OTL logfile created on: 6/25/2010 11:50:26 PM - Run 1 OTL by OldTimer - Version 3.2.7.0 Folder = C:\Users\Administrator\Documents\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18928) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 50.00% Memory free 4.00 Gb Paging File | 3.00 Gb Available in Paging File | 62.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 326.00 Gb Total Space | 205.74 Gb Free Space | 63.11% Space Free | Partition Type: NTFS Drive D: | 9.35 Gb Total Space | 1.27 Gb Free Space | 13.56% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: SHARONJOSHUA-PC Current User Name: Administrator Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 360 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Users\Administrator\Documents\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe () PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.) PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) PRC - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\ccsvchst.exe (Symantec Corporation) PRC - C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation) PRC - C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpy.exe () PRC - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) PRC - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) PRC - c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) PRC - C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe () PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation) PRC - C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe (CA, Inc.) PRC - C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation) [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - C:\Users\Administrator\Documents\Downloads\OTL.exe (OldTimer Tools) MOD - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\asoehook.dll (Symantec Corporation) MOD - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll (RealPlayer) MOD - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\microsoft.vc90.crt\msvcr90.dll (Microsoft Corporation) MOD - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\microsoft.vc90.crt\msvcp90.dll (Microsoft Corporation) MOD - C:\WINDOWS\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\GdiPlus.dll (Microsoft Corporation) MOD - C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation) MOD - C:\WINDOWS\System32\msscript.ocx (Microsoft Corporation) MOD - C:\WINDOWS\System32\msvcp71.dll (Microsoft Corporation) MOD - C:\WINDOWS\System32\msvcr71.dll (Microsoft Corporation) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - (gusvc) -- File not found SRV - (gupdate1c9d311ee8faa7b) Google Update Service (gupdate1c9d311ee8faa7b) -- File not found SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation) SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation) SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) SRV - (N360) -- C:\Program Files\Norton Security Suite\Engine\4.2.0.12\ccSvcHst.exe (Symantec Corporation) SRV - (WAS) -- C:\WINDOWS\System32\inetsrv\iisw3adm.dll (Microsoft Corporation) SRV - (FontCache) -- C:\WINDOWS\System32\FntCache.dll (Microsoft Corporation) SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) SRV - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.) SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) SRV - (AntiSpywareService) -- C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe () SRV - (AppHostSvc) -- C:\WINDOWS\System32\inetsrv\apphostsvc.dll (Microsoft Corporation) SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (ITMRTSVC) -- C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe (CA, Inc.) SRV - (MSCamSvc) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\IPSDefs\20100624.001\IDSvix86.sys (Symantec Corporation) DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation) DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation) DRV - (BHDrvx86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\BASHDefs\20100619.001\BHDrvx86.sys (Symantec Corporation) DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\VirusDefs\20100625.002\NAVEX15.SYS (Symantec Corporation) DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\VirusDefs\20100625.002\NAVENG.SYS (Symantec Corporation) DRV - (SYMTDIv) -- C:\Windows\System32\Drivers\N360\0402000.00C\SYMTDIV.SYS (Symantec Corporation) DRV - (SymIRON) -- C:\Windows\system32\drivers\N360\0402000.00C\Ironx86.SYS (Symantec Corporation) DRV - (fssfltr) -- C:\WINDOWS\System32\drivers\fssfltr.sys (Microsoft Corporation) DRV - (SymEFA) -- C:\Windows\system32\drivers\N360\0402000.00C\SYMEFA.SYS (Symantec Corporation) DRV - (SymEvent) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS (Symantec Corporation) DRV - (SRTSP) -- C:\Windows\System32\Drivers\N360\0402000.00C\SRTSP.SYS (Symantec Corporation) DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\N360\0402000.00C\SRTSPX.SYS (Symantec Corporation) DRV - (ccHP) -- C:\Windows\system32\drivers\N360\0402000.00C\ccHPx86.sys (Symantec Corporation) DRV - (SymDS) -- C:\Windows\system32\drivers\N360\0402000.00C\SYMDS.SYS (Symantec Corporation) DRV - (mfehidk) -- C:\WINDOWS\System32\drivers\mfehidk.sys (McAfee, Inc.) DRV - (mferkdk) -- C:\WINDOWS\System32\drivers\mferkdk.sys (McAfee, Inc.) DRV - (MpFilter) -- C:\WINDOWS\System32\drivers\MpFilter.sys (Microsoft Corporation) DRV - (MpNWMon) -- C:\WINDOWS\System32\drivers\MpNWMon.sys (Microsoft Corporation) DRV - (LUsbFilt) -- C:\WINDOWS\System32\drivers\LUsbFilt.sys (Logitech, Inc.) DRV - (LMouFilt) -- C:\WINDOWS\System32\drivers\LMouFilt.Sys (Logitech, Inc.) DRV - (LHidFilt) -- C:\WINDOWS\System32\drivers\LHidFilt.Sys (Logitech, Inc.) DRV - (L8042Kbd) -- C:\WINDOWS\System32\drivers\L8042Kbd.sys (Logitech, Inc.) DRV - (USB_RNDIS) Linksys Cable Modem (CM100) -- C:\WINDOWS\System32\drivers\usb8023.sys (Microsoft Corporation) DRV - (usbaudio) USB Audio Driver (WDM) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys (Microsoft Corporation) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.) DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA)) DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA)) DRV - (VX3000) -- C:\WINDOWS\System32\drivers\VX3000.sys (Microsoft Corporation) DRV - (HSXHWBS2) -- C:\WINDOWS\System32\drivers\HSXHWBS2.sys (Conexant Systems, Inc.) DRV - (winachsf) -- C:\WINDOWS\System32\drivers\HSX_CNXT.sys (Conexant Systems, Inc.) DRV - (HSF_DP) -- C:\WINDOWS\System32\drivers\HSX_DP.sys (Conexant Systems, Inc.) DRV - (igfx) -- C:\WINDOWS\System32\drivers\igdkmd32.sys (Intel Corporation) DRV - (ialm) -- C:\WINDOWS\System32\drivers\igdkmd32.sys (Intel Corporation) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (XAudio) -- C:\WINDOWS\System32\drivers\XAudio.sys (Conexant Systems, Inc.) DRV - (RTL8169) -- C:\WINDOWS\System32\drivers\Rtlh86.sys (Realtek Corporation ) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.) DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.) DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (E1G60) Intel(R) -- C:\WINDOWS\System32\drivers\E1G60I32.sys (Intel Corporation) [color=#E56717]========== Standard Registry (All) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/linksys IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr9/*http://www.yahoo.com/ext/search/search.html IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm IE - HKLM\..\URLSearchHook: {0a66fc15-cf30-4735-b5a7-fb1a24e4f0bf} - Reg Error: Key error. File not found IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\System32\ieframe.dll (Microsoft Corporation) IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo" FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?fr=ffsp1&p=" FF - prefs.js..browser.search.selectedEngine: "Yahoo" FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17 FF - prefs.js..extensions.enabledItems: searchrecs@veoh.com:1.5.2 FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1 FF - prefs.js..extensions.enabledItems: {3112ca9c-de6d-4884-a869-9855de68056c}:7.0.20100617W FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1 FF - prefs.js..extensions.enabledItems: 6 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: 44 FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.3 FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0 FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3 FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=ffds1&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/07/26 16:52:24 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\ProgramData\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2009/03/05 14:48:00 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/04/03 14:35:31 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\IPSFFPlgn\ [2010/06/01 21:59:46 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\coFFPlgn\ [2010/04/21 23:01:02 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/20 15:07:36 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/25 21:55:34 | 000,000,000 | ---D | M] [2009/08/03 11:04:37 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mozilla\Extensions [2009/08/03 11:04:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2010/06/20 17:34:50 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions [2009/08/03 11:16:44 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/06/20 17:34:50 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2009/09/20 17:42:34 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} [2010/01/02 20:30:13 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions\searchrecs@veoh.com [2010/06/20 15:07:33 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/06/20 15:07:33 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2009/06/28 22:47:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [2009/09/21 00:41:29 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009/11/10 07:53:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [2010/04/01 13:58:18 | 000,023,000 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll [2010/04/01 13:58:19 | 000,138,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll [2009/05/01 17:02:48 | 001,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\Mozilla Firefox\plugins\libdivx.dll [2007/04/10 17:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll [2009/10/11 05:17:27 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll [2009/05/12 14:46:20 | 001,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll [2009/05/18 18:41:32 | 000,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll [2010/04/01 13:58:20 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll [2006/10/26 21:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL [2010/04/03 19:43:36 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll [2010/02/02 20:23:21 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll [2010/02/02 20:23:22 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll [2010/02/02 20:23:22 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll [2010/02/02 20:23:22 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll [2010/02/02 20:23:22 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll [2010/02/02 20:23:22 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll [2010/02/02 20:23:23 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll [2009/09/03 11:53:00 | 000,030,912 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\Mozilla Firefox\plugins\np_gp.dll [2009/05/01 17:02:48 | 000,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\Mozilla Firefox\plugins\ssldivx.dll [2010/04/01 11:56:18 | 000,001,394 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.xml [2010/04/01 11:56:18 | 000,002,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\answers.xml [2010/04/01 11:56:18 | 000,001,534 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml [2010/04/01 11:56:18 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.xml [2010/04/01 11:56:18 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml [2010/04/01 11:56:18 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml [2010/04/01 11:56:18 | 000,001,096 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml O1 HOSTS File: ([2010/06/05 16:12:30 | 000,000,027 | ---- | M]) - C:\WINDOWS\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found. O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (AT&&T Toolbar) - {4E7BD74F-2B8D-469E-94BE-FD60BB9AAE29} - C:\PROGRA~1\ATTTOO~1\ATTTOO~1.DLL File not found O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\coieplg.dll (Symantec Corporation) O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\ipsbho.dll (Symantec Corporation) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Comcast Toolbar) - {79CEEA4E-C231-4614-9E3B-53B2A02F39B7} - C:\Program Files\comcasttb\comcastdx.dll () O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (no name) - {ad55c869-668e-457c-b270-0cfb2f61116f} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (AT&&T Toolbar) - {4E7BD74F-2B8D-469E-94BE-FD60BB9AAE29} - C:\PROGRA~1\ATTTOO~1\ATTTOO~1.DLL File not found O3 - HKLM\..\Toolbar: (Comcast Toolbar) - {79CEEA4E-C231-4614-9E3B-53B2A02F39B7} - C:\Program Files\comcasttb\comcastdx.dll () O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\coieplg.dll (Symantec Corporation) O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\4.2.0.12\coieplg.dll (Symantec Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [ComcastAntispyClient] C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe () O4 - HKCU..\Run: [ehTray.exe] C:\WINDOWS\ehome\ehtray.exe (Microsoft Corporation) O4 - HKCU..\Run: [HPADVISOR] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard) O4 - HKCU..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe File not found O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation) O4 - Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\System32\nlaapi.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\System32\NapiNSP.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\System32\pnrpnsp.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\System32\pnrpnsp.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\WINDOWS\System32\winrnr.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Java Plug-in 1.6.0_01) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444523540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 68.87.74.166 68.87.68.166 O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\System32\MSVidCtl.dll (Microsoft Corporation) O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\System32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\System32\inetcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\System32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\System32\MSVidCtl.dll (Microsoft Corporation) O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\System32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\System32\webcheck.dll (Microsoft Corporation) O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\System32\browseui.dll (Microsoft Corporation) O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\img24.jpg O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation) O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation) O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation) O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation) O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation) O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation) O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007/12/08 17:22:02 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\WINDOWS\System32\ias [2008/10/30 15:46:19 | 000,000,000 | ---D | M] NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: Wmi - C:\WINDOWS\System32\wmi.dll (Microsoft Corporation) NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe - (Hewlett-Packard Co.) MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe - (Logitech, Inc.) MsConfig - StartUpFolder: C:^Users^sharon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Picture Motion Browser Media Check Tool.lnk - C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe - (Sony Corporation) MsConfig - StartUpReg: [b]ehTray.exe[/b] - hkey= - key= - C:\WINDOWS\ehome\ehtray.exe (Microsoft Corporation) MsConfig - StartUpReg: [b]googletalk[/b] - hkey= - key= - C:\Users\sharon\AppData\Roaming\Google\Google Talk\googletalk.exe (Google) MsConfig - StartUpReg: [b]HP Software Update[/b] - hkey= - key= - C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.) MsConfig - StartUpReg: [b]Kernel and Hardware Abstraction Layer[/b] - hkey= - key= - C:\Windows\KHALMNPR.Exe (Logitech, Inc.) MsConfig - StartUpReg: [b]LifeCam[/b] - hkey= - key= - C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation) MsConfig - StartUpReg: [b]PrintUtil[/b] - hkey= - key= - C:\Program Files\HP\HP Print Utility\PrintUtil.exe (Hewlett-Packard) MsConfig - StartUpReg: [b]RtHDVCpl[/b] - hkey= - key= - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) MsConfig - StartUpReg: [b]TkBellExe[/b] - hkey= - key= - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) MsConfig - StartUpReg: [b]VX3000[/b] - hkey= - key= - C:\WINDOWS\vVX3000.exe (Microsoft Corporation) MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: MsMpSvc - c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: atashost - Service SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: Messenger - Service SafeBootNet: MpfService - Service SafeBootNet: MsMpSvc - c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SafeBootNet: WudfPf - Driver SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX: {00F0EE7F-2C61-4EBD-A209-00281BDC869C} - Yahoo! Toolbar ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0 ActiveX: {233C1507-6A77-46A4-9443-F871F945D258} - Adobe Shockwave Director 10.4 ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Adobe Shockwave Director 10.4 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - C:\Windows\system32\rundll32.exe C:\Windows\system32\advpack.dll,LaunchINFSectionEx C:\Program Files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12 ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {EE330FEC-4206-4FD0-891C-7216477A74B3} - NoIE8Tour ActiveX: {F390FCA4-7CCF-4A1A-A849-C381E489A3CA} - Yahoo! Search Settings Update ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig ActiveX: >{46AA243C-6639-4E0B-AB18-E7CA14FCCFBB} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.) CREATERESTOREPOINT Restore point Set: OTL Restore Point [color=#E56717]========== Files/Folders - Created Within 360 