Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Computer freezes when I run MBAM. Possible Virus? [Closed]

Started by lasvegasrebel702 , Oct 31 2012 10:30 AM

This topic is locked

#1
lasvegasrebel702

Posted 31 October 2012 - 10:30 AM

Member

Member
11 posts

Hello Everyone,

I am running a Dell with Windows7 Ultimate 32-bit system. I have been experiencing some freezing issues for a few weeks now.
I think I might have a virus or root-kit but any time I try to run MBAM as a full system scan it freezes about 3 minutes into the scan, whether I'm in safe more or not. I run a quick scan no problem but once I run the full system scan it freezes on me. I also used TDSSKiller but it too comes up with nothing. I don't know what could be causing this at this point other than a virus. I would appreciate some help.

Thank you!!

#2
blmadara

Posted 01 November 2012 - 01:27 PM

Trusted Helper

Malware Removal
767 posts

Hi lasvegasrebel702, welcome to Geeks to Go. My name is blmadara and I will be helping you with your problems. Please be patient with me as I am still in training and my responses will have to be reviewed by an expert before I can post them.

I'd like to go over some things that will help both of us.

Read each of my posts entirely before performing my instructions. It would be helpful if you printed my instructions so you can read and check the steps as you perform them.
Follow the steps exactly in the order posted.
Please don't be afraid to ask questions. If you don't understand something, let me know before continuing.
If you can't perform a certain step, or you're unsure about what to do, please stop and let me know.
It is very important that you stay with me until the end so we make sure that we have removed all the bad stuff.
Please don't attach any logs to your posts unless I request it. It is easier for me if you copy and paste the logs into your reply.
Finally, never fix anything using other programs on your own. This can hinder my ability to see what is wrong with your computer and make it harder to clean your computer.

Step One: Run OTL Custom Scan

Download OTL to your Desktop

Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

Under the Custom Scans/Fixes box at the bottom, paste in the following

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
services.*
qmgr.dll
consrv.dll
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
%systemdrive%\$Recycle.Bin|@;true;true;true /fp 
C:\Windows\assembly\tmp\U\*.* /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BITS /s
%Temp%\smtmp\1\*.*
%Temp%\smtmp\2\*.*
%Temp%\smtmp\3\*.*
%Temp%\smtmp\4\*.*
>C:\commands.txt echo list vol /raw /hide /c
/wait
>C:\DiskReport.txt diskpart /s C:\commands.txt /raw /hide /c
/wait
type c:\diskreport.txt /c
/wait
erase c:\commands.txt /hide /c
/wait
erase c:\diskreport.txt /hide /c
CREATERESTOREPOINT

Please select the Scan All Users checkbox.
Change the File Age dropdown list from 30 days to 60 days.
Under Extra Registry heading, select Use Safelist.
Select LOP Check and Purity Check.
Then click the Run Scan button at the top
Let the program run unhindered, until it is done
Post the log it produces in your next reply.

Step Two: Run aswMBR

Download aswMBR.exe to your desktop.

Double click aswMBR.exe to run it.
When asked if you want to download Avast's virus definitions please select, No.
Click Scan to start the scan.
When the scan ends click Save Log and save it to your desktop.
Post the log in your next reply.

Step Three: Computer Symptoms

Please let me know what problems you are having with your computer.

What I need in your next post:
1. The reports from the OTL scan, OTL.txt and Extras.txt.
2. The log produced by aswMBR.exe.
3. Let me know what problems you are having with your computer.

#3
lasvegasrebel702

Posted 01 November 2012 - 07:11 PM

Member

Topic Starter
Member
11 posts

Thank you for your help.

Here is the log for OTL

OTL logfile created on: 11/1/2012 5:43:56 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.94 Gb Total Physical Memory | 1.48 Gb Available Physical Memory | 76.72% Memory free
3.87 Gb Paging File | 3.12 Gb Available in Paging File | 80.54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 148.86 Gb Total Space | 121.57 Gb Free Space | 81.67% Space Free | Partition Type: NTFS

Computer Name: ACME1 | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = All Days

========== Processes (SafeList) ==========

PRC - [2012/11/01 17:39:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
PRC - [2012/09/29 19:54:26 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/09/29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/09/29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/07/16 07:52:23 | 003,975,088 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/10/25 15:13:42 | 000,821,144 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
PRC - [2010/08/21 03:16:16 | 000,390,712 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2010/08/21 03:16:12 | 000,779,944 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2010/08/21 03:15:32 | 005,459,136 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2010/08/20 06:18:30 | 002,536,752 | ---- | M] (Acronis) -- C:\Program Files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe
PRC - [2009/07/13 18:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe

========== Modules (No Company Name) ==========

MOD - [2012/05/30 20:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/05/30 20:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/03/17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/10/20 15:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll

========== Services (SafeList) ==========

SRV - [2012/10/22 13:41:26 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/10/08 15:25:20 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/09/29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/07/30 03:02:02 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012/07/16 07:52:23 | 003,975,088 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2011/06/12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010/08/21 03:16:12 | 000,779,944 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 18:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 18:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\user\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2012/10/30 18:56:03 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2012/09/29 19:54:26 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/07/16 07:52:24 | 000,163,232 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\afcdp.sys -- (afcdp)
DRV - [2012/07/16 07:52:23 | 000,752,128 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tdrpm273.sys -- (tdrpman273)
DRV - [2012/07/16 07:52:22 | 000,600,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\timntr.sys -- (timounter)
DRV - [2012/07/16 07:52:18 | 000,170,464 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\snapman.sys -- (snapman)
DRV - [2012/03/26 14:50:12 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009/07/13 18:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009/07/13 18:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/13 18:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009/07/13 16:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/13 16:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 16:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009/06/10 14:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 84 20 FA 57 63 CD 01 [binary data]
IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\..\SearchScopes,DefaultScope = {1C3EBFC3-E93E-4B28-8714-AB1B962C64AF}
IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\..\SearchScopes\{1C3EBFC3-E93E-4B28-8714-AB1B962C64AF}: "URL" = http://www.google.co...utputEncoding?}
IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.10

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\user\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\user\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/07/16 09:25:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/10/22 13:41:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/10/22 13:41:26 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/09/20 17:09:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\Mozilla\Extensions
[2012/10/26 09:22:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions
[2012/09/29 17:36:02 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/09/20 17:13:18 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions\[email protected]
[2012/09/20 17:11:39 | 000,199,396 | ---- | M] () (No name found) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
[2012/10/22 13:41:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/10/22 13:41:26 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/09/05 18:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/10/22 13:41:26 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: https://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: https://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\gcswf32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Users\user\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: YouTube = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Yontoo = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.2_0\
CHR - Extension: Gmail = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/09/10 14:20:39 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SAOB Monitor] C:\Program Files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKU\S-1-5-21-510533818-3131682968-3388935289-1000..\Run: [Adobe Acrobat Synchronizer] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe (Adobe Systems Incorporated)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-510533818-3131682968-3388935289-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.13.143.36 65.41.120.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{281AC8F6-9671-4058-BC0F-572B127295EA}: DhcpNameServer = 208.13.143.36 65.41.120.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D245F2AE-4385-4A61-B123-359824F0FB80}: DhcpNameServer = 172.18.145.103 172.18.145.103
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within All Days ==========

