Ventrilo\Ventrilo.exe:Ventrilo.exe
"{DA9C7119-7262-4FD1-A232-E4F363919F4F} "= TCP:c:\program files\Ventrilo\Ventrilo.exe:Ventrilo.exe
"TCP Query User{1F5946A2-0725-49F5-87B4-98BFFE1358C1}c:\\program files\\xfire\\xfire.exe "= UDP:c:\program files\xfire\xfire.exe:Xfire
"UDP Query User{63A3A3B5-4D4A-45E3-A1B6-12B869A43DC0}c:\\program files\\xfire\\xfire.exe "= TCP:c:\program files\xfire\xfire.exe:Xfire
"{6FFAD7DB-0FD3-4904-86E8-A85AC74FD9B7} "= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{9F8A10CC-DBCB-42CB-9773-A80AEB56A31D} "= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{8E176749-357E-4E52-9D61-45859FE5C5BE} "= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{0A693E18-CC5E-40B8-87A7-67E0DDECFF59} "= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"TCP Query User{C40891B9-8E19-4E0F-A6C3-471605C90B1A}c:\\program files\\steam\\steamapps\\qik1072\\team fortress 2\\hl2.exe "= UDP:c:\program files\steam\steamapps\qik1072\team fortress 2\hl2.exe:hl2
"UDP Query User{D25A7095-9F60-429A-BF7B-2F9E0627B7C8}c:\\program files\\steam\\steamapps\\qik1072\\team fortress 2\\hl2.exe "= TCP:c:\program files\steam\steamapps\qik1072\team fortress 2\hl2.exe:hl2
"{F01C31C5-50EF-4FF1-AC7F-EE36DBCF1C05} "= UDP:c:\program files\wbcps\Wow.exe:Wow
"{265E5021-7FB9-47B5-9302-26B9881808E7} "= TCP:c:\program files\wbcps\Wow.exe:Wow
"{7C8FE20B-621A-4997-9D23-A148D2585FC8} "= UDP:c:\program files\Dyyno\Dyyno Broadcaster\dgcsrv.exeyyno Broadcaster
"{FCEC3738-C837-428F-B1D5-BC5523E3C31A} "= UDP:c:\program files\Dyyno\Dyyno Broadcaster\dppm_source.exeyyno Broadcaster
"{57CC9E6E-0C3B-4B56-9DB8-908591290C32} "= TCP:c:\program files\Dyyno\Dyyno Broadcaster\dgcsrv.exeyyno Broadcaster
"{C8D183E6-8559-43B8-93CE-D268902E2F6D} "= TCP:c:\program files\Dyyno\Dyyno Broadcaster\dppm_source.exeyyno Broadcaster

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall "= 0 (0x0)
"DisabledInterfaces "= {0F97CC09-6942-4890-877A-5696AD66B927}

R0 pavboot;pavboot;c:\windows\System32\drivers\pavboot.sys [9/20/2009 5:59 AM 28544]
R2 DQLWinService;DQLWinService;c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [10/29/2006 9:03 AM 208896]
R2 Dyyno Launcher;Dyyno Service;c:\program files\Dyyno\Dyyno Broadcaster\launcherd.exe [8/10/2009 7:21 PM 304408]
R2 nmsgopro;GoProto Protocol Driver for NMS;c:\windows\System32\drivers\nmsgopro.sys [9/27/2006 4:37 PM 28672]
R2 nmsunidr;UniDriver for NMS;c:\windows\System32\drivers\nmsunidr.sys [10/19/2006 3:49 PM 7424]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [9/19/2009 3:48 PM 1153368]
R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);c:\windows\System32\drivers\vrtaucbl.sys [9/18/2009 8:45 AM 42496]
R3 IntelDH;IntelDH Driver;c:\windows\System32\drivers\IntelDH.sys [5/3/2007 9:39 PM 5504]
S2 IntelDHSvcConf;Intel DH Service;c:\program files\Intel\IntelDH\Intel Media Server\tools\IntelDHSvcConf.exe [11/18/2006 6:59 AM 36312]
.
Contents of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://yahoo.com/
uInternet Settings,ProxyOverride = *.local
TCP: {0F97CC09-6942-4890-877A-5696AD66B927} = 65.24.7.10,65.24.7.11
FF - ProfilePath - c:\users\Tony\AppData\Roaming\Mozilla\Firefox\Profiles\h9vgyo1g.default\
FF - prefs.js: browser.startup.homepage - yahoo.com
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-PlayNC Launcher - (no file)



**************************************************************************
scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files:

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aac\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aifc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.au\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flac\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mid\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.midi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ogg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pls\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.spx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wma\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "YMP.Media "

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial "=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'Explorer.exe'(3448)
c:\program files\Xfire\xfire_toucan_39110.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\Ati2evxx.exe
c:\windows\System32\audiodg.exe
c:\windows\System32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
c:\windows\System32\drivers\XAudio.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Common Files\Steam\SteamService.exe
c:\windows\System32\wbem\WMIADAP.exe
.
**************************************************************************
.
Completion time: 2009-09-20 14:31 - machine was rebooted
ComboFix-quarantined-files.txt 2009-09-20 18:31

Pre-Run: 128,221,765,632 bytes free
Post-Run: 128,236,863,488 bytes free

386 --- E O F --- 2009-09-17 19:05

 

Hi
OK please run this.

Download RootRepeal.zip to your Desktop.

• Extract the compressed file to it's own folder.
• Open the folder and double click on RootRepeal.exe to run it.
• Click on the Report tab, and then click on: Scan
• A window opens asking what to include in the scan.
• Check the following boxes then click OK:
  • Drivers
  • Files
  • Processes
  • SSDT
  • Stealth Objects
  • Hidden Services
• You will then be asked which drive to scan.
• Check C: (or the drive your operating system is installed on, if not C)
• Click OK once again.

The tool will begin scanning and may take a while to complete, so please be patient.

When the scan finishes, click on: Save Report
Name the log RootRepeal.txt and save it to your Documents folder (it should default there).

Post the contents of the report in a reply here

Thanks
Geri

 

I get this error Geri:

The bandwidth or page view limit for this site has been exceeded and the page cannot be viewed at this time. Once the site is below the limit, it will once again begin serving as normal.

 

Hi
OK please try this one.

Download GMER

Right click and extract it to it's own folder on the desktop.

Open the program and click on the Rootkit tab.
Make sure all the boxes on the right of the screen are checked, EXCEPT for ‘Show All’.
Click on Scan.
When the scan has completed, click Copy and paste the results (if any) into this topic.

Thanks
Geri

 

Hi Geri.

It said that "GMER did not find any system modification. "