Days ==========[/color] [2010/06/23 11:35:45 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2010/06/23 11:35:44 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2010/06/23 11:35:44 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2010/06/22 15:40:23 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2010/06/22 15:40:23 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2010/06/20 23:25:50 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Tracing [2010/06/20 23:25:20 | 000,054,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fssfltr.sys [2010/06/20 23:24:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework [2010/06/20 23:22:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition [2010/06/20 23:21:36 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive [2010/06/20 23:21:04 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live [2010/06/10 09:27:06 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Softland [2010/06/10 09:27:06 | 000,000,000 | ---D | C] -- C:\Softland [2010/06/10 09:27:04 | 000,022,856 | ---- | C] (Softland) -- C:\Windows\System32\dopdfmn7.dll [2010/06/10 09:27:04 | 000,019,784 | ---- | C] (Softland) -- C:\Windows\System32\dopdfmi7.dll [2010/06/10 09:26:50 | 000,000,000 | ---D | C] -- C:\Program Files\Softland [2010/06/10 09:21:06 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Template [2010/06/09 15:35:51 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010/06/09 15:35:48 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/06/09 15:35:47 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/06/09 15:35:31 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/06/09 15:35:29 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/06/09 15:35:29 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/06/09 15:35:28 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010/06/09 15:35:27 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/06/09 15:35:26 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/06/09 15:35:25 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010/06/09 15:35:25 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010/06/09 15:35:25 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/06/09 15:35:24 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010/06/09 15:35:24 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/06/09 15:35:24 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/06/09 15:35:23 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010/06/09 15:35:23 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010/06/09 15:35:23 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010/06/09 15:35:19 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2010/06/07 22:54:03 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Desktop\malar marklist [2010/06/06 21:00:58 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2010/06/06 21:00:57 | 000,000,000 | ---D | C] -- C:\Program Files\livetvbar [2010/06/05 16:12:43 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN [2010/06/05 16:09:13 | 000,000,000 | ---D | C] -- C:\Windows\temp [2010/06/05 15:53:27 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe [2010/06/05 15:49:54 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2010/06/05 15:49:53 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2010/06/05 15:49:53 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2010/06/05 15:49:30 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2010/06/05 15:48:32 | 000,000,000 | ---D | C] -- C:\Qoobox [2010/06/01 19:17:08 | 000,339,504 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\symtdiv.sys [2010/06/01 19:17:08 | 000,328,752 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\symds.sys [2010/06/01 19:17:08 | 000,173,104 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\symefa.sys [2010/06/01 19:17:08 | 000,043,696 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\srtspx.sys [2010/06/01 19:17:07 | 000,501,888 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\cchpx86.sys [2010/06/01 19:17:07 | 000,325,680 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\srtsp.sys [2010/06/01 19:17:07 | 000,116,784 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\ironx86.sys [2010/06/01 19:16:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\N360\0402000.00C [2010/05/31 23:05:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS [2010/05/31 23:05:11 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan [2010/05/31 23:05:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0207030.022 [2010/05/31 20:05:16 | 000,000,000 | ---D | C] -- C:\Program Files\DivX [2010/05/31 20:04:15 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX [2010/05/29 11:19:05 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Linphone [2010/05/29 11:18:43 | 000,000,000 | ---D | C] -- C:\Program Files\Linphone [2010/05/26 17:26:20 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2010/05/23 17:23:42 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Nikon [2010/05/23 17:23:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Automatic Filter [2010/05/23 17:23:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Bass [2010/05/23 17:21:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Nikon [2010/05/23 17:13:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Home [2010/05/23 17:11:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Nikon [2010/05/23 17:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nikon [2010/05/23 17:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\Nikon [2010/05/23 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Ultima_T15 [2010/05/23 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Gems [2010/05/23 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\EnterNHelp [2010/05/23 17:02:53 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ArcSoft [2010/05/23 17:01:20 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft [2010/05/23 17:00:41 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\ArcSoft [2010/05/18 17:58:33 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\InstallShield [2010/05/02 21:41:12 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010/04/26 18:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl [2010/04/21 23:00:17 | 000,107,368 | R--- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll [2010/04/21 23:00:14 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS [2010/04/21 23:00:14 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec [2010/04/21 22:59:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\N360 [2010/04/21 22:59:17 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Suite [2010/04/21 22:58:01 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller [2010/04/17 00:04:40 | 000,306,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\WLXPGSS.SCR [2010/04/15 21:36:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\MapView [2010/04/15 21:21:13 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Picture Motion Browser [2010/04/15 21:18:14 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Sony Corporation [2010/04/15 20:36:18 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2010/04/15 20:24:54 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Desktop\101NIKON [2010/04/13 21:20:48 | 003,548,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2010/04/13 21:20:47 | 003,600,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2010/04/13 21:20:39 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2010/04/13 21:20:27 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm [2010/04/13 21:20:26 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm [2010/04/04 22:59:24 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CCNA EXAM BOOST [2010/04/04 22:18:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\New Folder [2010/04/04 21:46:04 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Tific [2010/04/04 21:45:48 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Symantec [2010/04/04 17:59:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\{fff5379c-d4e0-46b6-a789-125da81e4c4a} [2010/04/04 17:58:00 | 000,091,648 | ---- | C] (Realtek Corporation ) -- C:\Windows\System32\drivers\Rtlh86.sys [2010/04/04 17:39:19 | 000,000,000 | ---D | C] -- C:\N360_BACKUP [2010/04/03 20:43:28 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Software Informer [2010/04/03 14:40:12 | 000,000,000 | ---D | C] -- C:\Program Files\InterActual [2010/04/03 14:39:25 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\CrashDumps [2010/03/30 16:16:49 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Symantec [2010/03/30 15:47:57 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Move Networks [2010/03/30 15:46:31 | 000,000,000 | ---D | C] -- C:\Program Files\CA [2010/03/29 13:29:02 | 000,000,000 | ---D | C] -- C:\Program Files\support.com [2010/03/28 20:51:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\MailWasherFree [2010/03/28 18:54:40 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Google [2010/03/23 13:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft [2010/03/21 20:46:15 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2010/03/10 23:21:41 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll [2010/03/10 23:21:29 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll [2010/03/10 15:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2010/03/09 15:43:27 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll [2010/03/09 15:43:27 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll [2010/03/02 17:40:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Winamp [2010/03/02 17:29:02 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Apple [2010/03/01 11:56:45 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\My Scans [2010/02/26 23:42:04 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Yahoo [2010/02/26 21:33:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\WinRAR [2010/02/25 19:16:02 | 000,000,000 | ---D | C] -- C:\PFiles [2010/02/24 22:39:04 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Nero [2010/02/24 22:36:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Deployment [2010/02/24 22:36:14 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Apps [2010/02/23 21:02:32 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2010/02/23 21:00:53 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2010/02/23 21:00:52 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2010/02/23 21:00:41 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2010/02/23 21:00:39 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2010/02/23 21:00:38 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2010/02/23 21:00:38 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2010/02/23 21:00:36 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2010/02/23 21:00:35 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll [2010/02/23 21:00:35 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2010/02/23 21:00:30 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll [2010/02/19 19:47:50 | 003,604,480 | ---- | C] (Google Inc.) -- C:\Windows\System32\GPhotos.scr [2010/02/19 15:27:36 | 000,720,384 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivX.dll [2010/02/19 15:27:16 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx0c.dll [2010/02/19 15:27:16 | 000,856,064 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx07.dll [2010/02/19 15:27:16 | 000,847,872 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx0a.dll [2010/02/19 15:27:16 | 000,843,776 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx16.dll [2010/02/19 15:27:16 | 000,839,680 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx_xx11.dll [2010/02/14 15:38:18 | 000,000,000 | ---D | C] -- C:\ProgramData\FileCure [2010/02/10 20:05:52 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2010/02/10 20:05:51 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2010/02/10 20:05:50 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll [2010/02/10 20:05:50 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll [2010/02/02 20:26:55 | 000,000,000 | ---D | C] -- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2010/02/02 20:22:02 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2010/01/24 13:02:07 | 000,000,000 | ---D | C] -- C:\WMSDK [2010/01/22 15:46:14 | 000,000,000 | ---D | C] -- C:\ProgramData\TVU Networks [2010/01/19 19:52:10 | 000,000,000 | ---D | C] -- C:\Program Files\Linksys [2010/01/19 19:45:21 | 000,076,184 | ---- | C] (WebEx Communications, Inc.) -- C:\Windows\System32\atsckernel.exe [2010/01/19 19:45:20 | 000,020,376 | ---- | C] (WebEx Communications, Inc.) -- C:\Windows\System32\atashost.exe [2010/01/19 19:40:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Pure Networks [2010/01/18 23:22:26 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Adobe [2010/01/13 15:40:20 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2010/01/13 15:40:18 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2010/01/13 13:47:43 | 000,000,000 | ---D | C] -- C:\Windows\System32\Samsung_USB_Drivers [2010/01/13 13:45:42 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung [2010/01/07 21:36:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Office Genuine Advantage [2010/01/02 20:29:54 | 000,000,000 | ---D | C] -- C:\Program Files\Veoh Networks [2009/12/29 20:52:42 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Winamp Toolbar [2009/12/20 19:57:07 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\HP Guide [2009/12/12 23:41:56 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iisRtl.dll [2009/12/12 23:41:56 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iisreset.exe [2009/12/12 23:41:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iisrstap.dll [2009/12/12 23:41:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admwprox.dll [2009/12/12 23:41:53 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ahadmin.dll [2009/12/12 23:41:50 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wamregps.dll [2009/12/09 19:57:39 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll [2009/12/03 14:25:20 | 000,032,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msonpmon.dll [2009/12/03 14:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2009/12/03 14:22:38 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2009/12/03 14:22:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2009/12/03 14:19:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2009/12/03 14:17:23 | 000,000,000 | R--D | C] -- C:\MSOCache [2009/12/02 14:17:33 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\MigWiz [2009/11/28 23:27:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2009/11/28 12:21:08 | 000,000,000 | ---D | C] -- C:\ProgramData\explauncher [2009/11/25 09:16:19 | 000,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl [2009/11/18 11:55:45 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices [2009/11/18 11:39:09 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll [2009/11/18 11:39:06 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll [2009/11/18 11:39:05 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll [2009/11/18 11:38:06 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll [2009/11/18 11:38:02 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2009/11/18 11:37:58 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll [2009/11/18 11:37:58 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll [2009/11/18 11:37:57 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll [2009/11/18 11:37:57 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll [2009/11/18 11:37:57 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll [2009/11/18 11:37:57 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll [2009/11/18 11:37:56 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll [2009/11/18 11:37:56 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe [2009/11/18 11:37:56 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2009/11/18 11:37:56 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll [2009/11/18 11:37:56 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe [2009/11/18 11:37:56 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll [2009/11/18 11:37:55 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll [2009/11/18 11:37:55 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll [2009/11/18 11:37:55 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll [2009/11/18 11:37:54 | 001,064,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll [2009/11/18 11:37:54 | 001,030,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll [2009/11/18 11:37:54 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll [2009/11/18 11:37:54 | 000,486,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll [2009/11/18 11:37:54 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll [2009/11/18 11:37:54 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll [2009/11/18 11:37:54 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll [2009/11/18 11:37:54 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll [2009/11/18 11:37:12 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe [2009/11/18 11:37:11 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll [2009/11/18 11:36:57 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll [2009/11/18 11:36:49 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll [2009/11/18 11:36:48 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll [2009/11/18 11:36:48 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll [2009/11/18 11:36:47 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll [2009/11/18 11:36:47 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll [2009/11/18 11:36:47 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll [2009/11/18 11:36:47 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll [2009/11/18 11:36:47 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll [2009/11/18 11:36:47 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll [2009/11/18 11:32:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll [2009/11/18 11:32:42 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll [2009/11/11 11:22:59 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll [2009/11/11 00:08:24 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx [2009/11/11 00:08:24 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts [2009/11/10 08:39:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2009/11/10 