[2012/11/01 17:42:35 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\temp
[2012/11/01 17:41:36 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\user\Desktop\aswMBR.exe
[2012/11/01 17:41:36 | 000,000,000 | R--D | M] -- C:\Users\user\Desktop
[2012/11/01 17:41:31 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2012/11/01 17:41:30 | 000,000,000 | R--D | M] -- C:\Users\user\Downloads
[2012/10/30 18:55:46 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2012/10/30 14:12:30 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2012/10/27 14:31:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/10/27 14:31:54 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/10/27 10:03:37 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service
[2012/10/22 13:41:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2012/10/10 19:03:20 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft Help
[2012/10/10 09:28:33 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/10/10 09:28:25 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2012/10/10 09:28:25 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/10/10 09:28:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:28:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:28:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:28:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:27:45 | 003,958,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/10/10 09:27:45 | 003,902,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/10/05 13:55:13 | 002,212,440 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\user\Desktop\TDSSKiller.exe
[2012/10/03 09:23:52 | 000,000,000 | R--D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/10/03 09:23:52 | 000,000,000 | R--D | M] -- C:\Users\user\Links
[2012/10/03 09:23:52 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Dropbox
[2012/09/29 17:38:03 | 000,000,000 | ---D | M] -- C:\Users\user\dwhelper
[2012/09/25 18:59:49 | 000,000,000 | R--D | M] -- C:\Users\user\Dropbox
[2012/09/25 12:42:47 | 000,000,000 | R--D | M] -- C:\Users\user\Pictures
[2012/09/23 17:55:43 | 000,000,000 | R--D | M] -- C:\Users\user\Documents
[2012/09/23 09:06:47 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2012/09/22 18:14:01 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/09/22 18:14:00 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/09/22 18:14:00 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/09/22 18:14:00 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/09/22 18:14:00 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/09/22 18:13:59 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/09/22 18:13:59 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/09/22 18:13:58 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/09/21 09:23:10 | 000,000,000 | ---D | C] -- C:\f1a2472dda22b16dde81
[2012/09/20 17:15:36 | 000,000,000 | --SD | M] -- C:\Users\user\AppData\Roaming\Microsoft
[2012/09/20 17:15:36 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Microsoft
[2012/09/20 17:15:36 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Macromedia
[2012/09/20 17:15:07 | 000,000,000 | ---D | M] -- C:\ProgramData\Adobe
[2012/09/20 17:13:20 | 000,000,000 | ---D | M] -- C:\Program Files\Yontoo
[2012/09/20 17:13:18 | 000,000,000 | ---D | M] -- C:\ProgramData\Tarma Installer
[2012/09/20 17:09:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Mozilla
[2012/09/20 17:09:16 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Mozilla
[2012/09/20 17:08:37 | 000,000,000 | ---D | M] -- C:\ProgramData\Mozilla
[2012/09/20 12:56:17 | 000,000,000 | R--D | M] -- C:\Users\user\Music
[2012/09/12 08:54:48 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2012/09/10 14:23:00 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/09/10 14:20:37 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/09/10 14:18:00 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2012/09/10 14:12:43 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/09/10 14:12:43 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/09/10 14:12:43 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/09/10 14:12:35 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/09/10 14:12:22 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/09/05 15:15:48 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Apple Computer
[2012/09/05 09:14:39 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BitTorrent
[2012/08/31 18:27:38 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Apple Computer
[2012/08/31 18:27:33 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/08/31 18:27:31 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2012/08/31 18:27:31 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2012/08/31 18:27:31 | 000,000,000 | ---D | M] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/08/31 18:27:31 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2012/08/31 18:26:59 | 000,000,000 | ---D | M] -- C:\ProgramData\Apple Computer
[2012/08/31 18:26:59 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Apple
[2012/08/31 18:26:14 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Apple
[2012/08/31 18:26:10 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2012/08/31 18:26:04 | 000,000,000 | ---D | M] -- C:\ProgramData\Apple
[2012/08/31 18:25:39 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2012/08/31 12:03:16 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\New folder
[2012/08/26 10:57:50 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Diagnostics
[2012/08/20 11:37:45 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\ElevatedDiagnostics
[2012/08/15 15:42:14 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2012/08/15 15:42:07 | 002,344,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/08/15 15:41:33 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
[2012/08/15 09:24:46 | 000,000,000 | R--D | M] -- C:\Users\user\Favorites
[2012/08/13 13:11:52 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\Kristian's [bleep]
[2012/07/31 12:35:32 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\VirtualStore
[2012/07/31 12:33:25 | 000,000,000 | ---D | M] -- C:\Program Files\Subliminal blaster
[2012/07/31 12:32:44 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subliminal Blaster 2.0
[2012/07/31 12:32:44 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Subliminal Blaster 2.0
[2012/07/31 12:32:44 | 000,000,000 | ---D | M] -- C:\Program Files\Subliminal Blaster 2.0
[2012/07/31 09:21:47 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/07/31 09:21:40 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Google
[2012/07/31 09:20:47 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Deployment
[2012/07/31 09:20:06 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Apps
[2012/07/30 09:31:17 | 000,284,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2012/07/30 09:31:16 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2012/07/30 09:31:08 | 000,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2012/07/30 09:31:08 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2012/07/30 03:35:48 | 000,000,000 | R--D | M] -- C:\Users\user\Videos
[2012/07/30 03:35:48 | 000,000,000 | R--D | M] -- C:\Users\user\Searches
[2012/07/30 03:35:48 | 000,000,000 | R--D | M] -- C:\Users\user\Saved Games
[2012/07/30 03:35:48 | 000,000,000 | R--D | M] -- C:\Users\user\Contacts
[2012/07/30 03:35:48 | 000,000,000 | R--D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/07/30 03:33:53 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\System
[2012/07/30 03:33:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2012/07/30 03:33:50 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2012/07/30 03:33:49 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2012/07/30 03:33:47 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2012/07/30 03:02:09 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2012/07/29 21:23:00 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/07/29 09:55:42 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2012/07/28 19:23:58 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2012/07/28 19:23:58 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2012/07/28 19:23:58 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2012/07/28 09:52:03 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2012/07/28 09:52:03 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2012/07/28 09:48:52 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2012/07/28 09:48:45 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2012/07/28 09:48:38 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012/07/28 09:48:38 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012/07/28 09:48:01 | 000,197,632 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\ir32_32.dll
[2012/07/28 09:48:01 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2012/07/28 09:47:35 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2012/07/28 09:47:13 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2012/07/28 09:46:52 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2012/07/28 09:46:52 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2012/07/28 09:46:52 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2012/07/28 09:46:52 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2012/07/28 09:46:52 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2012/07/28 09:46:45 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2012/07/28 09:46:17 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2012/07/28 09:46:17 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2012/07/28 09:46:17 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2012/07/28 09:46:17 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
[2012/07/28 09:45:26 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/07/28 09:43:49 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2012/07/28 09:43:48 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2012/07/28 09:43:48 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2012/07/28 09:42:58 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2012/07/28 09:42:46 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2012/07/28 09:42:46 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2012/07/28 09:42:33 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2012/07/28 09:42:22 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/07/28 09:42:17 | 001,553,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2012/07/28 09:42:17 | 001,401,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2012/07/28 09:42:17 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2012/07/28 09:42:17 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2012/07/28 09:42:17 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2012/07/28 09:42:17 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2012/07/28 09:41:20 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2012/07/28 09:41:13 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012/07/28 09:41:05 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2012/07/28 09:40:55 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2012/07/28 09:40:33 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2012/07/28 09:40:23 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2012/07/28 09:40:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2012/07/28 09:40:13 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2012/07/28 09:40:13 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2012/07/28 09:40:13 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2012/07/28 09:40:03 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/07/28 09:40:02 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/07/28 09:39:43 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/07/28 09:38:46 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2012/07/28 09:38:46 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2012/07/28 09:38:36 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2012/07/28 09:38:36 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2012/07/28 09:38:36 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2012/07/28 09:38:36 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2012/07/28 09:38:36 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2012/07/28 09:38:11 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2012/07/28 09:38:11 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe
[2012/07/28 09:38:10 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2012/07/28 09:36:45 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2012/07/28 09:36:37 | 000,101,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2012/07/28 09:36:25 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2012/07/28 09:36:24 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2012/07/28 09:36:24 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2012/07/28 09:36:24 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2012/07/28 09:36:24 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2012/07/28 09:36:24 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2012/07/28 09:36:24 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2012/07/28 09:36:24 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2012/07/28 09:36:13 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/07/28 09:36:13 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/07/28 09:36:13 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/07/28 09:36:13 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/07/28 09:36:13 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/07/28 09:36:03 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2012/07/28 09:36:03 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2012/07/28 09:35:29 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2012/07/28 09:35:15 | 000,026,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2012/07/28 09:22:01 | 000,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2012/07/28 09:22:01 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2012/07/27 15:09:04 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2012/07/27 15:04:26 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012/07/27 15:04:26 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012/07/27 15:04:22 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012/07/27 15:04:22 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012/07/27 15:04:22 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012/07/27 15:04:19 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012/07/27 15:04:19 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012/07/25 09:27:38 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Microsoft Games
[2012/07/18 17:49:41 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\ACME Bail Bonds Forms
[2012/07/16 09:36:26 | 000,000,000 | ---D | M] -- C:\ProgramData\Acronis
[2012/07/16 09:36:25 | 002,072,416 | ---- | C] (Acronis) -- C:\Windows\System32\AutoPartNt.exe
[2012/07/16 09:35:20 | 000,000,000 | --SD | M] -- C:\ProgramData\Microsoft
[2012/07/16 09:34:20 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Acronis
[2012/07/16 09:27:54 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Adobe
[2012/07/16 09:27:41 | 000,000,000 | ---D | M] -- C:\ProgramData\regid.1986-12.com.adobe
[2012/07/16 09:27:26 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Adobe
[2012/07/16 09:26:13 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Adobe
[2012/07/16 09:25:27 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
[2012/07/16 09:24:12 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2012/07/16 09:21:15 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\Adobe Acrobat X
[2012/07/16 07:52:24 | 000,163,232 | ---- | C] (Acronis) -- C:\Windows\System32\drivers\afcdp.sys
[2012/07/16 07:52:24 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Acronis
[2012/07/16 07:52:23 | 000,752,128 | ---- | C] (Acronis) -- C:\Windows\System32\drivers\tdrpm273.sys
[2012/07/16 07:52:22 | 000,600,928 | ---- | C] (Acronis) -- C:\Windows\System32\drivers\timntr.sys
[2012/07/16 07:52:18 | 000,170,464 | ---- | C] (Acronis) -- C:\Windows\System32\drivers\snapman.sys
[2012/07/16 07:52:12 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
[2012/07/16 07:52:02 | 000,000,000 | ---D | M] -- C:\Program Files\Acronis
[2012/07/16 06:52:32 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2012/07/16 06:44:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Macromedia
[2012/07/16 06:44:33 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/07/16 06:44:33 | 000,073,656 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/07/16 06:44:33 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2012/07/16 06:30:36 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
[2012/07/16 06:30:36 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/07/16 06:30:20 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\microsoft shared
[2012/07/16 06:30:11 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2012/07/16 06:29:58 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Synchronization Services
[2012/07/16 06:29:58 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\DESIGNER
[2012/07/16 06:29:43 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2012/07/16 06:29:42 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework
[2012/07/16 06:29:42 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012/07/16 06:29:42 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012/07/16 06:28:39 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 8
[2012/07/16 06:28:17 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Analysis Services
[2012/07/16 06:28:03 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Local\Microsoft Help
[2012/07/16 06:27:59 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012/07/16 06:27:54 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012/07/16 06:26:05 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Malwarebytes
[2012/07/16 06:25:54 | 000,000,000 | ---D | M] -- C:\ProgramData\Malwarebytes
[2012/07/16 06:25:51 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/07/16 06:25:19 | 000,000,000 | ---D | C] -- C:\123
[2012/07/16 06:23:27 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\WinRAR
[2012/07/16 06:23:12 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/07/16 06:23:12 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/07/16 06:23:12 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2012/07/16 06:18:07 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2012/07/16 06:18:07 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2012/07/16 06:18:07 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2012/07/16 06:18:07 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2012/07/16 06:18:07 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2012/07/16 06:18:07 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2012/07/16 06:18:07 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2012/07/16 06:18:07 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2012/07/16 06:18:07 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2012/07/16 06:18:07 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2012/07/16 06:18:07 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2012/07/16 06:18:07 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2012/07/16 06:18:07 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2012/07/16 06:18:07 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2012/07/16 06:18:07 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2012/07/16 06:18:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2012/07/16 06:18:07 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2012/07/16 06:18:07 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2012/07/16 06:18:07 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2012/07/16 06:18:07 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2012/07/16 06:18:07 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2012/07/16 06:18:07 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2012/07/16 06:18:07 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2012/07/16 06:18:07 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2012/07/16 06:18:07 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2012/07/16 06:18:07 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2012/07/16 06:18:07 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2012/07/16 06:18:07 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2012/07/16 06:18:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2012/07/16 06:17:44 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/07/16 06:17:44 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2012/07/16 06:17:44 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/07/16 06:17:44 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/07/16 06:17:44 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2012/07/16 05:00:04 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012/07/16 04:09:09 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/07/16 04:07:49 | 000,000,000 | -H-D | C] -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/07/16 04:07:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Identities
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\AppData\Local\Temporary Internet Files
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\Templates
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\Start Menu
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\SendTo
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\Recent
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\PrintHood
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\NetHood
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\My Documents
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\Local Settings
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\AppData\Local\History
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\Cookies
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\Application Data
[2012/07/16 04:07:22 | 000,000,000 | -HSD | M] -- C:\Users\user\AppData\Local\Application Data
[2012/07/16 04:07:22 | 000,000,000 | -HSD | C] -- C:\Users\user\Documents\My Videos
[2012/07/16 04:07:22 | 000,000,000 | -HSD | C] -- C:\Users\user\Documents\My Pictures
[2012/07/16 04:07:22 | 000,000,000 | -HSD | C] -- C:\Users\user\Documents\My Music
[2012/07/16 04:07:22 | 000,000,000 | -H-D | M] -- C:\Users\user\AppData
[2012/07/16 04:07:15 | 000,000,000 | ---D | C] -- C:\Recovery
[2012/07/16 04:03:05 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/07/16 04:03:01 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[2012/07/16 04:03:01 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/07/16 04:01:06 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012/07/16 04:00:32 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/06/25 01:44:05 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\fotos ale
[2012/06/25 01:44:05 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\acme
[2012/06/06 08:49:52 | 001,070,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCTL.OCX
[2012/04/25 12:11:36 | 004,547,944 | ---- | C] (Apple, Inc.) -- C:\Windows\System32\usbaaplrc.dll
[2012/03/26 14:51:00 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdfcoinstaller01009.dll
[2012/03/26 14:50:12 | 000,018,432 | ---- | C] (Apple Inc.) -- C:\Windows\System32\drivers\netaapl.sys
[2011/08/30 23:05:04 | 000,178,536 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll
[2011/08/30 23:05:04 | 000,083,816 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/08/30 23:05:04 | 000,073,064 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[2011/08/30 23:05:04 | 000,050,536 | ---- | C] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll
[2010/10/25 15:13:42 | 000,066,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71ITA.DLL
[2010/10/25 15:13:42 | 000,066,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71ESP.DLL
[2010/10/25 15:13:42 | 000,054,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71KOR.DLL
[2010/10/25 15:13:40 | 001,066,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc71.dll
[2010/10/25 15:13:40 | 001,053,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc71u.dll
[2010/10/25 15:13:40 | 000,094,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\atl71.dll
[2010/10/25 15:13:40 | 000,066,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71FRA.DLL
[2010/10/25 15:13:40 | 000,062,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71ENU.DLL
[2010/10/25 15:13:40 | 000,050,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71CHT.DLL
[2010/10/25 15:13:40 | 000,022,936 | ---- | C] (Adobe Systems Inc.) -- C:\Windows\System32\AdobePDFUI.dll
[2010/10/25 15:13:38 | 000,071,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71DEU.DLL
[2010/10/25 15:13:38 | 000,054,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71JPN.DLL
[2010/10/25 15:13:38 | 000,047,512 | ---- | C] (Adobe Systems Inc) -- C:\Windows\System32\AdobePDF.dll
[2010/10/25 15:13:38 | 000,046,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71CHS.DLL
[2010/10/20 12:44:50 | 001,207,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FM20.DLL
[2010/03/18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010/02/20 17:20:18 | 000,031,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FM20ENU.DLL
[2010/02/17 21:42:38 | 000,051,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VBAME.DLL
[2009/07/14 00:50:29 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Maker
[2009/07/14 00:50:24 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2009/07/14 00:49:48 | 000,000,000 | ---D | C] -- C:\Windows\ShellNew
[2009/07/14 00:49:48 | 000,000,000 | ---D | C] -- C:\Windows\ehome
[2009/07/14 00:49:45 | 000,000,000 | -HSD | C] -- C:\Windows\BitLockerDiscoveryVolumeContents
[2009/07/14 00:49:45 | 000,000,000 | ---D | C] -- C:\Windows\RemotePackages
[2009/07/14 00:49:45 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2009/07/14 00:48:45 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2009/07/14 00:48:45 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Media Center Programs
[2009/07/14 00:47:39 | 000,028,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storvsc.sys
[2009/07/14 00:47:38 | 000,175,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\vmbus.sys
[2009/07/14 00:47:38 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VmbusCoinstaller.dll
[2009/07/14 00:47:38 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmbusres.dll
[2009/07/14 00:47:38 | 000,043,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\winhv.sys
[2009/07/14 00:47:38 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmbuspipe.dll
[2009/07/14 00:47:37 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmicsvc.exe
[2009/07/14 00:47:37 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IcCoinstall.dll
[2009/07/14 00:47:37 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmicres.dll
[2009/07/14 00:47:37 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmictimeprovider.dll
[2009/07/14 00:47:36 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\VMBusHID.sys
[2009/07/14 00:47:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\vms3cap.sys
[2009/07/14 00:47:34 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VmdCoinstall.dll
[2009/07/14 00:47:34 | 000,040,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\vmstorfl.sys
[2009/07/14 00:47:34 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmstorfltres.dll
[2009/07/13 21:56:49 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2009/07/13 21:56:49 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer
[2009/07/13 21:56:49 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\winrm
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\WCN
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\slmgr
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\UMDF\en-US
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\en-US
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\en-US
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\en
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\DigitalLocker
[2009/07/13 21:56:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\0409
[2009/07/13 21:56:47 | 000,000,000 | ---D | C] -- C:\Windows\System32\Printing_Admin_Scripts
[2009/07/13 21:55:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\usbport.sys.mui
[2009/07/13 21:55:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\volsnap.sys.mui
[2009/07/13 21:55:09 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\usbhub.sys.mui
[2009/07/13 21:55:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
[2009/07/13 21:55:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\tpm.sys.mui
[2009/07/13 21:55:09 | 000,003,584 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\en-US\pscr.sys.mui
[2009/07/13 21:55:09 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\vhdmp.sys.mui
[2009/07/13 21:55:09 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\portcls.sys.mui
[2009/07/13 21:55:09 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\umbus.sys.mui
[2009/07/13 21:55:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\en-US\WpdMtpDr.dll.mui
[2009/07/13 21:55:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\serscan.sys.mui
[2009/07/13 21:55:09 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wd.sys.mui
[2009/07/13 21:55:07 | 000,032,256 | ---- | C] (Marvell) -- C:\Windows\System32\drivers\en-US\yk62x86.sys.mui
[2009/07/13 21:55:07 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mpio.sys.mui
[2009/07/13 21:55:07 | 000,019,968 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1y6032.sys.mui
[2009/07/13 21:55:07 | 000,019,968 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1e6032.sys.mui
[2009/07/13 21:55:07 | 000,016,896 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\E1G60I32.sys.mui
[2009/07/13 21:55:07 | 000,010,752 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1q6032.sys.mui
[2009/07/13 21:55:07 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\serial.sys.mui
[2009/07/13 21:55:07 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\i8042prt.sys.mui
[2009/07/13 21:55:07 | 000,010,240 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1k6032.sys.mui
[2009/07/13 21:55:07 | 000,009,728 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\drivers\en-US\k57nd60x.sys.mui
[2009/07/13 21:55:07 | 000,009,728 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\drivers\en-US\b57nd60x.sys.mui
[2009/07/13 21:55:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\msdsm.sys.mui
[2009/07/13 21:55:07 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\sermouse.sys.mui
[2009/07/13 21:55:07 | 000,005,120 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e100b325.sys.mui
[2009/07/13 21:55:07 | 000,005,120 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\drivers\en-US\bcm4sbxp.sys.mui
[2009/07/13 21:55:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pcmcia.sys.mui
[2009/07/13 21:55:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mouclass.sys.mui
[2009/07/13 21:55:07 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\parport.sys.mui
[2009/07/13 21:55:07 | 000,003,072 | ---- | C] (VIA Technologies, Inc. ) -- C:\Windows\System32\drivers\en-US\getn62.sys.mui
[2009/07/13 21:55:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\scsiport.sys.mui
[2009/07/13 21:55:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\rndismpx.sys.mui
[2009/07/13 21:55:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\rndismp6.sys.mui
[2009/07/13 21:55:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ataport.sys.mui
[2009/07/13 21:55:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\parvdm.sys.mui
[2009/07/13 21:55:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\MTConfig.sys.mui
[2009/07/13 21:55:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mouhid.sys.mui
[2009/07/13 21:55:07 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\vwifibus.sys.mui
[2009/07/13 21:55:07 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\amdide.sys.mui
[2009/07/13 21:55:06 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\afd.sys.mui
[2009/07/13 21:55:05 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\tcpip.sys.mui
[2009/07/13 21:55:05 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bfe.dll.mui
[2009/07/13 21:55:05 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\tunnel.sys.mui
[2009/07/13 21:55:05 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\modem.sys.mui
[2009/07/13 21:55:05 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
[2009/07/13 21:55:05 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\srv.sys.mui
[2009/07/13 21:55:05 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ws2ifsl.sys.mui
[2009/07/13 21:55:05 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\usbrpm.sys.mui
[2009/07/13 21:55:04 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\fvevol.sys.mui
[2009/07/13 21:55:04 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\scfilter.sys.mui
[2009/07/13 21:54:49 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\rdbss.sys.mui
[2009/07/13 21:54:49 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\RNDISMP.sys.mui
[2009/07/13 21:54:48 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pacer.sys.mui
[2009/07/13 21:54:48 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\qwavedrv.sys.mui
[2009/07/13 21:54:48 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\partmgr.sys.mui
[2009/07/13 21:54:46 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ntfs.sys.mui
[2009/07/13 21:54:46 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ndis.sys.mui
[2009/07/13 21:54:46 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\nwifi.sys.mui
[2009/07/13 21:54:46 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ndisuio.sys.mui
[2009/07/13 21:54:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ndiscap.sys.mui
[2009/07/13 21:54:45 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mountmgr.sys.mui
[2009/07/13 21:54:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\luafv.sys.mui
[2009/07/13 21:54:44 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ipnat.sys.mui
[2009/07/13 21:54:43 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\http.sys.mui
[2009/07/13 21:54:42 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\fltmgr.sys.mui
[2009/07/13 21:54:42 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\volmgrx.sys.mui
[2009/07/13 21:54:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\viac7.sys.mui
[2009/07/13 21:54:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\processr.sys.mui
[2009/07/13 21:54:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\intelppm.sys.mui
[2009/07/13 21:54:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\amdppm.sys.mui
[2009/07/13 21:54:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\amdk8.sys.mui
[2009/07/13 21:54:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ohci1394.sys.mui
[2009/07/13 21:54:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\1394ohci.sys.mui
[2009/07/13 21:54:41 | 000,010,240 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\en-US\BrSerId.sys.mui
[2009/07/13 21:54:41 | 000,010,240 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\en-US\BrSerIb.sys.mui
[2009/07/13 21:54:41 | 000,009,728 | ---- | C] (Agere Systems) -- C:\Windows\System32\drivers\en-US\ltmdmnt.sys.mui
[2009/07/13 21:54:41 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\acpi.sys.mui
[2009/07/13 21:54:41 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pci.sys.mui
[2009/07/13 21:54:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bthport.sys.mui
[2009/07/13 21:54:41 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\battc.sys.mui
[2009/07/13 21:54:41 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\IPMIDrv.sys.mui
[2009/07/13 21:54:41 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bthpan.sys.mui
[2009/07/13 21:54:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wacompen.sys.mui
[2009/07/13 21:54:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\kbdclass.sys.mui
[2009/07/13 21:54:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\hdaudbus.sys.mui
[2009/07/13 21:54:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\vdrvroot.sys.mui
[2009/07/13 21:54:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\isapnp.sys.mui
[2009/07/13 21:54:41 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mssmbios.sys.mui
[2009/07/13 21:54:41 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\hidbth.sys.mui
[2009/07/13 21:54:41 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\HdAudio.sys.mui
[2009/07/13 21:54:41 | 000,003,072 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\en-US\atikmdag.sys.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\VIAAGP.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ULIAGPKX.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\UAGP35.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\SISAGP.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pnpmem.sys.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\NV_AGP.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\kbdhid.sys.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\GAGP30KX.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\Dot4usb.sys.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\BTHUSB.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\AMDAGP.SYS.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\AGP440.sys.mui
[2009/07/13 21:54:41 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\en-US\BrParwdm.sys.mui
[2009/07/13 21:54:41 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\disk.sys.mui
[2009/07/13 21:54:41 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\cdrom.sys.mui
[2009/07/13 21:54:41 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bthenum.sys.mui
[2009/07/13 21:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates
[2009/07/13 21:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2009/07/13 21:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favorites
[2009/07/13 21:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2009/07/13 21:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2009/07/13 21:53:55 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2009/07/13 21:53:55 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Videos
[2009/07/13 21:53:55 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Pictures
[2009/07/13 21:53:55 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Music
[2009/07/13 21:53:55 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2009/07/13 21:53:23 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2009/07/13 21:52:32 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/07/13 21:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/07/13 21:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\WinBioPlugIns
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\WinBioDatabase
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\twain_32
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\restore
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\Performance
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\Offline Web Pages
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\FxsTmp
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Program Files
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\diagnostics
[2009/07/13 21:52:30 | 000,000,000 | ---D | C] -- C:\Windows\addins
[2009/07/13 21:42:30 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
[2009/07/13 21:42:04 | 000,000,000 | R--D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2009/07/13 21:41:57 | 000,000,000 | R--D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[2009/07/13 21:37:42 | 000,000,000 | R--D | M] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2009/07/13 21:34:21 | 000,000,000 | ---D | C] -- C:\Windows\debug
[2009/07/13 21:34:16 | 000,000,000 | ---D | C] -- C:\Windows\Setup
[2009/07/13 21:34:13 | 000,000,000 | ---D | C] -- C:\Windows\ServiceProfiles
[2009/07/13 21:34:06 | 000,000,000 | --SD | C] -- C:\Windows\System32\Microsoft
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\zh-TW
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\zh-HK
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\zh-CN
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\winsxs
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\winevt
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\wfp
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\Web
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\wdi
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\wbem
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\Vss
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\uk-UA
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\tr-TR
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\tracing
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\th-TH
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\Tasks
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\Tasks
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\TAPI
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\sysprep
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\sv-SE
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\sr-Latn-CS
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\sppui
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\spp
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\spool
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\Speech
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\SMI
[2009/07/13 19:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\sl-SI
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\UMDF
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\sk-SK
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\Setup
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\ru-RU
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\ro-RO
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\Recovery
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\ras
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\pt-PT
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\pt-BR
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\pl-PL
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\oobe
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\nl-NL
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\NetworkList
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\NDF
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\nb-NO
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\MUI
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\Msdtc
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\migwiz
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\migration
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\manifeststore
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\lv-LV
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\lt-LT
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\LogFiles
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\ko-KR
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\ja-JP
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\it-IT
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\inetsrv
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\IME
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\icsxml
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\ias
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\hu-HU
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\hr-HR
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\he-IL
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\GroupPolicyUsers
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\GroupPolicy
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\fr-FR
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\fi-FI
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\et-EE
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\etc
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\es-ES
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\en-US
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\el-GR
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\DriverStore
[2009/07/13 19:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\system
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\Speech
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\servicing
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\security
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\schemas
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\SchCache
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\Resources
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\rescache
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\Registration
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\PolicyDefinitions
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\PLA
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\ModemLogs
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\Microsoft.NET
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\Dism
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\de-DE
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\da-DK
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\cs-CZ
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\config
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\com
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\CodeIntegrity
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\Boot
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\bg-BG
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\ar-SA
[2009/07/13 19:37:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\AdvancedInstallers
[2009/07/13 19:37:06 | 000,000,000 | R-SD | C] -- C:\Windows\Media
[2009/07/13 19:37:06 | 000,000,000 | R-SD | C] -- C:\Windows\Fonts
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\Logs
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\LiveKernelReports
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\L2Schemas
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\inf
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\IME
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\Help
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\Globalization
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\Cursors
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\Branding
[2009/07/13 19:37:06 | 000,000,000 | ---D | C] -- C:\Windows\Boot
[2009/07/13 19:37:05 | 000,000,000 | R-SD | C] -- C:\Windows\assembly
[2009/07/13 19:37:05 | 000,000,000 | R--D | C] -- C:\Users
[2009/07/13 19:37:05 | 000,000,000 | R--D | C] -- C:\Program Files
[2009/07/13 19:37:05 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\SpeechEngines
[2009/07/13 19:37:05 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Services
[2009/07/13 19:37:05 | 000,000,000 | ---D | C] -- C:\Windows
[2009/07/13 19:37:05 | 000,000,000 | ---D | C] -- C:\ProgramData
[2009/07/13 19:37:05 | 000,000,000 | ---D | C] -- C:\PerfLogs
[2009/07/13 19:37:05 | 000,000,000 | ---D | C] -- C:\Windows\AppPatch
[2009/07/13 19:37:05 | 000,000,000 | ---D | C] -- C:\Windows\AppCompat
[2009/07/13 19:05:42 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msclmd.dll
[2009/07/13 19:04:56 | 000,020,535 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vfpodbc.dll
[2009/07/13 17:59:14 | 000,017,408 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\brcoinst.dll
[2009/07/13 17:41:41 | 002,504,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009/07/13 17:41:37 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppc.dll
[2009/07/13 17:41:20 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AUDIOKSE.dll
[2009/07/13 17:41:08 | 001,234,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2009/07/13 17:36:29 | 000,098,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2009/07/13 17:36:29 | 000,034,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2009/07/13 17:36:29 | 000,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2009/07/13 17:36:28 | 000,618,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2009/07/13 17:35:55 | 000,778,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2009/07/13 17:35:55 | 000,034,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2009/07/13 17:35:54 | 000,101,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2009/07/13 17:24:08 | 003,405,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsrchvw.exe
[2009/07/13 17:22:04 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2009/07/13 17:21:29 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2009/07/13 17:20:00 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\termmgr.dll
[2009/07/13 17:19:57 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009/07/13 17:19:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2009/07/13 17:19:51 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tapi3.dll
[2009/07/13 17:19:51 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tapiui.dll
[2009/07/13 17:19:51 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2009/07/13 17:19:50 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TapiMigPlugin.dll
[2009/07/13 17:19:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TapiUnattend.exe
[2009/07/13 17:19:49 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wavemsp.dll
[2009/07/13 17:19:48 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\remotesp.tsp
[2009/07/13 17:19:48 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TapiSysprep.dll
[2009/07/13 17:19:45 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdprint.dll
[2009/07/13 17:19:45 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\g711codc.ax
[2009/07/13 17:19:43 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\telephon.cpl
[2009/07/13 17:19:43 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tapiperf.dll
[2009/07/13 17:19:41 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dialer.exe
[2009/07/13 17:19:41 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcmsetup.exe
[2009/07/13 17:19:38 | 000,448,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2009/07/13 17:19:37 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tapilua.dll
[2009/07/13 17:19:30 | 000,930,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpssvcs.dll
[2009/07/13 17:19:19 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hgprint.dll
[2009/07/13 17:19:09 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pmcsnap.dll
[2009/07/13 17:19:05 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll
[2009/07/13 17:19:03 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiobj.dll
[2009/07/13 17:19:02 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ppcsnap.dll
[2009/07/13 17:19:01 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compstui.dll
[2009/07/13 17:19:01 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2009/07/13 17:19:01 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2009/07/13 17:18:57 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printui.exe
[2009/07/13 17:18:57 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpnpinst.exe
[2009/07/13 17:18:42 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prncache.dll
[2009/07/13 17:18:41 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findnetprinters.dll
[2009/07/13 17:18:34 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2009/07/13 17:18:31 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2009/07/13 17:18:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2009/07/13 17:18:22 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2009/07/13 17:18:20 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe
[2009/07/13 17:18:19 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prntvpt.dll
[2009/07/13 17:18:19 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpprnext.dll
[2009/07/13 17:18:17 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2009/07/13 17:18:14 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bidispl.dll
[2009/07/13 17:18:08 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmonui.dll
[2009/07/13 17:18:07 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDPrintProxy.DLL
[2009/07/13 17:18:05 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PrintIsolationHost.exe
[2009/07/13 17:18:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PrintIsolationProxy.dll
[2009/07/13 17:18:02 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmib.dll
[2009/07/13 17:18:02 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localui.dll
[2009/07/13 17:17:56 | 000,601,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsFilt.dll
[2009/07/13 17:15:13 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaacmgr.exe
[2009/07/13 17:15:12 | 000,802,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WFS.exe
[2009/07/13 17:15:11 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiadefui.dll
[2009/07/13 17:15:09 | 000,669,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WFSR.dll
[2009/07/13 17:15:07 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMPOSE.dll
[2009/07/13 17:15:07 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMEX.dll
[2009/07/13 17:15:06 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMPOSERES.dll
[2009/07/13 17:15:04 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSAPI.dll
[2009/07/13 17:15:03 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOM.dll
[2009/07/13 17:15:02 | 000,925,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSRESM.dll
[2009/07/13 17:15:02 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSUTILITY.dll
[2009/07/13 17:15:02 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSUNATD.exe
[2009/07/13 17:14:59 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSXP32.dll
[2009/07/13 17:14:58 | 000,848,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSST.dll
[2009/07/13 17:14:58 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXST30.dll
[2009/07/13 17:14:58 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSEXT32.dll
[2009/07/13 17:14:58 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSMON.dll
[2009/07/13 17:14:56 | 000,544,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2009/07/13 17:14:53 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSROUTE.dll
[2009/07/13 17:14:53 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSEVENT.dll
[2009/07/13 17:14:52 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSTIFF.dll
[2009/07/13 17:14:52 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinFax.dll
[2009/07/13 17:14:51 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2009/07/13 17:14:48 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDScanProxy.dll
[2009/07/13 17:14:46 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sti.dll
[2009/07/13 17:14:44 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sti_ci.dll
[2009/07/13 17:14:42 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiavideo.dll
[2009/07/13 17:14:40 | 000,031,232 | ---- | C] (Twain Working Group) -- C:\Windows\twunk_32.exe
[2009/07/13 17:14:39 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2009/07/13 17:14:38 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiadss.dll
[2009/07/13 17:14:38 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiarpc.dll
[2009/07/13 17:14:35 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiascanprofiles.dll
[2009/07/13 17:14:33 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
[2009/07/13 17:14:33 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiatrace.dll
[2009/07/13 17:14:30 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DocumentPerformanceEvents.dll
[2009/07/13 17:14:30 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbrpm.sys
[2009/07/13 17:14:01 | 003,727,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2009/07/13 17:14:01 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2009/07/13 17:13:59 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2009/07/13 17:13:58 | 001,397,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2009/07/13 17:13:58 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2009/07/13 17:13:57 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AtBroker.exe
[2009/07/13 17:13:47 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msswch.dll
[2009/07/13 17:13:46 | 007,964,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2009/07/13 17:13:45 | 006,585,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2009/07/13 17:13:45 | 006,346,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2009/07/13 17:13:45 | 005,791,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2009/07/13 17:13:45 | 005,499,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2009/07/13 17:13:45 | 004,164,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2009/07/13 17:13:45 | 004,093,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2009/07/13 17:13:45 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2009/07/13 17:13:44 | 007,042,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2009/07/13 17:13:44 | 006,917,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2009/07/13 17:13:44 | 001,972,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2009/07/13 17:13:44 | 001,702,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2009/07/13 17:13:44 | 001,558,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2009/07/13 17:13:44 | 001,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2009/07/13 17:13:43 | 006,781,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2009/07/13 17:13:43 | 001,793,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2009/07/13 17:13:43 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2009/07/13 17:13:42 | 005,654,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2009/07/13 17:13:42 | 005,090,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2009/07/13 17:13:42 | 005,031,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2009/07/13 17:13:42 | 003,331,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2009/07/13 17:13:41 | 006,224,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2009/07/13 17:13:41 | 004,616,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2009/07/13 17:13:41 | 004,175,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2009/07/13 17:13:41 | 004,045,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2009/07/13 17:13:41 | 001,808,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2009/07/13 17:13:40 | 006,014,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2009/07/13 17:13:40 | 001,782,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2009/07/13 17:13:39 | 009,892,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2009/07/13 17:13:39 | 001,452,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2009/07/13 17:13:39 | 001,411,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2009/07/13 17:13:38 | 012,038,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2009/07/13 17:13:38 | 002,628,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2009/07/13 17:13:38 | 002,136,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2009/07/13 17:13:37 | 006,237,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2009/07/13 17:13:37 | 002,466,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2009/07/13 17:13:37 | 001,722,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2009/07/13 17:13:36 | 011,722,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2009/07/13 17:13:36 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2009/07/13 17:13:35 | 004,981,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2009/07/13 17:13:35 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2009/07/13 17:13:35 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2009/07/13 17:13:35 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2009/07/13 17:13:34 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2009/07/13 17:13:34 | 001,811,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2009/07/13 17:13:33 | 005,071,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2009/07/13 17:13:33 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2009/07/13 17:13:32 | 004,507,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2009/07/13 17:13:32 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2009/07/13 17:13:31 | 004,888,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2009/07/13 17:13:31 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2009/07/13 17:13:30 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2009/07/13 17:13:28 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2009/07/13 17:13:27 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2009/07/13 17:13:25 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2009/07/13 17:13:25 | 001,811,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2009/07/13 17:13:24 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2009/07/13 17:13:23 | 004,509,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2009/07/13 17:13:22 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2009/07/13 17:13:22 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2009/07/13 17:13:21 | 004,507,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2009/07/13 17:13:20 | 004,507,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2009/07/13 17:13:20 | 004,507,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2009/07/13 17:13:20 | 002,670,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2009/07/13 17:13:20 | 001,979,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2009/07/13 17:13:19 | 004,507,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2009/07/13 17:13:19 | 001,811,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2009/07/13 17:13:18 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2009/07/13 17:13:18 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2009/07/13 17:13:15 | 003,116,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2009/07/13 17:13:14 | 010,240,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2009/07/13 17:13:14 | 001,537,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2009/07/13 17:13:12 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2009/07/13 17:13:11 | 001,977,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2009/07/13 17:13:11 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2009/07/13 17:13:10 | 001,811,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2009/07/13 17:13:09 | 002,654,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2009/07/13 17:13:09 | 002,255,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2009/07/13 17:13:08 | 002,353,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2009/07/13 17:13:08 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2009/07/13 17:13:07 | 002,609,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2009/07/13 17:13:06 | 003,476,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2009/07/13 17:13:05 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2009/07/13 17:13:03 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2009/07/13 17:12:58 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2009/07/13 17:12:58 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2009/07/13 17:12:58 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2009/07/13 17:12:55 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msorcl32.dll
[2009/07/13 17:12:52 | 001,739,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2009/07/13 17:12:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2009/07/13 17:12:39 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2009/07/13 17:12:32 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apss.dll
[2009/07/13 17:12:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fixmapi.exe
[2009/07/13 17:12:29 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mapistub.dll
[2009/07/13 17:12:29 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mapi32.dll
[2009/07/13 17:12:29 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\winhlp32.exe
[2009/07/13 17:12:27 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\itircl.dll
[2009/07/13 17:12:24 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2009/07/13 17:12:22 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll
[2009/07/13 17:12:22 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hhsetup.dll
[2009/07/13 17:12:21 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apircl.dll
[2009/07/13 17:12:21 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HelpPaneProxy.dll
[2009/07/13 17:12:16 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.dll
[2009/07/13 17:12:16 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scripto.dll
[2009/07/13 17:12:15 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcji32.dll
[2009/07/13 17:12:12 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odtext32.dll
[2009/07/13 17:12:12 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odpdx32.dll
[2009/07/13 17:12:12 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odexl32.dll
[2009/07/13 17:12:11 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odfox32.dll
[2009/07/13 17:12:11 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oddbse32.dll
[2009/07/13 17:12:10 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbnetlib.dll
[2009/07/13 17:12:10 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.rll
[2009/07/13 17:12:07 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.rll
[2009/07/13 17:12:07 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.exe
[2009/07/13 17:12:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2009/07/13 17:12:05 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbnmpntw.dll
[2009/07/13 17:12:03 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.exe
[2009/07/13 17:11:59 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2009/07/13 17:11:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscpxl32.dLL
[2009/07/13 17:11:56 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcad32.exe
[2009/07/13 17:11:55 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32gt.dll
[2009/07/13 17:11:55 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ds32gt.dll
[2009/07/13 17:11:54 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscpx32r.dLL
[2009/07/13 17:11:50 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdart.dll
[2009/07/13 17:11:50 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msorc32r.dll
[2009/07/13 17:11:49 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdadiag.dll
[2009/07/13 17:11:48 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\simpdata.tlb
[2009/07/13 17:11:44 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdatsrc.tlb
[2009/07/13 17:11:38 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2009/07/13 17:11:37 | 001,672,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2009/07/13 17:11:37 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2009/07/13 17:11:37 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2009/07/13 17:11:18 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2009/07/13 17:10:34 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SoundRecorder.exe
[2009/07/13 17:10:28 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2009/07/13 17:10:20 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WavDest.dll
[2009/07/13 17:10:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysprepMCE.dll
[2009/07/13 17:09:58 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009/07/13 17:09:43 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\McxDriv.dll
[2009/07/13 17:09:37 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcsrchPH.dll
[2009/07/13 17:09:30 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPEncEn.dll
[2009/07/13 17:09:24 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2009/07/13 17:09:18 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2009/07/13 17:09:16 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2009/07/13 17:09:13 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2009/07/13 17:09:11 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2009/07/13 17:09:06 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpps.dll
[2009/07/13 17:09:05 | 001,568,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2009/07/13 17:09:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009/07/13 17:09:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009/07/13 17:09:00 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll
[2009/07/13 17:08:55 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpsrcwp.dll
[2009/07/13 17:08:52 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009/07/13 17:08:50 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ENC.DLL
[2009/07/13 17:08:50 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sharemediacpl.dll
[2009/07/13 17:08:49 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009/07/13 17:08:45 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSAC3ENC.DLL
[2009/07/13 17:08:43 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpcm.dll
[2009/07/13 17:08:33 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2009/07/13 17:08:32 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOD.DLL
[2009/07/13 17:08:27 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmidx.dll
[2009/07/13 17:08:24 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL
[2009/07/13 17:08:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmerror.dll
[2009/07/13 17:08:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll
[2009/07/13 17:08:16 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009/07/13 17:08:14 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2009/07/13 17:08:08 | 000,664,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2009/07/13 17:08:08 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSENCD.DLL
[2009/07/13 17:08:03 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmvdspa.dll
[2009/07/13 17:08:02 | 001,325,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOE.DLL
[2009/07/13 17:08:02 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iTVData.dll
[2009/07/13 17:08:00 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfvdsp.dll
[2009/07/13 17:07:59 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPG4DECD.DLL
[2009/07/13 17:07:59 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP43DECD.DLL
[2009/07/13 17:07:54 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMADMOE.DLL
[2009/07/13 17:07:52 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COLORCNV.DLL
[2009/07/13 17:07:48 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2009/07/13 17:07:48 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VIDRESZR.DLL
[2009/07/13 17:07:42 | 000,338,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SysFxUI.dll
[2009/07/13 17:07:42 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL
[2009/07/13 17:07:34 | 000,064,000 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2009/07/13 17:07:33 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMALFXGFXDSP.dll
[2009/07/13 17:07:30 | 000,609,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFWMAAEC.DLL
[2009/07/13 17:07:27 | 000,605,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlceqp30.dll
[2009/07/13 17:07:25 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DxpTaskSync.dll
[2009/07/13 17:07:25 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL
[2009/07/13 17:07:19 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlcese30.dll
[2009/07/13 17:07:19 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpdwcn.dll
[2009/07/13 17:07:16 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlceoledb30.dll
[2009/07/13 17:07:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmcodecdspps.dll
[2009/07/13 17:07:15 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
[2009/07/13 17:07:14 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DXPTaskRingtone.dll
[2009/07/13 17:07:14 | 000,547,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2009/07/13 17:07:14 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSync.dll
[2009/07/13 17:07:13 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncHost.exe
[2009/07/13 17:07:12 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncInfrastructure.dll
[2009/07/13 17:07:12 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll
[2009/07/13 17:07:09 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceSyncProvider.dll
[2009/07/13 17:07:09 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSyncMetastore.dll
[2009/07/13 17:07:09 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSyncProviders.dll
[2009/07/13 17:07:08 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WABSyncProvider.dll
[2009/07/13 17:07:07 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2009/07/13 17:07:04 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWiaCompat.dll
[2009/07/13 17:07:03 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceStatus.dll
[2009/07/13 17:07:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncInfrastructureps.dll
[2009/07/13 17:07:02 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncHostps.dll
[2009/07/13 17:06:58 | 000,844,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\WpdMtpDr.dll
[2009/07/13 17:06:57 | 000,577,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2009/07/13 17:06:53 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2009/07/13 17:06:53 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2009/07/13 17:06:51 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2009/07/13 17:06:51 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2009/07/13 17:06:49 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\WpdFs.dll
[2009/07/13 17:06:49 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Dxpserver.exe
[2009/07/13 17:06:47 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bdaplgin.ax
[2009/07/13 17:06:45 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2009/07/13 17:06:43 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswmdm.dll
[2009/07/13 17:06:41 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll
[2009/07/13 17:06:40 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cewmdm.dll
[2009/07/13 17:06:40 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2009/07/13 17:06:37 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll
[2009/07/13 17:06:34 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdmps.dll
[2009/07/13 17:06:33 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdmlog.dll
[2009/07/13 17:06:33 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SampleRes.dll
[2009/07/13 17:06:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxpps.dll
[2009/07/13 17:06:24 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kstvtune.ax
[2009/07/13 17:06:23 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksxbar.ax
[2009/07/13 17:06:20 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbisurf.ax
[2009/07/13 17:06:19 | 000,986,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2009/07/13 17:06:13 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2009/07/13 17:06:10 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2009/07/13 17:06:10 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbda.dll
[2009/07/13 17:06:09 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sberes.dll
[2009/07/13 17:06:03 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2009/07/13 17:06:02 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmdev.dll
[2009/07/13 17:05:59 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2009/07/13 17:05:54 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmnet.dll
[2009/07/13 17:05:45 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsPbdaCoInst.dll
[2009/07/13 17:05:39 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VBICodec.ax
[2009/07/13 17:05:38 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2009/07/13 17:05:37 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSTPager.ax
[2009/07/13 17:05:32 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cca.dll
[2009/07/13 17:05:31 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tvratings.dll
[2009/07/13 17:05:30 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2009/07/13 17:05:14 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XInput9_1_0.dll
[2009/07/13 17:05:13 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnsvr.exe
[2009/07/13 17:05:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnhupnp.dll
[2009/07/13 17:05:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dplaysvr.exe
[2009/07/13 17:05:07 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2009/07/13 17:05:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnhpast.dll
[2009/07/13 17:05:04 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnathlp.dll
[2009/07/13 17:05:03 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnlobby.dll
[2009/07/13 17:05:02 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnaddr.dll
[2009/07/13 17:05:00 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpmodemx.dll
[2009/07/13 17:04:58 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dplayx.dll
[2009/07/13 17:04:58 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpwsockx.dll
[2009/07/13 17:04:57 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gcdef.dll
[2009/07/13 17:04:57 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pid.dll
[2009/07/13 17:04:53 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2009/07/13 17:04:53 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dinput8.dll
[2009/07/13 17:04:53 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dinput.dll
[2009/07/13 17:04:52 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\joy.cpl
[2009/07/13 17:04:44 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
[2009/07/13 17:04:42 | 009,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmres.dll
[2009/07/13 17:04:37 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDump.dll
[2009/07/13 17:04:23 | 000,727,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2009/07/13 17:04:18 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009/07/13 17:04:05 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2009/07/13 17:04:02 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2009/07/13 17:03:57 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFPlay.dll
[2009/07/13 17:03:51 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2009/07/13 17:03:51 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfds.dll
[2009/07/13 17:03:47 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009/07/13 17:03:44 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009/07/13 17:03:40 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009/07/13 17:03:39 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qcap.dll
[2009/07/13 17:03:36 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsdmo.dll
[2009/07/13 17:03:36 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2009/07/13 17:03:35 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfh264enc.dll
[2009/07/13 17:03:35 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfAACEnc.dll
[2009/07/13 17:03:34 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdv.dll
[2009/07/13 17:03:31 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2009/07/13 17:03:30 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dvdupgrd.exe
[2009/07/13 17:03:29 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\encapi.dll
[2009/07/13 17:03:28 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2009/07/13 17:03:26 | 000,453,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2009/07/13 17:03:24 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcicda.dll
[2009/07/13 17:03:22 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2009/07/13 17:03:22 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciwave.dll
[2009/07/13 17:03:21 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2009/07/13 17:03:21 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vfwwdm32.dll
[2009/07/13 17:03:19 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksproxy.ax
[2009/07/13 17:03:19 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2009/07/13 17:03:19 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dvdplay.exe
[2009/07/13 17:03:18 | 000,733,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedwipes.dll
[2009/07/13 17:03:18 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2009/07/13 17:03:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll
[2009/07/13 17:03:17 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciqtz32.dll
[2009/07/13 17:03:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
[2009/07/13 17:03:15 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2009/07/13 17:03:15 | 000,022,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\streamci.dll
[2009/07/13 17:03:12 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfdvdec.dll
[2009/07/13 17:03:10 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWorkspace.dll
[2009/07/13 17:03:10 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmjpegdec.dll
[2009/07/13 17:03:10 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amstream.dll
[2009/07/13 17:03:09 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
[2009/07/13 17:03:09 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmscript.dll
[2009/07/13 17:03:08 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmstyle.dll
[2009/07/13 17:03:08 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2009/07/13 17:03:08 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2009/07/13 17:03:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
[2009/07/13 17:03:08 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dswave.dll
[2009/07/13 17:03:06 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmime.dll
[2009/07/13 17:03:06 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmloader.dll
[2009/07/13 17:03:05 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmcompos.dll
[2009/07/13 17:03:05 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmband.dll
[2009/07/13 17:03:02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
[2009/07/13 17:02:56 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsRdpWebAccess.dll
[2009/07/13 17:02:55 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsmf.dll
[2009/07/13 17:02:54 | 000,245,248 | ---- | C] (Microsoft) -- C:\Windows\System32\DShowRdpFilter.dll
[2009/07/13 17:02:47 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpshell.exe
[2009/07/13 17:02:47 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\usbdr.dll
[2009/07/13 17:02:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsPnPRdrCoInstaller.dll
[2009/07/13 17:02:42 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpinit.exe
[2009/07/13 17:02:40 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpd3d.dll
[2009/07/13 17:02:36 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpsign.exe
[2009/07/13 17:02:34 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tspubwmi.dll
[2009/07/13 17:02:28 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2009/07/13 17:02:28 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2009/07/13 17:02:26 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2009/07/13 17:02:22 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscfgwmi.dll
[2009/07/13 17:02:19 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSErrRedir.dll
[2009/07/13 17:02:18 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsmproxy.dll
[2009/07/13 17:02:15 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tskill.exe
[2009/07/13 17:02:14 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cfgbkend.dll
[2009/07/13 17:02:14 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shadow.exe
[2009/07/13 17:02:14 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rwinsta.exe
[2009/07/13 17:02:13 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qwinsta.exe
[2009/07/13 17:02:13 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfts.dll
[2009/07/13 17:02:11 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quser.exe
[2009/07/13 17:02:11 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qappsrv.exe
[2009/07/13 17:02:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reset.exe
[2009/07/13 17:02:09 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qprocess.exe
[2009/07/13 17:02:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msg.exe
[2009/07/13 17:02:09 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chgusr.exe
[2009/07/13 17:02:09 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\query.exe
[2009/07/13 17:02:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logoff.exe
[2009/07/13 17:02:07 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsdiscon.exe
[2009/07/13 17:02:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscon.exe
[2009/07/13 17:02:06 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chgport.exe
[2009/07/13 17:02:05 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chglogon.exe
[2009/07/13 17:02:04 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\change.exe
[2009/07/13 17:02:04 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcfgex.dll
[2009/07/13 17:02:03 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpclip.exe
[2009/07/13 17:02:03 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\utildll.dll
[2009/07/13 17:02:01 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpendp.dll
[2009/07/13 17:01:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RDPENCDD.dll
[2009/07/13 17:01:50 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2009/07/13 17:01:49 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tlscsp.dll
[2009/07/13 17:01:46 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2009/07/13 17:01:40 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsddd.dll
[2009/07/13 17:01:37 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprtPS.dll
[2009/07/13 17:01:33 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2009/07/13 17:01:33 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdprefdrvapi.dll
[2009/07/13 17:01:31 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RDPREFDD.dll
[2009/07/13 16:59:10 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verifier.exe
[2009/07/13 16:58:32 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regsvr32.exe
[2009/07/13 16:58:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regini.exe
[2009/07/13 16:58:02 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2009/07/13 16:57:28 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskkill.exe
[2009/07/13 16:57:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tasklist.exe
[2009/07/13 16:57:20 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systeminfo.exe
[2009/07/13 16:56:53 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WWanAPI.dll
[2009/07/13 16:56:51 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2009/07/13 16:56:43 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2009/07/13 16:56:43 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wwanadvui.dll
[2009/07/13 16:56:42 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2009/07/13 16:56:41 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanconn.dll
[2009/07/13 16:56:39 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscmmc.dll
[2009/07/13 16:56:38 | 000,674,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanmm.dll
[2009/07/13 16:56:37 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwancfg.dll
[2009/07/13 16:56:37 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wwanpref.dll
[2009/07/13 16:56:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netprof.dll
[2009/07/13 16:56:36 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnsext.dll
[2009/07/13 16:56:35 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WWanHC.dll
[2009/07/13 16:56:34 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2009/07/13 16:56:34 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Eap3Host.exe
[2009/07/13 16:56:32 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EAPQEC.DLL
[2009/07/13 16:56:32 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll
[2009/07/13 16:56:32 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwaninst.dll
[2009/07/13 16:56:31 | 001,114,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2009/07/13 16:56:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2009/07/13 16:56:30 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlmgp.dll
[2009/07/13 16:56:29 | 001,004,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PeerDistSvc.dll
[2009/07/13 16:56:27 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CRPPresentation.dll
[2009/07/13 16:56:26 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProj.exe
[2009/07/13 16:56:26 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
[2009/07/13 16:56:24 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlmsprep.dll
[2009/07/13 16:56:23 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PeerDistSh.dll
[2009/07/13 16:56:15 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2phost.exe
[2009/07/13 16:56:14 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PeerDistHttpTrans.dll
[2009/07/13 16:56:09 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PeerDistWSDDiscoProv.dll
[2009/07/13 16:56:07 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PeerDist.dll
[2009/07/13 16:56:04 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2009/07/13 16:56:03 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pcollab.dll
[2009/07/13 16:56:03 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drt.dll
[2009/07/13 16:56:03 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2P.dll
[2009/07/13 16:55:59 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pnetsh.dll
[2009/07/13 16:55:56 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drttransport.dll
[2009/07/13 16:55:55 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drtprov.dll
[2009/07/13 16:55:54 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2009/07/13 16:55:50 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WLanConn.dll
[2009/07/13 16:55:50 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Pnrphc.dll
[2009/07/13 16:55:49 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VAN.dll
[2009/07/13 16:55:49 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\collab.cpl
[2009/07/13 16:55:48 | 000,748,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WlanMM.dll
[2009/07/13 16:55:45 | 000,845,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RASMM.dll
[2009/07/13 16:55:45 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Groupinghc.dll
[2009/07/13 16:55:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WINSRPC.DLL
[2009/07/13 16:55:29 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whhelper.dll
[2009/07/13 16:55:28 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\upnpcont.exe
[2009/07/13 16:55:24 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\udhisapi.dll
[2009/07/13 16:55:23 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2009/07/13 16:55:23 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2009/07/13 16:55:22 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdminst.dll
[2009/07/13 16:55:22 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unimdmat.dll
[2009/07/13 16:55:22 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uicom.dll
[2009/07/13 16:55:21 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\serwvdrv.dll
[2009/07/13 16:55:21 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\serialui.dll
[2009/07/13 16:55:20 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\umdmxfrm.dll
[2009/07/13 16:55:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2009/07/13 16:55:16 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009/07/13 16:55:16 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PING.EXE
[2009/07/13 16:55:16 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TRACERT.EXE
[2009/07/13 16:55:15 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2009/07/13 16:55:15 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009/07/13 16:55:14 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PATHPING.EXE
[2009/07/13 16:55:12 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009/07/13 16:55:11 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetmib1.dll
[2009/07/13 16:55:11 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009/07/13 16:55:11 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009/07/13 16:55:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009/07/13 16:55:08 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icmp.dll
[2009/07/13 16:55:06 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll
[2009/07/13 16:55:05 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2009/07/13 16:55:04 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsockhc.dll
[2009/07/13 16:55:04 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\snmpapi.dll
[2009/07/13 16:55:04 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mgmtapi.dll
[2009/07/13 16:55:02 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscmisetup.dll
[2009/07/13 16:55:02 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshelper.dll
[2009/07/13 16:54:59 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rnr20.dll
[2009/07/13 16:54:58 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmstp.exe
[2009/07/13 16:54:56 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msafd.dll
[2009/07/13 16:54:54 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2009/07/13 16:54:54 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2009/07/13 16:54:52 | 000,761,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2009/07/13 16:54:47 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasphone.exe
[2009/07/13 16:54:47 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmbmgr.dll
[2009/07/13 16:54:46 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2009/07/13 16:54:45 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vpnike.dll
[2009/07/13 16:54:45 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtm.dll
[2009/07/13 16:54:44 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2009/07/13 16:54:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vpnikeapi.dll
[2009/07/13 16:54:42 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprddm.dll
[2009/07/13 16:54:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasctrs.dll
[2009/07/13 16:54:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netsh.exe
[2009/07/13 16:54:38 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasautou.exe
[2009/07/13 16:54:37 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll
[2009/07/13 16:54:35 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll
[2009/07/13 16:54:32 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdl32.exe
[2009/07/13 16:54:31 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprmsg.dll
[2009/07/13 16:54:29 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2009/07/13 16:54:25 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtrmgr.dll
[2009/07/13 16:54:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtprio.dll
[2009/07/13 16:54:16 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2009/07/13 16:54:16 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmstplua.dll
[2009/07/13 16:54:15 | 000,484,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2009/07/13 16:54:13 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmutil.dll
[2009/07/13 16:54:13 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmcfg32.dll
[2009/07/13 16:54:13 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmpbk32.dll
[2009/07/13 16:54:12 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmlua.dll
[2009/07/13 16:54:09 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2009/07/13 16:54:08 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll
[2009/07/13 16:54:04 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2009/07/13 16:54:03 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2009/07/13 16:54:01 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eqossnap.dll
[2009/07/13 16:54:00 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2009/07/13 16:53:57 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2009/07/13 16:53:57 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
[2009/07/13 16:53:54 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fphc.dll
[2009/07/13 16:53:51 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netbios.dll
[2009/07/13 16:53:47 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nci.dll
[2009/07/13 16:53:47 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshnetbs.dll
[2009/07/13 16:53:45 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\irftp.exe
[2009/07/13 16:53:40 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2009/07/13 16:53:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPHLPR.DLL
[2009/07/13 16:53:35 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\napdsnap.dll
[2009/07/13 16:53:35 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netbtugc.exe
[2009/07/13 16:53:34 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPCRYPT.DLL
[2009/07/13 16:53:32 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nbtstat.exe
[2009/07/13 16:53:31 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2009/07/13 16:53:30 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2009/07/13 16:53:30 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2009/07/13 16:53:29 | 000,994,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2009/07/13 16:53:29 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nrpsrv.dll
[2009/07/13 16:53:28 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2009/07/13 16:53:28 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\irprops.cpl
[2009/07/13 16:53:28 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2009/07/13 16:53:28 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2009/07/13 16:53:28 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2009/07/13 16:53:27 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2009/07/13 16:53:26 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\irclass.dll
[2009/07/13 16:53:25 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2009/07/13 16:53:25 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshirda.dll
[2009/07/13 16:53:23 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2009/07/13 16:53:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ias.dll
[2009/07/13 16:53:22 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigPlugin.dll
[2009/07/13 16:53:22 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2009/07/13 16:53:21 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2009/07/13 16:53:21 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2009/07/13 16:53:20 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2009/07/13 16:53:18 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2009/07/13 16:53:18 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dtsh.dll
[2009/07/13 16:53:17 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2009/07/13 16:53:14 | 000,462,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2009/07/13 16:53:14 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lltdapi.dll
[2009/07/13 16:53:13 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2009/07/13 16:53:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lltdres.dll
[2009/07/13 16:53:11 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupSNK.exe
[2009/07/13 16:53:06 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wzcdlg.dll
[2009/07/13 16:53:05 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallControlPanel.dll
[2009/07/13 16:53:04 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2009/07/13 16:53:03 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2009/07/13 16:53:01 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2009/07/13 16:53:01 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnApi.dll
[2009/07/13 16:53:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bridgeunattend.exe
[2009/07/13 16:53:00 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2009/07/13 16:52:59 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2009/07/13 16:52:59 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2009/07/13 16:52:58 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsigd.dll
[2009/07/13 16:52:58 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnEapPeerProxy.dll
[2009/07/13 16:52:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnEapAuthProxy.dll
[2009/07/13 16:52:58 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hnetmon.dll
[2009/07/13 16:52:57 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshipsec.dll
[2009/07/13 16:52:56 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WfHC.dll
[2009/07/13 16:52:55 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authfwcfg.dll
[2009/07/13 16:52:55 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlprovi.dll
[2009/07/13 16:52:54 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brdgcfg.dll
[2009/07/13 16:52:53 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWGP.dll
[2009/07/13 16:52:53 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2009/07/13 16:52:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bridgeres.dll
[2009/07/13 16:52:51 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlahc.dll
[2009/07/13 16:52:50 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2009/07/13 16:52:49 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2009/07/13 16:52:49 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fwcfg.dll
[2009/07/13 16:52:49 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2009/07/13 16:52:48 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nettrace.dll
[2009/07/13 16:52:47 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndishc.dll
[2009/07/13 16:52:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\igdDiag.dll
[2009/07/13 16:52:47 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3hc.dll
[2009/07/13 16:52:46 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Firewall.cpl
[2009/07/13 16:52:44 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2009/07/13 16:52:44 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2009/07/13 16:52:44 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ucmhc.dll
[2009/07/13 16:52:43 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winethc.dll
[2009/07/13 16:52:43 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnshc.dll
[2009/07/13 16:52:43 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\correngine.dll
[2009/07/13 16:52:43 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndiscapCfg.dll
[2009/07/13 16:52:38 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2009/07/13 16:52:37 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netdiagfx.dll
[2009/07/13 16:52:34 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPSTAT.EXE
[2009/07/13 16:52:29 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
[2009/07/13 16:52:28 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssha.dll
[2009/07/13 16:52:27 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfapi.dll
[2009/07/13 16:52:24 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QSHVHOST.DLL
[2009/07/13 16:52:24 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NAPMONTR.DLL
[2009/07/13 16:52:23 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfhcdiscovery.dll
[2009/07/13 16:52:23 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndfetw.dll
[2009/07/13 16:52:20 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DHCPQEC.DLL
[2009/07/13 16:52:20 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndproxystub.dll
[2009/07/13 16:52:19 | 001,344,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2009/07/13 16:52:19 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsauth.dll
[2009/07/13 16:52:18 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpsapi.dll
[2009/07/13 16:52:17 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QSVRMGMT.DLL
[2009/07/13 16:52:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\QCLIPROV.DLL
[2009/07/13 16:52:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll
[2009/07/13 16:52:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\napipsec.dll
[2009/07/13 16:52:10 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshavmsg.dll
[2009/07/13 16:52:10 | 000,265,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpui.dll
[2009/07/13 16:52:10 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\btpanui.dll
[2009/07/13 16:52:10 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifimp.sys
[2009/07/13 16:52:08 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlandlg.dll
[2009/07/13 16:52:07 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2009/07/13 16:52:07 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3ui.dll
[2009/07/13 16:52:06 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2009/07/13 16:52:06 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpclnt.dll
[2009/07/13 16:52:05 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncpa.cpl
[2009/07/13 16:52:03 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2009/07/13 16:51:56 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2009/07/13 16:51:56 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2009/07/13 16:51:55 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlancfg.dll
[2009/07/13 16:51:55 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WLanHC.dll
[2009/07/13 16:51:55 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2009/07/13 16:51:55 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2009/07/13 16:51:55 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlaninst.dll
[2009/07/13 16:51:55 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
[2009/07/13 16:51:54 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2009/07/13 16:51:53 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[2009/07/13 16:51:45 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2009/07/13 16:51:45 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2009/07/13 16:51:44 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\onexui.dll
[2009/07/13 16:51:41 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwizards.dll
[2009/07/13 16:51:41 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2gpstore.dll
[2009/07/13 16:51:41 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwizard.exe
[2009/07/13 16:51:38 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwtpdui.dll
[2009/07/13 16:51:37 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwtpw32.dll
[2009/07/13 16:51:37 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthpanapi.dll
[2009/07/13 16:51:36 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xwreg.dll
[2009/07/13 16:51:30 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2009/07/13 16:51:28 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2009/07/13 16:51:27 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2009/07/13 16:51:27 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2009/07/13 16:51:21 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\1394bus.sys
[2009/07/13 16:51:18 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vidcap.ax
[2009/07/13 16:51:16 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys
[2009/07/13 16:51:15 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys
[2009/07/13 16:51:15 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbceip.dll
[2009/07/13 16:51:14 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CIRCoInst.dll
[2009/07/13 16:51:11 | 000,034,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\winusb.sys
[2009/07/13 16:51:10 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbperf.dll
[2009/07/13 16:51:09 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winusb.dll
[2009/07/13 16:51:06 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2009/07/13 16:51:02 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2009/07/13 16:51:01 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2009/07/13 16:51:00 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2009/07/13 16:50:57 | 000,053,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys
[2009/07/13 16:50:53 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2009/07/13 16:50:21 | 000,567,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2009/07/13 16:50:16 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2009/07/13 16:48:06 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TabletPC.cpl
[2009/07/13 16:48:05 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe
[2009/07/13 16:48:02 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2009/07/13 16:47:53 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MultiDigiMon.exe
[2009/07/13 16:47:42 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jnwmon.dll
[2009/07/13 16:47:02 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hwrreg.exe
[2009/07/13 16:47:01 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hwrcomp.exe
[2009/07/13 16:46:51 | 002,969,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIHub.dll
[2009/07/13 16:46:48 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webservices.dll
[2009/07/13 16:46:36 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2009/07/13 16:46:32 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Tabbtn.dll
[2009/07/13 16:46:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TabbtnEx.dll
[2009/07/13 16:46:13 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsicpl.dll
[2009/07/13 16:46:13 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsicli.exe
[2009/07/13 16:46:12 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsicpl.exe
[2009/07/13 16:46:11 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAuthn.exe
[2009/07/13 16:46:11 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsidsc.dll
[2009/07/13 16:46:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsiwmi.dll
[2009/07/13 16:46:07 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2009/07/13 16:46:06 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsium.dll
[2009/07/13 16:46:06 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsied.dll
[2009/07/13 16:46:04 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2009/07/13 16:46:03 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2009/07/13 16:45:57 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\mcd.sys
[2009/07/13 16:45:56 | 000,140,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\scsiport.sys
[2009/07/13 16:45:55 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll
[2009/07/13 16:45:53 | 000,392,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2009/07/13 16:45:53 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tape.sys
[2009/07/13 16:45:50 | 000,035,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2009/07/13 16:45:45 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2009/07/13 16:45:44 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2009/07/13 16:45:38 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2009/07/13 16:45:32 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LocationNotifications.exe
[2009/07/13 16:45:30 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\defaultlocationcpl.dll
[2009/07/13 16:45:28 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\smclib.sys
[2009/07/13 16:45:26 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LocationApi.dll
[2009/07/13 16:45:25 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SensorsCpl.dll
[2009/07/13 16:45:25 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2009/07/13 16:45:25 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll
[2009/07/13 16:45:24 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayApi.dll
[2009/07/13 16:45:19 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SensorsApi.dll
[2009/07/13 16:45:16 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2009/07/13 16:45:16 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayClassInstaller.dll
[2009/07/13 16:45:16 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2009/07/13 16:45:15 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SensorsClassExtension.dll
[2009/07/13 16:45:05 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2009/07/13 16:45:03 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2009/07/13 16:45:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iologmsg.dll
[2009/07/13 16:44:46 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2009/07/13 16:44:28 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comsnap.dll
[2009/07/13 16:44:23 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009/07/13 16:44:20 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dcomcnfg.exe
[2009/07/13 16:44:19 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comrepl.dll
[2009/07/13 16:44:15 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtstocom.exe
[2009/07/13 16:44:13 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\stclient.dll
[2009/07/13 16:44:12 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\txflog.dll
[2009/07/13 16:44:11 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\catsrvps.dll
[2009/07/13 16:44:10 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcuiu.dll
[2009/07/13 16:44:08 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxlegih.dll
[2009/07/13 16:44:08 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxdm.dll
[2009/07/13 16:44:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxex.dll
[2009/07/13 16:44:04 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcVSp1res.dll
[2009/07/13 16:44:03 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtclog.dll
[2009/07/13 16:44:02 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009/07/13 16:44:00 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olecli32.dll
[2009/07/13 16:43:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olesvr32.dll
[2009/07/13 16:43:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\stdole2.tlb
[2009/07/13 16:43:52 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dllhst3g.exe
[2009/07/13 16:43:49 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olethk32.dll
[2009/07/13 16:43:48 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\System32\RPCNDFP.dll
[2009/07/13 16:43:47 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprop.dll
[2009/07/13 16:43:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comcat.dll
[2009/07/13 16:43:45 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RpcPing.exe
[2009/07/13 16:43:45 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleres.dll
[2009/07/13 16:43:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RpcNs4.dll
[2009/07/13 16:43:42 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcnsh.dll
[2009/07/13 16:43:42 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RpcDiag.dll
[2009/07/13 16:43:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2009/07/13 16:43:35 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hlink.dll
[2009/07/13 16:43:20 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msidcrl30.dll
[2009/07/13 16:43:16 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2009/07/13 16:43:12 | 006,376,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspaint.exe
[2009/07/13 16:42:45 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2009/07/13 16:42:43 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2009/07/13 16:42:43 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2009/07/13 16:42:28 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispex.dll
[2009/07/13 16:42:27 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshcon.dll
[2009/07/13 16:42:24 | 020,268,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imageres.dll
[2009/07/13 16:42:18 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2009/07/13 16:42:16 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009/07/13 16:42:16 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2009/07/13 16:42:12 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceCenter.dll
[2009/07/13 16:42:12 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SNTSearch.dll
[2009/07/13 16:42:10 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2009/07/13 16:42:09 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll
[2009/07/13 16:42:07 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2009/07/13 16:42:07 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\StorageContextHandler.dll
[2009/07/13 16:42:06 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2009/07/13 16:42:06 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2009/07/13 16:42:05 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2009/07/13 16:42:05 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BWUnpairElevated.dll
[2009/07/13 16:42:04 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingFolder.dll
[2009/07/13 16:42:01 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2009/07/13 16:41:59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceUxRes.dll
[2009/07/13 16:41:57 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
[2009/07/13 16:41:55 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verclsid.exe
[2009/07/13 16:41:54 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2009/07/13 16:41:49 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\runonce.exe
[2009/07/13 16:41:48 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aclui.dll
[2009/07/13 16:41:47 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imagesp1.dll
[2009/07/13 16:41:47 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winver.exe
[2009/07/13 16:41:40 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RunLegacyCPLElevated.exe
[2009/07/13 16:41:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegCtrl.dll
[2009/07/13 16:41:39 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\moricons.dll
[2009/07/13 16:41:38 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pifmgr.dll
[2009/07/13 16:41:37 | 001,092,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmncliM.dll
[2009/07/13 16:41:31 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll
[2009/07/13 16:41:31 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\zgmprxy.dll
[2009/07/13 16:41:28 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\calc.exe
[2009/07/13 16:41:26 | 006,214,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CardGames.dll
[2009/07/13 16:41:26 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2009/07/13 16:41:21 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\charmap.exe
[2009/07/13 16:41:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercfg.cpl
[2009/07/13 16:41:19 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontview.exe
[2009/07/13 16:41:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mystify.scr
[2009/07/13 16:41:15 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Bubbles.scr
[2009/07/13 16:41:15 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssText3d.scr
[2009/07/13 16:41:15 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Ribbons.scr
[2009/07/13 16:41:15 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efsadu.dll
[2009/07/13 16:41:14 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2009/07/13 16:41:14 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dskquota.dll
[2009/07/13 16:41:14 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\panmap.dll
[2009/07/13 16:41:13 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpksetup.exe
[2009/07/13 16:41:12 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\intl.cpl
[2009/07/13 16:41:12 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpremove.exe
[2009/07/13 16:41:11 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usbui.dll
[2009/07/13 16:41:10 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2009/07/13 16:41:10 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msports.dll
[2009/07/13 16:41:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LangCleanupSysprepAction.dll
[2009/07/13 16:41:05 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MUILanguageCleanup.dll
[2009/07/13 16:41:05 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\getuname.dll
[2009/07/13 16:41:04 | 000,309,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cttune.exe
[2009/07/13 16:41:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpksetupproxyserv.dll
[2009/07/13 16:41:03 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\console.dll
[2009/07/13 16:41:03 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrnsave.scr
[2009/07/13 16:41:02 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2009/07/13 16:41:00 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActionCenterCPL.dll
[2009/07/13 16:41:00 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2009/07/13 16:41:00 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\write.exe
[2009/07/13 16:41:00 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\write.exe
[2009/07/13 16:40:59 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskbarcpl.dll
[2009/07/13 16:40:59 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cttunesvr.exe
[2009/07/13 16:40:57 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll
[2009/07/13 16:40:55 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll
[2009/07/13 16:40:51 | 002,157,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll
[2009/07/13 16:40:50 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sud.dll
[2009/07/13 16:40:48 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Display.dll
[2009/07/13 16:40:48 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2009/07/13 16:40:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesRemote.exe
[2009/07/13 16:40:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesProtection.exe
[2009/07/13 16:40:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesPerformance.exe
[2009/07/13 16:40:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesHardware.exe
[2009/07/13 16:40:47 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesDataExecutionPrevention.exe
[2009/07/13 16:40:44 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesComputerName.exe
[2009/07/13 16:40:44 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesAdvanced.exe
[2009/07/13 16:40:44 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ComputerDefaults.exe
[2009/07/13 16:40:43 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2009/07/13 16:40:43 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OptionalFeatures.exe
[2009/07/13 16:40:42 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DpiScaling.exe
[2009/07/13 16:40:41 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceProperties.exe
[2009/07/13 16:40:41 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AdapterTroubleshooter.exe
[2009/07/13 16:40:40 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UserAccountControlSettings.dll
[2009/07/13 16:40:37 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
[2009/07/13 16:40:37 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\desk.cpl
[2009/07/13 16:40:34 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2009/07/13 16:40:34 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UserAccountControlSettings.exe
[2009/07/13 16:40:33 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2009/07/13 16:40:32 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\main.cpl
[2009/07/13 16:40:32 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2009/07/13 16:40:29 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2009/07/13 16:40:24 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2009/07/13 16:40:24 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2009/07/13 16:40:22 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\isoburn.exe
[2009/07/13 16:40:20 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2009/07/13 16:40:18 | 000,766,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2009/07/13 16:40:18 | 000,212,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cleanmgr.exe
[2009/07/13 16:40:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\grpconv.exe
[2009/07/13 16:40:18 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GettingStarted.exe
[2009/07/13 16:40:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systray.exe
[2009/07/13 16:40:14 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\control.exe
[2009/07/13 16:40:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
[2009/07/13 16:40:13 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcmig.dll
[2009/07/13 16:40:05 | 000,031,232 | ---- | C] (Microsoft) -- C:\Windows\System32\usk.rs
[2009/07/13 16:40:04 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc.rs
[2009/07/13 16:40:04 | 000,007,680 | ---- | C] (Microsoft) -- C:\Windows\System32\csrr.rs
[2009/07/13 16:40:04 | 000,004,096 | ---- | C] (Microsoft) -- C:\Windows\System32\WEB.rs
[2009/07/13 16:40:03 | 000,053,760 | ---- | C] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2009/07/13 16:40:03 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2009/07/13 16:40:01 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2009/07/13 16:40:00 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll
[2009/07/13 16:40:00 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\System32\cero.rs
[2009/07/13 16:40:00 | 000,037,376 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi.rs
[2009/07/13 16:40:00 | 000,016,896 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2009/07/13 16:39:59 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.dll
[2009/07/13 16:39:57 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2009/07/13 16:39:57 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2009/07/13 16:39:56 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
[2009/07/13 16:39:53 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OobeFldr.dll
[2009/07/13 16:39:50 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shpafact.dll
[2009/07/13 16:39:46 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2009/07/13 16:39:42 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msident.dll
[2009/07/13 16:39:42 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Netplwiz.exe
[2009/07/13 16:39:40 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msidntld.dll
[2009/07/13 16:39:31 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DisplaySwitch.exe
[2009/07/13 16:39:30 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2009/07/13 16:39:28 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
[2009/07/13 16:39:26 | 000,941,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2009/07/13 16:39:24 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
[2009/07/13 16:39:23 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fde.dll
[2009/07/13 16:39:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2009/07/13 16:39:03 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mctadmin.exe
[2009/07/13 16:39:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2009/07/13 16:38:57 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mctres.dll
[2009/07/13 16:38:56 | 000,514,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shellstyle.dll
[2009/07/13 16:38:54 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpprefcl.dll
[2009/07/13 16:38:54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UXInit.dll
[2009/07/13 16:38:53 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2009/07/13 16:38:50 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2009/07/13 16:38:49 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shunimpl.dll
[2009/07/13 16:38:47 | 000,951,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2009/07/13 16:38:40 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AdmTmpl.dll
[2009/07/13 16:38:40 | 000,339,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appmgr.dll
[2009/07/13 16:38:39 | 000,464,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrptadm.dll
[2009/07/13 16:38:32 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2009/07/13 16:38:32 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpscript.exe
[2009/07/13 16:38:29 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpscript.dll
[2009/07/13 16:38:15 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\net1.exe
[2009/07/13 16:38:09 | 000,260,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsnt.dll
[2009/07/13 16:38:07 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsldp.dll
[2009/07/13 16:38:02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2009/07/13 16:37:57 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\w32topl.dll
[2009/07/13 16:37:54 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netjoin.dll
[2009/07/13 16:37:54 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\djoin.exe
[2009/07/13 16:37:52 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nltest.exe
[2009/07/13 16:37:52 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\net.exe
[2009/07/13 16:37:50 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\neth.dll
[2009/07/13 16:37:47 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\activeds.tlb
[2009/07/13 16:37:46 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfscli.dll
[2009/07/13 16:37:45 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logoncli.dll
[2009/07/13 16:37:40 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\at.exe
[2009/07/13 16:37:38 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll
[2009/07/13 16:37:37 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schedcli.dll
[2009/07/13 16:37:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sscore.dll
[2009/07/13 16:37:34 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pautoenr.dll
[2009/07/13 16:37:31 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netmsg.dll
[2009/07/13 16:37:29 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adprovider.dll
[2009/07/13 16:37:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wincredprovider.dll
[2009/07/13 16:37:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\biocpl.dll
[2009/07/13 16:37:27 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapiprovider.dll
[2009/07/13 16:37:27 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2009/07/13 16:37:27 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2009/07/13 16:37:26 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cngprovider.dll
[2009/07/13 16:37:26 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capiprovider.dll
[2009/07/13 16:37:26 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
[2009/07/13 16:37:20 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winshfhc.dll
[2009/07/13 16:37:19 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Vault.dll
[2009/07/13 16:37:18 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SrpUxNativeSnapIn.dll
[2009/07/13 16:37:15 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winbio.dll
[2009/07/13 16:37:11 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VaultCmd.exe
[2009/07/13 16:37:09 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BioCredProv.dll
[2009/07/13 16:37:08 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vaultsvc.dll
[2009/07/13 16:37:07 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IdListen.dll
[2009/07/13 16:37:07 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VaultSysUi.exe
[2009/07/13 16:37:06 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OnLineIDCpl.dll
[2009/07/13 16:37:02 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AppIdPolicyEngineApi.dll
[2009/07/13 16:37:02 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VaultCredProvider.dll
[2009/07/13 16:37:01 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2009/07/13 16:37:00 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vaultcli.dll
[2009/07/13 16:36:56 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertPolEng.dll
[2009/07/13 16:36:56 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IDStore.dll
[2009/07/13 16:36:54 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2009/07/13 16:36:51 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2009/07/13 16:36:45 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlrmdr.exe
[2009/07/13 16:36:45 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WlS0WndH.dll
[2009/07/13 16:36:44 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpnotify.exe
[2009/07/13 16:36:43 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slui.exe
[2009/07/13 16:36:41 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sas.dll
[2009/07/13 16:36:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmsgapi.dll
[2009/07/13 16:36:39 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysntfy.dll
[2009/07/13 16:36:23 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppwmi.dll
[2009/07/13 16:36:18 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppcc.dll
[2009/07/13 16:36:11 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppcext.dll
[2009/07/13 16:36:09 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppobjs.dll
[2009/07/13 16:36:08 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppcomapi.dll
[2009/07/13 16:36:07 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppcommdlg.dll
[2009/07/13 16:35:53 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppwinob.dll
[2009/07/13 16:35:40 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppinst.dll
[2009/07/13 16:35:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcext.dll
[2009/07/13 16:34:55 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ksetup.exe
[2009/07/13 16:34:45 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setspn.exe
[2009/07/13 16:34:40 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\klist.exe
[2009/07/13 16:34:40 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syskey.exe
[2009/07/13 16:34:26 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2009/07/13 16:34:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gptext.dll
[2009/07/13 16:34:22 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2009/07/13 16:34:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\userinit.exe
[2009/07/13 16:34:16 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2009/07/13 16:34:14 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\negoexts.dll
[2009/07/13 16:34:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\proquota.exe
[2009/07/13 16:34:13 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AzSqlExt.dll
[2009/07/13 16:34:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DDACLSys.dll
[2009/07/13 16:34:10 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shutdown.exe
[2009/07/13 16:34:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\profprov.dll
[2009/07/13 16:34:07 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditcse.dll
[2009/07/13 16:34:06 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuditPolicyGPInterop.dll
[2009/07/13 16:34:05 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2009/07/13 16:34:04 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuditNativeSnapIn.dll
[2009/07/13 16:34:03 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdkey.exe
[2009/07/13 16:34:02 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpolmsg.dll
[2009/07/13 16:34:02 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\credwiz.exe
[2009/07/13 16:34:00 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\keymgr.dll
[2009/07/13 16:33:59 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efsui.exe
[2009/07/13 16:33:58 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efscore.dll
[2009/07/13 16:33:56 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2009/07/13 16:33:56 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efssvc.dll
[2009/07/13 16:33:56 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsrole.dll
[2009/07/13 16:33:55 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2009/07/13 16:33:54 | 000,143,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2009/07/13 16:33:54 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efslsaext.dll
[2009/07/13 16:33:54 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\security.dll
[2009/07/13 16:33:53 | 000,889,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2009/07/13 16:33:52 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efsutil.dll
[2009/07/13 16:33:50 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AxInstUI.exe
[2009/07/13 16:33:48 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SCardDlg.dll
[2009/07/13 16:33:47 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sccls.dll
[2009/07/13 16:33:37 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2009/07/13 16:33:32 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollCtrl.exe
[2009/07/13 16:33:28 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2009/07/13 16:33:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\w32tm.exe
[2009/07/13 16:33:20 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SecEdit.exe
[2009/07/13 16:33:19 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2009/07/13 16:33:07 | 000,249,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcryptprimitives.dll
[2009/07/13 16:32:57 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2009/07/13 16:32:55 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptxml.dll
[2009/07/13 16:32:55 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2009/07/13 16:32:54 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capisp.dll
[2009/07/13 16:32:54 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cngaudit.dll
[2009/07/13 16:32:53 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2009/07/13 16:32:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\keyiso.dll
[2009/07/13 16:32:49 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscat32.dll
[2009/07/13 16:32:48 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certCredProvider.dll
[2009/07/13 16:32:48 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssip32.dll
[2009/07/13 16:32:47 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pstorec.dll
[2009/07/13 16:32:47 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softpub.dll
[2009/07/13 16:32:46 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssign32.dll
[2009/07/13 16:32:39 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esentutl.exe
[2009/07/13 16:32:31 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esentprf.dll
[2009/07/13 16:32:30 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2009/07/13 16:32:18 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2009/07/13 16:32:13 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompMgmtLauncher.exe
[2009/07/13 16:31:54 | 001,140,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2009/07/13 16:31:52 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll
[2009/07/13 16:31:51 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shrpubw.exe
[2009/07/13 16:31:50 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootcfg.exe
[2009/07/13 16:31:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\getmac.exe
[2009/07/13 16:31:48 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2009/07/13 16:31:48 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscproxystub.dll
[2009/07/13 16:31:42 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eventcreate.exe
[2009/07/13 16:31:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\acledit.dll
[2009/07/13 16:31:30 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2009/07/13 16:31:28 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2009/07/13 16:31:26 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2009/07/13 16:31:25 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2009/07/13 16:31:18 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2009/07/13 16:31:17 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2009/07/13 16:31:17 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2009/07/13 16:31:17 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2009/07/13 16:31:17 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2009/07/13 16:31:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2009/07/13 16:31:15 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
[2009/07/13 16:31:12 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2009/07/13 16:31:11 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2009/07/13 16:31:10 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2009/07/13 16:31:10 | 000,001,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2009/07/13 16:31:08 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2009/07/13 16:31:06 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framedyn.dll
[2009/07/13 16:31:06 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\miguiresource.dll
[2009/07/13 16:31:05 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2009/07/13 16:30:48 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
[2009/07/13 16:30:42 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\provthrd.dll
[2009/07/13 16:30:22 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2009/07/13 16:30:21 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2009/07/13 16:30:12 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2009/07/13 16:30:00 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsadmin.exe
[2009/07/13 16:29:59 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TaskSchdPS.dll
[2009/07/13 16:29:57 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2009/07/13 16:29:56 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2009/07/13 16:29:56 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSChannel.dll
[2009/07/13 16:29:55 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\objsel.dll
[2009/07/13 16:29:51 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netid.dll
[2009/07/13 16:29:50 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localsec.dll
[2009/07/13 16:29:50 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2009/07/13 16:29:47 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loghours.dll
[2009/07/13 16:29:41 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2009/07/13 16:29:41 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\filemgmt.dll
[2009/07/13 16:29:40 | 001,826,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2009/07/13 16:29:40 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsecedit.dll
[2009/07/13 16:29:38 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroleui.dll
[2009/07/13 16:29:36 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\els.dll
[2009/07/13 16:29:36 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsprx5.dll
[2009/07/13 16:29:36 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsprx6.dll
[2009/07/13 16:29:35 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mycomput.dll
[2009/07/13 16:29:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsprx4.dll
[2009/07/13 16:29:33 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2009/07/13 16:29:33 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qmgrprxy.dll
[2009/07/13 16:29:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsperf.dll
[2009/07/13 16:29:33 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsprx2.dll
[2009/07/13 16:29:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsprx3.dll
[2009/07/13 16:29:32 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcbase.dll
[2009/07/13 16:29:30 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eventvwr.exe
[2009/07/13 16:29:25 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cic.dll
[2009/07/13 16:29:09 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2009/07/13 16:29:05 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2009/07/13 16:28:25 | 000,791,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\opengl32.dll
[2009/07/13 16:28:20 | 001,106,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ogldrv.dll
[2009/07/13 16:28:18 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
[2009/07/13 16:28:17 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll
[2009/07/13 16:28:16 | 000,264,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2009/07/13 16:28:16 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2009/07/13 16:28:11 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\glu32.dll
[2009/07/13 16:28:10 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ddrawex.dll
[2009/07/13 16:28:07 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dim700.dll
[2009/07/13 16:28:07 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\glmf32.dll
[2009/07/13 16:28:06 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2009/07/13 16:28:04 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2009/07/13 16:28:03 | 001,030,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2009/07/13 16:28:02 | 001,036,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d8.dll
[2009/07/13 16:27:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dxof.dll
[2009/07/13 16:27:58 | 001,063,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll
[2009/07/13 16:27:58 | 000,531,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
[2009/07/13 16:27:54 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2009/07/13 16:27:53 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dim.dll
[2009/07/13 16:27:51 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rgb9rast.dll
[2009/07/13 16:27:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
[2009/07/13 16:27:45 | 000,593,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dramp.dll
[2009/07/13 16:27:45 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2009/07/13 16:27:40 | 000,377,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2009/07/13 16:27:32 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2009/07/13 16:27:31 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2009/07/13 16:27:29 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqmapi.dll
[2009/07/13 16:27:26 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2009/07/13 16:27:26 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2009/07/13 16:27:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2009/07/13 16:27:22 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsqmcons.exe
[2009/07/13 16:27:20 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werui.dll
[2009/07/13 16:27:20 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2009/07/13 16:27:20 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2009/07/13 16:27:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdiasqmmodule.dll
[2009/07/13 16:27:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werdiagcontroller.dll
[2009/07/13 16:27:09 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnification.dll
[2009/07/13 16:27:07 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TRAPI.dll
[2009/07/13 16:27:07 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NativeHooks.dll
[2009/07/13 16:26:53 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\acppage.dll
[2009/07/13 16:26:51 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2009/07/13 16:26:49 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2009/07/13 16:26:45 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2009/07/13 16:26:28 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2009/07/13 16:26:27 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WmpDui.dll
[2009/07/13 16:26:24 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2009/07/13 16:26:24 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2009/07/13 16:26:23 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime
[2009/07/13 16:26:23 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2009/07/13 16:26:23 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2009/07/13 16:26:23 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2009/07/13 16:26:17 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2009/07/13 16:26:17 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2009/07/13 16:26:11 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2009/07/13 16:26:10 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2009/07/13 16:26:09 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2009/07/13 16:26:08 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll
[2009/07/13 16:26:07 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2009/07/13 16:26:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2009/07/13 16:26:01 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2009/07/13 16:26:00 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaatext.dll
[2009/07/13 16:26:00 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga256.dll
[2009/07/13 16:25:59 | 000,868,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dccw.exe
[2009/07/13 16:25:58 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleacchooks.dll
[2009/07/13 16:25:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2009/07/13 16:25:54 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga64k.dll
[2009/07/13 16:25:51 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\videoprt.sys
[2009/07/13 16:25:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga.dll
[2009/07/13 16:25:48 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\framebuf.dll
[2009/07/13 16:25:45 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2009/07/13 16:25:45 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\montr_ci.dll
[2009/07/13 16:25:44 | 001,370,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwmcore.dll
[2009/07/13 16:25:40 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispdiag.exe
[2009/07/13 16:25:34 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\System32\fms.dll
[2009/07/13 16:25:26 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxapi.sys
[2009/07/13 16:25:25 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\colorui.dll
[2009/07/13 16:25:25 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2009/07/13 16:25:25 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf3216.dll
[2009/07/13 16:25:21 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\htui.dll
[2009/07/13 16:25:21 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009/07/13 16:25:20 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\colorcpl.exe
[2009/07/13 16:25:19 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
[2009/07/13 16:25:19 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\muifontsetup.dll
[2009/07/13 16:25:10 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
[2009/07/13 16:25:08 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDKOR.DLL
[2009/07/13 16:25:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdnecat.dll
[2009/07/13 16:25:07 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdnecnt.dll
[2009/07/13 16:25:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdnec95.dll
[2009/07/13 16:25:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdnec.dll
[2009/07/13 16:25:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd103.dll
[2009/07/13 16:25:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd101c.dll
[2009/07/13 16:25:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd101b.dll
[2009/07/13 16:25:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd101a.dll
[2009/07/13 16:25:06 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDYCL.DLL
[2009/07/13 16:25:06 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdibm02.dll
[2009/07/13 16:25:06 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2009/07/13 16:25:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdlk41a.dll
[2009/07/13 16:25:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdax2.dll
[2009/07/13 16:25:06 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2009/07/13 16:25:05 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDJPN.DLL
[2009/07/13 16:25:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106.dll
[2009/07/13 16:25:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd101.dll
[2009/07/13 16:25:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDYCC.DLL
[2009/07/13 16:25:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDYBA.DLL
[2009/07/13 16:25:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDYAK.DLL
[2009/07/13 16:25:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDWOL.DLL
[2009/07/13 16:25:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDVNTC.DLL
[2009/07/13 16:25:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUZB.DLL
[2009/07/13 16:25:04 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUSX.DLL
[2009/07/13 16:25:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUSR.DLL
[2009/07/13 16:25:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUSL.DLL
[2009/07/13 16:25:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUSA.DLL
[2009/07/13 16:25:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDURDU.DLL
[2009/07/13 16:25:02 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUKX.DLL
[2009/07/13 16:25:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUR1.DLL
[2009/07/13 16:25:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUK.DLL
[2009/07/13 16:25:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUGHR.DLL
[2009/07/13 16:25:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUR.DLL
[2009/07/13 16:25:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUGHR1.DLL
[2009/07/13 16:25:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTURME.DLL
[2009/07/13 16:25:01 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTUQ.DLL
[2009/07/13 16:25:01 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTUF.DLL
[2009/07/13 16:25:00 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTIPRC.DLL
[2009/07/13 16:25:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTH3.DLL
[2009/07/13 16:24:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTH2.DLL
[2009/07/13 16:24:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTH1.DLL
[2009/07/13 16:24:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTH0.DLL
[2009/07/13 16:24:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTAT.DLL
[2009/07/13 16:24:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSYR2.DLL
[2009/07/13 16:24:59 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDTAJIK.DLL
[2009/07/13 16:24:58 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSW09.DLL
[2009/07/13 16:24:58 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSYR1.DLL
[2009/07/13 16:24:58 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSW.DLL
[2009/07/13 16:24:57 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSORST.DLL
[2009/07/13 16:24:57 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSORS1.DLL
[2009/07/13 16:24:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSP.DLL
[2009/07/13 16:24:56 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSMSNO.DLL
[2009/07/13 16:24:56 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSOREX.DLL
[2009/07/13 16:24:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSN1.DLL
[2009/07/13 16:24:55 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSMSFI.DLL
[2009/07/13 16:24:55 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSL1.DLL
[2009/07/13 16:24:54 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDROST.DLL
[2009/07/13 16:24:54 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSL.DLL
[2009/07/13 16:24:54 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSG.DLL
[2009/07/13 16:24:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDSF.DLL
[2009/07/13 16:24:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDRU1.DLL
[2009/07/13 16:24:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDRU.DLL
[2009/07/13 16:24:53 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDROPR.DLL
[2009/07/13 16:24:53 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDRO.DLL
[2009/07/13 16:24:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDPO.DLL
[2009/07/13 16:24:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDPL1.DLL
[2009/07/13 16:24:52 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDPL.DLL
[2009/07/13 16:24:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDPASH.DLL
[2009/07/13 16:24:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDNSO.DLL
[2009/07/13 16:24:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDNO1.DLL
[2009/07/13 16:24:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDNO.DLL
[2009/07/13 16:24:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDNEPR.DLL
[2009/07/13 16:24:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDNE.DLL
[2009/07/13 16:24:50 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMONMO.DLL
[2009/07/13 16:24:50 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMLT48.DLL
[2009/07/13 16:24:50 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMON.DLL
[2009/07/13 16:24:49 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMLT47.DLL
[2009/07/13 16:24:49 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMACST.DLL
[2009/07/13 16:24:49 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMAORI.DLL
[2009/07/13 16:24:48 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLV1.DLL
[2009/07/13 16:24:48 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDMAC.DLL
[2009/07/13 16:24:48 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLV.DLL
[2009/07/13 16:24:48 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLT2.DLL
[2009/07/13 16:24:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLAO.DLL
[2009/07/13 16:24:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDKHMR.DLL
[2009/07/13 16:24:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLT1.DLL
[2009/07/13 16:24:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLT.DLL
[2009/07/13 16:24:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDLA.DLL
[2009/07/13 16:24:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDIULAT.DLL
[2009/07/13 16:24:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDKAZ.DLL
[2009/07/13 16:24:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDKYR.DLL
[2009/07/13 16:24:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDIT142.DLL
[2009/07/13 16:24:44 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINUK2.DLL
[2009/07/13 16:24:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDIT.DLL
[2009/07/13 16:24:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDIR.DLL
[2009/07/13 16:24:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINTEL.DLL
[2009/07/13 16:24:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINTAM.DLL
[2009/07/13 16:24:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINORI.DLL
[2009/07/13 16:24:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAL.DLL
[2009/07/13 16:24:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINPUN.DLL
[2009/07/13 16:24:43 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAR.DLL
[2009/07/13 16:24:43 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINKAN.DLL
[2009/07/13 16:24:42 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINHIN.DLL
[2009/07/13 16:24:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINGUJ.DLL
[2009/07/13 16:24:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINDEV.DLL
[2009/07/13 16:24:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE2.DLL
[2009/07/13 16:24:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINBEN.DLL
[2009/07/13 16:24:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE1.DLL
[2009/07/13 16:24:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINASA.DLL
[2009/07/13 16:24:39 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDIBO.DLL
[2009/07/13 16:24:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDIC.DLL
[2009/07/13 16:24:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHU1.DLL
[2009/07/13 16:24:38 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHEPT.DLL
[2009/07/13 16:24:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHU.DLL
[2009/07/13 16:24:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHELA3.DLL
[2009/07/13 16:24:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHELA2.DLL
[2009/07/13 16:24:36 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHE220.DLL
[2009/07/13 16:24:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHE319.DLL
[2009/07/13 16:24:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHEB.DLL
[2009/07/13 16:24:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHE.DLL
[2009/07/13 16:24:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDHAU.DLL
[2009/07/13 16:24:35 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2009/07/13 16:24:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDGRLND.DLL
[2009/07/13 16:24:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDGR1.DLL
[2009/07/13 16:24:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdgeoqw.dll
[2009/07/13 16:24:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDGR.DLL
[2009/07/13 16:24:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDGKL.DLL
[2009/07/13 16:24:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbdgeoer.dll
[2009/07/13 16:24:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDGAE.DLL
[2009/07/13 16:24:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDGEO.DLL
[2009/07/13 16:24:32 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDFI1.DLL
[2009/07/13 16:24:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDFR.DLL
[2009/07/13 16:24:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDFO.DLL
[2009/07/13 16:24:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDFI.DLL
[2009/07/13 16:24:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDFC.DLL
[2009/07/13 16:24:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDFA.DLL
[2009/07/13 16:24:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDES.DLL
[2009/07/13 16:24:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDEST.DLL
[2009/07/13 16:24:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDDIV2.DLL
[2009/07/13 16:24:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDDIV1.DLL
[2009/07/13 16:24:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDDV.DLL
[2009/07/13 16:24:28 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2009/07/13 16:24:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDCZ2.DLL
[2009/07/13 16:24:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDCZ.DLL
[2009/07/13 16:24:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDCR.DLL
[2009/07/13 16:24:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDCZ1.DLL
[2009/07/13 16:24:28 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDDA.DLL
[2009/07/13 16:24:27 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDCAN.DLL
[2009/07/13 16:24:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDCA.DLL
[2009/07/13 16:24:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBU.DLL
[2009/07/13 16:24:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBR.DLL
[2009/07/13 16:24:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBULG.DLL
[2009/07/13 16:24:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBHC.DLL
[2009/07/13 16:24:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBGPH1.DLL
[2009/07/13 16:24:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBGPH.DLL
[2009/07/13 16:24:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBLR.DLL
[2009/07/13 16:24:23 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBENE.DLL
[2009/07/13 16:24:23 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBE.DLL
[2009/07/13 16:24:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDBASH.DLL
[2009/07/13 16:24:22 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2009/07/13 16:24:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDAZEL.DLL
[2009/07/13 16:24:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDAZE.DLL
[2009/07/13 16:24:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDARMW.DLL
[2009/07/13 16:24:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDARME.DLL
[2009/07/13 16:24:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDAL.DLL
[2009/07/13 16:24:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDA3.DLL
[2009/07/13 16:24:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDA2.DLL
[2009/07/13 16:24:16 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
[2009/07/13 16:24:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDA1.DLL
[2009/07/13 16:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDUS.DLL
[2009/07/13 16:24:11 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2009/07/13 16:24:08 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\recovery.dll
[2009/07/13 16:24:06 | 000,907,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdengin2.dll
[2009/07/13 16:24:06 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ddodiag.exe
[2009/07/13 16:24:05 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceDisplayObjectProvider.exe
[2009/07/13 16:23:57 | 006,278,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DDORes.dll
[2009/07/13 16:23:55 | 001,116,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2009/07/13 16:23:53 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceDisplayStatusManager.dll
[2009/07/13 16:23:52 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceMetadataParsers.dll
[2009/07/13 16:23:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DDOIProxy.dll
[2009/07/13 16:23:50 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vssadmin.exe
[2009/07/13 16:23:49 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2009/07/13 16:23:49 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\recdisc.exe
[2009/07/13 16:23:48 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdshext.dll
[2009/07/13 16:23:44 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskmgr.dll
[2009/07/13 16:23:43 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfrgui.exe
[2009/07/13 16:23:41 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdcpl.dll
[2009/07/13 16:23:40 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eventcls.dll
[2009/07/13 16:23:39 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vss_ps.dll
[2009/07/13 16:23:37 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsvd.dll
[2009/07/13 16:23:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsldr.exe
[2009/07/13 16:23:36 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdlgs.dll
[2009/07/13 16:23:35 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmvdsitf.dll
[2009/07/13 16:23:35 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmutil.dll
[2009/07/13 16:23:34 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmview.ocx
[2009/07/13 16:23:33 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskres.dll
[2009/07/13 16:23:33 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmdskres2.dll
[2009/07/13 16:23:32 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2009/07/13 16:23:31 | 001,131,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2009/07/13 16:23:31 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsbas.dll
[2009/07/13 16:23:31 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2009/07/13 16:23:31 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdautoplay.dll
[2009/07/13 16:23:29 | 000,176,128 | ---- | C] (Microsoft Corp.) -- C:\Windows\System32\Defrag.exe
[2009/07/13 16:23:29 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmintf.dll
[2009/07/13 16:23:28 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vds_ps.dll
[2009/07/13 16:23:27 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srrstr.dll
[2009/07/13 16:23:27 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2009/07/13 16:23:23 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srwmi.dll
[2009/07/13 16:23:22 | 000,224,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wbadmin.exe
[2009/07/13 16:23:21 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srhelper.dll
[2009/07/13 16:23:18 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BlbEvents.dll
[2009/07/13 16:23:18 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxproxy.dll
[2009/07/13 16:23:18 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxshared.dll
[2009/07/13 16:23:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\defragproxy.dll
[2009/07/13 16:23:08 | 003,367,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe
[2009/07/13 16:23:04 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blbres.dll
[2009/07/13 16:23:03 | 000,458,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009/07/13 16:23:01 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blb_ps.dll
[2009/07/13 16:22:56 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osbaseln.dll
[2009/07/13 16:22:54 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RstrtMgr.dll
[2009/07/13 16:22:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\umb.dll
[2009/07/13 16:22:53 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2009/07/13 16:22:53 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RmClient.exe
[2009/07/13 16:22:52 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2009/07/13 16:22:52 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2009/07/13 16:22:49 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssocPrx.dll
[2009/07/13 16:22:48 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2009/07/13 16:22:48 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingHandler.dll
[2009/07/13 16:22:46 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IPBusEnumProxy.dll
[2009/07/13 16:22:44 | 000,448,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe
[2009/07/13 16:22:42 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe
[2009/07/13 16:22:38 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2009/07/13 16:22:35 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2009/07/13 16:22:33 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\verifier.dll
[2009/07/13 16:22:32 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll
[2009/07/13 16:22:31 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2009/07/13 16:22:31 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdPnp.dll
[2009/07/13 16:22:31 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secinit.exe
[2009/07/13 16:22:30 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2009/07/13 16:22:29 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
[2009/07/13 16:22:29 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWNet.dll
[2009/07/13 16:22:28 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\microsoft-windows-kernel-power-events.dll
[2009/07/13 16:22:28 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2009/07/13 16:22:28 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\microsoft-windows-hal-events.dll
[2009/07/13 16:22:26 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll
[2009/07/13 16:22:25 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll
[2009/07/13 16:22:25 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll
[2009/07/13 16:22:23 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetapi.dll
[2009/07/13 16:22:19 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ActionQueue.dll
[2009/07/13 16:22:14 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SSShim.dll
[2009/07/13 16:22:09 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
[2009/07/13 16:22:06 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
[2009/07/13 16:21:55 | 000,864,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2009/07/13 16:21:22 | 000,578,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perftrack.dll
[2009/07/13 16:21:01 | 000,526,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntvdm.exe
[2009/07/13 16:21:00 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2009/07/13 16:20:59 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2009/07/13 16:20:56 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntvdmd.dll
[2009/07/13 16:20:55 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmredir.dll
[2009/07/13 16:20:55 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2009/07/13 16:20:54 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\graftabl.com
[2009/07/13 16:20:54 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win.com
[2009/07/13 16:20:49 | 000,696,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psr.exe
[2009/07/13 16:20:36 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MdSched.exe
[2009/07/13 16:20:34 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MdRes.exe
[2009/07/13 16:20:32 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2009/07/13 16:20:31 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\memdiag.dll
[2009/07/13 16:20:30 | 000,983,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdt.exe
[2009/07/13 16:20:29 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2009/07/13 16:20:27 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2009/07/13 16:20:26 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcawrk.exe
[2009/07/13 16:20:25 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2009/07/13 16:20:23 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcalua.exe
[2009/07/13 16:20:22 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.exe
[2009/07/13 16:20:21 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelPost.exe
[2009/07/13 16:20:20 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raserver.exe
[2009/07/13 16:20:20 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2009/07/13 16:20:17 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcadm.dll
[2009/07/13 16:20:16 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaevts.dll
[2009/07/13 16:20:15 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ReAgent.dll
[2009/07/13 16:20:15 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DFDWiz.exe
[2009/07/13 16:20:15 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2009/07/13 16:20:14 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeevts.dll
[2009/07/13 16:20:14 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ReAgentc.exe
[2009/07/13 16:20:13 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdchange.exe
[2009/07/13 16:20:11 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2009/07/13 16:20:11 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fthsvc.dll
[2009/07/13 16:20:11 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\radardt.dll
[2009/07/13 16:20:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009/07/13 16:20:10 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\racpldlg.dll
[2009/07/13 16:20:09 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrahc.dll
[2009/07/13 16:20:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009/07/13 16:20:07 | 001,188,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DiagCpl.dll
[2009/07/13 16:20:07 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\radarrs.dll
[2009/07/13 16:20:06 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrleakdiag.exe
[2009/07/13 16:20:05 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2009/07/13 16:20:05 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msconfig.exe
[2009/07/13 16:20:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfdts.dll
[2009/07/13 16:20:05 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsiCofire.dll
[2009/07/13 16:20:05 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2009/07/13 16:20:05 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pots.dll
[2009/07/13 16:20:04 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpts.dll
[2009/07/13 16:20:02 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cofiredm.dll
[2009/07/13 16:20:02 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cofire.exe
[2009/07/13 16:20:01 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2009/07/13 16:20:00 | 000,606,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2009/07/13 16:20:00 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfmon.exe
[2009/07/13 16:19:59 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\typeperf.exe
[2009/07/13 16:19:59 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rendezvousSession.tlb
[2009/07/13 16:19:58 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\resmon.exe
[2009/07/13 16:19:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2009/07/13 16:19:58 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\signdrv.dll
[2009/07/13 16:19:58 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\relog.exe
[2009/07/13 16:19:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsraLegacy.tlb
[2009/07/13 16:19:57 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wvc.dll
[2009/07/13 16:19:56 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskperf.exe
[2009/07/13 16:19:55 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2009/07/13 16:19:53 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdhui.dll
[2009/07/13 16:19:51 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcwrun.exe
[2009/07/13 16:19:49 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcwutl.dll
[2009/07/13 16:19:47 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdiagnhost.exe
[2009/07/13 16:19:45 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ubpm.dll
[2009/07/13 16:19:45 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdiagschd.dll
[2009/07/13 16:19:43 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdiagprv.dll
[2009/07/13 16:19:42 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdiageng.dll
[2009/07/13 16:19:39 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2009/07/13 16:19:39 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\plasrv.exe
[2009/07/13 16:19:35 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2009/07/13 16:19:35 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfproc.dll
[2009/07/13 16:19:35 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2009/07/13 16:19:32 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfctrs.dll
[2009/07/13 16:19:32 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfnet.dll
[2009/07/13 16:19:25 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scext.dll
[2009/07/13 16:19:25 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2009/07/13 16:19:25 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sc.exe
[2009/07/13 16:19:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regidle.dll
[2009/07/13 16:19:18 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdhcinst.dll
[2009/07/13 16:19:15 | 000,025,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys
[2009/07/13 16:19:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupetw.dll
[2009/07/13 16:18:57 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Dism.exe
[2009/07/13 16:18:52 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winbrand.dll
[2009/07/13 16:18:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osuninst.dll
[2009/07/13 16:18:03 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wimgapi.dll
[2009/07/13 16:18:03 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wimserv.exe
[2009/07/13 16:18:03 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupcl.exe
[2009/07/13 16:18:02 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2009/07/13 16:17:54 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizeng.dll
[2009/07/13 16:17:52 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spbcd.dll
[2009/07/13 16:17:52 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spopk.dll
[2009/07/13 16:17:52 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll
[2009/07/13 16:17:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spnet.dll
[2009/07/13 16:17:47 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uxlib.dll
[2009/07/13 16:17:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizres.dll
[2009/07/13 16:17:46 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uxlibres.dll
[2009/07/13 16:17:44 | 008,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizimg.dll
[2009/07/13 16:17:31 | 000,091,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MigAutoPlay.exe
[2009/07/13 16:17:20 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupcln.dll
[2009/07/13 16:17:19 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setupugc.exe
[2009/07/13 16:17:12 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2009/07/13 16:17:09 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unattend.dll
[2009/07/13 16:17:08 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\syssetup.dll
[2009/07/13 16:16:55 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\migisol.dll
[2009/07/13 16:16:53 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercfg.exe
[2009/07/13 16:16:50 | 000,304,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmipnpinstall.dll
[2009/07/13 16:16:48 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gacinstall.dll
[2009/07/13 16:16:47 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmicryptinstall.dll
[2009/07/13 16:16:39 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\energy.dll
[2009/07/13 16:16:39 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2009/07/13 16:16:37 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2009/07/13 16:16:36 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2009/07/13 16:16:33 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2009/07/13 16:16:28 | 000,379,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2009/07/13 16:16:26 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppnp.dll
[2009/07/13 16:16:25 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\difxapi.dll
[2009/07/13 16:16:25 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll
[2009/07/13 16:16:25 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmocx.dll
[2009/07/13 16:16:24 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2009/07/13 16:16:21 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sigverif.exe
[2009/07/13 16:16:19 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2009/07/13 16:16:17 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2009/07/13 16:16:16 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2009/07/13 16:16:16 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hotplug.dll
[2009/07/13 16:16:14 | 000,234,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.cpl
[2009/07/13 16:16:14 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndadmin.exe
[2009/07/13 16:16:14 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InfDefaultInstall.exe
[2009/07/13 16:16:11 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxstrace.exe
[2009/07/13 16:16:11 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dinotify.exe
[2009/07/13 16:16:10 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2009/07/13 16:16:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2009/07/13 16:16:09 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SPInf.dll
[2009/07/13 16:16:08 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spfileq.dll
[2009/07/13 16:16:07 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chkwudrv.dll
[2009/07/13 16:16:06 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2009/07/13 16:16:06 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll
[2009/07/13 16:16:04 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmrc.dll
[2009/07/13 16:16:01 | 000,097,280 | ---- | C] (Microsoft) -- C:\Windows\System32\Robocopy.exe
[2009/07/13 16:15:59 | 000,551,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\elslad.dll
[2009/07/13 16:15:58 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kernelceip.dll
[2009/07/13 16:15:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2009/07/13 16:15:52 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sfc.exe
[2009/07/13 16:15:51 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxssrv.dll
[2009/07/13 16:15:51 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sxsstore.dll
[2009/07/13 16:15:50 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ELSCore.dll
[2009/07/13 16:15:49 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\elsTrans.dll
[2009/07/13 16:15:47 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SortWindows6Compat.dll
[2009/07/13 16:15:47 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SortServer2003Compat.dll
[2009/07/13 16:15:45 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlsbres.dll
[2009/07/13 16:15:45 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzutil.exe
[2009/07/13 16:15:43 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Nlsdl.dll
[2009/07/13 16:15:42 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\idndl.dll
[2009/07/13 16:15:39 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\C_ISCII.DLL
[2009/07/13 16:15:39 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\C_IS2022.DLL
[2009/07/13 16:15:38 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\C_G18030.DLL
[2009/07/13 16:15:38 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\luainstall.dll
[2009/07/13 16:15:37 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whoami.exe
[2009/07/13 16:15:37 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\virtdisk.dll
[2009/07/13 16:15:34 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xcopy.exe
[2009/07/13 16:15:33 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\forfiles.exe
[2009/07/13 16:15:33 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\where.exe
[2009/07/13 16:15:33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ktmutil.exe
[2009/07/13 16:15:32 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icacls.exe
[2009/07/13 16:15:31 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setx.exe
[2009/07/13 16:15:31 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timeout.exe
[2009/07/13 16:15:29 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\waitfor.exe
[2009/07/13 16:15:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\replace.exe
[2009/07/13 16:15:29 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\acproxy.dll
[2009/07/13 16:15:28 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\takeown.exe
[2009/07/13 16:15:28 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mode.com
[2009/07/13 16:15:25 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\choice.exe
[2009/07/13 16:15:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clip.exe
[2009/07/13 16:15:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sort.exe
[2009/07/13 16:15:25 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\runas.exe
[2009/07/13 16:15:25 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\subst.exe
[2009/07/13 16:15:25 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regedt32.exe
[2009/07/13 16:15:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\openfiles.exe
[2009/07/13 16:15:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tree.com
[2009/07/13 16:15:18 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\driverquery.exe
[2009/07/13 16:15:18 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cacls.exe
[2009/07/13 16:15:17 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\more.com
[2009/07/13 16:15:17 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\print.exe
[2009/07/13 16:15:17 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clb.dll
[2009/07/13 16:15:17 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\recover.exe
[2009/07/13 16:15:15 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\format.com
[2009/07/13 16:15:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mountvol.exe
[2009/07/13 16:15:14 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\find.exe
[2009/07/13 16:15:13 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2009/07/13 16:15:13 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\label.exe
[2009/07/13 16:15:13 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\help.exe
[2009/07/13 16:15:11 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2009/07/13 16:15:10 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\doskey.exe
[2009/07/13 16:15:07 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comp.exe
[2009/07/13 16:15:06 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compact.exe
[2009/07/13 16:15:06 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chkdsk.exe
[2009/07/13 16:15:06 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskcomp.com
[2009/07/13 16:15:06 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskcopy.com
[2009/07/13 16:15:05 | 000,679,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2009/07/13 16:15:05 | 000,659,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2009/07/13 16:15:05 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\convert.exe
[2009/07/13 16:15:05 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chkntfs.exe
[2009/07/13 16:15:04 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chcp.com
[2009/07/13 16:15:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\attrib.exe
[2009/07/13 16:15:00 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifsutil.dll
[2009/07/13 16:15:00 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll
[2009/07/13 16:14:58 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2009/07/13 16:14:56 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uudf.dll
[2009/07/13 16:14:56 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cnvfat.dll
[2009/07/13 16:14:55 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ufat.dll
[2009/07/13 16:14:55 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uexfat.dll
[2009/07/13 16:14:53 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fmifs.dll
[2009/07/13 16:14:53 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifsutilx.dll
[2009/07/13 16:14:52 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ureg.dll
[2009/07/13 16:14:48 | 000,084,992 | ---- | C] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll
[2009/07/13 16:14:38 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscobj.dll
[2009/07/13 16:14:24 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CscMig.dll
[2009/07/13 16:14:17 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\davhlpr.dll
[2009/07/13 16:14:15 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrdc.dll
[2009/07/13 16:14:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fltMC.exe
[2009/07/13 16:14:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sisbkup.dll
[2009/07/13 16:13:55 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2009/07/13 16:13:52 | 000,017,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2009/07/13 16:13:37 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdedit.exe
[2009/07/13 16:13:37 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdsrv.dll
[2009/07/13 16:13:36 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdprov.dll
[2009/07/13 16:13:35 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcdboot.exe
[2009/07/13 16:13:34 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MuiUnattend.exe
[2009/07/13 16:13:33 | 000,302,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2009/07/13 16:13:33 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootstr.dll
[2009/07/13 16:13:30 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmiprop.dll
[2009/07/13 16:13:30 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TimeDateMUICallback.dll
[2009/07/13 16:13:29 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2009/07/13 16:13:13 | 000,031,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_AuthenticAMD.dll
[2009/07/13 16:13:12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ucsvc.exe
[2009/07/13 16:13:11 | 000,690,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2009/07/13 16:13:11 | 000,470,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2009/07/13 16:13:11 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\procinst.dll
[2009/07/13 16:13:08 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\manage-bde.exe
[2009/07/13 16:13:03 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BdeUISrv.exe
[2009/07/13 16:13:01 | 000,544,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvewiz.dll
[2009/07/13 16:13:01 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BitLockerWizardElev.exe
[2009/07/13 16:13:00 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BitLockerWizard.exe
[2009/07/13 16:12:59 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveprompt.exe
[2009/07/13 16:12:58 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvenotify.exe
[2009/07/13 16:12:58 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\fveupdate.exe
[2009/07/13 16:12:55 | 000,271,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveapi.dll
[2009/07/13 16:12:55 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveRecover.dll
[2009/07/13 16:12:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvecpl.dll
[2009/07/13 16:12:55 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\repair-bde.exe
[2009/07/13 16:12:54 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BdeUnlockWizard.exe
[2009/07/13 16:12:53 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveui.dll
[2009/07/13 16:12:53 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\baaupdate.exe
[2009/07/13 16:12:52 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TpmInit.exe
[2009/07/13 16:12:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvecerts.dll
[2009/07/13 16:12:51 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BdeHdCfg.exe
[2009/07/13 16:12:51 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveapibase.dll
[2009/07/13 16:12:48 | 000,055,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dumpfve.sys
[2009/07/13 16:12:47 | 000,256,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2009/07/13 16:12:47 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bderepair.dll
[2009/07/13 16:12:47 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bdeui.dll
[2009/07/13 16:12:46 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\makecab.exe
[2009/07/13 16:12:46 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BdeHdCfgLib.dll
[2009/07/13 16:12:45 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\expand.exe
[2009/07/13 16:12:43 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diantz.exe
[2009/07/13 16:12:42 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tpmcompc.dll
[2009/07/13 16:12:42 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tbs.dll
[2009/07/13 16:12:39 | 000,240,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2009/07/13 16:12:38 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aitagent.exe
[2009/07/13 16:12:37 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\extrac32.exe
[2009/07/13 16:12:37 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lz32.dll
[2009/07/13 16:12:34 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdelta.dll
[2009/07/13 16:12:22 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdbinst.exe
[2009/07/13 16:12:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aecache.dll
[2009/07/13 16:12:12 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll
[2009/07/13 16:12:12 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdi.sys
[2009/07/13 16:12:08 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
[2009/07/13 16:12:07 | 000,187,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2009/07/13 16:12:07 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2009/07/13 16:12:05 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
[2009/07/13 16:12:03 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2009/07/13 16:11:53 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-lsalookup-l1-1-0.dll
[2009/07/13 16:11:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-sddl-l1-1-0.dll
[2009/07/13 16:11:25 | 000,038,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2009/07/13 16:11:22 | 000,014,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmilib.sys
[2009/07/13 16:11:21 | 000,140,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2009/07/13 16:11:19 | 000,133,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2009/07/13 16:11:16 | 000,042,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2009/07/13 16:11:16 | 000,026,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2009/07/13 16:11:12 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\txfw32.dll
[2009/07/13 16:11:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\clfsw32.dll
[2009/07/13 16:11:09 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcwum.dll
[2009/07/13 16:11:07 | 002,217,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bootres.dll
[2009/07/13 16:11:06 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcirt.dll
[2009/07/13 16:11:06 | 000,016,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2009/07/13 16:11:06 | 000,015,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2009/07/13 16:11:05 | 000,137,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\halacpi.dll
[2009/07/13 16:11:05 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ktmw32.dll
[2009/07/13 16:11:04 | 000,194,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\halmacpi.dll
[2009/07/13 16:11:04 | 000,194,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hal.dll
[2009/07/13 16:11:04 | 000,021,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BOOTVID.DLL
[2009/07/13 16:11:01 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basesrv.dll
[2009/07/13 16:11:00 | 000,680,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2009/07/13 16:11:00 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2009/07/13 16:11:00 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2009/07/13 16:11:00 | 000,052,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2009/07/13 16:10:59 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll
[2009/07/13 16:10:58 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcrt40.dll
[2009/07/13 16:10:57 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2009/07/13 16:10:56 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-winsvc-l1-1-0.dll
[2009/07/13 16:10:56 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-management-l2-1-0.dll
[2009/07/13 16:10:56 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-management-l1-1-0.dll
[2009/07/13 16:10:56 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-core-l1-1-0.dll
[2009/07/13 16:00:47 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifile.dll
[2009/07/13 16:00:47 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\avifile.dll
[2009/07/13 16:00:47 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi.drv
[2009/07/13 16:00:47 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\mciavi.drv
[2009/07/13 16:00:47 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap.dll
[2009/07/13 16:00:47 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\avicap.dll
[2009/07/13 16:00:47 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciwave.drv
[2009/07/13 16:00:47 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\mciwave.drv
[2009/07/13 16:00:47 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.drv
[2009/07/13 16:00:47 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\mciseq.drv
[2009/07/13 15:47:26 | 000,049,680 | ---- | C] (Twain Working Group) -- C:\Windows\twunk_16.exe
[2009/07/13 15:41:10 | 000,026,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc16gt.dll
[2009/07/13 15:25:07 | 000,200,192 | ---- | C] (Intel Corporation.) -- C:\Windows\System32\ir50_qcx.dll
[2009/07/13 15:25:07 | 000,200,192 | ---- | C] (Intel Corporation.) -- C:\Windows\System32\ir50_qc.dll
[2009/07/13 15:25:04 | 000,839,680 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ir41_32.ax
[2009/07/13 15:25:04 | 000,746,496 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ir50_32.dll
[2009/07/13 15:25:04 | 000,197,632 | ---- | C] (Intel Corporation) -- C:\Windows\System32\iac25_32.ax
[2009/07/13 15:25:04 | 000,146,944 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ivfsrc.ax
[2009/07/13 15:11:11 | 005,070,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWSnapin.dll
[2009/07/13 15:11:05 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuthFWWizFwk.dll
[2009/07/13 15:09:19 | 009,853,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2009/07/13 15:09:18 | 003,128,320 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2009/07/13 15:00:27 | 000,169,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ole2disp.dll
[2009/07/13 15:00:27 | 000,153,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ole2nls.dll
[2009/07/13 15:00:27 | 000,042,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ole2.dll
[2009/07/13 15:00:27 | 000,027,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compobj.dll
[2009/07/13 15:00:27 | 000,005,532 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\stdole.tlb
[2009/07/13 15:00:27 | 000,004,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\storage.dll
[2009/07/13 14:41:54 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WINNLS.DLL
[2009/07/13 14:41:53 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WIFEMAN.DLL
[2009/07/13 14:41:50 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OLESVR.DLL
[2009/07/13 14:41:50 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\OLESVR.DLL
[2009/07/13 14:41:49 | 000,002,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WINOLDAP.MOD
[2009/07/13 14:41:48 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DDEML.DLL
[2009/07/13 14:41:45 | 000,012,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WFWNET.DRV
[2009/07/13 14:41:45 | 000,012,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\WFWNET.DRV
[2009/07/13 14:41:43 | 000,028,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DRWATSON.EXE
[2009/07/13 14:41:42 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMMDLG.DLL
[2009/07/13 14:41:42 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\COMMDLG.DLL
[2009/07/13 14:41:40 | 000,002,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WOWDEB.EXE
[2009/07/13 14:41:39 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TIMER.DRV
[2009/07/13 14:41:39 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\TIMER.DRV
[2009/07/13 14:41:38 | 000,013,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TOOLHELP.DLL
[2009/07/13 14:41:36 | 000,008,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WOWEXEC.EXE
[2009/07/13 14:41:32 | 000,068,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMSYSTEM.DLL
[2009/07/13 14:41:32 | 000,068,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\MMSYSTEM.DLL
[2009/07/13 14:41:32 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmtask.tsk
[2009/07/13 14:41:32 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\mmtask.tsk
[2009/07/13 14:41:28 | 000,002,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WINSPOOL.EXE
[2009/07/13 14:41:27 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mouse.drv
[2009/07/13 14:41:27 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\mouse.drv
[2009/07/13 14:41:26 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vga.drv
[2009/07/13 14:41:26 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\vga.drv
[2009/07/13 14:41:25 | 000,010,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMM.drv
[2009/07/13 14:41:23 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\keyboard.drv
[2009/07/13 14:41:23 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\keyboard.drv
[2009/07/13 14:41:23 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sound.drv
[2009/07/13 14:41:23 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\sound.drv
[2009/07/13 14:41:22 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SHELL.DLL
[2009/07/13 14:41:22 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\SHELL.DLL
[2009/07/13 14:41:21 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\system.drv
[2009/07/13 14:41:21 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\system.drv
[2009/07/13 14:41:20 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GDI.EXE
[2009/07/13 14:41:17 | 000,047,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\USER.EXE
[2009/07/13 14:41:12 | 000,092,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\krnl386.exe
[2009/07/13 14:39:34 | 001,073,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Narrator.exe
[2009/07/13 14:07:59 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcrt20.dll
[2009/07/13 14:07:59 | 000,149,019 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\crtdll.dll
[2009/07/13 14:07:59 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ctl3d32.dll
[2009/07/13 14:04:06 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009/07/13 14:04:05 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009/07/13 14:04:03 | 000,030,749 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbajet32.dll
[2009/07/13 14:04:02 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2009/07/13 14:04:02 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2009/07/13 14:04:02 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2009/07/13 14:04:02 | 000,380,957 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\expsrv.dll
[2009/07/13 14:04:01 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2009/07/13 14:04:01 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2009/07/13 14:04:01 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2009/07/13 14:04:00 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2009/07/13 14:04:00 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2009/07/13 14:04:00 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2009/07/13 14:04:00 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2009/07/13 14:03:59 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2009/07/13 14:03:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2009/07/13 14:03:59 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2009/07/13 14:03:58 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2009/07/13 14:03:58 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2009/07/13 14:03:57 | 000,049,179 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlwoa.dll
[2009/07/13 14:03:57 | 000,024,603 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlwid.dll
[2009/07/13 13:46:45 | 000,155,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009/07/13 13:46:45 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009/07/13 13:29:46 | 000,256,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\winhelp.exe
[2009/07/13 13:29:46 | 000,221,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lanman.drv
[2009/07/13 13:29:46 | 000,108,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netapi.dll
[2009/07/13 13:29:46 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\olecli.dll
[2009/07/13 13:29:46 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\olecli.dll
[2009/07/13 13:29:46 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pmspl.dll
[2009/07/13 13:29:46 | 000,027,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ctl3dv2.dll
[2009/07/13 13:29:46 | 000,018,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysedit.exe
[2009/07/13 13:29:46 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lzexpand.dll
[2009/07/13 13:29:46 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\lzexpand.dll
[2009/07/13 13:29:46 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ver.dll
[2009/07/13 13:29:46 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\ver.dll
[2009/06/10 14:41:49 | 000,019,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tapi.dll
[2009/06/10 14:41:36 | 002,134,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2009/06/10 14:41:36 | 000,970,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2adec.dll
[2009/06/10 14:41:17 | 000,094,784 | ---- | C] (Twain Working Group) -- C:\Windows\twain.dll
[2009/06/10 14:39:33 | 000,313,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2009/06/10 14:38:03 | 001,386,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvbvm60.dll
[2009/06/10 14:30:36 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys
[2009/06/10 14:29:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\stdole32.tlb
[2009/06/10 14:25:56 | 000,177,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\typelib.dll
[2009/06/10 14:22:27 | 000,061,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msacm.dll
[2009/06/10 14:21:50 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvideo.dll
[2009/06/10 14:21:50 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\msvideo.dll
[2009/06/10 14:19:47 | 007,592,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2009/06/10 14:18:20 | 000,120,320 | ---- | C] (Intel Corporation.) -- C:\Windows\System32\ir41_qcx.dll
[2009/06/10 14:18:20 | 000,120,320 | ---- | C] (Intel Corporation.) -- C:\Windows\System32\ir41_qc.dll
[2009/06/10 14:17:01 | 000,004,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ds16gt.dLL
[2009/06/10 14:16:43 | 000,180,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlunirl.dll
[2000/08/30 17:00:00 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[1996/12/03 14:50:14 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VEN2232.OLB