07:53:04 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2009/11/10 07:53:03 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2009/11/10 07:53:03 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2009/11/08 13:15:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton [2009/11/08 13:15:06 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller [2009/11/04 20:33:34 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla ActiveX Control v1.7.12 [2009/11/04 20:32:28 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2009/11/02 12:14:54 | 000,000,000 | ---D | C] -- C:\8b138311c09f9d9062fe5703 [2009/10/29 20:14:14 | 000,000,000 | ---D | C] -- C:\9afe67fbd27607ffde6ca1 [2009/10/28 06:17:35 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe [2009/10/28 06:17:30 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2009/10/27 11:17:11 | 000,000,000 | ---D | C] -- C:\0613f8db54f4b353b56ea1695d1cef [2009/10/18 12:58:36 | 000,000,000 | ---D | C] -- C:\VJVod_Cache [2009/10/17 19:47:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nullsoft [2009/10/17 19:36:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Winamp Toolbar [2009/10/17 19:36:24 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Toolbar [2009/10/17 19:05:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\Nagasoft [2009/10/16 12:34:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\TVUAx [2009/10/14 17:45:07 | 000,221,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2009/10/14 17:42:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials [2009/10/14 17:19:08 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache [2009/10/14 06:08:18 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL [2009/10/06 12:31:57 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2009/10/06 12:22:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Real [2009/10/03 10:35:30 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll [2009/10/03 10:35:30 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll [2009/10/03 10:35:07 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll [2009/10/03 10:35:07 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll [2009/10/03 10:35:07 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll [2009/10/03 10:34:58 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll [2009/10/03 10:34:58 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe [2009/10/01 18:28:37 | 001,259,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll [2009/09/26 16:08:35 | 000,000,000 | ---D | C] -- C:\Windows\pss [2009/09/23 11:53:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES [2009/09/23 11:53:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES [2009/09/23 11:53:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN [2009/09/23 11:12:25 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders [2009/09/21 04:33:07 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\DivX [2009/09/21 00:29:38 | 000,034,248 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdk.sys [2009/09/20 17:42:52 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan [2009/09/20 16:14:34 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\CallingID [2009/09/20 16:14:21 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\SupportSoft [2009/09/20 15:09:09 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll [2009/09/20 15:09:09 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE [2009/09/20 15:09:09 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE [2009/09/20 15:09:09 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE [2009/09/20 15:09:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE [2009/09/20 15:09:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2009/09/20 15:09:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE [2009/09/20 15:09:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe [2009/09/20 15:09:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE [2009/09/20 15:08:44 | 002,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2009/09/20 15:08:44 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL [2009/09/20 15:08:43 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll [2009/09/20 15:08:43 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe [2009/09/20 15:08:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe [2009/09/20 15:08:43 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll [2009/09/20 15:08:41 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll [2009/09/20 15:08:41 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll [2009/09/20 15:08:41 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll [2009/09/20 15:08:40 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll [2009/09/20 15:08:40 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll [2009/09/20 15:08:31 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll [2009/09/20 15:08:31 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll [2009/09/20 15:08:23 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll [2009/09/20 15:08:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx [2009/09/20 15:08:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll [2009/09/20 15:08:22 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb [2009/09/20 15:08:22 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb [2009/09/20 10:48:56 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll [2009/09/20 10:48:51 | 001,081,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCExt.dll [2009/09/20 10:48:49 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll [2009/09/20 10:48:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe [2009/09/20 10:48:47 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll [2009/09/20 10:48:45 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll [2009/09/20 10:48:43 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys [2009/09/20 10:48:42 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll [2009/09/20 10:48:41 | 000,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll [2009/09/20 10:48:40 | 000,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll [2009/09/20 10:48:39 | 002,241,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msi.dll [2009/09/20 10:48:38 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll [2009/09/20 10:48:37 | 000,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll [2009/09/20 10:48:37 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll [2009/09/20 10:48:35 | 000,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe [2009/09/20 10:48:34 | 001,216,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll [2009/09/20 10:48:34 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll [2009/09/20 10:48:33 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe [2009/09/20 10:48:33 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe [2009/09/20 10:48:32 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll [2009/09/20 10:48:31 | 000,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll [2009/09/20 10:48:31 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll [2009/09/20 10:48:29 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll [2009/09/20 10:48:28 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL [2009/09/20 10:48:28 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll [2009/09/20 10:48:28 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll [2009/09/20 10:48:27 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll [2009/09/20 10:48:26 | 001,459,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esent.dll [2009/09/20 10:48:26 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL [2009/09/20 10:48:26 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll [2009/09/20 10:48:25 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll [2009/09/20 10:48:25 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll [2009/09/20 10:48:25 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll [2009/09/20 10:48:24 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe [2009/09/20 10:48:24 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll [2009/09/20 10:48:24 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll [2009/09/20 10:48:22 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll [2009/09/20 10:48:21 | 001,381,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Query.dll [2009/09/20 10:48:20 | 001,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll [2009/09/20 10:48:20 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME [2009/09/20 10:48:20 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll [2009/09/20 10:48:19 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll [2009/09/20 10:48:18 | 000,986,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2009/09/20 10:48:18 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe [2009/09/20 10:48:18 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll [2009/09/20 10:48:18 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll [2009/09/20 10:48:17 | 001,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe [2009/09/20 10:48:17 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll [2009/09/20 10:48:17 | 000,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll [2009/09/20 10:48:17 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll [2009/09/20 10:48:16 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll [2009/09/20 10:48:16 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll [2009/09/20 10:48:15 | 002,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll [2009/09/20 10:48:15 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2009/09/20 10:48:15 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll [2009/09/20 10:48:14 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll [2009/09/20 10:48:14 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spoolss.dll [2009/09/20 10:48:13 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll [2009/09/20 10:48:13 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp60.dll [2009/09/20 10:48:13 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll [2009/09/20 10:48:13 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll [2009/09/20 10:48:12 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe [2009/09/20 10:48:12 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll [2009/09/20 10:48:11 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe [2009/09/20 10:48:10 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe [2009/09/20 10:48:10 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll [2009/09/20 10:48:10 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll [2009/09/20 10:48:08 | 001,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll [2009/09/20 10:48:08 | 001,209,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comsvcs.dll [2009/09/20 10:48:08 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll [2009/09/20 10:48:08 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll [2009/09/20 10:48:08 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax [2009/09/20 10:48:08 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll [2009/09/20 10:48:07 | 001,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll [2009/09/20 10:48:07 | 001,086,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll [2009/09/20 10:48:06 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll [2009/09/20 10:48:05 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl [2009/09/20 10:48:05 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll [2009/09/20 10:48:05 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe [2009/09/20 10:48:05 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll [2009/09/20 10:48:05 | 000,102,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [2009/09/20 10:48:04 | 002,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2009/09/20 10:48:03 | 001,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll [2009/09/20 10:48:03 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll [2009/09/20 10:48:02 | 001,135,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll [2009/09/20 10:48:02 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll [2009/09/20 10:48:02 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll [2009/09/20 10:48:02 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\davclnt.dll [2009/09/20 10:48:02 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll [2009/09/20 10:48:01 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll [2009/09/20 10:48:01 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll [2009/09/20 10:48:01 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll [2009/09/20 10:47:59 | 000,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll [2009/09/20 10:47:59 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll [2009/09/20 10:47:59 | 000,483,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\samsrv.dll [2009/09/20 10:47:59 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll [2009/09/20 10:47:59 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll [2009/09/20 10:47:58 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe [2009/09/20 10:47:57 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll [2009/09/20 10:47:57 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll [2009/09/20 10:47:56 | 000,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys [2009/09/20 10:47:56 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll [2009/09/20 10:47:55 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll [2009/09/20 10:47:55 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe [2009/09/20 10:47:54 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll [2009/09/20 10:47:54 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll [2009/09/20 10:47:54 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll [2009/09/20 10:47:53 | 000,926,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2009/09/20 10:47:53 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll [2009/09/20 10:47:53 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll [2009/09/20 10:47:51 | 001,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll [2009/09/20 10:47:51 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe [2009/09/20 10:47:50 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll [2009/09/20 10:47:48 | 002,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll [2009/09/20 10:47:47 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe [2009/09/20 10:47:46 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netlogon.dll [2009/09/20 10:47:46 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll [2009/09/20 10:47:46 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll [2009/09/20 10:47:46 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsldpc.dll [2009/09/20 10:47:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfp.dll [2009/09/20 10:47:46 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll [2009/09/20 10:47:46 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll [2009/09/20 10:47:46 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll [2009/09/20 10:47:45 | 001,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll [2009/09/20 10:47:45 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL [2009/09/20 10:47:45 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime [2009/09/20 10:47:45 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime [2009/09/20 10:47:44 | 001,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe [2009/09/20 10:47:44 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll [2009/09/20 10:47:44 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime [2009/09/20 10:47:44 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime [2009/09/20 10:47:44 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime [2009/09/20 10:47:43 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certcli.dll [2009/09/20 10:47:43 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll [2009/09/20 10:47:42 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll [2009/09/20 10:47:42 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll [2009/09/20 10:47:42 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll [2009/09/20 10:47:42 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe [2009/09/20 10:47:42 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll [2009/09/20 10:47:42 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll [2009/09/20 10:47:42 | 000,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl [2009/09/20 10:47:41 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll [2009/09/20 10:47:41 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe [2009/09/20 10:47:41 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys [2009/09/20 10:47:40 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr [2009/09/20 10:47:40 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll [2009/09/20 10:47:40 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll [2009/09/20 10:47:40 | 000,241,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll [2009/09/20 10:47:40 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll [2009/09/20 10:47:40 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll [2009/09/20 10:47:40 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll [2009/09/20 10:47:40 | 000,035,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe [2009/09/20 10:47:40 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll [2009/09/20 10:47:39 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll [2009/09/20 10:47:39 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxclu.dll [2009/09/20 10:47:39 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll [2009/09/20 10:47:39 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll [2009/09/20 10:47:39 | 000,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys [2009/09/20 10:47:39 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetpp.dll [2009/09/20 10:47:39 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll [2009/09/20 10:47:39 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll [2009/09/20 10:47:38 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll [2009/09/20 10:47:38 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll [2009/09/20 10:47:38 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll [2009/09/20 10:47:38 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax [2009/09/20 10:47:37 | 001,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll [2009/09/20 10:47:37 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll [2009/09/20 