========== Files - Modified Within All Days ==========

[2012/11/01 17:41:33 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\user\Desktop\aswMBR.exe
[2012/11/01 17:39:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2012/11/01 17:35:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000UA.job
[2012/11/01 17:25:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/11/01 16:18:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/01 09:35:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000Core.job
[2012/10/31 09:39:33 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/10/31 09:39:33 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/10/30 20:22:33 | 000,636,154 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/10/30 20:22:33 | 000,110,334 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/10/30 20:18:01 | 1558,646,784 | -HS- | M] () -- C:\hiberfil.sys
[2012/10/30 20:18:00 | 341,246,950 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/10/30 18:56:03 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2012/10/27 14:31:54 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/10/23 18:10:35 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_netaapl_01009.Wdf
[2012/10/11 09:37:38 | 000,002,440 | ---- | M] () -- C:\Users\user\Desktop\Google Chrome.lnk
[2012/10/08 15:25:19 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/10/08 15:25:19 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/09/29 19:54:26 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/09/20 17:08:38 | 000,001,088 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/09/17 19:25:14 | 002,212,440 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\user\Desktop\TDSSKiller.exe
[2012/09/14 11:30:38 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/09/10 14:20:39 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/08/31 18:27:33 | 000,001,753 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/08/30 10:18:33 | 003,958,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/08/30 10:18:33 | 003,902,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/08/23 23:59:17 | 001,800,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/08/23 23:51:02 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/08/23 23:49:57 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/08/23 23:48:38 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/08/23 23:47:26 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/08/23 23:45:46 | 000,607,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/08/23 23:43:58 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/08/23 23:40:11 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/08/20 12:23:03 | 000,153,766 | ---- | M] () -- C:\Users\user\Desktop\Defendant Application - Final.pdf
[2012/08/18 04:23:05 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/08/18 04:18:47 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2012/08/18 04:09:17 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2012/08/18 04:09:17 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/08/18 04:09:17 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2012/08/18 04:09:17 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2012/08/18 04:09:17 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2012/08/18 04:09:17 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/08/18 04:09:17 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2012/08/18 04:09:16 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2012/08/18 04:09:16 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2012/08/18 02:07:02 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2012/08/18 02:07:02 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2012/08/18 02:07:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2012/08/18 02:07:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2012/08/16 08:45:48 | 000,408,408 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/08/02 10:05:42 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2012/07/19 08:37:14 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/07/18 14:14:40 | 000,001,024 | ---- | M] () -- C:\Windows\System32\AutoPartNt.let
[2012/07/18 14:10:27 | 002,072,416 | ---- | M] (Acronis) -- C:\Windows\System32\AutoPartNt.exe
[2012/07/18 10:10:29 | 002,344,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/07/16 11:47:21 | 000,724,942 | ---- | M] () -- C:\Users\user\Desktop\logo aztec.bmp
[2012/07/16 09:33:39 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/07/16 09:25:27 | 000,001,996 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
[2012/07/16 07:53:03 | 000,003,021 | ---- | M] () -- C:\Users\user\Desktop\Microsoft Word 2010.lnk
[2012/07/16 07:52:59 | 000,002,937 | ---- | M] () -- C:\Users\user\Desktop\Microsoft PowerPoint 2010.lnk
[2012/07/16 07:52:54 | 000,002,951 | ---- | M] () -- C:\Users\user\Desktop\Microsoft Excel 2010.lnk
[2012/07/16 07:52:24 | 000,163,232 | ---- | M] (Acronis) -- C:\Windows\System32\drivers\afcdp.sys
[2012/07/16 07:52:23 | 000,752,128 | ---- | M] (Acronis) -- C:\Windows\System32\drivers\tdrpm273.sys
[2012/07/16 07:52:22 | 000,600,928 | ---- | M] (Acronis) -- C:\Windows\System32\drivers\timntr.sys
[2012/07/16 07:52:18 | 000,170,464 | ---- | M] (Acronis) -- C:\Windows\System32\drivers\snapman.sys
[2012/07/16 07:52:12 | 000,001,097 | ---- | M] () -- C:\Users\Public\Desktop\Acronis True Image Home 2011.lnk
[2012/07/16 06:35:19 | 000,001,407 | ---- | M] () -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/07/16 06:18:07 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2012/07/16 06:18:07 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2012/07/16 06:18:07 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2012/07/16 06:18:07 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2012/07/16 06:18:07 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2012/07/16 06:18:07 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2012/07/16 06:18:07 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2012/07/16 06:18:07 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2012/07/16 06:18:07 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2012/07/16 06:18:07 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2012/07/16 06:18:07 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2012/07/16 06:18:07 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2012/07/16 06:18:07 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2012/07/16 06:18:07 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2012/07/16 06:18:07 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2012/07/16 06:18:07 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2012/07/16 06:18:07 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2012/07/16 06:18:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2012/07/16 06:18:07 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2012/07/16 06:18:07 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2012/07/16 06:18:07 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2012/07/16 06:18:07 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2012/07/16 06:18:07 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2012/07/16 06:18:07 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2012/07/16 06:18:07 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2012/07/16 06:18:07 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2012/07/16 06:18:07 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2012/07/16 06:18:07 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2012/07/16 06:18:07 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2012/07/16 06:18:07 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2012/07/16 06:17:44 | 003,181,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/07/16 06:17:44 | 001,619,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2012/07/16 06:17:44 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/07/16 06:17:44 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/07/16 06:17:44 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2012/07/16 04:03:14 | 000,042,045 | ---- | M] () -- C:\Windows\System32\license.rtf
[2012/07/04 14:23:55 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
[2012/06/06 08:49:52 | 001,070,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCTL.OCX
[2012/06/02 15:19:42 | 000,171,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012/06/02 15:19:33 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012/06/02 15:19:32 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012/06/02 15:19:23 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012/06/02 15:12:32 | 002,422,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012/06/02 15:12:20 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012/06/02 15:12:13 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012/06/01 21:47:31 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/05/31 12:25:14 | 000,237,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2012/05/05 00:44:48 | 000,400,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2012/04/25 21:48:52 | 000,129,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2012/04/25 21:48:52 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2012/04/25 21:43:14 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe
[2012/04/25 12:11:36 | 004,547,944 | ---- | M] (Apple, Inc.) -- C:\Windows\System32\usbaaplrc.dll
[2012/04/21 10:21:41 | 000,218,212 | ---- | M] () -- C:\Users\user\Desktop\acme pic.jpg
[2012/03/26 14:51:00 | 001,461,992 | ---- | M] (Microsoft Corporation) --