10:47:37 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe [2009/09/20 10:47:37 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll [2009/09/20 10:47:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll [2009/09/20 10:47:37 | 000,122,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Storport.sys [2009/09/20 10:47:37 | 000,109,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys [2009/09/20 10:47:37 | 000,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL [2009/09/20 10:47:37 | 000,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys [2009/09/20 10:47:37 | 000,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll [2009/09/20 10:47:36 | 002,205,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll [2009/09/20 10:47:36 | 001,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll [2009/09/20 10:47:36 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll [2009/09/20 10:47:36 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx [2009/09/20 10:47:35 | 001,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll [2009/09/20 10:47:35 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe [2009/09/20 10:47:35 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll [2009/09/20 10:47:35 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll [2009/09/20 10:47:35 | 000,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll [2009/09/20 10:47:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime [2009/09/20 10:47:34 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll [2009/09/20 10:47:34 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll [2009/09/20 10:47:34 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wisptis.exe [2009/09/20 10:47:34 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll [2009/09/20 10:47:34 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll [2009/09/20 10:47:34 | 000,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS [2009/09/20 10:47:34 | 000,043,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys [2009/09/20 10:47:34 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll [2009/09/20 10:47:33 | 001,541,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\onex.dll [2009/09/20 10:47:33 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe [2009/09/20 10:47:33 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2009/09/20 10:47:33 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll [2009/09/20 10:47:33 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe [2009/09/20 10:47:33 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll [2009/09/20 10:47:33 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe [2009/09/20 10:47:33 | 000,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll [2009/09/20 10:47:33 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe [2009/09/20 10:47:33 | 000,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys [2009/09/20 10:47:33 | 000,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll [2009/09/20 10:47:32 | 000,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe [2009/09/20 10:47:32 | 000,612,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll [2009/09/20 10:47:32 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll [2009/09/20 10:47:32 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll [2009/09/20 10:47:32 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll [2009/09/20 10:47:32 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSCard.dll [2009/09/20 10:47:32 | 000,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll [2009/09/20 10:47:32 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll [2009/09/20 10:47:31 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe [2009/09/20 10:47:31 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe [2009/09/20 10:47:31 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe [2009/09/20 10:47:31 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll [2009/09/20 10:47:31 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll [2009/09/20 10:47:30 | 000,852,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll [2009/09/20 10:47:30 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll [2009/09/20 10:47:30 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll [2009/09/20 10:47:30 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll [2009/09/20 10:47:30 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll [2009/09/20 10:47:30 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll [2009/09/20 10:47:30 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe [2009/09/20 10:47:30 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll [2009/09/20 10:47:30 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll [2009/09/20 10:47:30 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll [2009/09/20 10:47:30 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll [2009/09/20 10:47:30 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll [2009/09/20 10:47:30 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL [2009/09/20 10:47:30 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll [2009/09/20 10:47:30 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastapi.dll [2009/09/20 10:47:30 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll [2009/09/20 10:47:30 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll [2009/09/20 10:47:29 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL [2009/09/20 10:47:29 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll [2009/09/20 10:47:29 | 000,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll [2009/09/20 10:47:29 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll [2009/09/20 10:47:29 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll [2009/09/20 10:47:29 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll [2009/09/20 10:47:29 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll [2009/09/20 10:47:29 | 000,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll [2009/09/20 10:47:29 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe [2009/09/20 10:47:29 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe [2009/09/20 10:47:29 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll [2009/09/20 10:47:29 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll [2009/09/20 10:47:29 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe [2009/09/20 10:47:29 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe [2009/09/20 10:47:28 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll [2009/09/20 10:47:28 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll [2009/09/20 10:47:28 | 001,152,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll [2009/09/20 10:47:28 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll [2009/09/20 10:47:28 | 000,825,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdlg.dll [2009/09/20 10:47:28 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll [2009/09/20 10:47:28 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll [2009/09/20 10:47:27 | 003,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll [2009/09/20 10:47:27 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll [2009/09/20 10:47:27 | 000,777,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcc.dll [2009/09/20 10:47:27 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll [2009/09/20 10:47:27 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll [2009/09/20 10:47:27 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll [2009/09/20 10:47:27 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys [2009/09/20 10:47:27 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshom.ocx [2009/09/20 10:47:27 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll [2009/09/20 10:47:27 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstlsapi.dll [2009/09/20 10:47:27 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll [2009/09/20 10:47:27 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll [2009/09/20 10:47:27 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll [2009/09/20 10:47:26 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll [2009/09/20 10:47:26 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll [2009/09/20 10:47:26 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sud.dll [2009/09/20 10:47:26 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll [2009/09/20 10:47:26 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll [2009/09/20 10:47:26 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe [2009/09/20 10:47:25 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll [2009/09/20 10:47:23 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll [2009/09/20 10:47:22 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll [2009/09/20 10:47:22 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe [2009/09/20 10:47:22 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll [2009/09/20 10:47:22 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll [2009/09/20 10:47:22 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll [2009/09/20 10:47:22 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe [2009/09/20 10:47:22 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe [2009/09/20 10:47:22 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scesrv.dll [2009/09/20 10:47:22 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2009/09/20 10:47:22 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll [2009/09/20 10:47:22 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll [2009/09/20 10:47:22 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll [2009/09/20 10:47:22 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll [2009/09/20 10:47:22 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll [2009/09/20 10:47:22 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll [2009/09/20 10:47:22 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime [2009/09/20 10:47:22 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll [2009/09/20 10:47:22 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regapi.dll [2009/09/20 10:47:22 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll [2009/09/20 10:47:22 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe [2009/09/20 10:47:22 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll [2009/09/20 10:47:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe [2009/09/20 10:47:22 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll [2009/09/20 10:47:21 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl [2009/09/20 10:47:21 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll [2009/09/20 10:47:21 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL [2009/09/20 10:47:21 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll [2009/09/20 10:47:21 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll [2009/09/20 10:47:21 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll [2009/09/20 10:47:21 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll [2009/09/20 10:47:21 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll [2009/09/20 10:47:21 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll [2009/09/20 10:47:21 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll [2009/09/20 10:47:21 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe [2009/09/20 10:47:21 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe [2009/09/20 10:47:21 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scecli.dll [2009/09/20 10:47:21 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll [2009/09/20 10:47:21 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys [2009/09/20 10:47:21 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmon.dll [2009/09/20 10:47:21 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll [2009/09/20 10:47:21 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe [2009/09/20 10:47:21 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBAUDIO.sys [2009/09/20 10:47:21 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe [2009/09/20 10:47:21 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll [2009/09/20 10:47:21 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe [2009/09/20 10:47:21 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe [2009/09/20 10:47:21 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe [2009/09/20 10:47:21 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfdisk.dll [2009/09/20 10:47:21 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll [2009/09/20 10:47:21 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys [2009/09/20 10:47:21 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys [2009/09/20 10:47:21 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll [2009/09/20 10:47:20 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll [2009/09/20 10:47:20 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll [2009/09/20 10:47:20 | 000,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL [2009/09/20 10:47:20 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll [2009/09/20 10:47:20 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll [2009/09/20 10:47:20 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll [2009/09/20 10:47:20 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unimdm.tsp [2009/09/20 10:47:20 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasppp.dll [2009/09/20 10:47:20 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll [2009/09/20 10:47:20 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll [2009/09/20 10:47:20 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll [2009/09/20 10:47:20 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll [2009/09/20 10:47:20 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll [2009/09/20 10:47:20 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll [2009/09/20 10:47:20 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe [2009/09/20 10:47:19 | 002,226,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkexplorer.dll [2009/09/20 10:47:19 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll [2009/09/20 10:47:19 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll [2009/09/20 10:47:19 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll [2009/09/20 10:47:19 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\credui.dll [2009/09/20 10:47:19 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll [2009/09/20 10:47:19 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys [2009/09/20 10:47:19 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll [2009/09/20 10:47:19 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll [2009/09/20 10:47:19 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll [2009/09/20 10:47:18 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll [2009/09/20 10:47:18 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll [2009/09/20 10:47:18 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll [2009/09/20 10:47:18 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe [2009/09/20 10:47:18 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll [2009/09/20 10:47:18 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe [2009/09/20 10:47:18 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe [2009/09/20 10:47:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll [2009/09/20 10:47:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys [2009/09/20 10:47:18 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll [2009/09/20 10:47:18 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll [2009/09/20 10:47:17 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll [2009/09/20 10:47:17 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll [2009/09/20 10:47:17 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll [2009/09/20 10:47:17 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe [2009/09/20 10:47:17 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax [2009/09/20 10:47:17 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll [2009/09/20 10:47:17 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll [2009/09/20 10:47:17 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprapi.dll [2009/09/20 10:47:17 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll [2009/09/20 10:47:17 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll [2009/09/20 10:47:17 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe [2009/09/20 10:47:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll [2009/09/20 10:47:16 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll [2009/09/20 10:47:16 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappcfg.dll [2009/09/20 10:47:16 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime [2009/09/20 10:47:16 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll [2009/09/20 10:47:16 | 000,083,456 | ---- | C] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll [2009/09/20 10:47:16 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe [2009/09/20 10:47:16 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax [2009/09/20 10:47:16 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll [2009/09/20 10:47:16 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll [2009/09/20 10:47:16 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscupgrd.exe [2009/09/20 10:47:16 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll [2009/09/20 10:47:16 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll [2009/09/20 10:47:16 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll [2009/09/20 10:47:16 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll [2009/09/20 10:47:16 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll [2009/09/20 10:47:16 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll [2009/09/20 10:47:16 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe [2009/09/20 10:47:16 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll [2009/09/20 10:47:16 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe [2009/09/20 10:47:16 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll [2009/09/20 10:47:16 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe [2009/09/20 10:47:16 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll [2009/09/20 10:47:16 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll [2009/09/20 10:47:16 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll [2009/09/20 10:47:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe [2009/09/20 10:47:16 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll [2009/09/20 10:47:15 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll [2009/09/20 