#4
lasvegasrebel702

Posted 01 November 2012 - 07:12 PM

Member

Topic Starter
Member
11 posts

C:\Windows\System32\wdfcoinstaller01009.dll
[2012/03/26 14:50:12 | 000,018,432 | ---- | M] (Apple Inc.) -- C:\Windows\System32\drivers\netaapl.sys
[2012/03/02 22:40:21 | 001,074,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/03/02 22:40:10 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/03/02 22:40:09 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/03/02 22:40:09 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/03/02 22:40:09 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/02/14 22:44:57 | 000,826,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2012/01/11 15:49:56 | 000,116,999 | ---- | M] () -- C:\Users\user\Desktop\OrozcoPDF[1].pdf
[2012/01/02 22:44:24 | 000,478,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2011/11/19 07:06:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2011/11/16 22:39:28 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2011/11/16 22:39:24 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2011/10/25 21:25:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/08/30 23:05:04 | 000,178,536 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll
[2011/08/30 23:05:04 | 000,083,816 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/08/30 23:05:04 | 000,073,064 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[2011/08/30 23:05:04 | 000,050,536 | ---- | M] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll
[2011/08/16 21:26:02 | 000,465,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011/08/16 21:22:23 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2011/08/16 21:22:23 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011/08/16 21:22:23 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2011/08/16 21:22:23 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2011/06/25 23:45:56 | 000,256,000 | ---- | M] () -- C:\Windows\PEV.exe
[2011/06/15 02:04:46 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2011/06/15 02:04:46 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2011/06/15 02:04:46 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2011/06/15 02:04:46 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2011/06/15 02:04:46 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2011/05/03 21:53:10 | 001,553,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011/05/03 21:52:59 | 001,401,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011/05/03 21:52:59 | 000,666,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011/05/03 21:52:59 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011/05/03 21:52:59 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011/05/03 21:52:59 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011/04/22 12:36:05 | 000,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2011/04/08 22:56:38 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011/03/24 20:06:25 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2011/03/24 20:06:06 | 000,005,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2011/03/12 04:31:58 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011/03/10 22:44:09 | 000,146,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2011/03/10 22:40:24 | 001,164,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/03/10 22:40:24 | 001,137,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/03/10 22:37:34 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2011/03/02 22:27:30 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/02/23 22:32:52 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011/02/18 22:32:08 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/02/18 20:37:02 | 000,294,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/02/17 22:33:29 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2011/02/11 22:30:49 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2011/02/02 22:45:07 | 000,219,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2010/12/22 22:28:28 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2010/12/22 22:24:02 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2010/12/20 22:38:24 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2010/12/20 22:38:16 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2010/11/07 10:20:24 | 000,208,896 | ---- | M] () -- C:\Windows\MBR.exe
[2010/11/01 21:41:12 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010/11/01 21:40:36 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010/11/01 21:40:36 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010/11/01 21:34:33 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
[2010/11/01 21:23:44 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2010/10/25 15:13:42 | 000,066,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71ITA.DLL
[2010/10/25 15:13:42 | 000,066,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71ESP.DLL
[2010/10/25 15:13:42 | 000,054,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71KOR.DLL
[2010/10/25 15:13:40 | 001,066,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc71.dll
[2010/10/25 15:13:40 | 001,053,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc71u.dll
[2010/10/25 15:13:40 | 000,094,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl71.dll
[2010/10/25 15:13:40 | 000,066,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71FRA.DLL
[2010/10/25 15:13:40 | 000,062,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71ENU.DLL
[2010/10/25 15:13:40 | 000,050,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71CHT.DLL
[2010/10/25 15:13:40 | 000,022,936 | ---- | M] (Adobe Systems Inc.) -- C:\Windows\System32\AdobePDFUI.dll
[2010/10/25 15:13:38 | 000,071,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71DEU.DLL
[2010/10/25 15:13:38 | 000,054,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71JPN.DLL
[2010/10/25 15:13:38 | 000,047,512 | ---- | M] (Adobe Systems Inc) -- C:\Windows\System32\AdobePDF.dll
[2010/10/25 15:13:38 | 000,046,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71CHS.DLL
[2010/10/20 12:44:50 | 001,207,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FM20.DLL
[2010/10/15 21:41:02 | 000,101,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010/08/31 21:23:49 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010/08/30 21:32:30 | 000,954,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010/08/30 21:32:30 | 000,954,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010/08/25 21:39:58 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010/08/20 22:36:33 | 000,738,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010/08/03 23:17:50 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2010/07/28 23:30:34 | 000,082,944 | ---- | M] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010/03/18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010/03/05 00:42:42 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010/03/03 20:57:55 | 000,190,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2010/02/20 17:20:18 | 000,031,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FM20ENU.DLL
[2010/02/17 21:42:38 | 000,051,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VBAME.DLL
[2010/01/18 16:29:31 | 000,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010/01/18 16:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010/01/18 16:29:31 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010/01/18 16:29:30 | 000,369,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010/01/18 16:28:33 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010/01/18 16:28:33 | 000,277,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010/01/18 16:28:30 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010/01/18 16:28:30 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2009/12/19 02:02:40 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2009/11/25 12:47:34 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2009/11/25 12:47:34 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2009/11/25 12:47:34 | 000,049,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009/10/19 07:10:06 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009/09/03 00:04:15 | 001,320,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2009/08/19 00:20:32 | 000,442,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2009/08/19 00:20:31 | 000,507,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2009/07/13 21:56:51 | 000,021,504 | ---- | M] () -- C:\Windows\System32\umstartup.etl
[2009/07/13 21:47:13 | 000,009,216 | ---- | M] () -- C:\Windows\System32\umstartup000.etl
[2009/07/13 21:42:29 | 000,001,244 | ---- | M] () -- C:\Windows\System32\migwiz.lnk
[2009/07/13 21:42:26 | 000,000,535 | ---- | M] () -- C:\Windows\System32\mapisvc.inf
[2009/07/13 21:37:42 | 000,000,290 | ---- | M] () -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2009/07/13 21:37:42 | 000,000,272 | ---- | M] () -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/07/13 19:10:28 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wacompen.sys.mui
[2009/07/13 19:10:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\msdsm.sys.mui
[2009/07/13 19:10:02 | 000,009,728 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\en-US\k57nd60x.sys.mui
[2009/07/13 19:09:54 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\1394ohci.sys.mui
[2009/07/13 19:09:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\volmgrx.sys.mui
[2009/07/13 19:09:48 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bthenum.sys.mui
[2009/07/13 19:09:44 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ndiscap.sys.mui
[2009/07/13 19:09:40 | 000,010,240 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\en-US\BrSerId.sys.mui
[2009/07/13 19:09:38 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ohci1394.sys.mui
[2009/07/13 19:09:36 | 000,010,752 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1q6032.sys.mui
[2009/07/13 19:09:36 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
[2009/07/13 19:09:30 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\serial.sys.mui
[2009/07/13 19:09:30 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\BTHUSB.SYS.mui
[2009/07/13 19:09:22 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\viac7.sys.mui
[2009/07/13 19:09:20 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\HdAudio.sys.mui
[2009/07/13 19:09:12 | 000,016,896 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\E1G60I32.sys.mui
[2009/07/13 19:09:10 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bfe.dll.mui
[2009/07/13 19:09:08 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\kbdhid.sys.mui
[2009/07/13 19:09:02 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wd.sys.mui
[2009/07/13 19:08:44 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ntfs.sys.mui
[2009/07/13 19:08:44 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\tcpip.sys.mui
[2009/07/13 19:08:44 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mouclass.sys.mui
[2009/07/13 19:08:38 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\afd.sys.mui
[2009/07/13 19:08:38 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\srv.sys.mui
[2009/07/13 19:08:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\luafv.sys.mui
[2009/07/13 19:08:24 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\partmgr.sys.mui
[2009/07/13 19:08:20 | 000,005,120 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\en-US\bcm4sbxp.sys.mui
[2009/07/13 19:08:16 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\serscan.sys.mui
[2009/07/13 19:08:12 | 000,019,968 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1y6032.sys.mui
[2009/07/13 19:08:04 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\disk.sys.mui
[2009/07/13 19:08:02 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\SISAGP.SYS.mui
[2009/07/13 19:07:58 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\amdide.sys.mui
[2009/07/13 19:07:54 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\AGP440.sys.mui
[2009/07/13 19:07:52 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\http.sys.mui
[2009/07/13 19:07:46 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
[2009/07/13 19:07:44 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\RNDISMP.sys.mui
[2009/07/13 19:07:42 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\amdppm.sys.mui
[2009/07/13 19:07:42 | 000,009,728 | ---- | M] (Agere Systems) -- C:\Windows\System32\drivers\en-US\ltmdmnt.sys.mui
[2009/07/13 19:07:42 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\hidbth.sys.mui
[2009/07/13 19:07:40 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bthport.sys.mui
[2009/07/13 19:07:40 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\rndismpx.sys.mui
[2009/07/13 19:07:28 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pacer.sys.mui
[2009/07/13 19:07:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\amdk8.sys.mui
[2009/07/13 19:07:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mountmgr.sys.mui
[2009/07/13 19:07:12 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\umbus.sys.mui
[2009/07/13 19:07:08 | 000,003,072 | ---- | M] (VIA Technologies, Inc. ) -- C:\Windows\System32\drivers\en-US\getn62.sys.mui
[2009/07/13 19:07:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\VIAAGP.SYS.mui
[2009/07/13 19:07:00 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mpio.sys.mui
[2009/07/13 19:07:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\IPMIDrv.sys.mui
[2009/07/13 19:06:54 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\cdrom.sys.mui
[2009/07/13 19:06:44 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\acpi.sys.mui
[2009/07/13 19:06:42 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\nwifi.sys.mui
[2009/07/13 19:06:38 | 000,019,968 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1e6032.sys.mui
[2009/07/13 19:06:34 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\vwifibus.sys.mui
[2009/07/13 19:06:30 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\modem.sys.mui
[2009/07/13 19:06:30 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mouhid.sys.mui
[2009/07/13 19:06:12 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\tpm.sys.mui
[2009/07/13 19:06:08 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\hdaudbus.sys.mui
[2009/07/13 19:06:02 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ataport.sys.mui
[2009/07/13 19:06:02 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\Dot4usb.sys.mui
[2009/07/13 19:05:40 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\scfilter.sys.mui
[2009/07/13 19:05:34 | 000,003,072 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\en-US\atikmdag.sys.mui
[2009/07/13 19:05:32 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\vhdmp.sys.mui
[2009/07/13 19:05:22 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\intelppm.sys.mui
[2009/07/13 19:05:02 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\isapnp.sys.mui
[2009/07/13 19:04:58 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pnpmem.sys.mui
[2009/07/13 19:04:56 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\kbdclass.sys.mui
[2009/07/13 19:04:50 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\scsiport.sys.mui
[2009/07/13 19:04:48 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\parvdm.sys.mui
[2009/07/13 19:04:46 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\fvevol.sys.mui
[2009/07/13 19:04:42 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\usbhub.sys.mui
[2009/07/13 19:04:42 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\en-US\WpdMtpDr.dll.mui
[2009/07/13 19:04:40 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\i8042prt.sys.mui
[2009/07/13 19:04:38 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\qwavedrv.sys.mui
[2009/07/13 19:04:36 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\sermouse.sys.mui
[2009/07/13 19:04:34 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pci.sys.mui
[2009/07/13 19:04:32 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\GAGP30KX.SYS.mui
[2009/07/13 19:04:28 | 000,009,728 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\en-US\b57nd60x.sys.mui
[2009/07/13 19:04:26 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ws2ifsl.sys.mui
[2009/07/13 19:04:24 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\battc.sys.mui
[2009/07/13 19:04:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ULIAGPKX.SYS.mui
[2009/07/13 19:04:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\UAGP35.SYS.mui
[2009/07/13 19:04:20 | 000,010,240 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\en-US\BrSerIb.sys.mui
[2009/07/13 19:04:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\MTConfig.sys.mui
[2009/07/13 19:03:46 | 000,003,584 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\en-US\pscr.sys.mui
[2009/07/13 19:03:46 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\usbrpm.sys.mui
[2009/07/13 19:03:36 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\tunnel.sys.mui
[2009/07/13 19:03:34 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ipnat.sys.mui
[2009/07/13 19:03:32 | 000,005,120 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e100b325.sys.mui
[2009/07/13 19:03:24 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\AMDAGP.SYS.mui
[2009/07/13 19:03:18 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\volsnap.sys.mui
[2009/07/13 19:03:18 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\fltmgr.sys.mui
[2009/07/13 19:03:08 | 000,032,256 | ---- | M] (Marvell) -- C:\Windows\System32\drivers\en-US\yk62x86.sys.mui
[2009/07/13 19:02:46 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\processr.sys.mui
[2009/07/13 19:02:42 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\pcmcia.sys.mui
[2009/07/13 19:02:36 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\usbport.sys.mui
[2009/07/13 19:02:36 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\en-US\BrParwdm.sys.mui
[2009/07/13 19:02:30 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\vdrvroot.sys.mui
[2009/07/13 19:02:26 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bthpan.sys.mui
[2009/07/13 19:02:20 | 000,010,240 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\en-US\e1k6032.sys.mui
[2009/07/13 19:02:20 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\NV_AGP.SYS.mui
[2009/07/13 19:02:16 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\rndismp6.sys.mui
[2009/07/13 19:02:00 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\rdbss.sys.mui
[2009/07/13 19:02:00 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\portcls.sys.mui
[2009/07/13 19:01:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\parport.sys.mui
[2009/07/13 19:01:22 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ndis.sys.mui
[2009/07/13 19:01:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\ndisuio.sys.mui
[2009/07/13 19:01:18 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\mssmbios.sys.mui
[2009/07/13 18:26:15 | 002,217,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bootres.dll
[2009/07/13 18:26:15 | 000,140,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2009/07/13 18:26:15 | 000,133,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2009/07/13 18:26:15 | 000,025,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys
[2009/07/13 18:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BOOTVID.DLL
[2009/07/13 18:24:31 | 001,073,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Narrator.exe
[2009/07/13 18:23:21 | 005,070,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuthFWSnapin.dll
[2009/07/13 18:22:23 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NAPHLPR.DLL
[2009/07/13 18:22:14 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NAPCRYPT.DLL
[2009/07/13 18:20:52 | 000,043,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\winhv.sys
[2009/07/13 18:20:44 | 000,240,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2009/07/13 18:20:43 | 000,091,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MigAutoPlay.exe
[2009/07/13 18:20:36 | 000,470,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2009/07/13 18:20:36 | 000,031,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_AuthenticAMD.dll
[2009/07/13 18:20:36 | 000,017,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2009/07/13 18:20:36 | 000,016,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2009/07/13 18:20:36 | 000,015,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2009/07/13 18:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\halmacpi.dll
[2009/07/13 18:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hal.dll
[2009/07/13 18:20:28 | 000,187,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2009/07/13 18:20:28 | 000,137,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\halacpi.dll
[2009/07/13 18:20:28 | 000,035,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2009/07/13 18:20:28 | 000,026,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2009/07/13 18:20:07 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuthFWWizFwk.dll
[2009/07/13 18:19:11 | 000,038,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2009/07/13 18:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vmbus.sys
[2009/07/13 18:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vmstorfl.sys
[2009/07/13 18:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\storvsc.sys
[2009/07/13 18:19:10 | 000,022,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\streamci.dll
[2009/07/13 18:19:10 | 000,014,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmilib.sys
[2009/07/13 18:19:04 | 000,140,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\scsiport.sys
[2009/07/13 18:19:03 | 000,052,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2009/07/13 18:19:03 | 000,042,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2009/07/13 18:17:54 | 000,690,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2009/07/13 18:17:54 | 000,271,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveapi.dll
[2009/07/13 18:17:54 | 000,249,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcryptprimitives.dll
[2009/07/13 18:17:54 | 000,055,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dumpfve.sys
[2009/07/13 18:17:51 | 000,143,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2009/07/13 18:16:21 | 001,712,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2009/07/13 18:16:21 | 000,930,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xpssvcs.dll
[2009/07/13 18:16:21 | 000,674,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwanmm.dll
[2009/07/13 18:16:21 | 000,601,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsFilt.dll
[2009/07/13 18:16:21 | 000,567,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2009/07/13 18:16:21 | 000,444,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wvc.dll
[2009/07/13 18:16:21 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xwizards.dll
[2009/07/13 18:16:21 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WWanAPI.dll
[2009/07/13 18:16:21 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\zgmprxy.dll
[2009/07/13 18:16:21 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwanconn.dll
[2009/07/13 18:16:21 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wwanadvui.dll
[2009/07/13 18:16:21 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2009/07/13 18:16:21 | 000,158,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xwtpdui.dll
[2009/07/13 18:16:21 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xwtpw32.dll
[2009/07/13 18:16:21 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xwreg.dll
[2009/07/13 18:16:21 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wzcdlg.dll
[2009/07/13 18:16:21 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WWanHC.dll
[2009/07/13 18:16:21 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2009/07/13 18:16:21 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009/07/13 18:16:21 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwancfg.dll
[2009/07/13 18:16:21 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2009/07/13 18:16:21 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2009/07/13 18:16:21 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wwanpref.dll
[2009/07/13 18:16:21 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll
[2009/07/13 18:16:21 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XInput9_1_0.dll
[2009/07/13 18:16:21 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmlprovi.dll
[2009/07/13 18:16:21 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwaninst.dll
[2009/07/13 18:16:20 | 001,568,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2009/07/13 18:16:20 | 001,294,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsecedit.dll
[2009/07/13 18:16:20 | 000,844,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\WpdMtpDr.dll
[2009/07/13 18:16:20 | 000,766,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2009/07/13 18:16:20 | 000,664,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2009/07/13 18:16:20 | 000,577,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2009/07/13 18:16:20 | 000,541,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2009/07/13 18:16:20 | 000,458,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2009/07/13 18:16:20 | 000,358,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVSENCD.DLL
[2009/07/13 18:16:20 | 000,350,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2009/07/13 18:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2009/07/13 18:16:20 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2009/07/13 18:16:20 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2009/07/13 18:16:20 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll
[2009/07/13 18:16:20 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\WpdFs.dll
[2009/07/13 18:16:20 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2009/07/13 18:16:20 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpdwcn.dll
[2009/07/13 18:16:20 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2009/07/13 18:16:20 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.dll
[2009/07/13 18:16:20 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2009/07/13 18:16:20 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmvdspa.dll
[2009/07/13 18:16:20 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2009/07/13 18:16:20 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll
[2009/07/13 18:16:20 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2009/07/13 18:16:20 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDPrintProxy.DLL
[2009/07/13 18:16:20 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscmisetup.dll
[2009/07/13 18:16:20 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDScanProxy.dll
[2009/07/13 18:16:20 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll
[2009/07/13 18:16:20 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2009/07/13 18:16:20 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshcon.dll
[2009/07/13 18:16:20 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2009/07/13 18:16:20 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2009/07/13 18:16:20 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcmig.dll
[2009/07/13 18:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshelper.dll
[2009/07/13 18:16:20 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2009/07/13 18:16:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
[2009/07/13 18:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2009/07/13 18:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshnetbs.dll
[2009/07/13 18:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshirda.dll
[2009/07/13 18:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
[2009/07/13 18:16:20 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscproxystub.dll
[2009/07/13 18:16:19 | 001,624,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPEncEn.dll
[2009/07/13 18:16:19 | 001,326,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2009/07/13 18:16:19 | 001,325,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOE.DLL
[2009/07/13 18:16:19 | 001,202,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMALFXGFXDSP.dll
[2009/07/13 18:16:19 | 001,003,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2009/07/13 18:16:19 | 000,902,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMADMOD.DLL
[2009/07/13 18:16:19 | 000,812,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMADMOE.DLL
[2009/07/13 18:16:19 | 000,748,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WlanMM.dll
[2009/07/13 18:16:19 | 000,739,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009/07/13 18:16:19 | 000,669,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WLanConn.dll
[2009/07/13 18:16:19 | 000,616,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2009/07/13 18:16:19 | 000,507,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmdrmdev.dll
[2009/07/13 18:16:19 | 000,505,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlandlg.dll
[2009/07/13 18:16:19 | 000,436,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmdrmnet.dll
[2009/07/13 18:16:19 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2009/07/13 18:16:19 | 000,411,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2009/07/13 18:16:19 | 000,410,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2009/07/13 18:16:19 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2009/07/13 18:16:19 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2009/07/13 18:16:19 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
[2009/07/13 18:16:19 | 000,318,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2009/07/13 18:16:19 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSync.dll
[2009/07/13 18:16:19 | 000,240,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2009/07/13 18:16:19 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2009/07/13 18:16:19 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpsrcwp.dll
[2009/07/13 18:16:19 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlancfg.dll
[2009/07/13 18:16:19 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSyncMetastore.dll
[2009/07/13 18:16:19 | 000,170,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WmpDui.dll
[2009/07/13 18:16:19 | 000,158,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WLanHC.dll
[2009/07/13 18:16:19 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmidx.dll
[2009/07/13 18:16:19 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpps.dll
[2009/07/13 18:16:19 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[2009/07/13 18:16:19 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSyncProviders.dll
[2009/07/13 18:16:19 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2009/07/13 18:16:19 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winethc.dll
[2009/07/13 18:16:19 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2009/07/13 18:16:19 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsockhc.dll
[2009/07/13 18:16:19 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmcodecdspps.dll
[2009/07/13 18:16:19 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll
[2009/07/13 18:16:19 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmdmps.dll
[2009/07/13 18:16:19 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmdmlog.dll
[2009/07/13 18:16:19 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinFax.dll
[2009/07/13 18:16:19 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmiprop.dll
[2009/07/13 18:16:19 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpcm.dll
[2009/07/13 18:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlaninst.dll
[2009/07/13 18:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winusb.dll
[2009/07/13 18:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WINSRPC.DLL
[2009/07/13 18:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
[2009/07/13 18:16:19 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wksprtPS.dll
[2009/07/13 18:16:19 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmsgapi.dll
[2009/07/13 18:16:19 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2009/07/13 18:16:19 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WlS0WndH.dll
[2009/07/13 18:16:19 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
[2009/07/13 18:16:18 | 001,227,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2009/07/13 18:16:18 | 001,063,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll
[2009/07/13 18:16:18 | 000,994,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2009/07/13 18:16:18 | 000,782,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webservices.dll
[2009/07/13 18:16:18 | 000,544,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2009/07/13 18:16:18 | 000,416,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiadefui.dll
[2009/07/13 18:16:18 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wimgapi.dll
[2009/07/13 18:16:18 | 000,377,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2009/07/13 18:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2009/07/13 18:16:18 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2009/07/13 18:16:18 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2009/07/13 18:16:18 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werui.dll
[2009/07/13 18:16:18 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiadss.dll
[2009/07/13 18:16:18 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiavideo.dll
[2009/07/13 18:16:18 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiascanprofiles.dll
[2009/07/13 18:16:18 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WcnApi.dll
[2009/07/13 18:16:18 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2009/07/13 18:16:18 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WfHC.dll
[2009/07/13 18:16:18 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2009/07/13 18:16:18 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winbio.dll
[2009/07/13 18:16:18 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wincredprovider.dll
[2009/07/13 18:16:18 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiarpc.dll
[2009/07/13 18:16:18 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2009/07/13 18:16:18 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdiasqmmodule.dll
[2009/07/13 18:16:18 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2009/07/13 18:16:18 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werdiagcontroller.dll
[2009/07/13 18:16:18 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WcnEapPeerProxy.dll
[2009/07/13 18:16:18 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WcnEapAuthProxy.dll
[2009/07/13 18:16:18 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2009/07/13 18:16:18 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\whhelper.dll
[2009/07/13 18:16:18 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winbrand.dll
[2009/07/13 18:16:18 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiatrace.dll
[2009/07/13 18:16:17 | 002,983,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2009/07/13 18:16:17 | 002,969,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIHub.dll
[2009/07/13 18:16:17 | 000,933,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Vault.dll
[2009/07/13 18:16:17 | 000,638,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VAN.dll
[2009/07/13 18:16:17 | 000,600,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2009/07/13 18:16:17 | 000,561,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2009/07/13 18:16:17 | 000,518,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2009/07/13 18:16:17 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
[2009/07/13 18:16:17 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2009/07/13 18:16:17 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\verifier.dll
[2009/07/13 18:16:17 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vpnike.dll
[2009/07/13 18:16:17 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wavemsp.dll
[2009/07/13 18:16:17 | 000,196,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vaultsvc.dll
[2009/07/13 18:16:17 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdsbas.dll
[2009/07/13 18:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VIDRESZR.DLL
[2009/07/13 18:16:17 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2009/07/13 18:16:17 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uudf.dll
[2009/07/13 18:16:17 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxlib.dll
[2009/07/13 18:16:17 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll
[2009/07/13 18:16:17 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2009/07/13 18:16:17 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ufat.dll
[2009/07/13 18:16:17 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UMDF\usbdr.dll
[2009/07/13 18:16:17 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usbui.dll
[2009/07/13 18:16:17 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserAccountControlSettings.dll
[2009/07/13 18:16:17 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VaultCredProvider.dll
[2009/07/13 18:16:17 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unimdmat.dll
[2009/07/13 18:16:17 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WABSyncProvider.dll
[2009/07/13 18:16:17 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vfwwdm32.dll
[2009/07/13 18:16:17 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umb.dll
[2009/07/13 18:16:17 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdsvd.dll
[2009/07/13 18:16:17 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WavDest.dll
[2009/07/13 18:16:17 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vds_ps.dll
[2009/07/13 18:16:17 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vaultcli.dll
[2009/07/13 18:16:17 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uicom.dll
[2009/07/13 18:16:17 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\utildll.dll
[2009/07/13 18:16:17 | 000,030,749 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbajet32.dll
[2009/07/13 18:16:17 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\w32topl.dll
[2009/07/13 18:16:17 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vss_ps.dll
[2009/07/13 18:16:17 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vpnikeapi.dll
[2009/07/13 18:16:17 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usbceip.dll
[2009/07/13 18:16:17 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ureg.dll
[2009/07/13 18:16:17 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UXInit.dll
[2009/07/13 18:16:17 | 000,020,535 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vfpodbc.dll
[2009/07/13 18:16:17 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdmredir.dll
[2009/07/13 18:16:17 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umdmxfrm.dll
[2009/07/13 18:16:17 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\virtdisk.dll
[2009/07/13 18:16:17 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2009/07/13 18:16:17 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usbperf.dll
[2009/07/13 18:16:16 | 000,594,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSWorkspace.dll
[2009/07/13 18:16:16 | 000,262,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsmf.dll
[2009/07/13 18:16:16 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2009/07/13 18:16:16 | 000,170,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ubpm.dll
[2009/07/13 18:16:16 | 000,153,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tscfgwmi.dll
[2009/07/13 18:16:16 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tspubwmi.dll
[2009/07/13 18:16:16 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\txflog.dll
[2009/07/13 18:16:16 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tlscsp.dll
[2009/07/13 18:16:16 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uexfat.dll
[2009/07/13 18:16:16 | 000,051,200 | ---- | M] (Twain Working Group) -- C:\Windows\twain_32.dll
[2009/07/13 18:16:16 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ucmhc.dll
[2009/07/13 18:16:16 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\udhisapi.dll
[2009/07/13 18:16:16 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tpmcompc.dll
[2009/07/13 18:16:16 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2009/07/13 18:16:16 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll
[2009/07/13 18:16:16 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tvratings.dll
[2009/07/13 18:16:16 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TRAPI.dll
[2009/07/13 18:16:16 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSChannel.dll
[2009/07/13 18:16:16 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSErrRedir.dll
[2009/07/13 18:16:16 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\txfw32.dll
[2009/07/13 18:16:16 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TimeDateMUICallback.dll
[2009/07/13 18:16:16 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TsPnPRdrCoInstaller.dll
[2009/07/13 18:16:15 | 002,157,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll
[2009/07/13 18:16:15 | 002,146,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
[2009/07/13 18:16:15 | 001,111,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppcext.dll
[2009/07/13 18:16:15 | 000,974,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppobjs.dll
[2009/07/13 18:16:15 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi3.dll
[2009/07/13 18:16:15 | 000,782,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll
[2009/07/13 18:16:15 | 000,755,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sud.dll
[2009/07/13 18:16:15 | 000,606,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2009/07/13 18:16:15 | 000,605,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlceqp30.dll
[2009/07/13 18:16:15 | 000,412,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppwinob.dll
[2009/07/13 18:16:15 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2009/07/13 18:16:15 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppcc.dll
[2009/07/13 18:16:15 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\termmgr.dll
[2009/07/13 18:16:15 | 000,351,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwizeng.dll
[2009/07/13 18:16:15 | 000,345,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppcommdlg.dll
[2009/07/13 18:16:15 | 000,338,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SysFxUI.dll
[2009/07/13 18:16:15 | 000,323,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncInfrastructure.dll
[2009/07/13 18:16:15 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2009/07/13 18:16:15 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlcese30.dll
[2009/07/13 18:16:15 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SrpUxNativeSnapIn.dll
[2009/07/13 18:16:15 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2009/07/13 18:16:15 | 000,257,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srrstr.dll
[2009/07/13 18:16:15 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskbarcpl.dll
[2009/07/13 18:16:15 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sti.dll
[2009/07/13 18:16:15 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll
[2009/07/13 18:16:15 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppcomapi.dll
[2009/07/13 18:16:15 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll
[2009/07/13 18:16:15 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqmapi.dll
[2009/07/13 18:16:15 | 000,180,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlunirl.dll
[2009/07/13 18:16:15 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2009/07/13 18:16:15 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlceoledb30.dll
[2009/07/13 18:16:15 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll
[2009/07/13 18:16:15 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sti_ci.dll
[2009/07/13 18:16:15 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppwmi.dll
[2009/07/13 18:16:15 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppnp.dll
[2009/07/13 18:16:15 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SSShim.dll
[2009/07/13 18:16:15 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TapiMigPlugin.dll
[2009/07/13 18:16:15 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppinst.dll
[2009/07/13 18:16:15 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Tabbtn.dll
[2009/07/13 18:16:15 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2009/07/13 18:16:15 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srhelper.dll
[2009/07/13 18:16:15 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stclient.dll
[2009/07/13 18:16:15 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StorageContextHandler.dll
[2009/07/13 18:16:15 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpmonui.dll
[2009/07/13 18:16:15 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll
[2009/07/13 18:16:15 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll
[2009/07/13 18:16:15 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TabbtnEx.dll
[2009/07/13 18:16:15 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TaskSchdPS.dll
[2009/07/13 18:16:15 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxproxy.dll
[2009/07/13 18:16:15 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpmib.dll
[2009/07/13 18:16:15 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapilua.dll
[2009/07/13 18:16:15 | 000,024,603 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlwid.dll
[2009/07/13 18:16:15 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxssrv.dll
[2009/07/13 18:16:15 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srwmi.dll
[2009/07/13 18:16:15 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxsstore.dll
[2009/07/13 18:16:15 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spopk.dll
[2009/07/13 18:16:15 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxshared.dll
[2009/07/13 18:16:15 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysntfy.dll
[2009/07/13 18:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slcext.dll
[2009/07/13 18:16:15 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncInfrastructureps.dll
[2009/07/13 18:16:15 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syssetup.dll
[2009/07/13 18:16:15 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tbs.dll
[2009/07/13 18:16:15 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll
[2009/07/13 18:16:15 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll
[2009/07/13 18:16:15 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncHostps.dll
[2009/07/13 18:16:15 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sscore.dll
[2009/07/13 18:16:15 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TapiSysprep.dll
[2009/07/13 18:16:15 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapiperf.dll
[2009/07/13 18:16:15 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spnet.dll
[2009/07/13 18:16:14 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll
[2009/07/13 18:16:14 | 000,428,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll
[2009/07/13 18:16:14 | 000,316,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sharemediacpl.dll
[2009/07/13 18:16:14 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SNTSearch.dll
[2009/07/13 18:16:14 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
[2009/07/13 18:16:14 | 000,201,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unattend.dll
[2009/07/13 18:16:14 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2009/07/13 18:16:14 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll
[2009/07/13 18:16:14 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupcln.dll
[2009/07/13 18:16:14 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2009/07/13 18:16:14 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
[2009/07/13 18:16:14 | 000,084,992 | ---- | M] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll
[2009/07/13 18:16:14 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spfileq.dll
[2009/07/13 18:16:14 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SPInf.dll
[2009/07/13 18:16:14 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spbcd.dll
[2009/07/13 18:16:14 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SortWindows6Compat.dll
[2009/07/13 18:16:14 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\signdrv.dll
[2009/07/13 18:16:14 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SortServer2003Compat.dll
[2009/07/13 18:16:14 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmpapi.dll
[2009/07/13 18:16:14 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sisbkup.dll
[2009/07/13 18:16:14 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shpafact.dll
[2009/07/13 18:16:14 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shunimpl.dll
[2009/07/13 18:16:14 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\softpub.dll
[2009/07/13 18:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
[2009/07/13 18:16:14 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009/07/13 18:16:13 | 002,202,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsCpl.dll
[2009/07/13 18:16:13 | 000,907,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdengin2.dll
[2009/07/13 18:16:13 | 000,750,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdcpl.dll
[2009/07/13 18:16:13 | 000,485,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IasMigPlugin.dll
[2009/07/13 18:16:13 | 000,464,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scrptadm.dll
[2009/07/13 18:16:13 | 000,358,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2009/07/13 18:16:13 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ReAgent.dll
[2009/07/13 18:16:13 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2009/07/13 18:16:13 | 000,240,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdiagprv.dll
[2009/07/13 18:16:13 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RESAMPLEDMO.DLL
[2009/07/13 18:16:13 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2009/07/13 18:16:13 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2009/07/13 18:16:13 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdiageng.dll
[2009/07/13 18:16:13 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2009/07/13 18:16:13 | 000,153,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2009/07/13 18:16:13 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RstrtMgr.dll
[2009/07/13 18:16:13 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rgb9rast.dll
[2009/07/13 18:16:13 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpendp.dll
[2009/07/13 18:16:13 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\recovery.dll
[2009/07/13 18:16:13 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2009/07/13 18:16:13 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsApi.dll
[2009/07/13 18:16:13 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtm.dll
[2009/07/13 18:16:13 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdshext.dll
[2009/07/13 18:16:13 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsClassExtension.dll
[2009/07/13 18:16:13 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SCardDlg.dll
[2009/07/13 18:16:13 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sccls.dll
[2009/07/13 18:16:13 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scripto.dll
[2009/07/13 18:16:13 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpd3d.dll
[2009/07/13 18:16:13 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scext.dll
[2009/07/13 18:16:13 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2009/07/13 18:16:13 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdautoplay.dll
[2009/07/13 18:16:13 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdiagschd.dll
[2009/07/13 18:16:13 | 000,044,544 | ---- | M] (Microsoft) -- C:\Windows\System32\RPCNDFP.dll
[2009/07/13 18:16:13 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegCtrl.dll
[2009/07/13 18:16:13 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2009/07/13 18:16:13 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdhcinst.dll
[2009/07/13 18:16:13 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcnsh.dll
[2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll
[2009/07/13 18:16:13 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll
[2009/07/13 18:16:13 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdprefdrvapi.dll
[2009/07/13 18:16:13 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\serwvdrv.dll
[2009/07/13 18:16:13 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schedcli.dll
[2009/07/13 18:16:13 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\serialui.dll
[2009/07/13 18:16:13 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regidle.dll
[2009/07/13 18:16:13 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sas.dll
[2009/07/13 18:16:13 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpcfgex.dll
[2009/07/13 18:16:13 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcDiag.dll
[2009/07/13 18:16:13 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2009/07/13 18:16:13 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcNs4.dll
[2009/07/13 18:16:12 | 002,504,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2009/07/13 18:16:12 | 001,750,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2009/07/13 18:16:12 | 001,234,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2009/07/13 18:16:12 | 001,160,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2009/07/13 18:16:12 | 001,116,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2009/07/13 18:16:12 | 001,111,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\onexui.dll
[2009/07/13 18:16:12 | 001,106,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ogldrv.dll
[2009/07/13 18:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDistSvc.dll
[2009/07/13 18:16:12 | 000,859,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OobeFldr.dll
[2009/07/13 18:16:12 | 000,845,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RASMM.dll
[2009/07/13 18:16:12 | 000,791,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\opengl32.dll
[2009/07/13 18:16:12 | 000,761,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2009/07/13 18:16:12 | 000,666,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDistSh.dll
[2009/07/13 18:16:12 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pmcsnap.dll
[2009/07/13 18:16:12 | 000,600,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2009/07/13 18:16:12 | 000,578,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perftrack.dll
[2009/07/13 18:16:12 | 000,547,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2009/07/13 18:16:12 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AUDIOKSE.dll
[2009/07/13 18:16:12 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2009/07/13 18:16:12 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceStatus.dll
[2009/07/13 18:16:12 | 000,412,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\p2pcollab.dll
[2009/07/13 18:16:12 | 000,395,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll
[2009/07/13 18:16:12 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2009/07/13 18:16:12 | 000,379,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2009/07/13 18:16:12 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2009/07/13 18:16:12 | 000,324,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\puiobj.dll
[2009/07/13 18:16:12 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2009/07/13 18:16:12 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2009/07/13 18:16:12 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ppcsnap.dll
[2009/07/13 18:16:12 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OnLineIDCpl.dll
[2009/07/13 18:16:12 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\P2P.dll
[2009/07/13 18:16:12 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qasf.dll
[2009/07/13 18:16:12 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2009/07/13 18:16:12 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2009/07/13 18:16:12 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provthrd.dll
[2009/07/13 18:16:12 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceSyncProvider.dll
[2009/07/13 18:16:12 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2009/07/13 18:16:12 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2009/07/13 18:16:12 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
[2009/07/13 18:16:12 | 000,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2009/07/13 18:16:12 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QSHVHOST.DLL
[2009/07/13 18:16:12 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2009/07/13 18:16:12 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDist.dll
[2009/07/13 18:16:12 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWiaCompat.dll
[2009/07/13 18:16:12 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\p2pnetsh.dll
[2009/07/13 18:16:12 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppc.dll
[2009/07/13 18:16:12 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prntvpt.dll
[2009/07/13 18:16:12 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prncache.dll
[2009/07/13 18:16:12 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\racpldlg.dll
[2009/07/13 18:16:12 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2009/07/13 18:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2009/07/13 18:16:12 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QSVRMGMT.DLL
[2009/07/13 18:16:12 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDistWSDDiscoProv.dll
[2009/07/13 18:16:12 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2009/07/13 18:16:12 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\radardt.dll
[2009/07/13 18:16:12 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2009/07/13 18:16:12 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2009/07/13 18:16:12 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olecli32.dll
[2009/07/13 18:16:12 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
[2009/07/13 18:16:12 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olethk32.dll
[2009/07/13 18:16:12 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QCLIPROV.DLL
[2009/07/13 18:16:12 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\radarrs.dll
[2009/07/13 18:16:12 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2009/07/13 18:16:12 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2009/07/13 18:16:12 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Pnrphc.dll
[2009/07/13 18:16:12 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssocPrx.dll
[2009/07/13 18:16:12 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pdhui.dll
[2009/07/13 18:16:12 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasmbmgr.dll
[2009/07/13 18:16:12 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pautoenr.dll
[2009/07/13 18:16:12 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDistHttpTrans.dll
[2009/07/13 18:16:12 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pstorec.dll
[2009/07/13 18:16:12 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfctrs.dll
[2009/07/13 18:16:12 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pid.dll
[2009/07/13 18:16:12 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfproc.dll
[2009/07/13 18:16:12 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll
[2009/07/13 18:16:12 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcwum.dll
[2009/07/13 18:16:12 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PrintIsolationProxy.dll
[2009/07/13 18:16:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olesvr32.dll
[2009/07/13 18:16:12 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profprov.dll
[2009/07/13 18:16:12 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcadm.dll
[2009/07/13 18:16:12 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2009/07/13 18:16:12 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pots.dll
[2009/07/13 18:16:12 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qmgrprxy.dll
[2009/07/13 18:16:12 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfnet.dll
[2009/07/13 18:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odtext32.dll
[2009/07/13 18:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odpdx32.dll
[2009/07/13 18:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odfox32.dll
[2009/07/13 18:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odexl32.dll
[2009/07/13 18:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oddbse32.dll
[2009/07/13 18:16:12 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osbaseln.dll
[2009/07/13 18:16:12 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfts.dll
[2009/07/13 18:16:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasctrs.dll
[2009/07/13 18:16:12 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnpts.dll
[2009/07/13 18:16:12 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\panmap.dll
[2009/07/13 18:16:12 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacchooks.dll
[2009/07/13 18:16:12 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\procinst.dll
[2009/07/13 18:16:12 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009/07/13 18:16:12 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysprepMCE.dll
[2009/07/13 18:16:12 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osuninst.dll
[2009/07/13 18:16:11 | 007,592,960 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2009/07/13 18:16:11 | 004,507,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2009/07/13 18:16:11 | 003,128,320 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2009/07/13 18:16:11 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2009/07/13 18:16:11 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2009/07/13 18:16:11 | 000,656,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2009/07/13 18:16:11 | 000,537,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\objsel.dll
[2009/07/13 18:16:11 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshipsec.dll
[2009/07/13 18:16:11 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2009/07/13 18:16:11 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ocsetapi.dll
[2009/07/13 18:16:11 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2009/07/13 18:16:11 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2009/07/13 18:16:11 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Nlsdl.dll
[2009/07/13 18:16:11 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcji32.dll
[2009/07/13 18:16:11 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32gt.dll
[2009/07/13 18:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
[2009/07/13 18:16:11 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntvdmd.dll
[2009/07/13 18:16:11 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nrpsrv.dll
[2009/07/13 18:16:10 | 004,507,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2009/07/13 18:16:10 | 004,507,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2009/07/13 18:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2009/07/13 18:16:09 | 001,979,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2009/07/13 18:16:09 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2009/07/13 18:16:09 | 001,811,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2009/07/13 18:16:09 | 001,811,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2009/07/13 18:16:08 | 004,509,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2009/07/13 18:16:08 | 004,507,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2009/07/13 18:16:08 | 003,476,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2009/07/13 18:16:08 | 003,116,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2009/07/13 18:16:08 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2009/07/13 18:16:08 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2009/07/13 18:16:08 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2009/07/13 18:16:08 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2009/07/13 18:16:08 | 001,811,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2009/07/13 18:16:08 | 001,811,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2009/07/13 18:16:07 | 004,507,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2009/07/13 18:16:07 | 002,670,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2009/07/13 18:16:06 | 010,240,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2009/07/13 18:16:06 | 002,654,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2009/07/13 18:16:06 | 002,353,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2009/07/13 18:16:06 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2009/07/13 18:16:05 | 004,888,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2009/07/13 18:16:04 | 002,609,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2009/07/13 18:16:04 | 002,255,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2009/07/13 18:16:04 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2009/07/13 18:16:04 | 001,977,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2009/07/13 18:16:03 | 002,130,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2009/07/13 18:16:03 | 001,537,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2009/07/13 18:16:03 | 001,114,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2009/07/13 18:16:03 | 000,542,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nettrace.dll
[2009/07/13 18:16:03 | 000,481,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprof.dll
[2009/07/13 18:16:03 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2009/07/13 18:16:03 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlmgp.dll
[2009/07/13 18:16:03 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2009/07/13 18:16:03 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlahc.dll
[2009/07/13 18:16:03 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2009/07/13 18:16:03 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlmsprep.dll
[2009/07/13 18:16:02 | 001,644,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2009/07/13 18:16:02 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2009/07/13 18:16:02 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mycomput.dll
[2009/07/13 18:16:02 | 000,225,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netdiagfx.dll
[2009/07/13 18:16:02 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndfapi.dll
[2009/07/13 18:16:02 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2009/07/13 18:16:02 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2009/07/13 18:16:02 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netjoin.dll
[2009/07/13 18:16:02 | 000,158,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NAPMONTR.DLL
[2009/07/13 18:16:02 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2009/07/13 18:16:02 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netid.dll
[2009/07/13 18:16:02 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndfhcdiscovery.dll
[2009/07/13 18:16:02 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\negoexts.dll
[2009/07/13 18:16:02 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nci.dll
[2009/07/13 18:16:02 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndishc.dll
[2009/07/13 18:16:02 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\napdsnap.dll
[2009/07/13 18:16:02 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2009/07/13 18:16:02 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndiscapCfg.dll
[2009/07/13 18:16:02 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\napipsec.dll
[2009/07/13 18:16:02 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndfetw.dll
[2009/07/13 18:16:02 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2009/07/13 18:16:02 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netbios.dll
[2009/07/13 18:16:02 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NativeHooks.dll
[2009/07/13 18:16:02 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndproxystub.dll
[2009/07/13 18:15:52 | 000,454,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2009/07/13 18:15:52 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mtxlegih.dll
[2009/07/13 18:15:52 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mtxdm.dll
[2009/07/13 18:15:52 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\muifontsetup.dll
[2009/07/13 18:15:52 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MUILanguageCleanup.dll
[2009/07/13 18:15:52 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mtxex.dll
[2009/07/13 18:15:51 | 000,856,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2009/07/13 18:15:51 | 000,618,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2009/07/13 18:15:51 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswmdm.dll
[2009/07/13 18:15:50 | 001,386,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvbvm60.dll
[2009/07/13 18:15:50 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt20.dll
[2009/07/13 18:15:50 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcirt.dll
[2009/07/13 18:15:48 | 000,282,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2009/07/13 18:15:48 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2009/07/13 18:15:48 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msswch.dll
[2009/07/13 18:15:47 | 000,643,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2009/07/13 18:15:47 | 000,504,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2009/07/13 18:15:47 | 000,414,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mspbda.dll
[2009/07/13 18:15:47 | 000,368,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2009/07/13 18:15:47 | 000,344,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2009/07/13 18:15:47 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2009/07/13 18:15:47 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msorcl32.dll
[2009/07/13 18:15:47 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssha.dll
[2009/07/13 18:15:47 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrdc.dll
[2009/07/13 18:15:47 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2009/07/13 18:15:47 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrahc.dll
[2009/07/13 18:15:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsPbdaCoInst.dll
[2009/07/13 18:15:47 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsRdpWebAccess.dll
[2009/07/13 18:15:47 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msports.dll
[2009/07/13 18:15:47 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssign32.dll
[2009/07/13 18:15:47 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2009/07/13 18:15:47 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssip32.dll
[2009/07/13 18:15:46 | 002,134,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2009/07/13 18:15:46 | 000,265,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2009/07/13 18:15:46 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2009/07/13 18:15:46 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2009/07/13 18:15:45 | 000,970,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2adec.dll
[2009/07/13 18:15:45 | 000,830,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2ENC.DLL
[2009/07/13 18:15:45 | 000,290,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2009/07/13 18:15:45 | 000,241,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2009/07/13 18:15:45 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2009/07/13 18:15:45 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2009/07/13 18:15:45 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2009/07/13 18:15:44 | 001,589,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2009/07/13 18:15:44 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2009/07/13 18:15:44 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msidcrl30.dll
[2009/07/13 18:15:44 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2009/07/13 18:15:44 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2009/07/13 18:15:44 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msident.dll
[2009/07/13 18:15:44 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsiCofire.dll
[2009/07/13 18:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2009/07/13 18:15:44 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2009/07/13 18:15:43 | 001,066,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2009/07/13 18:15:43 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009/07/13 18:15:43 | 000,409,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2009/07/13 18:15:43 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2009/07/13 18:15:43 | 000,305,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdelta.dll
[2009/07/13 18:15:43 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcuiu.dll
[2009/07/13 18:15:43 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdadiag.dll
[2009/07/13 18:15:43 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdart.dll
[2009/07/13 18:15:43 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtclog.dll
[2009/07/13 18:15:43 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2009/07/13 18:15:43 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2009/07/13 18:15:42 | 000,481,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2009/07/13 18:15:42 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSAC3ENC.DLL
[2009/07/13 18:15:42 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2009/07/13 18:15:42 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msclmd.dll
[2009/07/13 18:15:42 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msaatext.dll
[2009/07/13 18:15:42 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscpxl32.dLL
[2009/07/13 18:15:42 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscat32.dll
[2009/07/13 18:15:41 | 002,151,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2009/07/13 18:15:41 | 000,415,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2009/07/13 18:15:41 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmcbase.dll
[2009/07/13 18:15:41 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2009/07/13 18:15:41 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mprddm.dll
[2009/07/13 18:15:41 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MPG4DECD.DLL
[2009/07/13 18:15:41 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP43DECD.DLL
[2009/07/13 18:15:41 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2009/07/13 18:15:41 | 000,104,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mprmsg.dll
[2009/07/13 18:15:41 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP3DMOD.DLL
[2009/07/13 18:15:41 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2009/07/13 18:15:41 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2009/07/13 18:15:41 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\montr_ci.dll
[2009/07/13 18:15:41 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2009/07/13 18:15:40 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\miguiresource.dll
[2009/07/13 18:15:40 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\migisol.dll
[2009/07/13 18:15:40 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2009/07/13 18:15:39 | 000,609,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFWMAAEC.DLL
[2009/07/13 18:15:39 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2009/07/13 18:15:39 | 000,292,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfds.dll
[2009/07/13 18:15:39 | 000,281,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfh264enc.dll
[2009/07/13 18:15:39 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFPlay.dll
[2009/07/13 18:15:39 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfdvdec.dll
[2009/07/13 18:15:39 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2009/07/13 18:15:39 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmjpegdec.dll
[2009/07/13 18:15:39 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfvdsp.dll
[2009/07/13 18:15:39 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mgmtapi.dll
[2009/07/13 18:15:38 | 000,266,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2009/07/13 18:15:38 | 000,205,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mdminst.dll
[2009/07/13 18:15:38 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\McxDriv.dll
[2009/07/13 18:15:38 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfAACEnc.dll
[2009/07/13 18:15:38 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcsrchPH.dll
[2009/07/13 18:15:38 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf3216.dll
[2009/07/13 18:15:38 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\memdiag.dll
[2009/07/13 18:15:37 | 000,727,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2009/07/13 18:15:37 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mapistub.dll
[2009/07/13 18:15:37 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mapi32.dll
[2009/07/13 18:15:37 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\luainstall.dll
[2009/07/13 18:15:37 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Magnification.dll
[2009/07/13 18:15:37 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcicda.dll
[2009/07/13 18:15:37 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2009/07/13 18:15:37 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciwave.dll
[2009/07/13 18:15:37 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsmproxy.dll
[2009/07/13 18:15:36 | 000,429,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\localsec.dll
[2009/07/13 18:15:36 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LocationApi.dll
[2009/07/13 18:15:36 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2009/07/13 18:15:36 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logoncli.dll
[2009/07/13 18:15:36 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2009/07/13 18:15:36 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loghours.dll
[2009/07/13 18:15:36 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lltdapi.dll
[2009/07/13 18:15:36 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LangCleanupSysprepAction.dll
[2009/07/13 18:15:36 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\localui.dll
[2009/07/13 18:15:36 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL
[2009/07/13 18:15:36 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpksetupproxyserv.dll
[2009/07/13 18:15:35 | 006,103,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2009/07/13 18:15:35 | 001,672,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2009/07/13 18:15:35 | 000,701,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2009/07/13 18:15:35 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2009/07/13 18:15:35 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\keymgr.dll
[2009/07/13 18:15:35 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\l2gpstore.dll
[2009/07/13 18:15:35 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2009/07/13 18:15:35 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ktmw32.dll
[2009/07/13 18:15:35 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jnwmon.dll
[2009/07/13 18:15:35 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\keyiso.dll
[2009/07/13 18:15:35 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernelceip.dll
[2009/07/13 18:15:35 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDJPN.DLL
[2009/07/13 18:15:35 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDKOR.DLL
[2009/07/13 18:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
[2009/07/13 18:15:34 | 000,746,496 | ---- | M] (Intel Corporation) -- C:\Windows\System32\ir50_32.dll
[2009/07/13 18:15:34 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iTVData.dll
[2009/07/13 18:15:34 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsicpl.dll
[2009/07/13 18:15:34 | 000,200,192 | ---- | M] (Intel Corporation.) -- C:\Windows\System32\ir50_qcx.dll
[2009/07/13 18:15:34 | 000,200,192 | ---- | M] (Intel Corporation.) -- C:\Windows\System32\ir50_qc.dll
[2009/07/13 18:15:34 | 000,158,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\itircl.dll
[2009/07/13 18:15:34 | 000,120,320 | ---- | M] (Intel Corporation.) -- C:\Windows\System32\ir41_qcx.dll
[2009/07/13 18:15:34 | 000,120,320 | ---- | M] (Intel Corporation.) -- C:\Windows\System32\ir41_qc.dll
[2009/07/13 18:15:34 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsiwmi.dll
[2009/07/13 18:15:34 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsidsc.dll
[2009/07/13 18:15:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsium.dll
[2009/07/13 18:15:34 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\irclass.dll
[2009/07/13 18:15:34 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsied.dll
[2009/07/13 18:15:33 | 000,757,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2009/07/13 18:15:33 | 000,400,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2009/07/13 18:15:33 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iprtrmgr.dll
[2009/07/13 18:15:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2009/07/13 18:15:33 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPBusEnumProxy.dll
[2009/07/13 18:15:33 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iprtprio.dll
[2009/07/13 18:15:32 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2009/07/13 18:15:32 | 000,392,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2009/07/13 18:15:32 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2009/07/13 18:15:32 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2009/07/13 18:15:32 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetmib1.dll
[2009/07/13 18:15:32 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2009/07/13 18:15:29 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\igdDiag.dll
[2009/07/13 18:15:28 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ifsutil.dll
[2009/07/13 18:15:28 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2009/07/13 18:15:28 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ifsutilx.dll
[2009/07/13 18:15:27 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
[2009/07/13 18:15:27 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IdListen.dll
[2009/07/13 18:15:27 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icsigd.dll
[2009/07/13 18:15:27 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IDStore.dll
[2009/07/13 18:15:27 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\idndl.dll
[2009/07/13 18:15:27 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
[2009/07/13 18:15:26 | 000,322,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2009/07/13 18:15:26 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2009/07/13 18:15:26 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2009/07/13 18:15:26 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2009/07/13 18:15:26 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2009/07/13 18:15:26 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2009/07/13 18:15:26 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2009/07/13 18:15:26 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2009/07/13 18:15:26 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2009/07/13 18:15:26 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2009/07/13 18:15:26 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2009/07/13 18:15:26 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2009/07/13 18:15:26 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\htui.dll
[2009/07/13 18:15:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ias.dll
[2009/07/13 18:15:24 | 000,582,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpprefcl.dll
[2009/07/13 18:15:24 | 000,312,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll
[2009/07/13 18:15:24 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgprint.dll
[2009/07/13 18:15:24 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hlink.dll
[2009/07/13 18:15:24 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2009/07/13 18:15:24 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hotplug.dll
[2009/07/13 18:15:24 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HelpPaneProxy.dll
[2009/07/13 18:15:24 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Groupinghc.dll
[2009/07/13 18:15:24 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hhsetup.dll
[2009/07/13 18:15:24 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpprnext.dll
[2009/07/13 18:15:24 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpscript.dll
[2009/07/13 18:15:24 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll
[2009/07/13 18:15:24 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
[2009/07/13 18:15:24 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gptext.dll
[2009/07/13 18:15:24 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hnetmon.dll
[2009/07/13 18:15:22 | 002,576,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2009/07/13 18:15:22 | 000,951,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2009/07/13 18:15:22 | 000,848,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSST.dll
[2009/07/13 18:15:22 | 000,457,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSXP32.dll
[2009/07/13 18:15:22 | 000,429,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSTIFF.dll
[2009/07/13 18:15:22 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\glmf32.dll
[2009/07/13 18:15:22 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXST30.dll
[2009/07/13 18:15:22 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSUTILITY.dll
[2009/07/13 18:15:22 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\glu32.dll
[2009/07/13 18:15:22 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gcdef.dll
[2009/07/13 18:15:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2009/07/13 18:15:22 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\getuname.dll
[2009/07/13 18:15:21 | 000,856,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallControlPanel.dll
[2009/07/13 18:15:21 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMPOSE.dll
[2009/07/13 18:15:21 | 000,544,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fvewiz.dll
[2009/07/13 18:15:21 | 000,472,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMEX.dll
[2009/07/13 18:15:21 | 000,462,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2009/07/13 18:15:21 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\filemgmt.dll
[2009/07/13 18:15:21 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSAPI.dll
[2009/07/13 18:15:21 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2009/07/13 18:15:21 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
[2009/07/13 18:15:21 | 000,203,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedyn.dll
[2009/07/13 18:15:21 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveRecover.dll
[2009/07/13 18:15:21 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fthsvc.dll
[2009/07/13 18:15:21 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fvecpl.dll
[2009/07/13 18:15:21 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2009/07/13 18:15:21 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveui.dll
[2009/07/13 18:15:21 | 000,104,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveapibase.dll
[2009/07/13 18:15:21 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fphc.dll
[2009/07/13 18:15:21 | 000,093,696 | ---- | M] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\System32\fms.dll
[2009/07/13 18:15:21 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOM.dll
[2009/07/13 18:15:21 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSROUTE.dll
[2009/07/13 18:15:21 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\findnetprinters.dll
[2009/07/13 18:15:21 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fwcfg.dll
[2009/07/13 18:15:21 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2009/07/13 18:15:21 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSEXT32.dll
[2009/07/13 18:15:21 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSMON.dll
[2009/07/13 18:15:21 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fmifs.dll
[2009/07/13 18:15:21 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fvecerts.dll
[2009/07/13 18:15:20 | 000,380,957 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\expsrv.dll
[2009/07/13 18:15:20 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2009/07/13 18:15:20 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdprint.dll
[2009/07/13 18:15:20 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fde.dll
[2009/07/13 18:15:20 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2009/07/13 18:15:20 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2009/07/13 18:15:20 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2009/07/13 18:15:20 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2009/07/13 18:15:20 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2009/07/13 18:15:20 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdPnp.dll
[2009/07/13 18:15:20 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2009/07/13 18:15:20 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2009/07/13 18:15:20 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdWNet.dll
[2009/07/13 18:15:20 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winshfhc.dll
[2009/07/13 18:15:20 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2009/07/13 18:15:19 | 000,488,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2009/07/13 18:15:19 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eqossnap.dll
[2009/07/13 18:15:19 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\esentprf.dll
[2009/07/13 18:15:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eventcls.dll
[2009/07/13 18:15:14 | 000,551,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\elslad.dll
[2009/07/13 18:15:14 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EncDump.dll
[2009/07/13 18:15:14 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\energy.dll
[2009/07/13 18:15:14 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\els.dll
[2009/07/13 18:15:14 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2009/07/13 18:15:14 | 000,105,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2009/07/13 18:15:14 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ELSCore.dll
[2009/07/13 18:15:14 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\elsTrans.dll
[2009/07/13 18:15:14 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\encapi.dll
[2009/07/13 18:15:13 | 001,400,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DxpTaskSync.dll
[2009/07/13 18:15:13 | 001,370,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmcore.dll
[2009/07/13 18:15:13 | 000,986,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2009/07/13 18:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
[2009/07/13 18:15:13 | 000,630,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXPTaskRingtone.dll
[2009/07/13 18:15:13 | 000,507,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2009/07/13 18:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2009/07/13 18:15:13 | 000,399,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll
[2009/07/13 18:15:13 | 000,318,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2009/07/13 18:15:13 | 000,245,248 | ---- | M] (Microsoft) -- C:\Windows\System32\DShowRdpFilter.dll
[2009/07/13 18:15:13 | 000,242,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2009/07/13 18:15:13 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drt.dll
[2009/07/13 18:15:13 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2009/07/13 18:15:13 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2009/07/13 18:15:13 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efscore.dll
[2009/07/13 18:15:13 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsdmo.dll
[2009/07/13 18:15:13 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2009/07/13 18:15:13 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
[2009/07/13 18:15:13 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2009/07/13 18:15:13 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll
[2009/07/13 18:15:13 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dskquota.dll
[2009/07/13 18:15:13 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efsadu.dll
[2009/07/13 18:15:13 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EAPQEC.DLL
[2009/07/13 18:15:13 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drtprov.dll
[2009/07/13 18:15:13 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drttransport.dll
[2009/07/13 18:15:13 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efslsaext.dll
[2009/07/13 18:15:13 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dtsh.dll
[2009/07/13 18:15:13 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsauth.dll
[2009/07/13 18:15:13 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efssvc.dll
[2009/07/13 18:15:13 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efsutil.dll
[2009/07/13 18:15:13 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsrole.dll
[2009/07/13 18:15:13 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dswave.dll
[2009/07/13 18:15:13 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ds32gt.dll
[2009/07/13 18:15:13 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxpps.dll
[2009/07/13 18:15:12 | 001,040,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Display.dll
[2009/07/13 18:15:12 | 000,402,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2009/07/13 18:15:12 | 000,395,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmdlgs.dll