10:47:15 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys [2009/09/20 10:47:15 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll [2009/09/20 10:47:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll [2009/09/20 10:47:15 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe [2009/09/20 10:47:15 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe [2009/09/20 10:47:15 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll [2009/09/20 10:47:15 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll [2009/09/20 10:47:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys [2009/09/20 10:47:15 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe [2009/09/20 10:47:15 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll [2009/09/20 10:47:15 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll [2009/09/20 10:47:15 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll [2009/09/20 10:47:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys [2009/09/20 10:47:15 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll [2009/09/20 10:47:15 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe [2009/09/20 10:47:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll [2009/09/20 10:47:15 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll [2009/09/20 10:47:15 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll [2009/09/20 10:47:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll [2009/09/20 10:47:14 | 000,052,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys [2009/09/20 10:47:14 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys [2009/09/20 10:47:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys [2009/09/20 10:47:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll [2009/09/20 10:47:13 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll [2009/09/20 10:47:01 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll [2009/09/20 10:46:58 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll [2009/09/20 10:46:57 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe [2009/09/20 10:46:54 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll [2009/09/20 10:23:34 | 000,000,000 | ---D | C] -- C:\ProgramData\SupportSoft [2009/09/20 10:22:20 | 000,000,000 | ---D | C] -- C:\Program Files\comcasttb [2009/09/20 10:18:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SupportSoft [2009/09/20 10:18:41 | 000,000,000 | ---D | C] -- C:\Program Files\ComcastUI [2009/09/17 13:55:39 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Apple Computer [2009/09/17 13:55:39 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Apple Computer [2009/08/18 00:33:52 | 001,193,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FM20.DLL [2009/08/03 16:07:42 | 000,322,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OGAAddin.dll [2009/08/03 12:06:26 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\HP [2009/08/03 11:52:13 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Downloads [2009/08/03 11:19:10 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Macromedia [2009/08/03 11:18:17 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\HP [2009/08/03 11:05:16 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\AVG Security Toolbar [2009/08/03 11:05:04 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Google [2009/08/03 11:04:35 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Mozilla [2009/08/03 11:04:35 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Mozilla [2009/08/03 10:29:49 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Printer Info Cache [2009/08/03 10:29:48 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Image Zone Express [2009/08/03 10:12:45 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Adobe [2009/08/03 10:12:42 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Yahoo! [2009/08/03 10:09:06 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Hewlett-Packard [2009/08/03 10:08:59 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Hewlett-Packard [2009/08/03 10:08:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Logitech [2009/08/03 10:08:03 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\AT&T [2009/08/03 10:07:51 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Real [2009/08/03 10:07:33 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Searches [2009/08/03 10:06:03 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Identities [2009/08/03 10:06:00 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Contacts [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\AppData\Local\Temporary Internet Files [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Templates [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Start Menu [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\SendTo [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Recent [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\PrintHood [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\NetHood [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Documents\My Videos [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Documents\My Pictures [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Documents\My Music [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\My Documents [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Local Settings [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\AppData\Local\History [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Cookies [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Application Data [2009/08/03 10:05:48 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\AppData\Local\Application Data [2009/08/03 10:05:47 | 000,000,000 | --SD | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Videos [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Saved Games [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Pictures [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Music [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Links [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Favorites [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Downloads [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Documents [2009/08/03 10:05:47 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Desktop [2009/08/03 10:05:47 | 000,000,000 | -H-D | C] -- C:\Users\Administrator\AppData [2009/08/03 10:05:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Temp [2009/08/03 10:05:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Microsoft Help [2009/08/03 10:05:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Microsoft [2009/08/03 10:05:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Media Center Programs [2009/07/27 11:51:01 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant [2009/07/27 11:49:11 | 000,000,000 | ---D | C] -- C:\Windows\Hewlett-Packard [2009/07/23 05:47:30 | 004,245,504 | ---- | C] (Two Pilots) -- C:\Windows\System32\PDFCreatorPilot.dll [2009/07/21 22:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared [2009/07/18 21:09:02 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2009/07/17 15:05:53 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2009/07/15 08:09:09 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll [2009/07/14 22:53:38 | 000,000,000 | ---D | C] -- C:\My Music [2009/07/08 13:44:20 | 000,214,664 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfehidk.sys [2009/07/05 10:26:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2009/07/03 14:04:41 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY [2009/07/01 13:47:49 | 000,295,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.00F [2009/07/01 13:47:49 | 000,077,878 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.00E [2009/07/01 13:47:49 | 000,037,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.00D [2009/07/01 13:47:13 | 000,000,000 | ---D | C] -- C:\Program Files\HyperTerminal [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 360 Days ==========[/color] [2010/06/25 23:55:00 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{65B1C245-F9EF-4A84-A06C-C723690B7DF7}.job [2010/06/25 23:54:36 | 002,621,440 | ---- | M] () -- C:\Users\Administrator\ntuser.dat [2010/06/25 23:54:26 | 000,000,434 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{5FA3BA4A-1347-4948-840D-2FCAE8BE213E}.job [2010/06/25 23:53:00 | 002,065,160 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\Cat.DB [2010/06/25 23:29:47 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010/06/25 23:29:47 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010/06/25 21:55:35 | 000,001,893 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010/06/25 17:30:00 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2010/06/25 17:29:49 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010/06/25 17:29:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/06/25 17:29:37 | 2138,431,488 | -HS- | M] () -- C:\hiberfil.sys [2010/06/25 14:18:11 | 000,524,288 | -HS- | M] () -- C:\Users\Administrator\ntuser.dat{95accbe4-4054-11df-9be6-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2010/06/25 14:18:11 | 000,065,536 | -HS- | M] () -- C:\Users\Administrator\ntuser.dat{95accbe4-4054-11df-9be6-001e8c5b769a}.TM.blf [2010/06/23 12:06:05 | 002,263,051 | -H-- | M] () -- C:\Users\Administrator\AppData\Local\IconCache.db [2010/06/23 12:05:34 | 000,020,992 | ---- | M] () -- C:\Users\Administrator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/06/20 19:00:38 | 000,000,490 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Administrator.job [2010/06/20 15:07:38 | 000,001,754 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2010/06/20 15:07:38 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010/06/15 00:17:24 | 000,019,064 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\www.s2d6.gif [2010/06/14 11:59:39 | 000,013,268 | ---- | M] () -- C:\Users\Public\Documents\interv.docx [2010/06/12 21:33:57 | 000,042,496 | ---- | M] () -- C:\Users\Public\Documents\michaelEronimus_Updated.doc [2010/06/10 12:27:44 | 000,397,512 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010/06/10 09:29:00 | 000,180,611 | ---- | M] () -- C:\Users\Administrator\Documents\JCP Coupon.pdf [2010/06/10 09:21:23 | 000,000,108 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\wklnhst.dat [2010/06/10 09:17:22 | 000,000,162 | -H-- | M] () -- C:\Users\Administrator\Desktop\~$P Coupon.docx [2010/06/10 09:11:24 | 000,263,975 | ---- | M] () -- C:\Users\Administrator\Desktop\JCP Coupon.docx [2010/06/07 22:43:29 | 000,002,560 | ---- | M] () -- C:\Windows\_MSRSTRT.EXE [2010/06/07 12:22:47 | 000,001,455 | ---- | M] () -- C:\Users\Administrator\Desktop\DivX Movies.lnk [2010/06/07 12:22:07 | 000,000,923 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk [2010/06/07 12:21:33 | 000,000,963 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk [2010/06/06 16:06:09 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForAdministrator.job [2010/06/05 16:12:57 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini [2010/06/05 16:12:30 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts [2010/06/01 21:46:38 | 000,002,223 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Suite.lnk [2010/05/31 23:05:18 | 000,001,143 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2010/05/31 23:05:11 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini [2010/05/29 11:18:54 | 000,000,898 | ---- | M] () -- C:\Users\Administrator\Desktop\Linphone.lnk [2010/05/27 08:04:00 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLbx.DAT [2010/05/27 07:32:57 | 000,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010/05/27 07:32:57 | 000,595,446 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010/05/27 07:32:57 | 000,101,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010/05/26 13:06:41 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/05/26 10:47:41 | 000,289,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/05/23 19:27:45 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdw.DAT [2010/05/23 17:41:38 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdu.DAT [2010/05/23 17:28:35 | 000,000,000 | ---- | M] () -- C:\Windows\ViewNX.INI [2010/05/23 17:23:40 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLck.DAT [2010/05/23 17:23:39 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Extensions [2010/05/23 17:23:39 | 000,000,268 | RH-- | M] () -- C:\Users\Administrator\AppData\Roaming\Enhance Tuning [2010/05/23 17:23:34 | 000,000,268 | RH-- | M] () -- C:\ProgramData\External Build System [2010/05/23 17:23:34 | 000,000,268 | RH-- | M] () -- C:\Users\Administrator\AppData\Roaming\Equalizer [2010/05/23 17:22:54 | 000,000,964 | ---- | M] () -- C:\Users\Public\Desktop\Capture NX 2.lnk [2010/05/23 17:14:35 | 000,001,792 | ---- | M] () -- C:\Users\Public\Desktop\ViewNX.lnk [2010/05/23 17:13:45 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Authentication [2010/05/23 17:13:45 | 000,000,268 | RH-- | M] () -- C:\Users\Administrator\AppData\Roaming\Applications [2010/05/23 17:11:57 | 000,001,861 | ---- | M] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk [2010/05/23 17:10:46 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Audio Unit Effect [2010/05/23 17:10:46 | 000,000,268 | RH-- | M] () -- C:\Users\Administrator\AppData\Roaming\Application [2010/05/23 17:10:35 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ATL71.DLL [2010/05/23 17:02:15 | 000,001,801 | ---- | M] () -- C:\Users\Public\Desktop\Panorama Maker 5.lnk [2010/05/21 14:14:28 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2010/05/18 18:04:36 | 000,002,089 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk [2010/05/18 18:04:05 | 000,001,988 | ---- | M] () -- C:\Users\Public\Desktop\Handycam Utility.lnk [2010/05/18 18:02:35 | 000,001,997 | ---- | M] () -- C:\Users\Public\Desktop\PMB - Picture Motion Browser.lnk [2010/05/18 18:02:35 | 000,001,864 | ---- | M] () -- C:\Users\Public\Desktop\PMB Guide.lnk [2010/05/14 15:44:16 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\isolate.ini [2010/05/12 17:02:08 | 000,022,856 | ---- | M] (Softland) -- C:\Windows\System32\dopdfmn7.dll [2010/05/12 17:02:08 | 000,019,784 | ---- | M] (Softland) -- C:\Windows\System32\dopdfmi7.dll [2010/05/10 22:03:01 | 000,671,162 | ---- | M] () -- C:\Users\Administrator\Desktop\refund.tif [2010/05/06 00:01:59 | 000,339,504 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\symtdiv.sys [2010/05/06 00:01:43 | 000,001,473 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnetv.inf [2010/05/06 00:01:43 | 000,001,445 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnet.inf [2010/05/04 01:56:49 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/05/04 01:56:25 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/05/04 01:56:25 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/05/04 01:55:56 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/05/04 01:55:53 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2010/05/04 01:55:42 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/05/04 01:55:42 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2010/05/04 01:55:42 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2010/05/04 01:55:41 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/05/04 01:55:41 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2010/05/04 01:55:37 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/05/04 00:31:05 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2010/05/04 00:30:58 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2010/05/04 00:30:19 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/05/04 00:30:01 | 001,638,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2010/05/02 21:41:30 | 000,001,636 | ---- | M] () -- C:\Users\Administrator\Desktop\CCleaner.lnk [2010/05/01 10:13:48 | 002,037,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2010/04/29 01:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\ironx86.sys [2010/04/29 01:03:51 | 000,007,438 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\iron.cat [2010/04/29 01:03:51 | 000,000,741 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\iron.inf [2010/04/28 07:44:02 | 000,054,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fssfltr.sys [2010/04/26 18:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl [2010/04/26 15:58:12 | 000,256,512 | ---- | M] () -- C:\Windows\PEV.exe [2010/04/26 04:18:40 | 000,007,873 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symefa.cat [2010/04/24 07:31:04 | 000,003,373 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symefa.inf [2010/04/23 10:13:55 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2010/04/21 23:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\symefa.sys [2010/04/21 23:00:14 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS [2010/04/21 23:00:14 | 000,007,443 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT [2010/04/21 23:00:14 | 000,000,805 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF [2010/04/21 22:45:16 | 000,000,954 | ---- | M] () -- C:\Users\Administrator\Desktop\Norton Installation Files.lnk [2010/04/21 22:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\srtsp.sys [2010/04/21 22:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\srtspx.sys [2010/04/21 22:29:50 | 000,007,442 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtspx.cat [2010/04/21 22:29:50 | 000,007,438 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtsp.cat [2010/04/21 22:29:50 | 000,001,388 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtspx.inf [2010/04/21 22:29:50 | 000,001,382 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtsp.inf [2010/04/17 00:04:40 | 000,306,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\WLXPGSS.SCR [2010/04/16 12:43:35 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2010/04/16 10:39:07 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2010/04/15 19:25:32 | 000,072,644 | ---- | M] () -- C:\Users\Administrator\Desktop\cooltext455528033.png [2010/04/14 15:45:26 | 000,001,418 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk [2010/04/05 13:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2010/04/05 00:42:19 | 000,524,288 | -HS- | M] () -- C:\Users\Administrator\ntuser.dat{95accbe4-4054-11df-9be6-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2010/04/04 21:27:50 | 000,524,288 | -HS- | M] () -- C:\Users\Administrator\NTUSER.DAT{02bbb42b-a64e-11de-9213-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2010/04/04 21:27:50 | 000,065,536 | -HS- | M] () -- C:\Users\Administrator\NTUSER.DAT{02bbb42b-a64e-11de-9213-001e8c5b769a}.TM.blf [2010/04/03 14:46:47 | 000,000,000 | ---- | M] () -- C:\Windows\iplayer.INI [2010/04/03 14:35:33 | 000,000,847 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk [2010/04/03 14:35:14 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2010/04/03 14:34:48 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll [2010/04/03 14:34:48 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll [2010/04/03 14:33:47 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll [2010/04/02 23:03:39 | 000,001,098 | ---- | M] () -- C:\Users\Administrator\Desktop\CCNA Exam Simulator (Demo).lnk [2010/03/31 22:51:37 | 000,001,937 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2010/03/30 21:58:04 | 000,125,424 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\PxInsI64.exe [2010/03/30 21:58:04 | 000,100,848 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\vxblock.dll [2010/03/30 21:58:04 | 000,072,176 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\pxhpinst.exe [2010/03/30 21:58:04 | 000,068,080 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\PxInsA64.exe [2010/03/29 13:56:58 | 000,000,884 | ---- | M] () -- C:\net_save.dna [2010/03/29 12:28:33 | 000,000,000 | -H-- | M] () -- C:\Users\Administrator\Documents\Default.rdp [2010/03/25 19:15:58 | 000,262,144 | ---- | M] () -- C:\ntuser.dat [2010/03/25 19:15:57 | 000,524,288 | -HS- | M] () -- C:\ntuser.dat{f451d3d7-385e-11df-adba-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2010/03/25 19:15:57 | 000,524,288 | -HS- | M] () -- C:\ntuser.dat{f451d3d7-385e-11df-adba-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2010/03/25 19:15:57 | 000,065,536 | -HS- | M] () -- C:\ntuser.dat{f451d3d7-385e-11df-adba-001e8c5b769a}.TM.blf [2010/03/10 23:34:27 | 000,000,118 | ---- | M] () -- C:\Windows\System32\MRT.INI [2010/03/10 15:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2010/03/05 10:01:02 | 000,420,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2010/02/25 20:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\cchpx86.sys [2010/02/25 14:54:56 | 000,007,396 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\cchpx86.cat [2010/02/24 21:04:38 | 000,108,424 | ---- | M] () -- C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT [2010/02/20 19:06:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll [2010/02/20 19:05:14 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll [2010/02/19 19:47:50 | 003,604,480 | ---- | M] (Google Inc.) -- C:\Windows\System32\GPhotos.scr [2010/02/19 15:27:36 | 000,720,384 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivX.dll [2010/02/19 15:27:16 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx0c.dll [2010/02/19 15:27:16 | 000,856,064 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx07.dll [2010/02/19 15:27:16 | 000,847,872 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx0a.dll [2010/02/19 15:27:16 | 000,843,776 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx16.dll [2010/02/19 15:27:16 | 000,839,680 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\divx_xx11.dll [2010/02/18 10:07:05 | 003,600,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2010/02/18 10:07:05 | 003,548,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2010/02/05 17:52:57 | 000,001,754 | ---- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\cchpx86.inf [2010/02/05 15:01:48 | 000,007,549 | ---- | M] () -- C:\Windows\System32\dopdf7.ctm [2010/01/25 08:00:35 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2010/01/25 08:00:35 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2010/01/25 08:00:35 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2010/01/25 08:00:22 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2010/01/25 07:58:52 | 000,332,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll [2010/01/25 04:21:20 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2010/01/25 04:21:20 | 000,346,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2010/01/25 04:21:18 | 000,518,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2010/01/25 04:21:18 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2010/01/21 11:05:44 | 000,062,464 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm [2010/01/19 19:44:30 | 008,892,928 | ---- | M] () -- C:\ProgramData\atscie.msi [2010/01/06 11:39:38 | 001,696,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll [2010/01/02 20:30:00 | 000,001,980 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Veoh Web Player Beta.lnk [2010/01/02 20:30:00 | 000,001,186 | ---- | M] () -- C:\Users\Administrator\Desktop\Veoh.com.lnk [2009/12/05 03:26:48 | 000,007,425 | R--- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symds.cat [2009/12/04 14:29:41 | 001,314,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2009/12/04 14:28:51 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll [2009/12/04 14:28:27 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2009/12/04 14:27:12 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll [2009/12/04 03:19:58 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2009/12/03 11:44:07 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf [2009/12/03 02:09:47 | 000,007,787 | R--- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnetv.cat [2009/12/03 02:09:47 | 000,007,368 | R--- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnet.cat [2009/11/27 19:56:08 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\Setup1.exe [2009/11/27 19:56:05 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\ST6UNST.EXE [2009/11/18 11:55:24 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf [2009/11/18 11:54:59 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf [2009/11/11 00:08:24 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx [2009/11/11 00:08:24 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts [2009/11/09 08:32:32 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wamregps.dll [2009/11/09 08:30:06 | 000,153,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iisRtl.dll [2009/11/09 08:30:06 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iisrstap.dll [2009/11/09 08:28:40 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ahadmin.dll [2009/11/09 08:28:34 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admwprox.dll [2009/11/09 06:48:26 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iisreset.exe [2009/11/08 10:55:32 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2009/11/08 10:55:32 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2009/11/08 10:55:32 | 000,049,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2009/11/03 17:46:54 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\http.sys.mui [2009/10/25 06:11:34 | 000,077,312 | ---- | M] () -- C:\Windows\MBR.exe [2009/10/23 13:10:19 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl [2009/10/19 09:38:10 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2009/10/19 09:35:05 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2009/10/14 23:50:05 | 000,328,752 | R--- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\N360\0402000.00C\symds.sys [2009/10/14 23:50:05 | 000,002,793 | R--- | M] () -- C:\Windows\System32\drivers\N360\0402000.00C\symds.inf [2009/10/11 05:17:33 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2009/10/11 05:17:32 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2009/10/11 05:17:31 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2009/10/11 05:17:27 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll [2009/10/08 19:12:09 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\dxgkrnl.sys.mui [2009/10/08 17:08:01 | 000,555,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll [2009/10/08 17:07:59 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll [2009/10/07 07:36:36 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll [2009/10/06 12:41:58 | 000,000,024 | ---- | M] () -- C:\Windows\cdplayer.ini [2009/09/30 21:08:10 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\en-US\wpdmtpdr.dll.mui [2009/09/30 21:02:05 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe [2009/09/30 21:02:04 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll [2009/09/30 21:02:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll [2009/09/30 21:01:59 | 000,546,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll [2009/09/30 21:01:59 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll [2009/09/30 21:01:56 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll [2009/09/30 21:01:56 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll [2009/09/30 21:01:56 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll [2009/09/30 21:01:56 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll [2009/09/30 21:01:54 | 000,839,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\WpdMtpDr.dll [2009/09/30 21:01:52 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\WpdFs.dll [2009/09/30 21:01:50 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll [2009/09/30 21:01:49 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll [2009/09/30 21:01:49 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll [2009/09/28 13:08:35 | 000,000,904 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2009/09/24 22:10:10 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll [2009/09/24 22:07:08 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll [2009/09/24 22:04:32 | 000,321,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll [2009/09/24 21:49:22 | 001,554,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll [2009/09/24 21:48:08 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2009/09/24 21:38:29 | 000,847,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll [2009/09/24 21:36:13 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll [2009/09/24 21:35:31 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll [2009/09/24 21:33:25 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll [2009/09/24 21:33:15 | 000,829,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll [2009/09/24 21:33:01 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll [2009/09/24 21:32:59 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe [2009/09/24 21:31:53 | 000,519,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll [2009/09/24 21:31:26 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll [2009/09/24 21:31:21 | 000,161,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll [2009/09/24 21:31:19 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll [2009/09/24 21:31:16 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll [2009/09/24 21:31:15 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll [2009/09/24 21:30:23 | 000,481,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll [2009/09/24 21:30:23 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll [2009/09/24 21:27:04 | 001,064,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll [2009/09/24 21:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll [2009/09/24 21:27:04 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2009/09/24 18:54:53 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe [2009/09/24 18:54:52 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll [2009/09/23 07:54:52 | 000,000,242 | ---- | M] () -- C:\Windows\win.ini [2009/09/22 16:39:13 | 000,019,103 | ---- | M] () -- C:\Windows\hpqins13.dat [2009/09/21 00:29:59 | 000,524,288 | -HS- | M] () -- C:\Users\Administrator\NTUSER.DAT{02bbb42b-a64e-11de-9213-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2009/09/21 00:29:01 | 000,524,288 | -HS- | M] () -- C:\Users\Administrator\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms [2009/09/21 00:29:01 | 000,065,536 | -HS- | M] () -- C:\Users\Administrator\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf [2009/09/20 16:25:19 | 000,524,288 | -HS- | M] () -- C:\ntuser.dat{e2a8730a-a5f2-11de-add9-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2009/09/20 16:25:19 | 000,524,288 | -HS- | M] () -- C:\ntuser.dat{e2a8730a-a5f2-11de-add9-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2009/09/20 16:25:19 | 000,065,536 | -HS- | M] () -- C:\ntuser.dat{e2a8730a-a5f2-11de-add9-001e8c5b769a}.TM.blf [2009/09/16 10:22:48 | 000,214,664 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfehidk.sys [2009/09/16 10:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdk.sys [2009/09/10 10:59:26 | 008,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2009/09/10 10:58:28 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe [2009/09/09 22:01:02 | 003,023,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll [2009/09/09 22:00:54 | 001,164,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll [2009/09/09 22:00:36 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll [2009/08/18 00:33:52 | 001,193,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FM20.DLL [2009/08/14 11:53:34 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2009/08/14 09:49:20 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE [2009/08/14 09:49:18 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE [2009/08/14 09:49:18 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE [2009/08/14 09:49:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE [2009/08/14 09:49:14 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE [2009/08/14 09:49:14 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE [2009/08/14 09:49:13 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe [2009/08/14 09:48:02 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll [2009/08/10 08:35:06 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll [2009/08/06 22:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll [2009/08/06 22:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll [2009/08/06 22:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll [2009/08/06 21:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll [2009/08/06 21:44:40 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll [2009/08/06 19:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll [2009/08/06 18:44:46 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe [2009/08/04 09:53:49 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2009/08/04 09:53:49 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2009/08/03 16:07:42 | 000,403,816 | ---- | M] () -- C:\Windows\System32\OGACheckControl.dll [2009/08/03 16:07:42 | 000,322,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OGAAddin.dll [2009/08/03 16:07:42 | 000,230,768 | ---- | M] () -- C:\Windows\System32\OGAEXEC.exe [2009/08/03 12:51:43 | 000,149,019 | ---- | M] () -- C:\Windows\hpoins19.dat [2009/08/03 12:10:42 | 000,001,920 | ---- | M] () -- C:\Users\Administrator\Desktop\HP Print Diagnostic Utility.lnk [2009/08/03 12:10:42 | 000,001,920 | ---- | M] () -- C:\Users\Administrator\Desktop\HP Print Diagnostic Utility - Copy.lnk [2009/08/03 12:06:24 | 000,019,500 | ---- | M] () -- C:\Windows\hpqins13.dat.temp [2009/08/03 11:47:42 | 000,001,993 | ---- | M] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk [2009/08/03 11:09:06 | 000,000,760 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\setup_ldm.iss [2009/08/03 11:04:37 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat [2009/08/03 11:01:56 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2009/08/03 10:17:12 | 000,524,288 | -HS- | M] () -- C:\Users\Administrator\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms [2009/08/03 10:12:36 | 000,000,909 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2009/08/03 10:05:48 | 000,000,020 | -HS- | M] () -- C:\Users\Administrator\ntuser.ini [2009/07/26 18:35:02 | 000,001,108 | ---- | M] () -- C:\Users\Public\Desktop\HP Solution Center.lnk [2009/07/23 05:47:30 | 004,245,504 | ---- | M] (Two Pilots) -- C:\Windows\System32\PDFCreatorPilot.dll [2009/07/22 15:45:15 | 000,148,960 | ---- | M] () -- C:\Windows\hpoins19.dat.temp [2009/07/21 14:31:43 | 000,057,667 | ---- | M] () -- C:\Windows\System32\ieuinit.inf [2009/07/20 12:26:50 | 000,084,496 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\KemXML.dll [2009/07/20 12:26:42 | 000,117,264 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\KemWnd.dll [2009/07/20 12:26:34 | 000,145,936 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\KemUtil.dll [2009/07/20 12:26:26 | 000,170,512 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\kemutb.dll [2009/07/20 12:25:06 | 000,301,656 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\BtCoreIf.dll [2009/07/20 11:22:23 | 000,167,134 | ---- | M] () -- C:\Windows\hpqins00.dat [2009/07/17 15:34:37 | 000,001,921 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2009/07/15 08:39:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx [2009/07/15 08:39:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll [2009/07/15 08:39:28 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll [2009/07/15 06:21:30 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb [2009/07/15 06:21:30 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb [2009/07/11 15:01:42 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll [2009/07/11 15:01:42 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll [2009/07/11 15:01:41 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll [2009/07/11 13:03:56 | 002,501,921 | ---- | M] () -- C:\Windows\System32\wlan.tmf [2009/07/11 13:03:41 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll [2009/07/11 07:47:01 | 000,000,326 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForsharon.job [2009/07/04 15:43:35 | 000,001,024 | ---- | M] () -- C:\ProgramData\txtpdf2.dll [2009/07/03 13:00:24 | 000,104,693 | ---- | M] () -- C:\Windows\hpqins01.dat [2009/07/01 14:55:46 | 000,164,264 | ---- | M] () -- C:\Windows\hpqins00.dat.temp [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/06/20 15:07:38 | 000,001,754 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2010/06/20 15:07:37 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010/06/15 00:17:24 | 000,019,064 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\www.s2d6.gif [2010/06/14 11:59:36 | 000,013,268 | ---- | C] () -- C:\Users\Public\Documents\interv.docx [2010/06/14 11:57:21 | 000,042,496 | ---- | C] () -- C:\Users\Public\Documents\michaelEronimus_Updated.doc [2010/06/10 09:28:56 | 000,180,611 | ---- | C] () -- C:\Users\Administrator\Documents\JCP Coupon.pdf [2010/06/10 09:27:04 | 000,007,549 | ---- | C] () -- C:\Windows\System32\dopdf7.ctm [2010/06/10 