[2009/07/13 18:15:12 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2009/07/13 18:15:12 | 000,333,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3ui.dll
[2009/07/13 18:15:12 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3gpui.dll
[2009/07/13 18:15:12 | 000,256,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2009/07/13 18:15:12 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dplayx.dll
[2009/07/13 18:15:12 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmdskmgr.dll
[2009/07/13 18:15:12 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmime.dll
[2009/07/13 18:15:12 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmvdsitf.dll
[2009/07/13 18:15:12 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2009/07/13 18:15:12 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmrc.dll
[2009/07/13 18:15:12 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscmmc.dll
[2009/07/13 18:15:12 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmstyle.dll
[2009/07/13 18:15:12 | 000,105,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2009/07/13 18:15:12 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2009/07/13 18:15:12 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmscript.dll
[2009/07/13 18:15:12 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2009/07/13 18:15:12 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnshc.dll
[2009/07/13 18:15:12 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3gpclnt.dll
[2009/07/13 18:15:12 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmcompos.dll
[2009/07/13 18:15:12 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnathlp.dll
[2009/07/13 18:15:12 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3hc.dll
[2009/07/13 18:15:12 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpapiprovider.dll
[2009/07/13 18:15:12 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpwsockx.dll
[2009/07/13 18:15:12 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmocx.dll
[2009/07/13 18:15:12 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmloader.dll
[2009/07/13 18:15:12 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmband.dll
[2009/07/13 18:15:12 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpmodemx.dll
[2009/07/13 18:15:12 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmintf.dll
[2009/07/13 18:15:12 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmutil.dll
[2009/07/13 18:15:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispex.dll
[2009/07/13 18:15:12 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnhupnp.dll
[2009/07/13 18:15:12 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnhpast.dll
[2009/07/13 18:15:12 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsext.dll
[2009/07/13 18:15:11 | 001,188,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DiagCpl.dll
[2009/07/13 18:15:11 | 000,864,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2009/07/13 18:15:11 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2009/07/13 18:15:11 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\difxapi.dll
[2009/07/13 18:15:11 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll
[2009/07/13 18:15:11 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dinput8.dll
[2009/07/13 18:15:11 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dinput.dll
[2009/07/13 18:15:11 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DHCPQEC.DLL
[2009/07/13 18:15:11 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpsapi.dll
[2009/07/13 18:15:11 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll
[2009/07/13 18:15:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2009/07/13 18:15:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfscli.dll
[2009/07/13 18:15:11 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2009/07/13 18:15:11 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfdts.dll
[2009/07/13 18:15:11 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2009/07/13 18:15:11 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
[2009/07/13 18:15:11 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcwutl.dll
[2009/07/13 18:15:11 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll
[2009/07/13 18:15:11 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceUxRes.dll
[2009/07/13 18:15:10 | 006,278,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DDORes.dll
[2009/07/13 18:15:10 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
[2009/07/13 18:15:10 | 000,484,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceCenter.dll
[2009/07/13 18:15:10 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defaultlocationcpl.dll
[2009/07/13 18:15:10 | 000,211,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingFolder.dll
[2009/07/13 18:15:10 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2009/07/13 18:15:10 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingHandler.dll
[2009/07/13 18:15:10 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2009/07/13 18:15:10 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddrawex.dll
[2009/07/13 18:15:10 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceMetadataParsers.dll
[2009/07/13 18:15:10 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceDisplayStatusManager.dll
[2009/07/13 18:15:10 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defragproxy.dll
[2009/07/13 18:15:09 | 002,515,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2009/07/13 18:15:09 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbnetlib.dll
[2009/07/13 18:15:09 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbnmpntw.dll
[2009/07/13 18:15:09 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DDACLSys.dll
[2009/07/13 18:15:09 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DDOIProxy.dll
[2009/07/13 18:15:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009/07/13 18:15:08 | 001,826,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2009/07/13 18:15:08 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8.dll
[2009/07/13 18:15:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3dim700.dll
[2009/07/13 18:15:08 | 000,593,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3dramp.dll
[2009/07/13 18:15:08 | 000,386,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3dim.dll
[2009/07/13 18:15:08 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3dxof.dll
[2009/07/13 18:15:08 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\davhlpr.dll
[2009/07/13 18:15:08 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2009/07/13 18:15:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
[2009/07/13 18:15:07 | 001,344,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2009/07/13 18:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2009/07/13 18:15:07 | 000,606,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\colorui.dll
[2009/07/13 18:15:07 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2009/07/13 18:15:07 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2009/07/13 18:15:07 | 000,276,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\compstui.dll
[2009/07/13 18:15:07 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comsnap.dll
[2009/07/13 18:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2009/07/13 18:15:07 | 000,153,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\COLORCNV.DLL
[2009/07/13 18:15:07 | 000,149,019 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crtdll.dll
[2009/07/13 18:15:07 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscobj.dll
[2009/07/13 18:15:07 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CscMig.dll
[2009/07/13 18:15:07 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comrepl.dll
[2009/07/13 18:15:07 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptxml.dll
[2009/07/13 18:15:07 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\console.dll
[2009/07/13 18:15:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\correngine.dll
[2009/07/13 18:15:07 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CRPPresentation.dll
[2009/07/13 18:15:07 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cnvfat.dll
[2009/07/13 18:15:07 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ctl3d32.dll
[2009/07/13 18:15:07 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cofiredm.dll
[2009/07/13 18:15:07 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2009/07/13 18:15:07 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comcat.dll
[2009/07/13 18:15:06 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cngprovider.dll
[2009/07/13 18:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cngaudit.dll
[2009/07/13 18:15:04 | 001,092,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmncliM.dll
[2009/07/13 18:15:04 | 000,484,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2009/07/13 18:15:04 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmipnpinstall.dll
[2009/07/13 18:15:04 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2009/07/13 18:15:04 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmicryptinstall.dll
[2009/07/13 18:15:04 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gacinstall.dll
[2009/07/13 18:15:04 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmutil.dll
[2009/07/13 18:15:04 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmlua.dll
[2009/07/13 18:15:04 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmpbk32.dll
[2009/07/13 18:15:04 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmstplua.dll
[2009/07/13 18:15:03 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cic.dll
[2009/07/13 18:15:03 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.dll
[2009/07/13 18:15:03 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clfsw32.dll
[2009/07/13 18:15:03 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmcfg32.dll
[2009/07/13 18:15:03 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chkwudrv.dll
[2009/07/13 18:15:03 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clb.dll
[2009/07/13 18:15:03 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2009/07/13 18:15:03 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CIRCoInst.dll
[2009/07/13 18:15:02 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cewmdm.dll
[2009/07/13 18:15:02 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertPolEng.dll
[2009/07/13 18:15:02 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgbkend.dll
[2009/07/13 18:15:01 | 001,555,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2009/07/13 18:15:01 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2009/07/13 18:15:01 | 000,271,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2009/07/13 18:15:01 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certCredProvider.dll
[2009/07/13 18:15:01 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cca.dll
[2009/07/13 18:15:01 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\capiprovider.dll
[2009/07/13 18:15:01 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2009/07/13 18:15:01 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\catsrvps.dll
[2009/07/13 18:15:01 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\capisp.dll
[2009/07/13 18:15:00 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2009/07/13 18:15:00 | 000,221,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\C_G18030.DLL
[2009/07/13 18:15:00 | 000,073,728 | ---- | M] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 18:15:00 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\btpanui.dll
[2009/07/13 18:15:00 | 000,064,000 | ---- | M] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/13 18:15:00 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2009/07/13 18:15:00 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2009/07/13 18:15:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\brdgcfg.dll
[2009/07/13 18:15:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\blb_ps.dll
[2009/07/13 18:15:00 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthpanapi.dll
[2009/07/13 18:15:00 | 000,017,408 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\brcoinst.dll
[2009/07/13 18:15:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\C_ISCII.DLL
[2009/07/13 18:15:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BWUnpairElevated.dll
[2009/07/13 18:15:00 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\C_IS2022.DLL
[2009/07/13 18:14:59 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\biocpl.dll
[2009/07/13 18:14:59 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BioCredProv.dll
[2009/07/13 18:14:59 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BdeHdCfgLib.dll
[2009/07/13 18:14:59 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2009/07/13 18:14:59 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bderepair.dll
[2009/07/13 18:14:59 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2009/07/13 18:14:59 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bidispl.dll
[2009/07/13 18:14:59 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdeui.dll
[2009/07/13 18:14:59 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsperf.dll
[2009/07/13 18:14:59 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsprx5.dll
[2009/07/13 18:14:59 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsprx2.dll
[2009/07/13 18:14:59 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsprx6.dll
[2009/07/13 18:14:59 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsprx3.dll
[2009/07/13 18:14:59 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsprx4.dll
[2009/07/13 18:14:58 | 000,759,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2009/07/13 18:14:58 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\azroleui.dll
[2009/07/13 18:14:58 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcdsrv.dll
[2009/07/13 18:14:58 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2009/07/13 18:14:58 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcdprov.dll
[2009/07/13 18:14:58 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\basesrv.dll
[2009/07/13 18:14:58 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AzSqlExt.dll
[2009/07/13 18:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
[2009/07/13 18:14:57 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2009/07/13 18:14:57 | 000,665,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2009/07/13 18:14:57 | 000,374,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
[2009/07/13 18:14:57 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authfwcfg.dll
[2009/07/13 18:14:57 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuthFWGP.dll
[2009/07/13 18:14:57 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuditNativeSnapIn.dll
[2009/07/13 18:14:57 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2009/07/13 18:14:57 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2009/07/13 18:14:57 | 000,146,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2009/07/13 18:14:57 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayClassInstaller.dll
[2009/07/13 18:14:57 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditcse.dll
[2009/07/13 18:14:57 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayApi.dll
[2009/07/13 18:14:57 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2009/07/13 18:14:57 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2009/07/13 18:14:57 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AuditPolicyGPInterop.dll
[2009/07/13 18:14:54 | 000,339,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appmgr.dll
[2009/07/13 18:14:54 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apss.dll
[2009/07/13 18:14:53 | 001,739,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2009/07/13 18:14:53 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2009/07/13 18:14:53 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apircl.dll
[2009/07/13 18:14:53 | 000,203,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AppIdPolicyEngineApi.dll
[2009/07/13 18:14:53 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2009/07/13 18:14:53 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2009/07/13 18:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
[2009/07/13 18:14:53 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2009/07/13 18:14:53 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009/07/13 18:14:53 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009/07/13 18:14:53 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aecache.dll
[2009/07/13 18:14:52 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll
[2009/07/13 18:14:52 | 000,537,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenterCPL.dll
[2009/07/13 18:14:52 | 000,438,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AdmTmpl.dll
[2009/07/13 18:14:52 | 000,260,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adsnt.dll
[2009/07/13 18:14:52 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adsldp.dll
[2009/07/13 18:14:52 | 000,178,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionQueue.dll
[2009/07/13 18:14:52 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2009/07/13 18:14:52 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adprovider.dll
[2009/07/13 18:14:51 | 003,727,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2009/07/13 18:14:51 | 003,405,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xpsrchvw.exe
[2009/07/13 18:14:51 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2009/07/13 18:14:51 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aclui.dll
[2009/07/13 18:14:51 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\acppage.dll
[2009/07/13 18:14:51 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xwizard.exe
[2009/07/13 18:14:51 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\acproxy.dll
[2009/07/13 18:14:51 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\acledit.dll
[2009/07/13 18:14:50 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2009/07/13 18:14:50 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xcopy.exe
[2009/07/13 18:14:49 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsqmcons.exe
[2009/07/13 18:14:49 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2009/07/13 18:14:49 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpnpinst.exe
[2009/07/13 18:14:49 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2009/07/13 18:14:49 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2009/07/13 18:14:49 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\write.exe
[2009/07/13 18:14:49 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\write.exe
[2009/07/13 18:14:46 | 003,367,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe
[2009/07/13 18:14:46 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winver.exe
[2009/07/13 18:14:46 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlrmdr.exe
[2009/07/13 18:14:45 | 000,802,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WFS.exe
[2009/07/13 18:14:45 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wimserv.exe
[2009/07/13 18:14:45 | 000,292,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2009/07/13 18:14:45 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wiaacmgr.exe
[2009/07/13 18:14:45 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\whoami.exe
[2009/07/13 18:14:45 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2009/07/13 18:14:45 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\where.exe
[2009/07/13 18:14:45 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2009/07/13 18:14:45 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\winhlp32.exe
[2009/07/13 18:14:44 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2009/07/13 18:14:44 | 000,224,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbadmin.exe
[2009/07/13 18:14:44 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2009/07/13 18:14:44 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2009/07/13 18:14:44 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\w32tm.exe
[2009/07/13 18:14:44 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2009/07/13 18:14:44 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\waitfor.exe
[2009/07/13 18:14:44 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2009/07/13 18:14:43 | 001,397,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2009/07/13 18:14:43 | 000,278,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2009/07/13 18:14:43 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UserAccountControlSettings.exe
[2009/07/13 18:14:43 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssadmin.exe
[2009/07/13 18:14:43 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\verifier.exe
[2009/07/13 18:14:43 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VaultSysUi.exe
[2009/07/13 18:14:43 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2009/07/13 18:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userinit.exe
[2009/07/13 18:14:43 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\upnpcont.exe
[2009/07/13 18:14:43 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VaultCmd.exe
[2009/07/13 18:14:43 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdsldr.exe
[2009/07/13 18:14:43 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\verclsid.exe
[2009/07/13 18:14:42 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tracerpt.exe
[2009/07/13 18:14:42 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TpmInit.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesRemote.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesProtection.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesPerformance.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesHardware.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesDataExecutionPrevention.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesComputerName.exe
[2009/07/13 18:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SystemPropertiesAdvanced.exe
[2009/07/13 18:14:42 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tasklist.exe
[2009/07/13 18:14:42 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskkill.exe
[2009/07/13 18:14:42 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systeminfo.exe
[2009/07/13 18:14:42 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2009/07/13 18:14:42 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\takeown.exe
[2009/07/13 18:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2009/07/13 18:14:42 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzutil.exe
[2009/07/13 18:14:42 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ucsvc.exe
[2009/07/13 18:14:42 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2009/07/13 18:14:42 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\typeperf.exe
[2009/07/13 18:14:42 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2009/07/13 18:14:42 | 000,031,232 | ---- | M] (Twain Working Group) -- C:\Windows\twunk_32.exe
[2009/07/13 18:14:42 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syskey.exe
[2009/07/13 18:14:42 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timeout.exe
[2009/07/13 18:14:42 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tskill.exe
[2009/07/13 18:14:42 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsdiscon.exe
[2009/07/13 18:14:42 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tscon.exe
[2009/07/13 18:14:42 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcmsetup.exe
[2009/07/13 18:14:42 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TRACERT.EXE
[2009/07/13 18:14:42 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TapiUnattend.exe
[2009/07/13 18:14:42 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systray.exe
[2009/07/13 18:14:41 | 000,448,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe
[2009/07/13 18:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
[2009/07/13 18:14:41 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slui.exe
[2009/07/13 18:14:41 | 000,282,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe
[2009/07/13 18:14:41 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncHost.exe
[2009/07/13 18:14:41 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxstrace.exe
[2009/07/13 18:14:41 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2009/07/13 18:14:41 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\subst.exe
[2009/07/13 18:14:39 | 000,396,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe
[2009/07/13 18:14:39 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2009/07/13 18:14:39 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SoundRecorder.exe
[2009/07/13 18:14:39 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sort.exe
[2009/07/13 18:14:38 | 000,391,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shrpubw.exe
[2009/07/13 18:14:38 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sigverif.exe
[2009/07/13 18:14:38 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shutdown.exe
[2009/07/13 18:14:38 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shadow.exe
[2009/07/13 18:14:37 | 000,112,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupugc.exe
[2009/07/13 18:14:37 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupcl.exe
[2009/07/13 18:14:37 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setx.exe
[2009/07/13 18:14:37 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.exe
[2009/07/13 18:14:37 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupSNK.exe
[2009/07/13 18:14:36 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2009/07/13 18:14:35 | 001,131,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2009/07/13 18:14:35 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdchange.exe
[2009/07/13 18:14:35 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sc.exe
[2009/07/13 18:14:35 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SecEdit.exe
[2009/07/13 18:14:35 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdiagnhost.exe
[2009/07/13 18:14:35 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdbinst.exe
[2009/07/13 18:14:35 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secinit.exe
[2009/07/13 18:14:35 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2009/07/13 18:14:31 | 000,262,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2009/07/13 18:14:31 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CompMgmtLauncher.exe
[2009/07/13 18:14:31 | 000,097,280 | ---- | M] (Microsoft) -- C:\Windows\System32\Robocopy.exe
[2009/07/13 18:14:31 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RunLegacyCPLElevated.exe
[2009/07/13 18:14:31 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\runonce.exe
[2009/07/13 18:14:31 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2009/07/13 18:14:31 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcPing.exe
[2009/07/13 18:14:31 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rwinsta.exe
[2009/07/13 18:14:31 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2009/07/13 18:14:31 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\runas.exe
[2009/07/13 18:14:31 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RmClient.exe
[2009/07/13 18:14:30 | 000,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nltest.exe
[2009/07/13 18:14:30 | 000,257,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpshell.exe
[2009/07/13 18:14:30 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\recdisc.exe
[2009/07/13 18:14:30 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RelPost.exe
[2009/07/13 18:14:30 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpclip.exe
[2009/07/13 18:14:30 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpinit.exe
[2009/07/13 18:14:30 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\resmon.exe
[2009/07/13 18:14:30 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raserver.exe
[2009/07/13 18:14:30 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2009/07/13 18:14:30 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2009/07/13 18:14:30 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\repair-bde.exe
[2009/07/13 18:14:30 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpsign.exe
[2009/07/13 18:14:30 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasphone.exe
[2009/07/13 18:14:30 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regini.exe
[2009/07/13 18:14:30 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\relog.exe
[2009/07/13 18:14:30 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdrleakdiag.exe
[2009/07/13 18:14:30 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ReAgentc.exe
[2009/07/13 18:14:30 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\replace.exe
[2009/07/13 18:14:30 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\reset.exe
[2009/07/13 18:14:30 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regsvr32.exe
[2009/07/13 18:14:30 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\recover.exe
[2009/07/13 18:14:30 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regedt32.exe
[2009/07/13 18:14:29 | 000,696,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psr.exe
[2009/07/13 18:14:29 | 000,448,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2009/07/13 18:14:29 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2009/07/13 18:14:29 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printui.exe
[2009/07/13 18:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\proquota.exe
[2009/07/13 18:14:29 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qwinsta.exe
[2009/07/13 18:14:29 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qprocess.exe
[2009/07/13 18:14:29 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quser.exe
[2009/07/13 18:14:29 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qappsrv.exe
[2009/07/13 18:14:29 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PrintIsolationHost.exe
[2009/07/13 18:14:29 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasautou.exe
[2009/07/13 18:14:29 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\query.exe
[2009/07/13 18:14:28 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2009/07/13 18:14:28 | 000,526,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntvdm.exe
[2009/07/13 18:14:28 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2009/07/13 18:14:28 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2009/07/13 18:14:28 | 000,170,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2009/07/13 18:14:28 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfmon.exe
[2009/07/13 18:14:28 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\p2phost.exe
[2009/07/13 18:14:28 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OptionalFeatures.exe
[2009/07/13 18:14:28 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcad32.exe
[2009/07/13 18:14:28 | 000,066,048 | ---- | M] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/07/13 18:14:28 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\openfiles.exe
[2009/07/13 18:14:28 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2009/07/13 18:14:28 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powercfg.exe
[2009/07/13 18:14:28 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2009/07/13 18:14:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.exe
[2009/07/13 18:14:28 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcaui.exe
[2009/07/13 18:14:28 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PING.EXE
[2009/07/13 18:14:28 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\print.exe
[2009/07/13 18:14:28 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PATHPING.EXE
[2009/07/13 18:14:28 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcawrk.exe
[2009/07/13 18:14:28 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcalua.exe
[2009/07/13 18:14:28 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\plasrv.exe
[2009/07/13 18:14:27 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NAPSTAT.EXE
[2009/07/13 18:14:27 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\net1.exe
[2009/07/13 18:14:27 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mtstocom.exe
[2009/07/13 18:14:27 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netsh.exe
[2009/07/13 18:14:27 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NetProj.exe
[2009/07/13 18:14:27 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2009/07/13 18:14:27 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2009/07/13 18:14:27 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndadmin.exe
[2009/07/13 18:14:27 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MuiUnattend.exe
[2009/07/13 18:14:27 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe
[2009/07/13 18:14:27 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MultiDigiMon.exe
[2009/07/13 18:14:27 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\net.exe
[2009/07/13 18:14:27 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2009/07/13 18:14:27 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Netplwiz.exe
[2009/07/13 18:14:27 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2009/07/13 18:14:27 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2009/07/13 18:14:27 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netbtugc.exe
[2009/07/13 18:14:27 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nbtstat.exe
[2009/07/13 18:14:26 | 006,376,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mspaint.exe
[2009/07/13 18:14:26 | 000,536,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2009/07/13 18:14:25 | 000,983,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdt.exe
[2009/07/13 18:14:25 | 000,303,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2009/07/13 18:14:25 | 000,233,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msconfig.exe
[2009/07/13 18:14:25 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msg.exe
[2009/07/13 18:14:24 | 001,401,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2009/07/13 18:14:24 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpnotify.exe
[2009/07/13 18:14:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mountvol.exe
[2009/07/13 18:14:24 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2009/07/13 18:14:23 | 000,941,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2009/07/13 18:14:23 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2009/07/13 18:14:23 | 000,302,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2009/07/13 18:14:23 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MdSched.exe
[2009/07/13 18:14:23 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\makecab.exe
[2009/07/13 18:14:23 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mctadmin.exe
[2009/07/13 18:14:23 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MdRes.exe
[2009/07/13 18:14:23 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\manage-bde.exe
[2009/07/13 18:14:23 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2009/07/13 18:14:22 | 000,477,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpksetup.exe
[2009/07/13 18:14:22 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsicli.exe
[2009/07/13 18:14:22 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsicpl.exe
[2009/07/13 18:14:22 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2009/07/13 18:14:22 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LocationNotifications.exe
[2009/07/13 18:14:22 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\isoburn.exe
[2009/07/13 18:14:22 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2009/07/13 18:14:22 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpremove.exe
[2009/07/13 18:14:22 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2009/07/13 18:14:22 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logoff.exe
[2009/07/13 18:14:22 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ktmutil.exe
[2009/07/13 18:14:22 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\label.exe
[2009/07/13 18:14:21 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2009/07/13 18:14:21 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hwrreg.exe
[2009/07/13 18:14:21 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\irftp.exe
[2009/07/13 18:14:21 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2009/07/13 18:14:21 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksetup.exe
[2009/07/13 18:14:21 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hwrcomp.exe
[2009/07/13 18:14:21 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\klist.exe
[2009/07/13 18:14:21 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setspn.exe
[2009/07/13 18:14:21 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2009/07/13 18:14:21 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icacls.exe
[2009/07/13 18:14:21 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2009/07/13 18:14:21 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\grpconv.exe
[2009/07/13 18:14:21 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2009/07/13 18:14:21 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\InfDefaultInstall.exe
[2009/07/13 18:14:21 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2009/07/13 18:14:21 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\help.exe
[2009/07/13 18:14:20 | 000,128,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2009/07/13 18:14:20 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fvenotify.exe
[2009/07/13 18:14:20 | 000,104,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveprompt.exe
[2009/07/13 18:14:20 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontview.exe
[2009/07/13 18:14:20 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\getmac.exe
[2009/07/13 18:14:20 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2009/07/13 18:14:20 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\extrac32.exe
[2009/07/13 18:14:20 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\forfiles.exe
[2009/07/13 18:14:20 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2009/07/13 18:14:20 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpscript.exe
[2009/07/13 18:14:20 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSUNATD.exe
[2009/07/13 18:14:20 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2009/07/13 18:14:20 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fltMC.exe
[2009/07/13 18:14:20 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fixmapi.exe
[2009/07/13 18:14:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\fveupdate.exe
[2009/07/13 18:14:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\find.exe
[2009/07/13 18:14:20 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GettingStarted.exe
[2009/07/13 18:14:20 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2009/07/13 18:14:19 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2009/07/13 18:14:19 | 000,264,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2009/07/13 18:14:19 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Dxpserver.exe
[2009/07/13 18:14:19 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorAuthn.exe
[2009/07/13 18:14:19 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2009/07/13 18:14:19 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\esentutl.exe
[2009/07/13 18:14:19 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eventvwr.exe
[2009/07/13 18:14:19 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\expand.exe
[2009/07/13 18:14:19 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eventcreate.exe
[2009/07/13 18:14:19 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dvdupgrd.exe
[2009/07/13 18:14:19 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\efsui.exe
[2009/07/13 18:14:19 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Eap3Host.exe
[2009/07/13 18:14:18 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DisplaySwitch.exe
[2009/07/13 18:14:18 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2009/07/13 18:14:18 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispdiag.exe
[2009/07/13 18:14:18 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DpiScaling.exe
[2009/07/13 18:14:18 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2009/07/13 18:14:18 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\driverquery.exe
[2009/07/13 18:14:18 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\djoin.exe
[2009/07/13 18:14:18 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnsvr.exe
[2009/07/13 18:14:18 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dplaysvr.exe
[2009/07/13 18:14:18 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\doskey.exe
[2009/07/13 18:14:18 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dllhst3g.exe
[2009/07/13 18:14:17 | 000,276,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2009/07/13 18:14:17 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Dism.exe
[2009/07/13 18:14:17 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2009/07/13 18:14:17 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diantz.exe
[2009/07/13 18:14:17 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dialer.exe
[2009/07/13 18:14:17 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskperf.exe
[2009/07/13 18:14:17 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcwrun.exe
[2009/07/13 18:14:17 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dinotify.exe
[2009/07/13 18:14:16 | 000,868,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dccw.exe
[2009/07/13 18:14:16 | 000,586,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfrgui.exe
[2009/07/13 18:14:16 | 000,309,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cttune.exe
[2009/07/13 18:14:16 | 000,176,128 | ---- | M] (Microsoft Corp.) -- C:\Windows\System32\Defrag.exe
[2009/07/13 18:14:16 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2009/07/13 18:14:16 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceProperties.exe
[2009/07/13 18:14:16 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceDisplayObjectProvider.exe
[2009/07/13 18:14:16 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2009/07/13 18:14:16 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DFDWiz.exe
[2009/07/13 18:14:16 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2009/07/13 18:14:16 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddodiag.exe
[2009/07/13 18:14:16 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cttunesvr.exe
[2009/07/13 18:14:16 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credwiz.exe
[2009/07/13 18:14:16 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2009/07/13 18:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dcomcnfg.exe
[2009/07/13 18:14:15 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
[2009/07/13 18:14:15 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\control.exe
[2009/07/13 18:14:15 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\colorcpl.exe
[2009/07/13 18:14:15 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmstp.exe
[2009/07/13 18:14:15 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmdl32.exe
[2009/07/13 18:14:15 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2009/07/13 18:14:15 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ComputerDefaults.exe
[2009/07/13 18:14:15 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comp.exe
[2009/07/13 18:14:15 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cofire.exe
[2009/07/13 18:14:15 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\compact.exe
[2009/07/13 18:14:15 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\convert.exe
[2009/07/13 18:14:15 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmdkey.exe
[2009/07/13 18:14:14 | 000,889,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2009/07/13 18:14:14 | 000,212,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cleanmgr.exe
[2009/07/13 18:14:14 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\charmap.exe
[2009/07/13 18:14:14 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.exe
[2009/07/13 18:14:14 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2009/07/13 18:14:14 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\choice.exe
[2009/07/13 18:14:14 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clip.exe
[2009/07/13 18:14:14 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chgport.exe
[2009/07/13 18:14:14 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chglogon.exe
[2009/07/13 18:14:14 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chgusr.exe
[2009/07/13 18:14:14 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chkntfs.exe
[2009/07/13 18:14:14 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chkdsk.exe
[2009/07/13 18:14:14 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\change.exe
[2009/07/13 18:14:13 | 000,776,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\calc.exe
[2009/07/13 18:14:13 | 000,263,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2009/07/13 18:14:13 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bitsadmin.exe
[2009/07/13 18:14:13 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BitLockerWizardElev.exe
[2009/07/13 18:14:13 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BitLockerWizard.exe
[2009/07/13 18:14:13 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bootcfg.exe
[2009/07/13 18:14:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollCtrl.exe
[2009/07/13 18:14:13 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2009/07/13 18:14:13 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cacls.exe
[2009/07/13 18:14:13 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bridgeunattend.exe
[2009/07/13 18:14:12 | 000,679,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2009/07/13 18:14:12 | 000,659,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2009/07/13 18:14:12 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcdedit.exe
[2009/07/13 18:14:12 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcdboot.exe
[2009/07/13 18:14:12 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BdeHdCfg.exe
[2009/07/13 18:14:12 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\baaupdate.exe
[2009/07/13 18:14:12 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2009/07/13 18:14:12 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BdeUnlockWizard.exe
[2009/07/13 18:14:12 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2009/07/13 18:14:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2009/07/13 18:14:12 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AxInstUI.exe
[2009/07/13 18:14:12 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2009/07/13 18:14:12 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BdeUISrv.exe
[2009/07/13 18:14:12 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AtBroker.exe
[2009/07/13 18:14:12 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\at.exe
[2009/07/13 18:14:12 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2009/07/13 18:14:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\attrib.exe
[2009/07/13 18:14:11 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksproxy.ax
[2009/07/13 18:14:11 | 000,153,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VBICodec.ax
[2009/07/13 18:14:11 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aitagent.exe
[2009/07/13 18:14:11 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2009/07/13 18:14:11 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kstvtune.ax
[2009/07/13 18:14:11 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\remotesp.tsp
[2009/07/13 18:14:11 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSTPager.ax
[2009/07/13 18:14:11 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksxbar.ax
[2009/07/13 18:14:11 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AdapterTroubleshooter.exe
[2009/07/13 18:14:11 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbisurf.ax
[2009/07/13 18:14:11 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vidcap.ax
[2009/07/13 18:14:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2009/07/13 18:14:10 | 000,839,680 | ---- | M] (Intel Corporation) -- C:\Windows\System32\ir41_32.ax
[2009/07/13 18:14:10 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2009/07/13 18:14:10 | 000,220,672 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2009/07/13 18:14:10 | 000,197,632 | ---- | M] (Intel Corporation) -- C:\Windows\System32\iac25_32.ax
[2009/07/13 18:14:10 | 000,146,944 | ---- | M] (Intel Corporation) -- C:\Windows\System32\ivfsrc.ax
[2009/07/13 18:14:10 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdaplgin.ax
[2009/07/13 18:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2009/07/13 18:14:10 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\g711codc.ax
[2009/07/13 18:14:09 | 001,140,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2009/07/13 18:14:09 | 000,878,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Bubbles.scr
[2009/07/13 18:14:09 | 000,600,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TabletPC.cpl
[2009/07/13 18:14:09 | 000,514,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\main.cpl
[2009/07/13 18:14:09 | 000,418,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\irprops.cpl
[2009/07/13 18:14:09 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2009/07/13 18:14:09 | 000,345,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\intl.cpl
[2009/07/13 18:14:09 | 000,293,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ssText3d.scr
[2009/07/13 18:14:09 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Mystify.scr
[2009/07/13 18:14:09 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Ribbons.scr
[2009/07/13 18:14:09 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powercfg.cpl
[2009/07/13 18:14:09 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\joy.cpl
[2009/07/13 18:14:09 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmview.ocx
[2009/07/13 18:14:09 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\telephon.cpl
[2009/07/13 18:14:09 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncpa.cpl
[2009/07/13 18:14:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scrnsave.scr
[2009/07/13 18:14:08 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2009/07/13 18:14:08 | 000,234,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.cpl
[2009/07/13 18:14:08 | 000,128,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\desk.cpl
[2009/07/13 18:14:08 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\collab.cpl
[2009/07/13 18:14:08 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Firewall.cpl
[2009/07/13 18:11:27 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2009/07/13 18:11:09 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmerror.dll
[2009/07/13 18:11:05 | 000,001,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2009/07/13 18:11:04 | 000,669,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WFSR.dll
[2009/07/13 18:10:56 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxlibres.dll
[2009/07/13 18:10:54 | 001,164,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2009/07/13 18:10:47 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapiui.dll
[2009/07/13 18:10:37 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwizres.dll
[2009/07/13 18:10:36 | 008,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwizimg.dll
[2009/07/13 18:10:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupetw.dll
[2009/07/13 18:10:13 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlsbres.dll
[2009/07/13 18:09:53 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\security.dll
[2009/07/13 18:09:49 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sberes.dll
[2009/07/13 18:09:48 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SampleRes.dll
[2009/07/13 18:09:47 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rnr20.dll
[2009/07/13 18:09:39 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RDPENCDD.dll
[2009/07/13 18:09:28 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll
[2009/07/13 18:09:27 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2009/07/13 18:09:24 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pifmgr.dll
[2009/07/13 18:09:22 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pcaevts.dll
[2009/07/13 18:09:16 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleres.dll
[2009/07/13 18:09:15 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2009/07/13 18:09:00 | 005,071,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2009/07/13 18:08:59 | 006,917,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2009/07/13 18:08:58 | 007,042,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2009/07/13 18:08:57 | 005,031,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2009/07/13 18:08:55 | 005,090,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2009/07/13 18:08:53 | 004,616,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2009/07/13 18:08:52 | 004,093,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2009/07/13 18:08:52 | 001,972,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2009/07/13 18:08:51 | 003,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2009/07/13 18:08:51 | 001,702,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2009/07/13 18:08:51 | 001,558,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2009/07/13 18:08:51 | 001,411,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2009/07/13 18:08:50 | 001,808,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2009/07/13 18:08:49 | 006,224,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2009/07/13 18:08:49 | 004,045,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2009/07/13 18:08:49 | 001,793,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2009/07/13 18:08:49 | 001,782,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2009/07/13 18:08:49 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2009/07/13 18:08:48 | 007,964,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2009/07/13 18:08:48 | 005,791,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2009/07/13 18:08:44 | 005,499,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2009/07/13 18:08:43 | 006,346,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2009/07/13 18:08:43 | 002,136,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2009/07/13 18:08:43 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2009/07/13 18:08:42 | 006,585,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2009/07/13 18:08:41 | 006,014,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2009/07/13 18:08:40 | 006,781,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2009/07/13 18:08:40 | 003,331,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2009/07/13 18:08:38 | 004,981,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2009/07/13 18:08:37 | 004,175,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2009/07/13 18:08:37 | 002,466,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2009/07/13 18:08:36 | 005,654,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2009/07/13 18:08:34 | 001,722,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2009/07/13 18:08:33 | 006,237,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2009/07/13 18:08:31 | 009,892,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2009/07/13 18:08:30 | 012,038,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2009/07/13 18:08:30 | 002,628,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2009/07/13 18:08:29 | 001,452,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2009/07/13 18:08:28 | 011,722,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2009/07/13 18:08:28 | 004,164,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2009/07/13 18:07:56 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2009/07/13 18:07:56 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netmsg.dll
[2009/07/13 18:07:56 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\neth.dll
[2009/07/13 18:07:52 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vmicres.dll
[2009/07/13 18:07:52 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vmbusres.dll
[2009/07/13 18:07:52 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vmstorfltres.dll
[2009/07/13 18:07:21 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2009/07/13 18:07:21 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2009/07/13 18:07:19 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt40.dll
[2009/07/13 18:07:16 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshavmsg.dll
[2009/07/13 18:07:15 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msorc32r.dll
[2009/07/13 18:07:14 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2009/07/13 18:07:12 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2009/07/13 18:07:12 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msidntld.dll
[2009/07/13 18:06:55 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcVSp1res.dll
[2009/07/13 18:06:53 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2009/07/13 18:06:53 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscpx32r.dLL
[2009/07/13 18:06:53 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msafd.dll
[2009/07/13 18:06:49 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\moricons.dll
[2009/07/13 18:06:45 | 009,053,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmres.dll
[2009/07/13 18:06:27 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\microsoft-windows-kernel-power-events.dll
[2009/07/13 18:06:27 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
[2009/07/13 18:06:27 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\microsoft-windows-hal-events.dll
[2009/07/13 18:06:27 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2009/07/13 18:06:24 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mctres.dll
[2009/07/13 18:06:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lz32.dll
[2009/07/13 18:06:20 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime
[2009/07/13 18:06:20 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2009/07/13 18:06:20 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2009/07/13 18:06:20 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2009/07/13 18:06:20 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2009/07/13 18:06:20 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lltdres.dll
[2009/07/13 18:06:19 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2009/07/13 18:06:18 | 001,027,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2009/07/13 18:06:17 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2009/07/13 18:06:15 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2009/07/13 18:06:14 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdnecat.dll
[2009/07/13 18:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDYCL.DLL
[2009/07/13 18:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSMSNO.DLL
[2009/07/13 18:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSMSFI.DLL
[2009/07/13 18:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDROST.DLL
[2009/07/13 18:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDROPR.DLL
[2009/07/13 18:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdnecnt.dll
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUKX.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSORST.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSOREX.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSL1.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDRO.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDNSO.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDNO1.DLL
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdnec95.dll
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdnec.dll
[2009/07/13 18:06:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINUK2.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUSX.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTIPRC.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSW09.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSORS1.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSL.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSG.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDPL.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLV1.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdlk41a.dll
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLA.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDIULAT.DLL
[2009/07/13 18:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAL.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDYCC.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDYBA.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDYAK.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDWOL.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDVNTC.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUZB.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUSR.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUSL.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUSA.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUR1.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUK.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUGHR.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTUQ.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTUF.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTH3.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTH2.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTH1.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTH0.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTAT.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSYR2.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSYR1.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSW.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSP.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSF.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDRU1.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDPO.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDPL1.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDPASH.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDNO.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDNEPR.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDNE.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMONMO.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMLT48.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMLT47.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMACST.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMAC.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLV.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLT2.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLAO.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDKHMR.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDKAZ.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDIT142.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINPUN.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINGUJ.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINDEV.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINBEN.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE2.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE1.DLL
[2009/07/13 18:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINASA.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUS.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDURDU.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUR.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDUGHR1.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTURME.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDTAJIK.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDSN1.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDRU.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMON.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDMAORI.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLT1.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDLT.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDKYR.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDIT.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDIR.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINTEL.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINTAM.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINORI.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAR.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINKAN.DLL
[2009/07/13 18:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINHIN.DLL
[2009/07/13 18:06:13 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHEPT.DLL
[2009/07/13 18:06:13 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDCAN.DLL
[2009/07/13 18:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdibm02.dll
[2009/07/13 18:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDGRLND.DLL
[2009/07/13 18:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFI1.DLL
[2009/07/13 18:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDCZ2.DLL
[2009/07/13 18:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDCZ.DLL
[2009/07/13 18:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDCR.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDIBO.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHU.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHELA3.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHELA2.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHE220.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFC.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDES.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDCZ1.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDCA.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBENE.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdax2.dll
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDAL.DLL
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd106.dll
[2009/07/13 18:06:13 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd101.dll
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDIC.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHU1.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHE319.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDGR1.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDGR.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDGKL.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdgeoqw.dll
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbdgeoer.dll
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFR.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFO.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFI.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDEST.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDDIV2.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDDIV1.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDDA.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBU.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBR.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBHC.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBGPH1.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBGPH.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBE.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDAZEL.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDAZE.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDA3.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDA1.DLL
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd103.dll
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd101c.dll
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd101b.dll
[2009/07/13 18:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd101a.dll
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHEB.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHE.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDHAU.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDGAE.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDFA.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDDV.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBULG.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBLR.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDBASH.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDARMW.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDARME.DLL
[2009/07/13 18:06:13 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDA2.DLL
[2009/07/13 18:06:13 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDGEO.DLL
[2009/07/13 18:06:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2009/07/13 18:06:10 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iprop.dll
[2009/07/13 18:06:09 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iologmsg.dll
[2009/07/13 18:06:08 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2009/07/13 18:06:06 | 000,705,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagesp1.dll
[2009/07/13 18:06:03 | 020,268,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imageres.dll
[2009/07/13 18:05:46 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icmp.dll
[2009/07/13 18:05:31 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2009/07/13 18:05:30 | 000,925,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSRESM.dll
[2009/07/13 18:05:30 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMPOSERES.dll
[2009/07/13 18:05:30 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSEVENT.dll
[2009/07/13 18:04:52 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnlobby.dll
[2009/07/13 18:04:52 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnaddr.dll
[2009/07/13 18:04:51 | 000,372,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmdskres.dll
[2009/07/13 18:04:51 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DocumentPerformanceEvents.dll
[2009/07/13 18:04:51 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dmdskres2.dll
[2009/07/13 18:04:20 | 000,514,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shellstyle.dll
[2009/07/13 18:04:08 | 006,214,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CardGames.dll
[2009/07/13 18:04:07 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bridgeres.dll
[2009/07/13 18:04:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bootstr.dll
[2009/07/13 18:04:05 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\blbres.dll
[2009/07/13 18:04:04 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\BlbEvents.dll
[2009/07/13 18:03:56 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditpolmsg.dll
[2009/07/13 18:03:50 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll
[2009/07/13 18:03:49 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2009/07/13 18:03:49 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-winsvc-l1-1-0.dll
[2009/07/13 18:03:49 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-management-l2-1-0.dll
[2009/07/13 18:03:49 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-management-l1-1-0.dll
[2009/07/13 18:03:49 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-service-core-l1-1-0.dll
[2009/07/13 18:03:48 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2009/07/13 18:03:48 | 000,303,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2009/07/13 18:03:48 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeevts.dll
[2009/07/13 18:03:47 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll
[2009/07/13 17:41:37 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2009/07/13 17:34:40 | 000,291,294 | ---- | M] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 17:34:38 | 000,031,548 | ---- | M] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 17:14:30 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbrpm.sys
[2009/07/13 17:12:10 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cliconfg.rll
[2009/07/13 17:12:07 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.rll
[2009/07/13 17:11:48 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\simpdata.tlb
[2009/07/13 17:11:44 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdatsrc.tlb
[2009/07/13 17:01:50 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2009/07/13 17:01:40 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsddd.dll
[2009/07/13 17:01:31 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RDPREFDD.dll
[2009/07/13 16:54:16 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2009/07/13 16:54:09 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2009/07/13 16:53:40 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2009/07/13 16:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifimp.sys
[2009/07/13 16:51:21 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\1394bus.sys
[2009/07/13 16:51:16 | 000,025,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys
[2009/07/13 16:51:15 | 000,025,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys
[2009/07/13 16:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\winusb.sys
[2009/07/13 16:51:02 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2009/07/13 16:51:01 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2009/07/13 16:51:00 | 000,025,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2009/07/13 16:50:57 | 000,053,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys
[2009/07/13 16:45:57 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mcd.sys
[2009/07/13 16:45:53 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tape.sys
[2009/07/13 16:45:28 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\smclib.sys
[2009/07/13 16:43:53 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stdole2.tlb
[2009/07/13 16:40:04 | 000,031,232 | ---- | M] (Microsoft) -- C:\Windows\System32\usk.rs
[2009/07/13 16:40:04 | 000,023,552 | ---- | M] (Microsoft) -- C:\Windows\System32\oflc.rs
[2009/07/13 16:40:04 | 000,007,680 | ---- | M] (Microsoft) -- C:\Windows\System32\csrr.rs
[2009/07/13 16:40:04 | 000,004,096 | ---- | M] (Microsoft) -- C:\Windows\System32\WEB.rs
[2009/07/13 16:40:03 | 000,053,760 | ---- | M] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2009/07/13 16:40:02 | 000,020,480 | ---- | M] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2009/07/13 16:40:01 | 000,020,480 | ---- | M] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2009/07/13 16:40:00 | 000,055,296 | ---- | M] (Microsoft) -- C:\Windows\System32\cero.rs
[2009/07/13 16:40:00 | 000,037,376 | ---- | M] (Microsoft) -- C:\Windows\System32\pegi.rs
[2009/07/13 16:40:00 | 000,016,896 | ---- | M] (Microsoft) -- C:\Windows\System32\grb.rs
[2009/07/13 16:39:56 | 000,051,712 | ---- | M] (Microsoft) -- C:\Windows\System32\esrb.rs
[2009/07/13 16:37:47 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\activeds.tlb
[2009/07/13 16:29:00 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vmicsvc.exe
[2009/07/13 16:28:53 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vmictimeprovider.dll
[2009/07/13 16:28:50 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IcCoinstall.dll
[2009/07/13 16:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vms3cap.sys
[2009/07/13 16:28:45 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VmdCoinstall.dll
[2009/07/13 16:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\VMBusHID.sys
[2009/07/13 16:28:43 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VmbusCoinstaller.dll
[2009/07/13 16:28:41 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vmbuspipe.dll
[2009/07/13 16:26:00 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vga256.dll
[2009/07/13 16:25:54 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vga64k.dll
[2009/07/13 16:25:51 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\videoprt.sys
[2009/07/13 16:25:51 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vga.dll
[2009/07/13 16:25:48 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framebuf.dll
[2009/07/13 16:25:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxapi.sys
[2009/07/13 16:25:25 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2009/07/13 16:25:06 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2009/07/13 16:24:11 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2009/07/13 16:20:54 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\graftabl.com
[2009/07/13 16:20:54 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win.com
[2009/07/13 16:19:58 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsraLegacy.tlb
[2009/07/13 16:19:58 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rendezvousSession.tlb
[2009/07/13 16:15:28 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mode.com
[2009/07/13 16:15:24 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tree.com
[2009/07/13 16:15:17 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\more.com
[2009/07/13 16:15:15 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\format.com
[2009/07/13 16:15:06 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskcomp.com
[2009/07/13 16:15:06 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\diskcopy.com
[2009/07/13 16:15:04 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\chcp.com
[2009/07/13 16:12:12 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdi.sys
[2009/07/13 16:11:53 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-lsalookup-l1-1-0.dll
[2009/07/13 16:11:53 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-sddl-l1-1-0.dll
[2009/07/13 16:06:14 | 000,004,453 | ---- | M] () -- C:\Windows\System32\odbcconf.rsp
[2009/07/13 15:58:08 | 000,043,131 | ---- | M] () -- C:\Windows\mib.bin
[2009/07/13 14:41:54 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WINNLS.DLL
[2009/07/13 14:41:53 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WIFEMAN.DLL
[2009/07/13 14:41:50 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OLESVR.DLL
[2009/07/13 14:41:50 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\OLESVR.DLL
[2009/07/13 14:41:49 | 000,002,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WINOLDAP.MOD
[2009/07/13 14:41:48 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DDEML.DLL
[2009/07/13 14:41:45 | 000,012,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WFWNET.DRV
[2009/07/13 14:41:45 | 000,012,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\WFWNET.DRV
[2009/07/13 14:41:43 | 000,028,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRWATSON.EXE
[2009/07/13 14:41:42 | 000,032,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\COMMDLG.DLL
[2009/07/13 14:41:42 | 000,032,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\COMMDLG.DLL
[2009/07/13 14:41:40 | 000,002,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WOWDEB.EXE
[2009/07/13 14:41:39 | 000,004,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TIMER.DRV
[2009/07/13 14:41:39 | 000,004,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\TIMER.DRV
[2009/07/13 14:41:38 | 000,013,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TOOLHELP.DLL
[2009/07/13 14:41:36 | 000,008,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WOWEXEC.EXE
[2009/07/13 14:41:32 | 000,068,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMSYSTEM.DLL
[2009/07/13 14:41:32 | 000,068,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\MMSYSTEM.DLL
[2009/07/13 14:41:32 | 000,001,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mmtask.tsk
[2009/07/13 14:41:32 | 000,001,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\mmtask.tsk
[2009/07/13 14:41:28 | 000,002,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WINSPOOL.EXE
[2009/07/13 14:41:27 | 000,002,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mouse.drv
[2009/07/13 14:41:27 | 000,002,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\mouse.drv
[2009/07/13 14:41:25 | 000,002,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vga.drv
[2009/07/13 14:41:25 | 000,002,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\vga.drv
[2009/07/13 14:41:24 | 000,010,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\COMM.drv
[2009/07/13 14:41:23 | 000,002,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\keyboard.drv
[2009/07/13 14:41:23 | 000,002,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\keyboard.drv
[2009/07/13 14:41:23 | 000,001,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sound.drv
[2009/07/13 14:41:23 | 000,001,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\sound.drv
[2009/07/13 14:41:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SHELL.DLL
[2009/07/13 14:41:22 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\SHELL.DLL
[2009/07/13 14:41:20 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GDI.EXE
[2009/07/13 14:41:20 | 000,003,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\system.drv
[2009/07/13 14:41:20 | 000,003,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\system.drv
[2009/07/13 14:41:17 | 000,047,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\USER.EXE
[2009/07/13 14:41:12 | 000,092,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\krnl386.exe
[2009/07/13 14:38:33 | 000,000,610 | ---- | M] () -- C:\Windows\System32\WdsUnattendTemplate.xml
[2009/07/13 14:04:05 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009/07/13 14:04:04 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009/07/13 14:03:57 | 000,049,179 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sqlwoa.dll
[2009/07/13 13:34:43 | 000,405,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys
[2009/07/13 13:29:26 | 000,000,714 | ---- | M] () -- C:\Windows\System32\RestartManager.mof
[2009/07/13 13:29:26 | 000,000,176 | ---- | M] () -- C:\Windows\System32\RestartManagerUninstall.mof
[2009/06/10 14:47:11 | 000,047,679 | ---- | M] () -- C:\Windows\System32\diskmgmt.msc
[2009/06/10 14:46:53 | 000,008,280 | ---- | M] () -- C:\Windows\System32\spcinstrumentation.man
[2009/06/10 14:46:40 | 000,152,516 | ---- | M] () -- C:\Windows\System32\systemsf.ebd
[2009/06/10 14:46:28 | 000,105,371 | ---- | M] () -- C:\Windows\System32\RacRules.xml
[2009/06/10 14:46:08 | 000,145,640 | ---- | M] () -- C:\Windows\System32\devmgmt.msc
[2009/06/10 14:44:34 | 003,170,304 | ---- | M] () -- C:\Windows\System32\boot.sdi
[2009/06/10 14:43:22 | 000,000,874 | ---- | M] () -- C:\Windows\System32\manage-bde.wsf
[2009/06/10 14:43:20 | 000,144,862 | ---- | M] () -- C:\Windows\System32\tpm.msc
[2009/06/10 14:42:54 | 000,028,420 | ---- | M] () -- C:\Windows\System32\bios1.rom
[2009/06/10 14:42:54 | 000,018,832 | ---- | M] () -- C:\Windows\System32\v7vga.rom
[2009/06/10 14:42:54 | 000,008,191 | ---- | M] () -- C:\Windows\System32\bios4.rom
[2009/06/10 14:42:49 | 000,000,707 | ---- | M] () -- C:\Windows\_default.pif
[2009/06/10 14:42:32 | 000,021,232 | ---- | M] () -- C:\Windows\System32\graphics.pro
[2009/06/10 14:42:20 | 000,256,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\winhelp.exe
[2009/06/10 14:42:20 | 000,221,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lanman.drv
[2009/06/10 14:42:20 | 000,108,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi.dll
[2009/06/10 14:42:20 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olecli.dll
[2009/06/10 14:42:20 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\olecli.dll
[2009/06/10 14:42:20 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pmspl.dll
[2009/06/10 14:42:20 | 000,027,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ctl3dv2.dll
[2009/06/10 14:42:20 | 000,018,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysedit.exe
[2009/06/10 14:42:20 | 000,009,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lzexpand.dll
[2009/06/10 14:42:20 | 000,009,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\lzexpand.dll
[2009/06/10 14:42:20 | 000,009,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ver.dll
[2009/06/10 14:42:20 | 000,009,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\ver.dll
[2009/06/10 14:42:20 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2009/06/10 14:42:20 | 000,001,688 | ---- | M] () -- C:\Windows\System32\autoexec.nt
[2009/06/10 14:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/06/10 14:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2009/06/10 14:42:08 | 000,000,843 | ---- | M] () -- C:\Windows\System32\onlinesetup.cmd
[2009/06/10 14:42:07 | 000,004,041 | ---- | M] () -- C:\Windows\System32\xwizard.dtd
[2009/06/10 14:41:49 | 000,019,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi.dll
[2009/06/10 14:41:29 | 000,211,938 | ---- | M] () -- C:\Windows\System32\lcphrase.tbl
[2009/06/10 14:41:29 | 000,024,114 | ---- | M] () -- C:\Windows\System32\lcptr.tbl
[2009/06/10 14:41:17 | 000,094,784 | ---- | M] (Twain Working Group) -- C:\Windows\twain.dll
[2009/06/10 14:41:17 | 000,049,680 | ---- | M] (Twain Working Group) -- C:\Windows\twunk_16.exe
[2009/06/10 14:40:51 | 000,146,389 | ---- | M] () -- C:\Windows\System32\printmanagement.msc
[2009/06/10 14:40:47 | 000,201,034 | ---- | M] () -- C:\Windows\System32\winrm.vbs
[2009/06/10 14:40:47 | 000,004,675 | ---- | M] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2009/06/10 14:40:47 | 000,002,426 | ---- | M] () -- C:\Windows\System32\WsmTxt.xsl
[2009/06/10 14:40:47 | 000,001,559 | ---- | M] () -- C:\Windows\System32\WsmPty.xsl
[2009/06/10 14:40:47 | 000,000,035 | ---- | M] () -- C:\Windows\System32\winrm.cmd
[2009/06/10 14:39:59 | 000,001,041 | ---- | M] () -- C:\Windows\System32\tcpbidi.xml
[2009/06/10 14:39:54 | 000,003,577 | ---- | M] () -- C:\Windows\System32\sysprtj.sep
[2009/06/10 14:39:54 | 000,003,214 | ---- | M] () -- C:\Windows\System32\sysprint.sep
[2009/06/10 14:39:53 | 000,000,114 | ---- | M] () -- C:\Windows\System32\pcl.sep
[2009/06/10 14:39:53 | 000,000,051 | ---- | M] () -- C:\Windows\System32\pscript.sep
[2009/06/10 14:39:44 | 000,144,673 | ---- | M] () -- C:\Windows\System32\WmiMgmt.msc
[2009/06/10 14:39:37 | 000,017,463 | ---- | M] () -- C:\Windows\System32\drivers\etc\services
[2009/06/10 14:39:37 | 000,003,683 | ---- | M] () -- C:\Windows\System32\drivers\etc\lmhosts.sam
[2009/06/10 14:39:37 | 000,001,358 | ---- | M] () -- C:\Windows\System32\drivers\etc\protocol
[2009/06/10 14:39:37 | 000,000,407 | ---- | M] () -- C:\Windows\System32\drivers\etc\networks
[2009/06/10 14:39:33 | 000,313,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2009/06/10 14:39:18 | 000,001,820 | ---- | M] () -- C:\Windows\System32\rasctrnm.h
[2009/06/10 14:38:48 | 000,113,629 | ---- | M] () -- C:\Windows\System32\slmgr.vbs
[2009/06/10 14:38:43 | 000,145,059 | ---- | M] () -- C:\Windows\System32\taskschd.msc
[2009/06/10 14:38:33 | 000,145,127 | ---- | M] () -- C:\Windows\System32\eventvwr.msc
[2009/06/10 14:38:10 | 000,017,935 | ---- | M] () -- C:\Windows\System32\EventViewer_EventDetails.xsl
[2009/06/10 14:36:33 | 000,063,070 | ---- | M] () -- C:\Windows\System32\certmgr.msc
[2009/06/10 14:35:57 | 000,120,458 | ---- | M] () -- C:\Windows\System32\secpol.msc
[2009/06/10 14:34:45 | 000,215,943 | ---- | M] () -- C:\Windows\System32\dssec.dat
[2009/06/10 14:34:23 | 000,316,640 | ---- | M] () -- C:\Windows\WMSysPr9.prx
[2009/06/10 14:32:47 | 000,000,741 | ---- | M] () -- C:\Windows\System32\NOISE.DAT
[2009/06/10 14:32:07 | 000,002,060 | ---- | M] () -- C:\Windows\System32\noise.jpn
[2009/06/10 14:31:26 | 000,145,519 | ---- | M] () -- C:\Windows\System32\perfmon.msc
[2009/06/10 14:29:34 | 000,000,697 | ---- | M] () -- C:\Windows\System32\NOISE.THA
[2009/06/10 14:29:29 | 011,967,524 | ---- | M] () -- C:\Windows\System32\korwbrkr.lex
[2009/06/10 14:29:29 | 000,001,486 | ---- | M] () -- C:\Windows\System32\noise.kor
[2009/06/10 14:29:28 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stdole32.tlb
[2009/06/10 14:29:28 | 000,001,696 | ---- | M] () -- C:\Windows\System32\NOISE.CHT
[2009/06/10 14:29:17 | 000,001,696 | ---- | M] () -- C:\Windows\System32\NOISE.CHS
[2009/06/10 14:28:59 | 000,147,439 | ---- | M] () -- C:\Windows\System32\gpedit.msc
[2009/06/10 14:28:59 | 000,043,566 | ---- | M] () -- C:\Windows\System32\rsop.msc
[2009/06/10 14:27:46 | 000,115,091 | ---- | M] () -- C:\Windows\System32\WF.msc
[2009/06/10 14:27:38 | 000,000,003 | ---- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2009/06/10 14:26:15 | 000,144,998 | ---- | M] () -- C:\Windows\System32\lusrmgr.msc
[2009/06/10 14:26:10 | 000,673,088 | ---- | M] () -- C:\Windows\System32\mlang.dat
[2009/06/10 14:26:01 | 000,127,213 | ---- | M] () -- C:\Windows\System32\ega.cpi
[2009/06/10 14:25:56 | 000,177,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\typelib.dll
[2009/06/10 14:25:56 | 000,169,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole2disp.dll
[2009/06/10 14:25:56 | 000,153,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole2nls.dll
[2009/06/10 14:25:56 | 000,042,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole2.dll
[2009/06/10 14:25:56 | 000,027,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\compobj.dll
[2009/06/10 14:25:56 | 000,005,532 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\stdole.tlb
[2009/06/10 14:25:56 | 000,004,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\storage.dll
[2009/06/10 14:25:52 | 000,063,411 | ---- | M] () -- C:\Windows\System32\NAPCLCFG.MSC
[2009/06/10 14:23:24 | 000,155,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009/06/10 14:23:24 | 000,080,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009/06/10 14:22:27 | 000,061,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm.dll
[2009/06/10 14:21:50 | 000,126,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvideo.dll
[2009/06/10 14:21:50 | 000,126,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\msvideo.dll
[2009/06/10 14:21:50 | 000,109,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifile.dll
[2009/06/10 14:21:50 | 000,109,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\avifile.dll
[2009/06/10 14:21:50 | 000,073,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi.drv
[2009/06/10 14:21:50 | 000,073,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\mciavi.drv
[2009/06/10 14:21:50 | 000,069,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap.dll
[2009/06/10 14:21:50 | 000,069,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\avicap.dll
[2009/06/10 14:21:50 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciwave.drv
[2009/06/10 14:21:50 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\mciwave.drv
[2009/06/10 14:21:50 | 000,025,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciseq.drv
[2009/06/10 14:21:50 | 000,025,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System\mciseq.drv
[2009/06/10 14:21:09 | 000,092,745 | ---- | M] () -- C:\Windows\System32\services.msc
[2009/06/10 14:21:07 | 000,144,909 | ---- | M] () -- C:\Windows\System32\fsmgmt.msc
[2009/06/10 14:21:06 | 000,113,256 | ---- | M] () -- C:\Windows\System32\compmgmt.msc
[2009/06/10 14:21:06 | 000,041,587 | ---- | M] () -- C:\Windows\System32\azman.msc
[2009/06/10 14:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2009/06/10 14:19:05 | 000,040,552 | ---- | M] () -- C:\Windows\System32\gatherNetworkInfo.vbs
[2009/06/10 14:19:05 | 000,021,812 | ---- | M] () -- C:\Windows\System32\NetTrace.PLA.Diagnostics.xml
[2009/06/10 14:18:29 | 000,000,565 | ---- | M] () -- C:\Windows\System32\NdfEventView.xml
[2009/06/10 14:17:44 | 000,124,118 | ---- | M] () -- C:\Windows\System32\comexp.msc
[2009/06/10 14:17:01 | 000,026,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc16gt.dll
[2009/06/10 14:17:01 | 000,004,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ds16gt.dLL
[2009/06/10 14:16:56 | 000,002,233 | ---- | M] () -- C:\Windows\System32\12520850.cpx
[2009/06/10 14:16:56 | 000,002,151 | ---- | M] () -- C:\Windows\System32\12520437.cpx
[2009/06/10 14:16:38 | 000,002,727 | ---- | M] () -- C:\Windows\System32\locationnotificationsview.xml
[2009/06/10 14:15:19 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat
[2009/06/10 14:15:18 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat
[2009/06/10 14:15:06 | 000,076,060 | ---- | M] () -- C:\Windows\System32\xpsrchvw.xml
[2009/06/10 14:14:59 | 000,034,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2009/06/10 14:14:57 | 000,778,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2009/06/10 14:14:56 | 000,101,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2009/06/10 14:14:45 | 000,051,867 | ---- | M] () -- C:\Windows\Ultimate.xml
[2009/06/10 14:14:45 | 000,048,201 | ---- | M] () -- C:\Windows\Starter.xml
[2009/06/10 14:14:29 | 003,440,660 | ---- | M] () -- C:\Windows\System32\drivers\gm.dls
[2009/06/10 14:14:09 | 000,034,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2009/06/10 14:14:08 | 000,618,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2009/06/10 14:14:08 | 000,098,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2009/06/10 14:14:08 | 000,008,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2009/04/19 21:56:28 | 000,060,416 | ---- | M] (NirSoft) -- C:\Windows\NIRCMD.exe
[2008/04/17 12:12:54 | 000,107,368 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2000/08/30 17:00:00 | 000,518,144 | ---- | M] (SteelWerX) -- C:\Windows\SWREG.exe
[2000/08/30 17:00:00 | 000,406,528 | ---- | M] (SteelWerX) -- C:\Windows\SWSC.exe
[2000/08/30 17:00:00 | 000,212,480 | ---- | M] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2000/08/30 17:00:00 | 000,098,816 | ---- | M] () -- C:\Windows\sed.exe
[2000/08/30 17:00:00 | 000,080,412 | ---- | M] () -- C:\Windows\grep.exe
[2000/08/30 17:00:00 | 000,068,096 | ---- | M] () -- C:\Windows\zip.exe
[1996/12/03 14:50:14 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\VEN2232.OLB