09:21:01 | 000,000,108 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\wklnhst.dat [2010/06/10 09:17:22 | 000,000,162 | -H-- | C] () -- C:\Users\Administrator\Desktop\~$P Coupon.docx [2010/06/10 09:17:10 | 000,263,975 | ---- | C] () -- C:\Users\Administrator\Desktop\JCP Coupon.docx [2010/06/07 12:22:07 | 000,000,923 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk [2010/06/07 12:21:33 | 000,000,963 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk [2010/06/05 15:49:55 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe [2010/06/05 15:49:53 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe [2010/06/05 15:49:53 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2010/06/05 15:49:53 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2010/06/05 15:49:53 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2010/06/01 21:45:42 | 002,065,160 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\Cat.DB [2010/06/01 19:17:08 | 000,007,873 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symefa.cat [2010/06/01 19:17:08 | 000,007,787 | R--- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnetv.cat [2010/06/01 19:17:08 | 000,007,442 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtspx.cat [2010/06/01 19:17:08 | 000,007,425 | R--- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symds.cat [2010/06/01 19:17:08 | 000,007,368 | R--- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnet.cat [2010/06/01 19:17:08 | 000,003,373 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symefa.inf [2010/06/01 19:17:08 | 000,002,793 | R--- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symds.inf [2010/06/01 19:17:08 | 000,001,473 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnetv.inf [2010/06/01 19:17:08 | 000,001,445 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\symnet.inf [2010/06/01 19:17:08 | 000,001,388 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtspx.inf [2010/06/01 19:17:07 | 000,007,438 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtsp.cat [2010/06/01 19:17:07 | 000,007,438 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\iron.cat [2010/06/01 19:17:07 | 000,007,396 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\cchpx86.cat [2010/06/01 19:17:07 | 000,001,754 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\cchpx86.inf [2010/06/01 19:17:07 | 000,001,382 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\srtsp.inf [2010/06/01 19:17:07 | 000,000,741 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\iron.inf [2010/06/01 19:16:15 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\N360\0402000.00C\isolate.ini [2010/05/31 23:05:20 | 000,000,490 | -H-- | C] () -- C:\Windows\tasks\Norton Security Scan for Administrator.job [2010/05/31 23:05:18 | 000,001,143 | ---- | C] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2010/05/31 23:05:11 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini [2010/05/31 20:13:14 | 000,001,455 | ---- | C] () -- C:\Users\Administrator\Desktop\DivX Movies.lnk [2010/05/29 11:18:53 | 000,000,898 | ---- | C] () -- C:\Users\Administrator\Desktop\Linphone.lnk [2010/05/23 17:28:35 | 000,000,000 | ---- | C] () -- C:\Windows\ViewNX.INI [2010/05/23 17:23:39 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Extensions [2010/05/23 17:23:39 | 000,000,268 | RH-- | C] () -- C:\Users\Administrator\AppData\Roaming\Enhance Tuning [2010/05/23 17:23:39 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLck.DAT [2010/05/23 17:23:34 | 000,000,268 | RH-- | C] () -- C:\ProgramData\External Build System [2010/05/23 17:23:34 | 000,000,268 | RH-- | C] () -- C:\Users\Administrator\AppData\Roaming\Equalizer [2010/05/23 17:22:54 | 000,000,964 | ---- | C] () -- C:\Users\Public\Desktop\Capture NX 2.lnk [2010/05/23 17:20:34 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLbx.DAT [2010/05/23 17:14:35 | 000,001,792 | ---- | C] () -- C:\Users\Public\Desktop\ViewNX.lnk [2010/05/23 17:13:45 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Authentication [2010/05/23 17:13:45 | 000,000,268 | RH-- | C] () -- C:\Users\Administrator\AppData\Roaming\Applications [2010/05/23 17:13:45 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT [2010/05/23 17:11:57 | 000,001,861 | ---- | C] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk [2010/05/23 17:10:46 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Audio Unit Effect [2010/05/23 17:10:46 | 000,000,268 | RH-- | C] () -- C:\Users\Administrator\AppData\Roaming\Application [2010/05/23 17:10:46 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT [2010/05/23 17:02:15 | 000,001,801 | ---- | C] () -- C:\Users\Public\Desktop\Panorama Maker 5.lnk [2010/05/20 18:39:50 | 000,001,920 | ---- | C] () -- C:\Users\Administrator\Desktop\HP Print Diagnostic Utility - Copy.lnk [2010/05/18 18:04:36 | 000,002,089 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk [2010/05/18 18:04:05 | 000,001,988 | ---- | C] () -- C:\Users\Public\Desktop\Handycam Utility.lnk [2010/05/18 18:02:35 | 000,001,997 | ---- | C] () -- C:\Users\Public\Desktop\PMB - Picture Motion Browser.lnk [2010/05/18 18:02:35 | 000,001,864 | ---- | C] () -- C:\Users\Public\Desktop\PMB Guide.lnk [2010/05/10 22:03:50 | 000,671,162 | ---- | C] () -- C:\Users\Administrator\Desktop\refund.tif [2010/05/02 21:41:28 | 000,001,636 | ---- | C] () -- C:\Users\Administrator\Desktop\CCleaner.lnk [2010/04/21 23:00:14 | 000,007,443 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.CAT [2010/04/21 23:00:14 | 000,000,805 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.INF [2010/04/21 23:00:02 | 000,002,223 | ---- | C] () -- C:\Users\Public\Desktop\Norton Security Suite.lnk [2010/04/19 20:08:49 | 000,001,893 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010/04/15 19:39:40 | 000,072,644 | ---- | C] () -- C:\Users\Administrator\Desktop\cooltext455528033.png [2010/04/06 20:10:45 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE [2010/04/04 21:45:17 | 000,524,288 | -HS- | C] () -- C:\Users\Administrator\ntuser.dat{95accbe4-4054-11df-9be6-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2010/04/04 21:45:17 | 000,524,288 | -HS- | C] () -- C:\Users\Administrator\ntuser.dat{95accbe4-4054-11df-9be6-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2010/04/04 21:45:17 | 000,065,536 | -HS- | C] () -- C:\Users\Administrator\ntuser.dat{95accbe4-4054-11df-9be6-001e8c5b769a}.TM.blf [2010/04/03 14:46:47 | 000,000,000 | ---- | C] () -- C:\Windows\iplayer.INI [2010/04/03 14:35:33 | 000,000,847 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk [2010/03/30 16:10:16 | 000,000,954 | ---- | C] () -- C:\Users\Administrator\Desktop\Norton Installation Files.lnk [2010/03/29 13:56:58 | 000,000,884 | ---- | C] () -- C:\net_save.dna [2010/03/29 12:28:33 | 000,000,000 | -H-- | C] () -- C:\Users\Administrator\Documents\Default.rdp [2010/03/25 19:15:57 | 000,524,288 | -HS- | C] () -- C:\ntuser.dat{f451d3d7-385e-11df-adba-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2010/03/25 19:15:57 | 000,524,288 | -HS- | C] () -- C:\ntuser.dat{f451d3d7-385e-11df-adba-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2010/03/25 19:15:57 | 000,065,536 | -HS- | C] () -- C:\ntuser.dat{f451d3d7-385e-11df-adba-001e8c5b769a}.TM.blf [2010/03/10 23:34:27 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI [2010/01/19 19:44:24 | 008,892,928 | ---- | C] () -- C:\ProgramData\atscie.msi [2010/01/02 20:30:00 | 000,001,980 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Veoh Web Player Beta.lnk [2010/01/02 20:30:00 | 000,001,186 | ---- | C] () -- C:\Users\Administrator\Desktop\Veoh.com.lnk [2009/12/22 19:21:20 | 000,020,992 | ---- | C] () -- C:\Users\Administrator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/12/03 11:44:07 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf [2009/11/18 11:55:24 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf [2009/11/18 11:54:59 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf [2009/11/05 09:06:52 | 000,001,098 | ---- | C] () -- C:\Users\Administrator\Desktop\CCNA Exam Simulator (Demo).lnk [2009/10/17 19:36:38 | 000,001,418 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk [2009/10/12 22:49:49 | 2138,431,488 | -HS- | C] () -- C:\hiberfil.sys [2009/10/06 12:41:58 | 000,000,024 | ---- | C] () -- C:\Windows\cdplayer.ini [2009/09/28 13:08:35 | 000,000,904 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2009/09/21 00:29:16 | 000,524,288 | -HS- | C] () -- C:\Users\Administrator\NTUSER.DAT{02bbb42b-a64e-11de-9213-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2009/09/21 00:29:16 | 000,524,288 | -HS- | C] () -- C:\Users\Administrator\NTUSER.DAT{02bbb42b-a64e-11de-9213-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2009/09/21 00:29:15 | 000,065,536 | -HS- | C] () -- C:\Users\Administrator\NTUSER.DAT{02bbb42b-a64e-11de-9213-001e8c5b769a}.TM.blf [2009/09/20 16:25:19 | 000,524,288 | -HS- | C] () -- C:\ntuser.dat{e2a8730a-a5f2-11de-add9-001e8c5b769a}.TMContainer00000000000000000002.regtrans-ms [2009/09/20 16:25:19 | 000,524,288 | -HS- | C] () -- C:\ntuser.dat{e2a8730a-a5f2-11de-add9-001e8c5b769a}.TMContainer00000000000000000001.regtrans-ms [2009/09/20 16:25:19 | 000,262,144 | ---- | C] () -- C:\ntuser.dat [2009/09/20 16:25:19 | 000,065,536 | -HS- | C] () -- C:\ntuser.dat{e2a8730a-a5f2-11de-add9-001e8c5b769a}.TM.blf [2009/09/20 15:08:41 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf [2009/09/20 10:48:17 | 000,130,008 | ---- | C] () -- C:\Windows\System32\systemsf.ebd [2009/09/20 10:48:14 | 000,009,239 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man [2009/09/20 10:48:04 | 000,442,788 | ---- | C] () -- C:\Windows\System32\dot3.tmf [2009/09/20 10:48:02 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/09/20 10:48:02 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2009/09/20 10:48:00 | 003,662,128 | ---- | C] () -- C:\Windows\System32\locale.nls [2009/09/20 10:47:59 | 000,392,170 | ---- | C] () -- C:\Windows\System32\onex.tmf [2009/09/20 10:47:54 | 000,344,698 | ---- | C] () -- C:\Windows\System32\eaphost.tmf [2009/09/20 10:47:39 | 000,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF [2009/09/20 10:47:37 | 000,092,918 | ---- | C] () -- C:\Windows\System32\slmgr.vbs [2009/09/20 10:47:15 | 000,009,212 | ---- | C] () -- C:\Windows\System32\RacUR.xml [2009/09/20 10:47:12 | 000,000,153 | ---- | C] () -- C:\Windows\System32\RacUREx.xml [2009/08/04 09:53:49 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2009/08/04 09:53:49 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2009/08/04 09:52:13 | 000,000,354 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForAdministrator.job [2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009/08/03 16:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe [2009/08/03 12:10:41 | 000,001,920 | ---- | C] () -- C:\Users\Administrator\Desktop\HP Print Diagnostic Utility.lnk [2009/08/03 11:53:10 | 000,000,434 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{5FA3BA4A-1347-4948-840D-2FCAE8BE213E}.job [2009/08/03 11:47:42 | 000,001,993 | ---- | C] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk [2009/08/03 11:39:26 | 000,149,019 | ---- | C] () -- C:\Windows\hpoins19.dat [2009/08/03 11:39:12 | 000,026,952 | ---- | C] () -- C:\Windows\hpomdl19.dat [2009/08/03 11:09:06 | 000,000,760 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\setup_ldm.iss [2009/08/03 11:04:37 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2009/08/03 11:01:56 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2009/08/03 10:12:36 | 000,000,909 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2009/08/03 10:05:48 | 000,524,288 | -HS- | C] () -- C:\Users\Administrator\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms [2009/08/03 10:05:48 | 000,524,288 | -HS- | C] () -- C:\Users\Administrator\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms [2009/08/03 10:05:48 | 000,262,144 | -H-- | C] () -- C:\Users\Administrator\ntuser.dat.LOG1 [2009/08/03 10:05:48 | 000,065,536 | -HS- | C] () -- C:\Users\Administrator\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf [2009/08/03 10:05:48 | 000,001,921 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2009/08/03 10:05:48 | 000,000,258 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2009/08/03 10:05:48 | 000,000,240 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2009/08/03 10:05:48 | 000,000,020 | -HS- | C] () -- C:\Users\Administrator\ntuser.ini [2009/08/03 10:05:48 | 000,000,000 | -H-- | C] () -- C:\Users\Administrator\ntuser.dat.LOG2 [2009/08/03 10:05:47 | 002,621,440 | ---- | C] () -- C:\Users\Administrator\ntuser.dat [2009/07/29 07:06:18 | 000,057,667 | ---- | C] () -- C:\Windows\System32\ieuinit.inf [2009/07/26 18:35:02 | 000,001,108 | ---- | C] () -- C:\Users\Public\Desktop\HP Solution Center.lnk [2009/07/04 15:25:35 | 000,001,024 | ---- | C] () -- C:\ProgramData\txtpdf2.dll [2009/07/03 12:59:12 | 000,104,693 | ---- | C] () -- C:\Windows\hpqins01.dat [2009/07/03 00:10:28 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfmonnt.dll [2009/07/01 13:47:49 | 000,164,864 | ---- | C] () -- C:\Windows\System32\UNWISE32.EXE [2009/02/23 12:12:19 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini [2008/12/29 14:36:26 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI [2008/03/25 19:56:08 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1461.dll [2008/03/04 18:52:34 | 000,286,720 | ---- | C] () -- C:\Windows\System32\libcurl.dll [2007/12/08 17:02:46 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1332.dll [2007/12/08 16:51:18 | 000,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom25.dll [2007/12/08 16:51:18 | 000,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes25.dll [2007/10/31 09:39:54 | 000,059,904 | ---- | C] () -- C:\Windows\System32\zlib1.dll [2007/10/25 18:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys [2007/05/17 13:58:10 | 000,143,360 | ---- | C] () -- C:\Windows\System32\libexpatw.dll [2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2005/12/22 14:05:46 | 000,015,498 | ---- | C] () -- C:\Windows\VX3000.ini [color=#E56717]========== LOP Check ==========[/color] [2009/08/03 10:08:03 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\AT&T [2010/04/14 13:32:04 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\CallingID [2010/06/23 12:10:37 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Image Zone Express [2010/05/29 11:28:47 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Linphone [2010/03/29 12:46:08 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\MailWasherFree [2010/05/23 17:32:18 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Nikon [2009/08/03 10:29:51 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Printer Info Cache [2010/06/10 09:27:06 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Softland [2010/04/04 14:45:58 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Software Informer [2010/06/10 09:21:06 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Template [2010/04/04 21:46:04 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Tific [2010/06/25 14:18:25 | 000,032,612 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU.TXT [2010/06/25 23:54:26 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5FA3BA4A-1347-4948-840D-2FCAE8BE213E}.job [2010/06/25 23:55:00 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{65B1C245-F9EF-4A84-A06C-C723690B7DF7}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color] [color=#A23BEC]< %APPDATA%\*. >[/color] [2010/01/18 23:22:25 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Adobe [2009/09/17 13:55:39 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Apple Computer [2010/05/23 17:37:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\ArcSoft [2009/08/03 10:08:03 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\AT&T [2010/04/14 13:32:04 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\CallingID [2010/06/05 10:46:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\DivX [2010/03/29 13:43:45 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Google [2009/08/04 09:51:32 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Hewlett-Packard [2010/03/01 11:55:10 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\HP [2009/08/03 10:06:03 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Identities [2010/06/23 12:10:37 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Image Zone Express [2010/05/18 17:58:33 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\InstallShield [2010/05/29 11:28:47 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Linphone [2009/08/03 10:08:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Logitech [2009/08/03 11:19:10 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Macromedia [2010/03/29 12:46:08 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\MailWasherFree [2006/11/02 08:37:34 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Media Center Programs [2010/06/20 23:25:48 | 000,000,000 | --SD | M] -- C:\Users\Administrator\AppData\Roaming\Microsoft [2010/03/30 15:47:58 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Move Networks [2009/08/03 11:04:37 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mozilla [2010/05/23 17:32:18 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Nikon [2009/08/03 10:29:51 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Printer Info Cache [2010/03/09 15:54:05 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Real [2010/06/10 09:27:06 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Softland [2010/04/04 14:45:58 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Software Informer [2010/04/15 21:18:14 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Sony Corporation [2010/06/10 09:21:06 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Template [2010/04/04 21:46:04 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Tific [2010/03/06 13:00:14 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Winamp [2010/02/26 21:33:15 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\WinRAR [2010/05/05 12:37:30 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Yahoo! [color=#A23BEC]< %APPDATA%\*.exe /s >[/color] [2010/04/15 21:54:20 | 000,010,134 | R--- | M] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{14291118-0C19-45EA-A4FA-5C1C0F5FDE09}\ARPPRODUCTICON.exe [2010/05/23 17:17:51 | 000,335,872 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}\ARPPRODUCTICON.exe [2010/05/23 17:16:29 | 000,057,344 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe [2010/05/23 17:22:19 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\ARPPRODUCTICON.exe [2009/08/03 12:10:42 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{E14B8A08-42B3-4676-9E91-1D39F8158DA1}\NewShortcut1_E14B8A0842B346769E911D39F8158DA1.exe [2009/08/03 12:10:42 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{E14B8A08-42B3-4676-9E91-1D39F8158DA1}\NewShortcut2_E14B8A0842B346769E911D39F8158DA1.exe [2010/03/30 15:47:59 | 000,144,162 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\Move Networks\uninstall.exe [2009/12/17 23:27:04 | 000,097,216 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\Move Networks\ie_bin\MovePlayerUpgrade.exe [2009/09/03 11:53:00 | 000,019,792 | ---- | M] (NOS Microsystems Ltd.) -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg.exe [2009/09/03 11:53:00 | 000,022,848 | ---- | M] (NOS Microsystems Ltd.) -- C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\hyqxamsc.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg_bootstrap.exe [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys [2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys [2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys [2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys [2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\WINDOWS\ERDNT\cache\AGP440.sys [2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\WINDOWS\System32\drivers\AGP440.sys [2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\ERDNT\cache\atapi.sys [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\System32\drivers\atapi.sys [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys [2008/01/19 03:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys [2008/01/19 03:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys [2006/11/02 05:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys [2008/10/12 05:10:02 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys [2008/10/12 05:10:02 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys [2007/12/08 16:22:45 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=B3F2C79318B9BBE87B2C51033682D912 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_4db4e301\atapi.sys [2007/12/08 16:22:45 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=B3F2C79318B9BBE87B2C51033682D912 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20693_none_db7d35eb3dc727cc\atapi.sys [2008/10/12 05:10:01 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_64dfd8ea\atapi.sys [2008/10/12 05:10:01 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys [color=#A23BEC]< MD5 for: AUTOCHK.EXE >[/color] [2009/04/11 02:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\WINDOWS\System32\autochk.exe [2009/04/11 02:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\WINDOWS\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe [2008/01/19 03:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\WINDOWS\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe [2006/11/02 05:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\WINDOWS\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2008/01/19 01:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\WINDOWS\ERDNT\cache\beep.sys [2008/01/19 01:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\WINDOWS\System32\drivers\beep.sys [2008/01/19 01:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\WINDOWS\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6001.18000_none_c420a153079d485b\beep.sys [2006/11/02 04:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=AC3DD1708B22761EBD7CBE14DCC3B5D7 -- C:\WINDOWS\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6000.16386_none_c1e9df570ab23787\beep.sys [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color] [2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\WINDOWS\ERDNT\cache\cngaudit.dll [2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\WINDOWS\System32\cngaudit.dll [2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\WINDOWS\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2008/10/29 02:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe [2008/10/29 02:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe [2008/10/29 23:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe [2007/12/08 17:02:18 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe [2007/12/08 17:02:17 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\WINDOWS\ERDNT\cache\explorer.exe [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\WINDOWS\explorer.exe [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe [2008/10/27 22:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe [2006/11/02 05:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe [2008/01/19 03:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\WINDOWS\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color] [2008/01/19 03:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\WINDOWS\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys [2008/01/19 03:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\WINDOWS\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys [2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\WINDOWS\System32\drivers\iaStorV.sys [2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\WINDOWS\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys [color=#A23BEC]< MD5 for: IMM32.DLL >[/color] [2009/04/11 02:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=C8BDCECEE082B54F0BAC838BF0A34597 -- C:\WINDOWS\ERDNT\cache\imm32.dll [2008/01/19 03:34:33 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=EC17194A193CD8E90D27CFB93DFA9A2E -- C:\WINDOWS\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6001.18000_none_5c561e167a6afd02\imm32.dll [2006/11/02 05:46:05 | 000,115,200 | ---- | M] (Microsoft Corporation) MD5=EE12864398F1C3BF5BEE91F6AF9842E1 -- C:\WINDOWS\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6000.16386_none_5a1f5c1a7d7fec2e\imm32.dll [2009/04/11 02:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\imm32.dll [2009/04/11 02:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6002.18005_none_5e419722778cc84e\imm32.dll [color=#A23BEC]< MD5 for: KERNEL32.DLL >[/color] [2009/02/13 04:21:09 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=1987D817D08F5EAF0B7F334026FDDB79 -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.22376_none_9401d8206f9c7e67\kernel32.dll [2006/11/02 05:46:05 | 000,874,496 | ---- | M] (Microsoft Corporation) MD5=1E36AE445E4DA83B82D51FEB2D4F8772 -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.16386_none_91872345596077da\kernel32.dll [2009/02/13 03:26:37 | 000,875,520 | ---- | M] (Microsoft Corporation) MD5=B82C7AC1D559F0FD088792171D64C7F3 -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.16820_none_91c20a8f593529ed\kernel32.dll [2009/02/13 03:13:01 | 000,875,520 | ---- | M] (Microsoft Corporation) MD5=BB792054BD990EC05D9E260D50FEAD39 -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.21010_none_92564f68724ae108\kernel32.dll [2009/04/11 02:28:20 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=BB8509089E7DF514310814E1B2593FFC -- C:\WINDOWS\ERDNT\cache\kernel32.dll [2009/02/13 04:49:05 | 000,888,832 | ---- | M] (Microsoft Corporation) MD5=DB6E3731E6F5C8AE2843F80B5787F7C6 -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18215_none_93b81a93564f1da0\kernel32.dll [2008/01/19 03:34:36 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=DC2338093F91BA4E0512208E60206DDD -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18000_none_93bde541564b88ae\kernel32.dll [2009/04/11 02:28:20 | 000,891,392 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\kernel32.dll [2009/04/11 02:28:20 | 000,891,392 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18005_none_95a95e4d536d53fa\kernel32.dll [color=#A23BEC]< MD5 for: MSWSOCK.DLL >[/color] [2006/11/02 05:46:10 | 000,227,328 | ---- | M] (Microsoft Corporation) MD5=54E9576169A248AD62A1EB9773225826 -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6000.16386_none_b61c950a3060adba\mswsock.dll [2009/04/11 02:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\WINDOWS\ERDNT\cache\mswsock.dll [2009/04/11 02:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\WINDOWS\System32\mswsock.dll [2009/04/11 02:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6002.18005_none_ba3ed0122a6d89da\mswsock.dll [2008/01/19 03:35:15 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=89FD0595EEA4E505CABEFCF7008F2612 -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6001.18000_none_b85357062d4bbe8e\mswsock.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009/04/11 02:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\WINDOWS\ERDNT\cache\ndis.sys [2009/04/11 02:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\WINDOWS\System32\drivers\ndis.sys [2009/04/11 02:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys [2006/11/02 05:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\WINDOWS\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys [2008/01/19 03:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2006/11/02 05:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\WINDOWS\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll [2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\WINDOWS\ERDNT\cache\netlogon.dll [2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\WINDOWS\System32\netlogon.dll [2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\WINDOWS\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll [2008/01/19 03:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\WINDOWS\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll [color=#A23BEC]< MD5 for: NTFS.SYS >[/color] [2008/10/12 05:10:04 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=2620822A21B76375F5FD6E0986407CD1 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16586_none_a43a6b8d2000830d\ntfs.sys [2008/10/12 05:12:18 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=37430AA7A66D7A63407ADC2C0D05E9F6 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16615_none_a4851c9d1fc8a346\ntfs.sys [2006/11/02 05:51:47 | 001,056,360 | ---- | M] (Microsoft Corporation) MD5=3F379380A4A2637F559444E338CF1B51 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16386_none_a43a67c1200088bf\ntfs.sys [2009/04/11 02:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\WINDOWS\ERDNT\cache\ntfs.sys [2009/04/11 02:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\WINDOWS\System32\drivers\ntfs.sys [2009/04/11 02:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys [2008/01/19 03:43:40 | 001,081,912 | ---- | M] (Microsoft Corporation) MD5=B4EFFE29EB4F15538FD8A9681108492D -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys [2008/10/12 05:10:03 | 001,061,432 | ---- | M] (Microsoft Corporation) MD5=B5BE45B1F554DF9E1976CBC855365E60 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20709_none_a51d8a7c38da8c7b\ntfs.sys [2008/10/12 05:12:18 | 001,061,944 | ---- | M] (Microsoft Corporation) MD5=F08824715CA6076F5E73E005AB83B9C8 -- C:\WINDOWS\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20740_none_a4e9483239031830\ntfs.sys [color=#A23BEC]< MD5 for: NTMSSVC.DLL >[/color] [2006/11/02 08:36:25 | 000,460,288 | ---- | M] (Microsoft Corporation) MD5=957CC0F372BB5D79C477363952276859 -- C:\WINDOWS\winsxs\x86_microsoft-windows-r..emanagement-service_31bf3856ad364e35_6.0.6000.16386_none_0c076ff411279f33\ntmssvc.dll [2008/01/19 03:35:58 | 000,460,288 | ---- | M] (Microsoft Corporation) MD5=A7DFF9642D510BE1EEC6664CD0369953 -- C:\WINDOWS\winsxs\x86_microsoft-windows-r..emanagement-service_31bf3856ad364e35_6.0.6001.18000_none_0e3e31f00e12b007\ntmssvc.dll [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color] [2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\WINDOWS\System32\drivers\nvstor.sys [2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\WINDOWS\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys [2008/01/19 03:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\WINDOWS\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys [2008/01/19 03:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\WINDOWS\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys [color=#A23BEC]< MD5 for: PROQUOTA.EXE >[/color] [2006/11/02 05:45:33 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=C31AE90F24870B9A51655C36A9EB4BF3 -- C:\WINDOWS\System32\proquota.exe [2006/11/02 05:45:33 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=C31AE90F24870B9A51655C36A9EB4BF3 -- C:\WINDOWS\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.0.6000.16386_none_259035db957a1715\proquota.exe [color=#A23BEC]< MD5 for: QMGR.DLL >[/color] [2008/01/19 03:36:13 | 000,758,272 | ---- | M] (Microsoft Corporation) MD5=02ED7B4DBC2A3232A389106DA7515C3D -- C:\WINDOWS\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll [2006/11/02 05:46:12 | 000,749,568 | ---- | M] (Microsoft Corporation) MD5=733FB484A06B9D6A44DD9CA1D3BE937B -- C:\WINDOWS\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.16386_none_215a02f0fc86fab8\qmgr.dll [2009/04/11 02:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\WINDOWS\ERDNT\cache\qmgr.dll [2009/04/11 02:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\WINDOWS\System32\qmgr.dll [2009/04/11 02:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\WINDOWS\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll [2007/12/08 16:35:30 | 000,750,080 | ---- | M] (Microsoft Corporation) MD5=DA551697E34D2B9943C8B1C8EAFFE89A -- C:\WINDOWS\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.16531_none_218b14e6fc62ea9e\qmgr.dll [2007/12/08 16:35:30 | 000,750,080 | ---- | M] (Microsoft Corporation) MD5=F1148566FA5173A4FD48AF8E8BC09401 -- C:\WINDOWS\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.20647_none_220fe38215833e63\qmgr.dll [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2008/01/19 03:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\WINDOWS\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll [2006/11/02 05:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\WINDOWS\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\WINDOWS\ERDNT\cache\scecli.dll [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\WINDOWS\System32\scecli.dll [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\WINDOWS\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll [color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color] [2009/04/11 02:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\WINDOWS\ERDNT\cache\spoolsv.exe [2009/04/11 02:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\WINDOWS\System32\spoolsv.exe [2009/04/11 02:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\WINDOWS\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18005_none_d8371c2dbeaa9062\spoolsv.exe [2008/01/19 03:33:32 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=846CDF9A3CF4DA9B306ADFB7D55EE4C2 -- C:\WINDOWS\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18000_none_d64ba321c188c516\spoolsv.exe [2006/11/02 05:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=DA612EF2556776DF2630B68BF2D48935 -- C:\WINDOWS\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6000.16386_none_d414e125c49db442\spoolsv.exe [color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color] [2006/11/02 05:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\WINDOWS\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe [2008/01/19 03:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\WINDOWS\ERDNT\cache\svchost.exe [2008/01/19 03:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\WINDOWS\System32\svchost.exe [2008/01/19 03:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\WINDOWS\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe [color=#A23BEC]< MD5 for: TERMSRV.DLL >[/color] [2009/04/11 02:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\WINDOWS\ERDNT\cache\termsrv.dll [2009/04/11 02:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\WINDOWS\System32\termsrv.dll [2009/04/11 02:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\WINDOWS\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_908abad45165e2ae\termsrv.dll [2008/01/19 03:36:39 | 000,448,512 | ---- | M] (Microsoft Corporation) MD5=D605031E225AACCBCEB5B76A4F1603A6 -- C:\WINDOWS\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6001.18000_none_8e9f41c854441762\termsrv.dll [2006/11/02 05:46:13 | 000,427,520 | ---- | M] (Microsoft Corporation) MD5=FAD71C1E8E4047B154E899AE31EB8CAA -- C:\WINDOWS\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6000.16386_none_8c687fcc5759068e\termsrv.dll [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2008/01/19 03:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\WINDOWS\ERDNT\cache\userinit.exe [2008/01/19 03:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\WINDOWS\System32\userinit.exe [2008/01/19 03:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\WINDOWS\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe [2006/11/02 05:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\WINDOWS\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe [color=#A23BEC]< MD5 for: WS2_32.DLL >[/color] [2008/01/19 03:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\WINDOWS\ERDNT\cache\ws2_32.dll [2006/11/02 05:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll [2008/01/19 03:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\ws2_32.dll [2008/01/19 03:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [2009/04/11 02:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\rsaenh.dll [2009/04/11 02:28:23 | 000,228,352 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\SLC.dll [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color] [2006/11/02 06:34:05 | 000,008,192 | ---- | M] () -- C:\WINDOWS\System32\config\COMPONENTS.SAV [2006/11/02 06:34:05 | 000,020,480 | ---- | M] () -- C:\WINDOWS\System32\config\DEFAULT.SAV [2006/11/02 06:34:05 | 000,008,192 | ---- | M] () -- C:\WINDOWS\System32\config\SECURITY.SAV [2006/11/02 06:34:08 | 010,133,504 | ---- | M] () -- C:\WINDOWS\System32\config\SOFTWARE.SAV [2006/11/02 06:34:08 | 001,826,816 | ---- | M] () -- C:\WINDOWS\System32\config\SYSTEM.SAV [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /90 >[/color] [2010/04/28 07:44:02 | 000,054,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fssfltr.sys [2010/04/21 23:00:14 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:AC6124CA @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:D1B5B4F1 < End of report >