========== Files Created - No Company Name ==========

[2012/10/23 18:10:35 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_netaapl_01009.Wdf
[2012/09/20 17:08:38 | 000,001,100 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/09/20 17:08:38 | 000,001,088 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/09/10 14:12:43 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/09/10 14:12:43 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/09/10 14:12:43 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/09/10 14:12:43 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/09/10 14:12:43 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/08/31 18:27:33 | 000,001,753 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/08/31 18:26:10 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/08/20 12:23:02 | 000,153,766 | ---- | C] () -- C:\Users\user\Desktop\Defendant Application - Final.pdf
[2012/08/15 16:03:23 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/07/31 09:21:48 | 000,002,440 | ---- | C] () -- C:\Users\user\Desktop\Google Chrome.lnk
[2012/07/31 09:20:48 | 000,000,904 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000UA.job
[2012/07/31 09:20:47 | 000,000,852 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000Core.job
[2012/07/29 21:22:55 | 341,246,950 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/07/19 08:37:14 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/07/16 09:36:25 | 000,001,024 | ---- | C] () -- C:\Windows\System32\AutoPartNt.let
[2012/07/16 09:33:39 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/07/16 09:25:27 | 000,002,465 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
[2012/07/16 09:25:27 | 000,002,453 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
[2012/07/16 09:25:27 | 000,001,996 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
[2012/07/16 07:53:03 | 000,003,021 | ---- | C] () -- C:\Users\user\Desktop\Microsoft Word 2010.lnk
[2012/07/16 07:52:59 | 000,002,937 | ---- | C] () -- C:\Users\user\Desktop\Microsoft PowerPoint 2010.lnk
[2012/07/16 07:52:54 | 000,002,951 | ---- | C] () -- C:\Users\user\Desktop\Microsoft Excel 2010.lnk
[2012/07/16 07:52:12 | 000,001,097 | ---- | C] () -- C:\Users\Public\Desktop\Acronis True Image Home 2011.lnk
[2012/07/16 06:18:07 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2012/07/16 06:16:28 | 000,001,407 | ---- | C] () -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/07/16 04:07:50 | 000,001,413 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/07/16 04:07:22 | 000,000,290 | ---- | C] () -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/07/16 04:07:22 | 000,000,272 | ---- | C] () -- C:\Users\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/07/16 04:03:08 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2012/07/16 04:03:01 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2012/07/16 04:00:32 | 1558,646,784 | -HS- | C] () -- C:\hiberfil.sys
[2012/06/25 01:46:04 | 000,724,942 | ---- | C] () -- C:\Users\user\Desktop\logo aztec.bmp
[2012/06/25 01:46:04 | 000,218,212 | ---- | C] () -- C:\Users\user\Desktop\acme pic.jpg
[2012/06/25 01:46:04 | 000,116,999 | ---- | C] () -- C:\Users\user\Desktop\OrozcoPDF[1].pdf
[2012/06/25 01:44:24 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2009/07/14 00:51:56 | 000,051,867 | ---- | C] () -- C:\Windows\Ultimate.xml
[2009/07/13 21:48:09 | 000,048,201 | ---- | C] () -- C:\Windows\Starter.xml
[2009/07/13 21:46:52 | 000,042,045 | ---- | C] () -- C:\Windows\System32\license.rtf
[2009/07/13 21:46:36 | 000,001,515 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2009/07/13 21:42:30 | 000,001,246 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
[2009/07/13 21:42:29 | 000,001,330 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
[2009/07/13 21:42:29 | 000,001,244 | ---- | C] () -- C:\Windows\System32\migwiz.lnk
[2009/07/13 21:42:26 | 000,000,535 | ---- | C] () -- C:\Windows\System32\mapisvc.inf
[2009/07/13 21:42:24 | 000,001,210 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
[2009/07/13 21:34:15 | 000,017,168 | -H-- | C] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009/07/13 21:34:15 | 000,017,168 | -H-- | C] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009/07/13 21:34:00 | 000,021,504 | ---- | C] () -- C:\Windows\System32\umstartup.etl
[2009/07/13 21:34:00 | 000,009,216 | ---- | C] () -- C:\Windows\System32\umstartup000.etl
[2009/07/13 19:05:05 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2009/07/13 19:05:05 | 000,001,696 | ---- | C] () -- C:\Windows\System32\NOISE.CHT
[2009/07/13 19:05:05 | 000,001,696 | ---- | C] () -- C:\Windows\System32\NOISE.CHS
[2009/07/13 19:05:05 | 000,001,486 | ---- | C] () -- C:\Windows\System32\noise.kor
[2009/07/13 19:05:05 | 000,000,697 | ---- | C] () -- C:\Windows\System32\NOISE.THA
[2009/07/13 19:05:03 | 000,003,683 | ---- | C] () -- C:\Windows\System32\drivers\etc\lmhosts.sam
[2009/07/13 19:04:17 | 000,017,463 | ---- | C] () -- C:\Windows\System32\drivers\etc\services
[2009/07/13 19:04:17 | 000,001,358 | ---- | C] () -- C:\Windows\System32\drivers\etc\protocol
[2009/07/13 19:04:17 | 000,000,407 | ---- | C] () -- C:\Windows\System32\drivers\etc\networks
[2009/07/13 19:04:17 | 000,000,027 | ---- | C] () -- C:\Windows\System32\drivers\etc\hosts
[2009/07/13 19:04:04 | 000,002,577 | ---- | C] () -- C:\Windows\System32\config.nt
[2009/07/13 19:04:04 | 000,001,688 | ---- | C] () -- C:\Windows\System32\autoexec.nt
[2009/07/13 19:04:04 | 000,000,024 | ---- | C] () -- C:\autoexec.bat
[2009/07/13 19:04:04 | 000,000,010 | ---- | C] () -- C:\config.sys
[2009/07/13 19:03:57 | 000,008,798 | ---- | C] () -- C:\Windows\System32\icrav03.rat
[2009/07/13 19:03:57 | 000,001,988 | ---- | C] () -- C:\Windows\System32\ticrf.rat
[2009/07/13 16:11:57 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2009/07/13 16:08:01 | 000,003,577 | ---- | C] () -- C:\Windows\System32\sysprtj.sep
[2009/07/13 16:08:01 | 000,000,114 | ---- | C] () -- C:\Windows\System32\pcl.sep
[2009/07/13 16:08:01 | 000,000,051 | ---- | C] () -- C:\Windows\System32\pscript.sep
[2009/07/13 16:06:14 | 000,004,453 | ---- | C] () -- C:\Windows\System32\odbcconf.rsp
[2009/07/13 15:53:38 | 000,146,389 | ---- | C] () -- C:\Windows\System32\printmanagement.msc
[2009/07/13 15:41:10 | 000,002,233 | ---- | C] () -- C:\Windows\System32\12520850.cpx
[2009/07/13 15:12:16 | 000,063,411 | ---- | C] () -- C:\Windows\System32\NAPCLCFG.MSC
[2009/07/13 15:11:17 | 000,115,091 | ---- | C] () -- C:\Windows\System32\WF.msc
[2009/07/13 15:10:48 | 000,021,812 | ---- | C] () -- C:\Windows\System32\NetTrace.PLA.Diagnostics.xml
[2009/07/13 15:06:29 | 000,201,034 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2009/07/13 15:06:29 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2009/07/13 15:06:29 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2009/07/13 15:06:29 | 000,001,559 | ---- | C] () -- C:\Windows\System32\WsmPty.xsl
[2009/07/13 15:01:40 | 000,124,118 | ---- | C] () -- C:\Windows\System32\comexp.msc
[2009/07/13 14:55:47 | 000,144,998 | ---- | C] () -- C:\Windows\System32\lusrmgr.msc
[2009/07/13 14:53:23 | 000,147,439 | ---- | C] () -- C:\Windows\System32\gpedit.msc
[2009/07/13 14:53:23 | 000,043,566 | ---- | C] () -- C:\Windows\System32\rsop.msc
[2009/07/13 14:47:53 | 000,063,070 | ---- | C] () -- C:\Windows\System32\certmgr.msc
[2009/07/13 14:46:10 | 000,145,127 | ---- | C] () -- C:\Windows\System32\eventvwr.msc
[2009/07/13 14:46:10 | 000,017,935 | ---- | C] () -- C:\Windows\System32\EventViewer_EventDetails.xsl
[2009/07/13 14:46:09 | 000,145,059 | ---- | C] () -- C:\Windows\System32\taskschd.msc
[2009/07/13 14:46:01 | 000,144,673 | ---- | C] () -- C:\Windows\System32\WmiMgmt.msc
[2009/07/13 14:44:25 | 000,120,458 | ---- | C] () -- C:\Windows\System32\secpol.msc
[2009/07/13 14:44:22 | 000,144,909 | ---- | C] () -- C:\Windows\System32\fsmgmt.msc
[2009/07/13 14:44:22 | 000,113,256 | ---- | C] () -- C:\Windows\System32\compmgmt.msc
[2009/07/13 14:44:22 | 000,092,745 | ---- | C] () -- C:\Windows\System32\services.msc
[2009/07/13 14:44:22 | 000,041,587 | ---- | C] () -- C:\Windows\System32\azman.msc
[2009/07/13 14:38:38 | 000,024,114 | ---- | C] () -- C:\Windows\System32\lcptr.tbl
[2009/07/13 14:38:33 | 000,000,610 | ---- | C] () -- C:\Windows\System32\WdsUnattendTemplate.xml
[2009/07/13 14:34:35 | 000,047,679 | ---- | C] () -- C:\Windows\System32\diskmgmt.msc
[2009/07/13 14:33:45 | 000,000,714 | ---- | C] () -- C:\Windows\System32\RestartManager.mof
[2009/07/13 14:33:45 | 000,000,176 | ---- | C] () -- C:\Windows\System32\RestartManagerUninstall.mof
[2009/07/13 14:30:30 | 000,000,707 | ---- | C] () -- C:\Windows\_default.pif
[2009/07/13 14:30:26 | 000,018,832 | ---- | C] () -- C:\Windows\System32\v7vga.rom
[2009/07/13 14:30:26 | 000,008,191 | ---- | C] () -- C:\Windows\System32\bios4.rom
[2009/07/13 14:28:41 | 000,145,519 | ---- | C] () -- C:\Windows\System32\perfmon.msc
[2009/07/13 14:23:44 | 000,145,640 | ---- | C] () -- C:\Windows\System32\devmgmt.msc
[2009/07/13 14:20:44 | 000,144,862 | ---- | C] () -- C:\Windows\System32\tpm.msc
[2009/07/13 13:31:17 | 000,127,213 | ---- | C] () -- C:\Windows\System32\ega.cpi
[2009/07/13 13:30:24 | 000,000,843 | ---- | C] () -- C:\Windows\System32\onlinesetup.cmd
[2009/07/13 13:22:04 | 000,000,874 | ---- | C] () -- C:\Windows\System32\manage-bde.wsf
[2009/06/10 14:46:53 | 000,008,280 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man
[2009/06/10 14:46:40 | 000,152,516 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2009/06/10 14:46:28 | 000,105,371 | ---- | C] () -- C:\Windows\System32\RacRules.xml
[2009/06/10 14:44:34 | 003,170,304 | ---- | C] () -- C:\Windows\System32\boot.sdi
[2009/06/10 14:42:54 | 000,028,420 | ---- | C] () -- C:\Windows\System32\bios1.rom
[2009/06/10 14:42:32 | 000,021,232 | ---- | C] () -- C:\Windows\System32\graphics.pro
[2009/06/10 14:42:07 | 000,004,041 | ---- | C] () -- C:\Windows\System32\xwizard.dtd
[2009/06/10 14:41:29 | 000,211,938 | ---- | C] () -- C:\Windows\System32\lcphrase.tbl
[2009/06/10 14:40:47 | 000,000,035 | ---- | C] () -- C:\Windows\System32\winrm.cmd
[2009/06/10 14:39:59 | 000,001,041 | ---- | C] () -- C:\Windows\System32\tcpbidi.xml
[2009/06/10 14:39:54 | 000,003,214 | ---- | C] () -- C:\Windows\System32\sysprint.sep
[2009/06/10 14:39:18 | 000,001,820 | ---- | C] () -- C:\Windows\System32\rasctrnm.h
[2009/06/10 14:38:48 | 000,113,629 | ---- | C] () -- C:\Windows\System32\slmgr.vbs
[2009/06/10 14:34:23 | 000,316,640 | ---- | C] () -- C:\Windows\WMSysPr9.prx
[2009/06/10 14:32:07 | 000,002,060 | ---- | C] () -- C:\Windows\System32\noise.jpn
[2009/06/10 14:19:05 | 000,040,552 | ---- | C] () -- C:\Windows\System32\gatherNetworkInfo.vbs
[2009/06/10 14:18:29 | 000,000,565 | ---- | C] () -- C:\Windows\System32\NdfEventView.xml
[2009/06/10 14:16:56 | 000,002,151 | ---- | C] () -- C:\Windows\System32\12520437.cpx
[2009/06/10 14:16:38 | 000,002,727 | ---- | C] () -- C:\Windows\System32\locationnotificationsview.xml
[2009/06/10 14:15:06 | 000,076,060 | ---- | C] () -- C:\Windows\System32\xpsrchvw.xml
[2009/06/10 14:14:28 | 003,440,660 | ---- | C] () -- C:\Windows\System32\drivers\gm.dls

========== ZeroAccess Check ==========

[2009/07/13 21:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 21:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 18:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 18:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/07/16 09:34:20 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Acronis
[2012/09/05 09:14:39 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BitTorrent
[2012/10/03 09:23:52 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Dropbox

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2011/02/25 22:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009/07/13 18:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011/02/25 22:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009/10/30 22:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\erdnt\cache\explorer.exe
[2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\explorer.exe
[2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010/11/20 05:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009/08/02 22:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009/08/02 22:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/30 23:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

< MD5 for: QMGR.DLL >
[2009/07/13 18:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- C:\Windows\erdnt\cache\qmgr.dll
[2009/07/13 18:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- C:\Windows\System32\qmgr.dll
[2009/07/13 18:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7600.16385_none_23671b105ac5a0fd\qmgr.dll
[2010/11/20 05:20:58 | 000,585,728 | ---- | M] (Microsoft Corporation) MD5=E585445D5021971FAE10393F0F1C3961 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7601.17514_none_25982ed857b42497\qmgr.dll

< MD5 for: SERVICES >
[2009/06/10 14:39:37 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\System32\drivers\etc\services
[2009/06/10 14:39:37 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_045b589158ae90da\services

< MD5 for: SERVICES.ASFX >
[2010/10/25 15:15:46 | 000,000,230 | ---- | M] () MD5=2577B66F38E0DEA25F328DA4A0FED322 -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\fr_FR\Services\Services.asfx
[2010/10/25 15:15:46 | 000,000,231 | ---- | M] () MD5=9F2731666F5771CC5C1E4EEDC8FB8607 -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\Services\Services.asfx

< MD5 for: SERVICES.CFG >
[2010/10/25 15:13:46 | 000,032,633 | ---- | M] () MD5=EA1C35DD541D60819D55482130BD585D -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Services\Services.cfg

< MD5 for: SERVICES.DAT >
[2012/08/06 17:36:01 | 000,010,240 | ---- | M] () MD5=427A7B1D2DF31B195369C272E3D9BF8B -- C:\Users\user\AppData\Roaming\Adobe\Acrobat\10.0\Security\services.dat

< MD5 for: SERVICES.EXE >
[2009/07/13 18:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\erdnt\cache\services.exe
[2009/07/13 18:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009/07/13 18:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2009/07/13 19:03:06 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\System32\en-US\services.exe.mui
[2009/07/13 19:03:06 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\winsxs\x86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_69d39d3a8748c332\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/13 21:41:45 | 000,001,288 | ---- | M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/13 21:41:45 | 000,001,288 | ---- | M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/10 14:26:14 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\System32\wbem\services.mof
[2009/06/10 14:26:14 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.mof

< MD5 for: SERVICES.MSC >
[2009/07/13 19:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\en-US\services.msc
[2009/06/10 14:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\services.msc
[2009/07/13 19:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 14:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 13:20:01 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\System32\wdi\perftrack\Services.ptxml
[2009/07/13 13:20:01 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2012/09/29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 05:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/13 18:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\erdnt\cache\userinit.exe
[2009/07/13 18:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009/07/13 18:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/10/27 23:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\erdnt\cache\winlogon.exe
[2009/10/27 23:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009/10/27 23:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009/10/27 22:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010/11/20 05:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2012/09/29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009/07/13 18:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< %systemdrive%\$Recycle.Bin|@;true;true;true /fp >

< C:\Windows\assembly\tmp\U\*.* /s >
[2009/07/13 21:53:46 | 000,032,614 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009/07/13 21:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2012/07/31 09:20:47 | 000,000,852 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000Core.job
[2012/07/31 09:20:48 | 000,000,904 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000UA.job
[2012/08/15 16:03:23 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BITS /s >
"DisplayName" = @%SystemRoot%\system32\qmgr.dll,-1000
"ImagePath" = %SystemRoot%\System32\svchost.exe -k netsvcs -- [2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation)
"Description" = @%SystemRoot%\system32\qmgr.dll,-1001
"ObjectName" = LocalSystem
"ErrorControl" = 1
"Start" = 2
"DelayedAutoStart" = 1
"Type" = 32
"DependOnService" = RpcSsEventSystem [binary data]
"ServiceSidType" = 1
"RequiredPrivileges" = SeCreateGlobalPrivilegeSeImperson [Binary data over 200 bytes]
"FailureActions" = 80 51 01 00 00 00 00 00 00 00 00 00 03 00 00 00 14 00 00 00 01 00 00 00 60 EA 00 00 01 00 00 00 C0 D4 01 00 00 00 00 00 00 00 00 00 [binary data]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BITS\Parameters]
"ServiceDll" = %systemroot%\system32\qmgr.dll -- [2009/07/13 18:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BITS\Performance]
"Library" = bitsperf.dll -- [2009/07/13 18:14:59 | 000,018,944 | ---- | M] (Microsoft Corporation)
"Open" = PerfMon_Open
"Collect" = PerfMon_Collect
"Close" = PerfMon_Close
"InstallType" = 1
"PerfIniFile" = bitsctrs.ini
"First Counter" = 2002
"Last Counter" = 2018
"First Help" = 2003
"Last Help" = 2019
"Object List" = 2002
"PerfMMFileName" = Global\MMF_BITS_s
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BITS\Security]
"Security" = 01 00 14 80 90 00 00 00 A0 00 00 00 14 00 00 00 34 00 00 00 02 00 20 00 01 00 00 00 02 C0 18 00 00 00 0C 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 02 00 5C 00 04 00 00 00 00 02 14 00 FF 01 0F 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 04 00 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 06 00 00 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 [Binary data over 200 bytes]

< %Temp%\smtmp\1\*.* >

< %Temp%\smtmp\2\*.* >

< %Temp%\smtmp\3\*.* >

< %Temp%\smtmp\4\*.* >

< type c:\diskreport.txt /c >
Microsoft DiskPart version 6.1.7600
Copyright © 1999-2008 Microsoft Corporation.
On computer: ACME1
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
Volume 0 D DVD-ROM 0 B No Media
Volume 1 System Rese NTFS Partition 192 MB Healthy System
Volume 2 C NTFS Partition 148 GB Healthy Boot

< End of report >

#5
lasvegasrebel702

Posted 01 November 2012 - 07:13 PM

Member

Topic Starter
Member
11 posts

this was another log labeld "extras"

OTL Extras logfile created on: 11/1/2012 5:43:56 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.94 Gb Total Physical Memory | 1.48 Gb Available Physical Memory | 76.72% Memory free
3.87 Gb Paging File | 3.12 Gb Available in Paging File | 80.54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 148.86 Gb Total Space | 121.57 Gb Free Space | 81.67% Space Free | Partition Type: NTFS

Computer Name: ACME1 | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = All Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-510533818-3131682968-3388935289-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{132EBC68-039D-4CC5-BC55-DAE66E76AA49}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1DB76BED-D1E4-4A4A-9895-61EAD8608ED3}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{6431D9B7-E3ED-498C-8EB7-1B818DDFCC28}" = rport=139 | protocol=6 | dir=out | app=system |
"{94A03336-8E07-4664-BD06-2506D042C0D6}" = lport=445 | protocol=6 | dir=in | app=system |
"{A30136A2-F445-4F25-9828-0EF6DF254DF9}" = lport=139 | protocol=6 | dir=in | app=system |
"{AEBF5648-5580-44CF-9CC6-83B3D09C7C26}" = rport=445 | protocol=6 | dir=out | app=system |
"{B64C5BA3-0EF6-4F73-9A55-5CB7678E527E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{C0328F2E-AD90-49DE-903A-C093F211E7C5}" = lport=137 | protocol=17 | dir=in | app=system |
"{DE9006F8-311F-478B-90BA-133EF477D369}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E5DFDA98-6593-423B-B104-F85887C6CE88}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F69D6232-3D40-46F0-BAD5-E36971A57090}" = lport=138 | protocol=17 | dir=in | app=system |
"{F9947C2D-56B3-435C-96B0-304491D7C89F}" = rport=137 | protocol=17 | dir=out | app=system |
"{FDDF2DF3-DE3A-4179-BB1F-DFE8AECCB849}" = rport=138 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{033A3CD6-5DE4-42CD-A7A7-046226C8F4AA}" = protocol=17 | dir=in | app=c:\users\user\appdata\roaming\dropbox\bin\dropbox.exe |
"{1FCA7817-87BE-4701-8474-51B606936D72}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2F2CD35B-39C1-4563-9E81-06C9CFFBD0DE}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{3AE8AABD-174F-4828-8C8F-48D7151C9092}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{444D80AC-082C-4EC1-9F5A-3D0F2CDCF326}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{51BC3D47-7AF1-454A-954E-104C5AB4C5AF}" = protocol=58 | dir=out | [email protected],-28546 |
"{5FC71990-8994-4338-8C48-538DF323313E}" = protocol=1 | dir=in | [email protected],-28543 |
"{6225E73F-F8A2-4D50-AB04-6230F64B8FAD}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{713E330D-C8EA-44E0-908C-B632EB2C706B}" = protocol=1 | dir=out | [email protected],-28544 |
"{7A7CD5AE-30F1-4CCC-A910-BCA58C0FBE15}" = protocol=58 | dir=in | [email protected],-28545 |
"{88851615-3913-44B6-824D-285FC8E96949}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{89C7D275-2854-4512-9703-E40EAAC8FB33}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{91441282-5A52-4D23-8E9A-F188D84BD8DF}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{CB99E276-AC64-48D6-AEC4-B3CA8BE06300}" = protocol=6 | dir=in | app=c:\users\user\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{E29565B9-34FD-4F30-9A90-7A083C569116}C:\users\user\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\user\appdata\roaming\spotify\spotify.exe |
"UDP Query User{317E3B24-0058-4EF7-99BB-BD3F0579E3E5}C:\users\user\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\user\appdata\roaming\spotify\spotify.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis True Image Home 2011
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{6AD9F5F3-5BD0-4000-BD9C-B536CF86D988}" = iTunes
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{8F1ADE4D-EFAC-4F5A-B346-23C2687FAF50}" = Apple Mobile Device Support
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{AC76BA86-1033-F400-7760-000000000005}" = Adobe Acrobat X Pro - English, Français, Deutsch
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.65.1.1000
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 15.0.1 (x86 en-US)" = Mozilla Firefox 15.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"Subliminal Blaster 2.0" = Subliminal Blaster 2.0
"WinRAR archiver" = WinRAR 4.20 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-510533818-3131682968-3388935289-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Mozilla Firefox 16.0.1 (x86 en-US)" = Mozilla Firefox 16.0.1 (x86 en-US)

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 11/1/2012 7:09:02 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3058

Error - 11/1/2012 7:09:03 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 11/1/2012 7:09:03 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 4103

Error - 11/1/2012 7:09:03 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 4103

Error - 11/1/2012 7:09:04 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 11/1/2012 7:09:04 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 5117

Error - 11/1/2012 7:09:04 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 5117

Error - 11/1/2012 7:09:05 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 11/1/2012 7:09:05 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 6115

Error - 11/1/2012 7:09:05 PM | Computer Name = acme1 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 6115

[ System Events ]
Error - 10/30/2012 5:11:06 PM | Computer Name = acme1 | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 10/30/2012 5:51:30 PM | Computer Name = acme1 | Source = EventLog | ID = 6008
Description = The previous system shutdown at 2:16:32 PM on ?10/?30/?2012 was unexpected.

Error - 10/30/2012 11:18:06 PM | Computer Name = acme1 | Source = EventLog | ID = 6008
Description = The previous system shutdown at 7:26:24 PM on ?10/?30/?2012 was unexpected.

Error - 10/30/2012 11:18:07 PM | Computer Name = ACME1 | Source = BugCheck | ID = 1001
Description =

Error - 10/30/2012 11:52:59 PM | Computer Name = acme1 | Source = Microsoft-Windows-HAL | ID = 12
Description = The platform firmware has corrupted memory across the previous system
power transition. Please check for updated firmware for your system.

Error - 10/31/2012 6:09:08 PM | Computer Name = acme1 | Source = Microsoft-Windows-HAL | ID = 12
Description = The platform firmware has corrupted memory across the previous system
power transition. Please check for updated firmware for your system.

Error - 10/31/2012 9:20:59 PM | Computer Name = acme1 | Source = Microsoft-Windows-HAL | ID = 12
Description = The platform firmware has corrupted memory across the previous system
power transition. Please check for updated firmware for your system.

Error - 11/1/2012 2:13:27 PM | Computer Name = acme1 | Source = Microsoft-Windows-HAL | ID = 12
Description = The platform firmware has corrupted memory across the previous system
power transition. Please check for updated firmware for your system.

Error - 11/1/2012 5:14:28 PM | Computer Name = acme1 | Source = Microsoft-Windows-HAL | ID = 12
Description = The platform firmware has corrupted memory across the previous system
power transition. Please check for updated firmware for your system.

Error - 11/1/2012 7:09:07 PM | Computer Name = acme1 | Source = Microsoft-Windows-HAL | ID = 12
Description = The platform firmware has corrupted memory across the previous system
power transition. Please check for updated firmware for your system.

< End of report >

#6
lasvegasrebel702

Posted 01 November 2012 - 07:15 PM

Member

Topic Starter
Member
11 posts

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-01 18:04:38
-----------------------------
18:04:38.255 OS Version: Windows 6.1.7600
18:04:38.255 Number of processors: 2 586 0x4302
18:04:38.255 ComputerName: ACME1 UserName: user
18:04:39.940 Initialize success
18:04:51.725 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000057
18:04:51.740 Disk 0 Vendor: TOSHIBA_ LH01 Size: 152627MB BusType: 3
18:04:51.756 Disk 0 MBR read successfully
18:04:51.756 Disk 0 MBR scan
18:04:51.772 Disk 0 Windows 7 default MBR code
18:04:51.787 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 192 MB offset 2048
18:04:51.787 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 152434 MB offset 395264
18:04:51.803 Disk 0 scanning sectors +312580096
18:04:51.865 Disk 0 scanning C:\Windows\system32\drivers
18:04:56.826 Service scanning
18:05:14.651 Modules scanning
18:05:19.904 Disk 0 trace - called modules:
18:05:19.924 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll storport.sys nvstor.sys ndis.sys
18:05:19.925 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85e00030]
18:05:19.926 3 CLASSPNP.SYS[891a459e] -> nt!IofCallDriver -> [0x84e4e930]
18:05:19.927 5 ACPI.sys[833be3b2] -> nt!IofCallDriver -> \Device\00000057[0x85737ac8]
18:05:19.927 Scan finished successfully
18:14:01.434 Disk 0 MBR has been saved successfully to "C:\Users\user\Desktop\MBR.dat"
18:14:01.450 The log file has been saved successfully to "C:\Users\user\Desktop\aswMBR log.txt"

#7
lasvegasrebel702

Posted 01 November 2012 - 07:18 PM

Member

Topic Starter
Member
11 posts

The one symptom i am experiencing is heavy freezing. Ill be using the computer fine for a few hours and then it completely freezes. Or ill just be using it for a few minutes and then again it freezes. I have to manuel restart the computer. I thought it was a virus so i ran Malware bytes and when i perfomed a quick scan it found a few things and i removed them. The Freezing persisted so i decided to run a full system scan and 3 minutes into the scan the computer again froze. I tried it in safe mode and once again around the 3 minute mark it froze. So now i experience a few freezes a day.

Let me know if theres anything else you need from me. Thank you once again for your assistance.

#8
blmadara

Posted 03 November 2012 - 09:43 AM

Trusted Helper

Malware Removal
767 posts

Hi lasvegasrebel702,

Step One: Backup Registry with ERUNT

The steps that I am about to suggest involve modifying the registry. Modifying the registry can be dangerous so we will make a backup of the registry first.
Modification of the registry can be extremely dangerous if you do not know exactly what you are doing so follow the steps that are listed below exactly. If you cannot perform some of these steps or if you have any questions please ask before proceeding.

Backing Up Your Registry

Download ERUNT
(ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)
Install ERUNT by following the prompts
(use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)
Start ERUNT
(either by double clicking on the desktop icon or choosing to start the program at the end of the setup)
Choose a location for the backup
(the default location is C:\WINDOWS\ERDNT which is acceptable).
Make sure that at least the first two check boxes are ticked
Press OK
Press YES to create the folder.

Step Two: Remove Programs

You are using peer-to-peer program(s), specifically BitTorrent.
These are optional removals. However, anytime you are running any type of peer-to-peer application, you are more prone to infection by malware, and this is probably how you became infected in the first place. The choice to remove them is entirely up to you, but I would strongly recommend that you do.
If you do not want to remove them, please at least refrain from using any peer-to-peer programs for the remainder of my fix.

Click the Start Orb and select Control Panel.
In Control Panel, select Programs and Features.
Select
- BitTorrent <-------------------- Optional Removal
Click Uninstall.

Step Three: OTL Fix

Note: If you are using the pro version or trial version of Malwarebytes 1.6 or higher please disable it for the duration of this fix as it may interfere with the successful execution of the script below. If it still hangs then please uninstall MalwareBytes' and run this fix again.

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following (do not copy the word "quote")

:OTL
[2012/09/20 17:13:18 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions\[email protected]
CHR - Extension: Yontoo = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.2_0\
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
[2012/09/20 17:13:20 | 000,000,000 | ---D | M] -- C:\Program Files\Yontoo
[2012/09/20 17:13:18 | 000,000,000 | ---D | M] -- C:\ProgramData\Tarma Installer

:Files
ipconfig /flushdns /c

:Commands
[purity]
[resethosts]
[emptytemp]
Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done and post the log it produces in your next reply.
Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

Step Four: Post Logs

MBAM

Run MBAM.
Click on the logs tab.
Select the scan that detected the problems.
Copy & Paste the entire report in your next reply.

ComboFix
I see you have run ComboFix. ComboFix is a powerful tool and it is dangerous to run it without trained supervision. If it is not used properly it could damage your operating system and make your computer unbootable. Please post the ComboFix log which is located at C:\ComboFix.txt.

TDSSKiller
I see you have run TDSSKiller. Please post the TDSSKiller report which was created in your root directory, (usually C:\ folder) in the form of "C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file in your next post.

What I need in your next post:
1. Both OTL logs, the one from the fix and the new scan.
2, The MBAM report.
3. The ComboFix log, C:\ComboFix.txt.
4. The TDSSKiller log, C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt.

#9
lasvegasrebel702

Posted 06 November 2012 - 03:34 PM

Member

Topic Starter
Member
11 posts

OTL logfile created on: 11/6/2012 1:28:03 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop\Kristian's [bleep]
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.94 Gb Total Physical Memory | 1.19 Gb Available Physical Memory | 61.64% Memory free
3.87 Gb Paging File | 3.04 Gb Available in Paging File | 78.49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 148.86 Gb Total Space | 119.87 Gb Free Space | 80.52% Space Free | Partition Type: NTFS

Computer Name: ACME1 | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/11/01 16:39:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\Kristian's [bleep]\OTL.exe
PRC - [2012/09/29 18:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/07/16 06:52:23 | 003,975,088 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2011/02/25 21:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/10/25 14:13:42 | 000,821,144 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
PRC - [2010/08/21 02:16:16 | 000,390,712 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2010/08/21 02:16:12 | 000,779,944 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2010/08/21 02:15:32 | 005,459,136 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2010/08/20 05:18:30 | 002,536,752 | ---- | M] (Acronis) -- C:\Program Files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe
PRC - [2009/07/13 17:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe

========== Modules (No Company Name) ==========

MOD - [2012/10/10 02:06:15 | 000,460,312 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppgooglenaclpluginchrome.dll
MOD - [2012/10/10 02:06:13 | 012,435,992 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll
MOD - [2012/10/10 02:06:12 | 004,005,912 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll
MOD - [2012/10/10 02:04:57 | 000,578,072 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\libglesv2.dll
MOD - [2012/10/10 02:04:55 | 000,123,928 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\libegl.dll
MOD - [2012/10/10 02:04:44 | 000,156,712 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\avutil-51.dll
MOD - [2012/10/10 02:04:43 | 000,275,496 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\avformat-54.dll
MOD - [2012/10/10 02:04:42 | 002,168,360 | ---- | M] () -- C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll
MOD - [2012/05/30 19:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/05/30 19:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/03/16 23:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/10/20 14:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll

========== Services (SafeList) ==========

SRV - [2012/10/22 12:41:26 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/10/08 14:25:20 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/09/29 18:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/29 18:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/07/30 02:02:02 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012/07/16 06:52:23 | 003,975,088 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2011/06/12 10:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010/08/21 02:16:12 | 000,779,944 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2009/07/13 17:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 17:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 17:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\user\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2012/09/29 18:54:26 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/07/16 06:52:24 | 000,163,232 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\afcdp.sys -- (afcdp)
DRV - [2012/07/16 06:52:23 | 000,752,128 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tdrpm273.sys -- (tdrpman273)
DRV - [2012/07/16 06:52:22 | 000,600,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\timntr.sys -- (timounter)
DRV - [2012/07/16 06:52:18 | 000,170,464 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\snapman.sys -- (snapman)
DRV - [2012/03/26 13:50:12 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009/07/13 17:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009/07/13 17:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/13 17:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009/07/13 15:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/13 15:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 15:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009/06/10 13:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 84 20 FA 57 63 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {1C3EBFC3-E93E-4B28-8714-AB1B962C64AF}
IE - HKCU\..\SearchScopes\{1C3EBFC3-E93E-4B28-8714-AB1B962C64AF}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.10

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\user\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\user\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/07/16 08:25:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/10/22 12:41:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/10/22 12:41:26 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/09/20 16:09:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\Mozilla\Extensions
[2012/10/26 08:22:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions
[2012/09/29 16:36:02 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/09/20 16:11:39 | 000,199,396 | ---- | M] () (No name found) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\lksjub7d.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
[2012/10/22 12:41:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/10/22 12:41:26 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/09/05 17:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/10/22 12:41:26 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: https://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: https://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\22.0.1229.94\gcswf32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Users\user\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: YouTube = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/11/06 13:23:01 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SAOB Monitor] C:\Program Files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKCU..\Run: [Adobe Acrobat Synchronizer] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.13.143.36 65.41.120.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{281AC8F6-9671-4058-BC0F-572B127295EA}: DhcpNameServer = 208.13.143.36 65.41.120.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D245F2AE-4385-4A61-B123-359824F0FB80}: DhcpNameServer = 172.16.145.103 172.16.145.103
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 13:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/11/06 13:22:57 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/11/06 13:03:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
[2012/11/06 13:03:24 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2012/11/02 10:57:51 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\Fragments
[2012/10/22 12:41:23 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

========== Files - Modified Within 30 Days ==========

[2012/11/06 13:25:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/06 13:25:29 | 1558,646,784 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/06 13:23:01 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2012/11/06 13:03:25 | 000,000,894 | ---- | M] () -- C:\Users\user\Desktop\NTREGOPT.lnk
[2012/11/06 12:35:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000UA.job
[2012/11/06 12:25:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/11/06 09:35:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000Core.job
[2012/11/06 09:13:53 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/06 09:13:53 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/06 09:11:39 | 000,636,154 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/11/06 09:11:39 | 000,110,334 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/10/30 19:18:00 | 341,246,950 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/10/27 13:31:54 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/10/23 17:10:35 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_netaapl_01009.Wdf
[2012/10/11 08:37:38 | 000,002,440 | ---- | M] () -- C:\Users\user\Desktop\Google Chrome.lnk

========== Files Created - No Company Name ==========

[2012/11/06 13:03:25 | 000,000,894 | ---- | C] () -- C:\Users\user\Desktop\NTREGOPT.lnk
[2012/10/23 17:10:35 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_netaapl_01009.Wdf
[2012/09/10 13:12:43 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/09/10 13:12:43 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/09/10 13:12:43 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/09/10 13:12:43 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/09/10 13:12:43 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe

========== ZeroAccess Check ==========

[2009/07/13 20:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 17:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 17:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/07/16 08:34:20 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Acronis
[2012/09/05 08:14:39 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BitTorrent
[2012/10/03 08:23:52 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Dropbox

========== Purity Check ==========

< End of report >

#10
lasvegasrebel702

Posted 06 November 2012 - 03:38 PM

Member

Topic Starter
Member
11 posts

Malwarebytes Anti-Malware (PRO) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.27.06

Windows 7 x86 NTFS
Internet Explorer 9.0.8112.16421
user :: ACME1 [administrator]

Protection: Enabled

10/27/2012 3:39:59 PM
mbam-log-2012-10-27 (15-39-59).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 112371
Time elapsed: 26 minute(s), 46 second(s) [aborted]

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 14
C:\Users\user\Downloads\Downloads\tvshows (2).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\finalmediaplayer_2.exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\mediaplayer.exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\tvshows (1).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\tvshows (3).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\tvshows.exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\ultimatemediaplayer_2 (1).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\ultimatemediaplayer_2 (2).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\ultimatemediaplayer_2.exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\video_downloader (1).exe (PUP.BundleInstaller.VG) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\video_downloader (2).exe (PUP.BundleInstaller.VG) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\video_downloader (3).exe (PUP.BundleInstaller.VG) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\video_downloader (4).exe (PUP.BundleInstaller.VG) -> Quarantined and deleted successfully.
C:\Users\user\Downloads\Downloads\video_downloader.exe (PUP.BundleInstaller.VG) -> Quarantined and deleted successfully.

(end)

#11
lasvegasrebel702

Posted 06 November 2012 - 03:39 PM

Member

Topic Starter
Member
11 posts

ComboFix 12-09-10.04 - user 09/10/2012 14:14:28.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.1982.1320 [GMT -7:00]
Running from: c:\users\user\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\user\AppData\Local\Temp\{AE734083-1187-4CA0-BAE4-38ACF2C021B5}\fpb.tmp
.
.
((((((((((((((((((((((((( Files Created from 2012-08-10 to 2012-09-10 )))))))))))))))))))))))))))))))
.
.
2012-09-10 21:20 . 2012-09-10 21:20 -------- d-----w- c:\users\user\AppData\Local\temp
2012-09-10 21:20 . 2012-09-10 21:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-09 18:00 . 2012-09-09 18:00 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{942A7C1E-FA42-4416-B275-E7024DCDBD98}\offreg.dll
2012-09-08 17:30 . 2012-09-10 21:04 -------- d-----w- c:\users\user\AppData\Local\Spotify
2012-09-08 17:29 . 2012-09-10 21:09 -------- d-----w- c:\users\user\AppData\Roaming\Spotify
2012-09-07 16:04 . 2012-08-23 07:15 7022536 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{942A7C1E-FA42-4416-B275-E7024DCDBD98}\mpengine.dll
2012-09-01 01:27 . 2012-09-05 22:15 -------- d-----w- c:\users\user\AppData\Roaming\Apple Computer
2012-09-01 01:27 . 2012-09-01 01:27 -------- d-----w- c:\users\user\AppData\Local\Apple Computer
2012-09-01 01:27 . 2012-09-01 01:27 -------- dc----w- c:\windows\system32\DRVSTORE
2012-09-01 01:27 . 2009-05-18 20:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-09-01 01:27 . 2008-04-17 19:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2012-09-01 01:27 . 2012-09-01 01:27 -------- d-----w- c:\program files\iPod
2012-09-01 01:26 . 2012-09-01 01:27 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2012-09-01 01:26 . 2012-09-01 01:27 -------- d-----w- c:\program files\iTunes
2012-09-01 01:26 . 2012-09-01 01:26 -------- d-----w- c:\programdata\Apple Computer
2012-09-01 01:26 . 2012-09-01 01:26 -------- d-----w- c:\users\user\AppData\Local\Apple
2012-09-01 01:26 . 2012-09-01 01:26 -------- d-----w- c:\program files\Apple Software Update
2012-09-01 01:25 . 2012-09-01 01:25 -------- d-----w- c:\program files\Bonjour
2012-09-01 01:25 . 2012-09-01 01:26 -------- d-----w- c:\program files\Common Files\Apple
2012-09-01 01:25 . 2012-09-01 01:26 -------- d-----w- c:\programdata\Apple
2012-09-01 00:16 . 2012-09-05 16:14 -------- d-----w- c:\users\user\AppData\Roaming\BitTorrent
2012-08-15 22:42 . 2012-05-05 07:44 400896 ----a-w- c:\windows\system32\srcore.dll
2012-08-15 22:42 . 2012-07-18 17:10 2344448 ----a-w- c:\windows\system32\win32k.sys
2012-08-15 22:41 . 2012-02-11 05:44 492032 ----a-w- c:\windows\system32\win32spl.dll
2012-08-15 22:41 . 2012-02-11 05:41 316928 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-15 22:41 . 2012-07-04 21:23 41472 ----a-w- c:\windows\system32\browcli.dll
2012-08-15 22:41 . 2012-07-04 21:23 102912 ----a-w- c:\windows\system32\browser.dll
2012-08-15 22:41 . 2012-05-14 04:37 768512 ----a-w- c:\windows\system32\localspl.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 23:03 . 2012-07-16 13:44 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-15 23:03 . 2012-07-16 13:44 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-18 21:10 . 2012-07-16 16:36 2072416 ----a-w- c:\windows\system32\AutoPartNt.exe
2012-07-16 14:52 . 2012-07-16 14:52 163232 ----a-w- c:\windows\system32\drivers\afcdp.sys
2012-07-16 14:52 . 2012-07-16 14:52 752128 ----a-w- c:\windows\system32\drivers\tdrpm273.sys
2012-07-16 14:52 . 2012-07-16 14:52 600928 ----a-w- c:\windows\system32\drivers\timntr.sys
2012-07-16 14:52 . 2012-07-16 14:52 170464 ----a-w- c:\windows\system32\drivers\snapman.sys
2012-07-16 13:18 . 2012-07-16 13:18 86528 ----a-w- c:\windows\system32\iesysprep.dll
2012-07-16 13:18 . 2012-07-16 13:18 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-07-16 13:18 . 2012-07-16 13:18 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-07-16 13:18 . 2012-07-16 13:18 74752 ----a-w- c:\windows\system32\iesetup.dll
2012-07-16 13:18 . 2012-07-16 13:18 63488 ----a-w- c:\windows\system32\tdc.ocx
2012-07-16 13:18 . 2012-07-16 13:18 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-07-16 13:18 . 2012-07-16 13:18 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-07-16 13:18 . 2012-07-16 13:18 367104 ----a-w- c:\windows\system32\html.iec
2012-07-16 13:18 . 2012-07-16 13:18 35840 ----a-w- c:\windows\system32\imgutil.dll
2012-07-16 13:18 . 2012-07-16 13:18 23552 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-16 13:18 . 2012-07-16 13:18 161792 ----a-w- c:\windows\system32\msls31.dll
2012-07-16 13:18 . 2012-07-16 13:18 152064 ----a-w- c:\windows\system32\wextract.exe
2012-07-16 13:18 . 2012-07-16 13:18 150528 ----a-w- c:\windows\system32\iexpress.exe
2012-07-16 13:18 . 2012-07-16 13:18 11776 ----a-w- c:\windows\system32\mshta.exe
2012-07-16 13:18 . 2012-07-16 13:18 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-07-16 13:18 . 2012-07-16 13:18 101888 ----a-w- c:\windows\system32\admparse.dll
2012-07-16 13:17 . 2012-07-16 13:17 801792 ----a-w- c:\windows\system32\FntCache.dll
2012-07-16 13:17 . 2012-07-16 13:17 3181568 ----a-w- c:\windows\system32\mf.dll
2012-07-16 13:17 . 2012-07-16 13:17 196608 ----a-w- c:\windows\system32\mfreadwrite.dll
2012-07-16 13:17 . 2012-07-16 13:17 1619456 ----a-w- c:\windows\system32\WMVDECOD.DLL
2012-07-16 13:17 . 2012-07-16 13:17 1495040 ----a-w- c:\windows\system32\ExplorerFrame.dll
2012-07-16 13:17 . 2012-07-16 13:17 135168 ----a-w- c:\windows\system32\XpsRasterService.dll
2012-07-03 20:46 . 2012-07-16 13:25 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Acrobat Synchronizer"="c:\program files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe" [2010-10-25 1216416]
"Spotify"="c:\users\user\AppData\Roaming\Spotify\Spotify.exe" [2012-09-08 5576408]
"Spotify Web Helper"="c:\users\user\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-09-08 1193176]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"SAOB Monitor"="c:\program files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-08-20 2536752]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-08-21 5459136]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-08-21 390712]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-10-25 932288]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2010-10-25 36760]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2010-10-25 821144]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-31 59280]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-06-08 421776]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S2 afcdpsrv;Acronis Nonstop Backup service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-16 23:03]
.
2012-09-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000Core.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-31 16:20]
.
2012-09-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-510533818-3131682968-3388935289-1000UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-31 16:20]
.
.
------- Supplementary Scan -------
.
uStart Page = https://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 208.13.143.36 65.41.120.51
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-09-10 14:22:47
ComboFix-quarantined-files.txt 2012-09-10 21:22
.
Pre-Run: 133,006,262,272 bytes free
Post-Run: 133,354,803,200 bytes free
.
- - End Of File - - DCDBF60FB81740701F1F7EB070BF7678

#12
lasvegasrebel702

Posted 06 November 2012 - 03:40 PM

Member

Topic Starter
Member
11 posts

14:31:03.0320 2012 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
14:31:03.0569 2012 ============================================================
14:31:03.0569 2012 Current date / time: 2012/10/27 14:31:03.0569
14:31:03.0569 2012 SystemInfo:
14:31:03.0569 2012
14:31:03.0569 2012 OS Version: 6.1.7600 ServicePack: 0.0
14:31:03.0569 2012 Product type: Workstation
14:31:03.0569 2012 ComputerName: ACME1
14:31:03.0569 2012 UserName: user
14:31:03.0569 2012 Windows directory: C:\Windows
14:31:03.0569 2012 System windows directory: C:\Windows
14:31:03.0569 2012 Processor architecture: Intel x86
14:31:03.0569 2012 Number of processors: 2
14:31:03.0569 2012 Page size: 0x1000
14:31:03.0569 2012 Boot type: Safe boot with network
14:31:03.0569 2012 ============================================================
14:31:04.0895 2012 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
14:31:04.0895 2012 ============================================================
14:31:04.0895 2012 \Device\Harddisk0\DR0:
14:31:04.0895 2012 MBR partitions:
14:31:04.0895 2012 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x60000
14:31:04.0895 2012 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x60800, BlocksNum 0x129B9000
14:31:04.0895 2012 ============================================================
14:31:04.0926 2012 C: <-> \Device\Harddisk0\DR0\Partition2
14:31:04.0926 2012 ============================================================
14:31:04.0926 2012 Initialize success
14:31:04.0926 2012 ============================================================
14:31:13.0709 1796 ============================================================
14:31:13.0709 1796 Scan started
14:31:13.0709 1796 Mode: Manual;
14:31:13.0709 1796 ============================================================
14:31:14.0739 1796 ================ Scan system memory ========================
14:31:14.0739 1796 System memory - ok
14:31:14.0739 1796 ================ Scan services =============================
14:31:14.0879 1796 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
14:31:14.0879 1796 1394ohci - ok
14:31:14.0910 1796 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
14:31:14.0910 1796 ACPI - ok
14:31:14.0926 1796 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
14:31:14.0926 1796 AcpiPmi - ok
14:31:15.0035 1796 [ 75A130CED608509B1249244E0C891525 ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
14:31:15.0051 1796 AcrSch2Svc - ok
14:31:15.0113 1796 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:31:15.0129 1796 AdobeFlashPlayerUpdateSvc - ok
14:31:15.0176 1796 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:31:15.0176 1796 adp94xx - ok
14:31:15.0191 1796 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:31:15.0191 1796 adpahci - ok
14:31:15.0238 1796 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:31:15.0238 1796 adpu320 - ok
14:31:15.0254 1796 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:31:15.0269 1796 AeLookupSvc - ok
14:31:15.0285 1796 [ A27DEEEBF1B17A053AEA3E2F1D6F9295 ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
14:31:15.0300 1796 afcdp - ok
14:31:15.0410 1796 [ 149E8CA66CEADE0D17AC4028A567499F ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
14:31:15.0456 1796 afcdpsrv - ok
14:31:15.0503 1796 [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD C:\Windows\system32\drivers\afd.sys
14:31:15.0503 1796 AFD - ok
14:31:15.0550 1796 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
14:31:15.0550 1796 agp440 - ok
14:31:15.0581 1796 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
14:31:15.0581 1796 aic78xx - ok
14:31:15.0628 1796 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
14:31:15.0628 1796 ALG - ok
14:31:15.0659 1796 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
14:31:15.0659 1796 aliide - ok
14:31:15.0659 1796 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
14:31:15.0659 1796 amdagp - ok
14:31:15.0690 1796 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
14:31:15.0690 1796 amdide - ok
14:31:15.0737 1796 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:31:15.0737 1796 AmdK8 - ok
14:31:15.0737 1796 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:31:15.0737 1796 AmdPPM - ok
14:31:15.0784 1796 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:31:15.0784 1796 amdsata - ok
14:31:15.0815 1796 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:31:15.0815 1796 amdsbs - ok
14:31:15.0831 1796 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:31:15.0831 1796 amdxata - ok
14:31:15.0846 1796 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
14:31:15.0846 1796 AppID - ok
14:31:15.0862 1796 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:31:15.0862 1796 AppIDSvc - ok
14:31:15.0893 1796 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
14:31:15.0893 1796 Appinfo - ok
14:31:15.0971 1796 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:31:15.0971 1796 Apple Mobile Device - ok
14:31:16.0018 1796 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
14:31:16.0018 1796 AppMgmt - ok
14:31:16.0065 1796 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
14:31:16.0065 1796 arc - ok
14:31:16.0080 1796 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:31:16.0080 1796 arcsas - ok
14:31:16.0112 1796 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:31:16.0112 1796 AsyncMac - ok
14:31:16.0127 1796 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
14:31:16.0127 1796 atapi - ok
14:31:16.0174 1796 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:31:16.0174 1796 AudioEndpointBuilder - ok
14:31:16.0205 1796 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
14:31:16.0205 1796 Audiosrv - ok
14:31:16.0252 1796 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:31:16.0252 1796 AxInstSV - ok
14:31:16.0299 1796 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
14:31:16.0299 1796 b06bdrv - ok
14:31:16.0314 1796 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
14:31:16.0314 1796 b57nd60x - ok
14:31:16.0346 1796 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
14:31:16.0346 1796 BDESVC - ok
14:31:16.0361 1796 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
14:31:16.0361 1796 Beep - ok
14:31:16.0408 1796 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll
14:31:16.0408 1796 BFE - ok
14:31:16.0439 1796 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\system32\qmgr.dll
14:31:16.0455 1796 BITS - ok
14:31:16.0470 1796 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:31:16.0486 1796 blbdrive - ok
14:31:16.0580 1796 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:31:16.0580 1796 Bonjour Service - ok
14:31:16.0611 1796 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:31:16.0611 1796 bowser - ok
14:31:16.0611 1796 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:31:16.0611 1796 BrFiltLo - ok
14:31:16.0642 1796 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:31:16.0642 1796 BrFiltUp - ok
14:31:16.0673 1796 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
14:31:16.0673 1796 BridgeMP - ok
14:31:16.0704 1796 [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser C:\Windows\System32\browser.dll
14:31:16.0704 1796 Browser - ok
14:31:16.0736 1796 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:31:16.0736 1796 Brserid - ok
14:31:16.0736 1796 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:31:16.0736 1796 BrSerWdm - ok
14:31:16.0782 1796 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:31:16.0782 1796 BrUsbMdm - ok
14:31:16.0782 1796 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:31:16.0782 1796 BrUsbSer - ok
14:31:16.0798 1796 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:31:16.0798 1796 BTHMODEM - ok
14:31:16.0845 1796 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
14:31:16.0845 1796 bthserv - ok
14:31:16.0923 1796 catchme - ok
14:31:16.0938 1796 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:31:16.0938 1796 cdfs - ok
14:31:16.0985 1796 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:31:16.0985 1796 cdrom - ok
14:31:17.0016 1796 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
14:31:17.0032 1796 CertPropSvc - ok
14:31:17.0032 1796 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:31:17.0048 1796 circlass - ok
14:31:17.0063 1796 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
14:31:17.0063 1796 CLFS - ok
14:31:17.0126 1796 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:31:17.0126 1796 clr_optimization_v2.0.50727_32 - ok
14:31:17.0250 1796 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:31:17.0266 1796 clr_optimization_v4.0.30319_32 - ok
14:31:17.0297 1796 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:31:17.0297 1796 CmBatt - ok
14:31:17.0313 1796 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
14:31:17.0313 1796 cmdide - ok
14:31:17.0360 1796 [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG C:\Windows\system32\Drivers\cng.sys
14:31:17.0375 1796 CNG - ok
14:31:17.0406 1796 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:31:17.0406 1796 Compbatt - ok
14:31:17.0453 1796 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
14:31:17.0453 1796 CompositeBus - ok
14:31:17.0469 1796 COMSysApp - ok
14:31:17.0484 1796 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:31:17.0484 1796 crcdisk - ok
14:31:17.0516 1796 [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:31:17.0516 1796 CryptSvc - ok
14:31:17.0547 1796 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
14:31:17.0562 1796 CSC - ok
14:31:17.0578 1796 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
14:31:17.0578 1796 CscService - ok
14:31:17.0609 1796 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
14:31:17.0625 1796 DcomLaunch - ok
14:31:17.0640 1796 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
14:31:17.0656 1796 defragsvc - ok
14:31:17.0687 1796 [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:31:17.0687 1796 DfsC - ok
14:31:17.0734 1796 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
14:31:17.0734 1796 Dhcp - ok
14:31:17.0750 1796 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
14:31:17.0750 1796 discache - ok
14:31:17.0796 1796 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:31:17.0796 1796 Disk - ok
14:31:17.0828 1796 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:31:17.0843 1796 Dnscache - ok
14:31:17.0859 1796 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
14:31:17.0859 1796 dot3svc - ok
14:31:17.0890 1796 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
14:31:17.0890 1796 DPS - ok
14:31:17.0937 1796 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:31:17.0937 1796 drmkaud - ok
14:31:17.0984 1796 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:31:17.0984 1796 DXGKrnl - ok
14:31:18.0030 1796 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
14:31:18.0030 1796 EapHost - ok
14:31:18.0108 1796 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
14:31:18.0155 1796 ebdrv - ok
14:31:18.0186 1796 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS C:\Windows\System32\lsass.exe
14:31:18.0186 1796 EFS - ok
14:31:18.0249 1796 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:31:18.0249 1796 ehRecvr - ok
14:31:18.0280 1796 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
14:31:18.0280 1796 ehSched - ok
14:31:18.0311 1796 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:31:18.0311 1796 elxstor - ok
14:31:18.0327 1796 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
14:31:18.0327 1796 ErrDev - ok
14:31:18.0374 1796 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
14:31:18.0389 1796 EventSystem - ok
14:31:18.0420 1796 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
14:31:18.0420 1796 exfat - ok
14:31:18.0467 1796 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:31:18.0467 1796 fastfat - ok
14:31:18.0498 1796 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
14:31:18.0498 1796 Fax - ok
14:31:18.0514 1796 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:31:18.0514 1796 fdc - ok
14:31:18.0545 1796 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
14:31:18.0545 1796 fdPHost - ok
14:31:18.0561 1796 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
14:31:18.0561 1796 FDResPub - ok
14:31:18.0608 1796 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:31:18.0608 1796 FileInfo - ok
14:31:18.0623 1796 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:31:18.0623 1796 Filetrace - ok
14:31:18.0623 1796 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:31:18.0623 1796 flpydisk - ok
14:31:18.0670 1796 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:31:18.0670 1796 FltMgr - ok
14:31:18.0717 1796 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\Windows\system32\FntCache.dll
14:31:18.0717 1796 FontCache - ok
14:31:18.0779 1796 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:31:18.0779 1796 FontCache3.0.0.0 - ok
14:31:18.0795 1796 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:31:18.0795 1796 FsDepends - ok
14:31:18.0826 1796 [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:31:18.0826 1796 Fs_Rec - ok
14:31:18.0873 1796 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:31:18.0873 1796 fvevol - ok
14:31:18.0920 1796 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:31:18.0920 1796 gagp30kx - ok
14:31:18.0966 1796 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:31:18.0966 1796 GEARAspiWDM - ok
14:31:19.0013 1796 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
14:31:19.0013 1796 gpsvc - ok
14:31:19.0044 1796 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:31:19.0044 1796 hcw85cir - ok
14:31:19.0076 1796 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:31:19.0076 1796 HdAudAddService - ok
14:31:19.0107 1796 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:31:19.0107 1796 HDAudBus - ok
14:31:19.0122 1796 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:31:19.0122 1796 HidBatt - ok
14:31:19.0138 1796 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:31:19.0138 1796 HidBth - ok
14:31:19.0169 1796 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:31:19.0169 1796 HidIr - ok
14:31:19.0200 1796 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
14:31:19.0200 1796 hidserv - ok
14:31:19.0232 1796 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:31:19.0232 1796 HidUsb - ok
14:31:19.0263 1796 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:31:19.0263 1796 hkmsvc - ok
14:31:19.0294 1796 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:31:19.0294 1796 HomeGroupListener - ok
14:31:19.0325 1796 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:31:19.0325 1796 HomeGroupProvider - ok
14:31:19.0372 1796 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
14:31:19.0372 1796 HpSAMD - ok
14:31:19.0403 1796 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:31:19.0403 1796 HTTP - ok
14:31:19.0434 1796 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:31:19.0450 1796 hwpolicy - ok
14:31:19.0481 1796 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
14:31:19.0481 1796 i8042prt - ok
14:31:19.0512 1796 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:31:19.0512 1796 iaStorV - ok
14:31:19.0575 1796 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:31:19.0575 1796 idsvc - ok
14:31:19.0606 1796 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:31:19.0606 1796 iirsp - ok
14:31:19.0653 1796 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
14:31:19.0668 1796 IKEEXT - ok
14:31:19.0684 1796 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
14:31:19.0684 1796 intelide - ok
14:31:19.0715 1796 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:31:19.0715 1796 intelppm - ok
14:31:19.0731 1796 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:31:19.0746 1796 IPBusEnum - ok
14:31:19.0746 1796 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:31:19.0746 1796 IpFilterDriver - ok
14:31:19.0793 1796 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:31:19.0793 1796 iphlpsvc - ok
14:31:19.0809 1796 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:31:19.0809 1796 IPMIDRV - ok
14:31:19.0856 1796 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:31:19.0856 1796 IPNAT - ok
14:31:19.0918 1796 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:31:19.0934 1796 iPod Service - ok
14:31:19.0949 1796 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:31:19.0949 1796 IRENUM - ok
14:31:19.0980 1796 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
14:31:19.0980 1796 isapnp - ok
14:31:20.0012 1796 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
14:31:20.0012 1796 iScsiPrt - ok
14:31:20.0043 1796 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:31:20.0043 1796 kbdclass - ok
14:31:20.0074 1796 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:31:20.0074 1796 kbdhid - ok
14:31:20.0090 1796 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso C:\Windows\system32\lsass.exe
14:31:20.0090 1796 KeyIso - ok
14:31:20.0136 1796 [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:31:20.0136 1796 KSecDD - ok
14:31:20.0152 1796 [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:31:20.0168 1796 KSecPkg - ok
14:31:20.0199 1796 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
14:31:20.0199 1796 KtmRm - ok
14:31:20.0246 1796 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\System32\srvsvc.dll
14:31:20.0246 1796 LanmanServer - ok
14:31:20.0261 1796 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:31:20.0277 1796 LanmanWorkstation - ok
14:31:20.0308 1796 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:31:20.0308 1796 lltdio - ok
14:31:20.0355 1796 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:31:20.0355 1796 lltdsvc - ok
14:31:20.0386 1796 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
14:31:20.0386 1796 lmhosts - ok
14:31:20.0417 1796 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:31:20.0417 1796 LSI_FC - ok
14:31:20.0433 1796 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:31:20.0433 1796 LSI_SAS - ok
14:31:20.0480 1796 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:31:20.0480 1796 LSI_SAS2 - ok
14:31:20.0511 1796 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:31:20.0511 1796 LSI_SCSI - ok
14:31:20.0542 1796 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
14:31:20.0542 1796 luafv - ok
14:31:20.0573 1796 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:31:20.0573 1796 MBAMProtector - ok
14:31:20.0667 1796 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:31:20.0667 1796 MBAMScheduler - ok
14:31:20.0698 1796 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
14:31:20.0698 1796 MBAMService - ok
14:31:20.0729 1796 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:31:20.0729 1796 Mcx2Svc - ok
14:31:20.0760 1796 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:31:20.0776 1796 megasas - ok
14:31:20.0792 1796 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:31:20.0792 1796 MegaSR - ok
14:31:20.0823 1796 Microsoft SharePoint Workspace Audit Service - ok
14:31:20.0870 1796 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
14:31:20.0870 1796 MMCSS - ok
14:31:20.0885 1796 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
14:31:20.0885 1796 Modem - ok
14:31:20.0916 1796 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:31:20.0916 1796 monitor - ok
14:31:20.0932 1796 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:31:20.0932 1796 mouclass - ok
14:31:20.0963 1796 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:31:20.0963 1796 mouhid - ok
14:31:20.0979 1796 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:31:20.0979 1796 mountmgr - ok
14:31:21.0057 1796 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:31:21.0057 1796 MozillaMaintenance - ok
14:31:21.0072 1796 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
14:31:21.0072 1796 mpio - ok
14:31:21.0088 1796 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:31:21.0088 1796 mpsdrv - ok
14:31:21.0119 1796 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll
14:31:21.0119 1796 MpsSvc - ok
14:31:21.0166 1796 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:31:21.0166 1796 MRxDAV - ok
14:31:21.0228 1796 [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:31:21.0228 1796 mrxsmb - ok
14:31:21.0244 1796 [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:31:21.0244 1796 mrxsmb10 - ok
14:31:21.0260 1796 [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:31:21.0260 1796 mrxsmb20 - ok
14:31:21.0275 1796 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
14:31:21.0291 1796 msahci - ok
14:31:21.0291 1796 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
14:31:21.0291 1796 msdsm - ok
14:31:21.0306 1796 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
14:31:21.0322 1796 MSDTC - ok
14:31:21.0353 1796 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:31:21.0353 1796 Msfs - ok
14:31:21.0384 1796 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:31:21.0384 1796 mshidkmdf - ok
14:31:21.0400 1796 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
14:31:21.0400 1796 msisadrv - ok
14:31:21.0431 1796 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:31:21.0431 1796 MSiSCSI - ok
14:31:21.0447 1796 msiserver - ok
14:31:21.0478 1796 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:31:21.0478 1796 MSKSSRV - ok
14:31:21.0494 1796 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:31:21.0494 1796 MSPCLOCK - ok
14:31:21.0494 1796 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:31:21.0494 1796 MSPQM - ok
14:31:21.0525 1796 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:31:21.0540 1796 MsRPC - ok
14:31:21.0587 1796 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
14:31:21.0587 1796 mssmbios - ok
14:31:21.0603 1796 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:31:21.0603 1796 MSTEE - ok
14:31:21.0618 1796 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:31:21.0618 1796 MTConfig - ok
14:31:21.0618 1796 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
14:31:21.0618 1796 Mup - ok
14:31:21.0665 1796 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
14:31:21.0681 1796 napagent - ok
14:31:21.0712 1796 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:31:21.0712 1796 NativeWifiP - ok
14:31:21.0743 1796 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:31:21.0759 1796 NDIS - ok
14:31:21.0759 1796 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:31:21.0759 1796 NdisCap - ok
14:31:21.0790 1796 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:31:21.0790 1796 NdisTapi - ok
14:31:21.0806 1796 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:31:21.0806 1796 Ndisuio - ok
14:31:21.0821 1796 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:31:21.0821 1796 NdisWan - ok
14:31:21.0837 1796 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:31:21.0837 1796 NDProxy - ok
14:31:21.0884 1796 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
14:31:21.0884 1796 Netaapl - ok
14:31:21.0899 1796 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:31:21.0899 1796 NetBIOS - ok
14:31:21.0915 1796 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:31:21.0915 1796 NetBT - ok
14:31:21.0930 1796 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon C:\Windows\system32\lsass.exe
14:31:21.0930 1796 Netlogon - ok
14:31:21.0977 1796 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
14:31:21.0977 1796 Netman - ok
14:31:21.0993 1796 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
14:31:22.0008 1796 netprofm - ok
14:31:22.0040 1796 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:31:22.0040 1796 NetTcpPortSharing - ok
14:31:22.0071 1796 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:31:22.0086 1796 nfrd960 - ok
14:31:22.0102 1796 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
14:31:22.0102 1796 NlaSvc - ok
14:31:22.0118 1796 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:31:22.0118 1796 Npfs - ok
14:31:22.0133 1796 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
14:31:22.0133 1796 nsi - ok
14:31:22.0149 1796 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:31:22.0149 1796 nsiproxy - ok
14:31:22.0211 1796 [ 5126C5402C730C2A953275D8497A4715 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:31:22.0227 1796 Ntfs - ok
14:31:22.0227 1796 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
14:31:22.0227 1796 Null - ok
14:31:22.0461 1796 [ B0881DDA5A8160422561FFAB7F0008B1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:31:22.0554 1796 nvlddmkm - ok
14:31:22.0586 1796 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:31:22.0601 1796 nvraid - ok
14:31:22.0617 1796 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:31:22.0617 1796 nvstor - ok
14:31:22.0664 1796 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
14:31:22.0664 1796 nv_agp - ok
14:31:22.0664 1796 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
14:31:22.0664 1796 ohci1394 - ok
14:31:22.0710 1796 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:31:22.0710 1796 ose - ok
14:31:22.0866 1796 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:31:22.0898 1796 osppsvc - ok
14:31:22.0944 1796 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:31:22.0944 1796 p2pimsvc - ok
14:31:22.0976 1796 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
14:31:22.0991 1796 p2psvc - ok
14:31:23.0038 1796 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:31:23.0038 1796 Parport - ok
14:31:23.0085 1796 [ 66D3415C159741ADE7038A277EFFF99F ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:31:23.0085 1796 partmgr - ok
14:31:23.0100 1796 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
14:31:23.0116 1796 Parvdm - ok
14:31:23.0132 1796 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:31:23.0132 1796 PcaSvc - ok
14:31:23.0147 1796 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
14:31:23.0163 1796 pci - ok
14:31:23.0178 1796 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
14:31:23.0178 1796 pciide - ok
14:31:23.0194 1796 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:31:23.0194 1796 pcmcia - ok
14:31:23.0225 1796 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
14:31:23.0225 1796 pcw - ok
14:31:23.0256 1796 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:31:23.0256 1796 PEAUTH - ok
14:31:23.0303 1796 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
14:31:23.0319 1796 PeerDistSvc - ok
14:31:23.0397 1796 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
14:31:23.0412 1796 pla - ok
14:31:23.0475 1796 [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:31:23.0475 1796 PlugPlay - ok
14:31:23.0490 1796 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:31:23.0490 1796 PNRPAutoReg - ok
14:31:23.0506 1796 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:31:23.0506 1796 PNRPsvc - ok
14:31:23.0553 1796 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:31:23.0553 1796 PolicyAgent - ok
14:31:23.0584 1796 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
14:31:23.0584 1796 Power - ok
14:31:23.0631 1796 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:31:23.0631 1796 PptpMiniport - ok
14:31:23.0662 1796 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:31:23.0662 1796 Processor - ok
14:31:23.0693 1796 [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc C:\Windows\system32\profsvc.dll
14:31:23.0693 1796 ProfSvc - ok
14:31:23.0709 1796 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:31:23.0709 1796 ProtectedStorage - ok
14:31:23.0756 1796 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:31:23.0756 1796 Psched - ok
14:31:23.0802 1796 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:31:23.0818 1796 ql2300 - ok
14:31:23.0834 1796 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:31:23.0834 1796 ql40xx - ok
14:31:23.0880 1796 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
14:31:23.0896 1796 QWAVE - ok
14:31:23.0896 1796 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:31:23.0896 1796 QWAVEdrv - ok
14:31:23.0912 1796 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:31:23.0912 1796 RasAcd - ok
14:31:23.0927 1796 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:31:23.0927 1796 RasAgileVpn - ok
14:31:23.0943 1796 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
14:31:23.0958 1796 RasAuto - ok
14:31:23.0974 1796 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:31:23.0974 1796 Rasl2tp - ok
14:31:24.0005 1796 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
14:31:24.0005 1796 RasMan - ok
14:31:24.0036 1796 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:31:24.0036 1796 RasPppoe - ok
14:31:24.0083 1796 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:31:24.0099 1796 RasSstp - ok
14:31:24.0114 1796 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:31:24.0114 1796 rdbss - ok
14:31:24.0130 1796 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:31:24.0130 1796 rdpbus - ok
14:31:24.0161 1796 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:31:24.0161 1796 RDPCDD - ok
14:31:24.0192 1796 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
14:31:24.0192 1796 RDPDR - ok
14:31:24.0224 1796 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:31:24.0224 1796 RDPENCDD - ok
14:31:24.0224 1796 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:31:24.0239 1796 RDPREFMP - ok
14:31:24.0270 1796 [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:31:24.0270 1796 RDPWD - ok
14:31:24.0286 1796 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:31:24.0286 1796 rdyboost - ok
14:31:24.0317 1796 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
14:31:24.0317 1796 RemoteAccess - ok
14:31:24.0348 1796 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:31:24.0348 1796 RemoteRegistry - ok
14:31:24.0364 1796 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:31:24.0364 1796 RpcEptMapper - ok
14:31:24.0395 1796 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
14:31:24.0395 1796 RpcLocator - ok
14:31:24.0411 1796 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
14:31:24.0426 1796 RpcSs - ok
14:31:24.0442 1796 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:31:24.0442 1796 rspndr - ok
14:31:24.0489 1796 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
14:31:24.0489 1796 s3cap - ok
14:31:24.0504 1796 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs C:\Windows\system32\lsass.exe
14:31:24.0504 1796 SamSs - ok
14:31:24.0520 1796 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
14:31:24.0520 1796 sbp2port - ok
14:31:24.0536 1796 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:31:24.0551 1796 SCardSvr - ok
14:31:24.0567 1796 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:31:24.0582 1796 scfilter - ok
14:31:24.0614 1796 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll
14:31:24.0629 1796 Schedule - ok
14:31:24.0645 1796 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
14:31:24.0645 1796 SCPolicySvc - ok
14:31:24.0660 1796 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:31:24.0660 1796 SDRSVC - ok
14:31:24.0692 1796 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:31:24.0692 1796 secdrv - ok
14:31:24.0723 1796 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
14:31:24.0723 1796 seclogon - ok
14:31:24.0754 1796 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
14:31:24.0754 1796 SENS - ok
14:31:24.0785 1796 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:31:24.0785 1796 SensrSvc - ok
14:31:24.0801 1796 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:31:24.0801 1796 Serenum - ok
14:31:24.0816 1796 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:31:24.0816 1796 Serial - ok
14:31:24.0832 1796 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:31:24.0832 1796 sermouse - ok
14:31:24.0863 1796 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
14:31:24.0863 1796 SessionEnv - ok
14:31:24.0879 1796 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
14:31:24.0879 1796 sffdisk - ok
14:31:24.0894 1796 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:31:24.0894 1796 sffp_mmc - ok
14:31:24.0910 1796 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
14:31:24.0910 1796 sffp_sd - ok
14:31:24.0926 1796 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:31:24.0926 1796 sfloppy - ok
14:31:24.0988 1796 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:31:25.0004 1796 SharedAccess - ok
14:31:25.0035 1796 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:31:25.0035 1796 ShellHWDetection - ok
14:31:25.0050 1796 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
14:31:25.0066 1796 sisagp - ok
14:31:25.0097 1796 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:31:25.0097 1796 SiSRaid2 - ok
14:31:25.0113 1796 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:31:25.0113 1796 SiSRaid4 - ok
14:31:25.0144 1796 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:31:25.0144 1796 Smb - ok
14:31:25.0191 1796 [ 85BADA660D57BC5AEF52B11CABD6D8F9 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
14:31:25.0191 1796 snapman - ok
14:31:25.0222 1796 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:31:25.0238 1796 SNMPTRAP - ok
14:31:25.0253 1796 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
14:31:25.0253 1796 spldr - ok
14:31:25.0300 1796 [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler C:\Windows\System32\spoolsv.exe
14:31:25.0300 1796 Spooler - ok
14:31:25.0378 1796 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
14:31:25.0409 1796 sppsvc - ok
14:31:25.0425 1796 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:31:25.0425 1796 sppuinotify - ok
14:31:25.0472 1796 [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv C:\Windows\system32\DRIVERS\srv.sys
14:31:25.0472 1796 srv - ok
14:31:25.0518 1796 [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:31:25.0518 1796 srv2 - ok
14:31:25.0534 1796 [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:31:25.0534 1796 srvnet - ok
14:31:25.0550 1796 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:31:25.0565 1796 SSDPSRV - ok
14:31:25.0565 1796 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:31:25.0581 1796 SstpSvc - ok
14:31:25.0628 1796 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:31:25.0628 1796 stexstor - ok
14:31:25.0643 1796 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
14:31:25.0659 1796 StiSvc - ok
14:31:25.0690 1796 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
14:31:25.0690 1796 storflt - ok
14:31:25.0706 1796 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
14:31:25.0706 1796 storvsc - ok
14:31:25.0737 1796 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
14:31:25.0737 1796 swenum - ok
14:31:25.0768 1796 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
14:31:25.0768 1796 swprv - ok
14:31:25.0815 1796 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
14:31:25.0815 1796 SysMain - ok
14:31:25.0830 1796 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:31:25.0846 1796 TabletInputService - ok
14:31:25.0862 1796 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
14:31:25.0862 1796 TapiSrv - ok
14:31:25.0893 1796 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
14:31:25.0893 1796 TBS - ok
14:31:25.0955 1796 [ 55E9965552741F3850CB22CBBA9671ED ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:31:25.0971 1796 Tcpip - ok
14:31:25.0986 1796 [ 55E9965552741F3850CB22CBBA9671ED ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:31:26.0002 1796 TCPIP6 - ok
14:31:26.0033 1796 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:31:26.0033 1796 tcpipreg - ok
14:31:26.0049 1796 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:31:26.0049 1796 TDPIPE - ok
14:31:26.0080 1796 [ 431801FCC97034E04A6EFF81136578D7 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
14:31:26.0096 1796 tdrpman273 - ok
14:31:26.0127 1796 [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:31:26.0127 1796 TDTCP - ok
14:31:26.0142 1796 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:31:26.0142 1796 tdx - ok
14:31:26.0158 1796 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
14:31:26.0158 1796 TermDD - ok
14:31:26.0205 1796 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
14:31:26.0220 1796 TermService - ok
14:31:26.0236 1796 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
14:31:26.0236 1796 Themes - ok
14:31:26.0252 1796 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
14:31:26.0252 1796 THREADORDER - ok
14:31:26.0298 1796 [ A34D7024BB7140EC785C86BC065D4F60 ] timounter C:\Windows\system32\DRIVERS\timntr.sys
14:31:26.0298 1796 timounter - ok
14:31:26.0314 1796 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
14:31:26.0314 1796 TrkWks - ok
14:31:26.0392 1796 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:31:26.0392 1796 TrustedInstaller - ok
14:31:26.0408 1796 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:31:26.0408 1796 tssecsrv - ok
14:31:26.0454 1796 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:31:26.0454 1796 tunnel - ok
14:31:26.0470 1796 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:31:26.0486 1796 uagp35 - ok
14:31:26.0517 1796 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:31:26.0517 1796 udfs - ok
14:31:26.0548 1796 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:31:26.0548 1796 UI0Detect - ok
14:31:26.0564 1796 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
14:31:26.0564 1796 uliagpkx - ok
14:31:26.0610 1796 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:31:26.0610 1796 umbus - ok
14:31:26.0626 1796 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:31:26.0626 1796 UmPass - ok
14:31:26.0673 1796 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
14:31:26.0673 1796 UmRdpService - ok
14:31:26.0704 1796 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
14:31:26.0704 1796 upnphost - ok
14:31:26.0751 1796 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
14:31:26.0751 1796 USBAAPL - ok
14:31:26.0782 1796 [ C31AE588E403042632DC796CF09E30B0 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:31:26.0782 1796 usbccgp - ok
14:31:26.0782 1796 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
14:31:26.0798 1796 usbcir - ok
14:31:26.0813 1796 [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:31:26.0813 1796 usbehci - ok
14:31:26.0829 1796 [ BDCD7156EC37448F08633FD899823620 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:31:26.0829 1796 usbhub - ok
14:31:26.0844 1796 [ EB2D819A639015253C871CDA09D91D58 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
14:31:26.0844 1796 usbohci - ok
14:31:26.0860 1796 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:31:26.0876 1796 usbprint - ok
14:31:26.0891 1796 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:31:26.0891 1796 USBSTOR - ok
14:31:26.0907 1796 [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:31:26.0907 1796 usbuhci - ok
14:31:26.0938 1796 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
14:31:26.0938 1796 UxSms - ok
14:31:26.0954 1796 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc C:\Windows\system32\lsass.exe
14:31:26.0954 1796 VaultSvc - ok
14:31:26.0969 1796 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
14:31:26.0969 1796 vdrvroot - ok
14:31:27.0000 1796 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
14:31:27.0000 1796 vds - ok
14:31:27.0032 1796 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:31:27.0032 1796 vga - ok
14:31:27.0047 1796 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
14:31:27.0047 1796 VgaSave - ok
14:31:27.0094 1796 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
14:31:27.0094 1796 vhdmp - ok
14:31:27.0125 1796 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
14:31:27.0141 1796 viaagp - ok
14:31:27.0156 1796 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
14:31:27.0156 1796 ViaC7 - ok
14:31:27.0172 1796 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
14:31:27.0172 1796 viaide - ok
14:31:27.0219 1796 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
14:31:27.0219 1796 vmbus - ok
14:31:27.0234 1796 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
14:31:27.0234 1796 VMBusHID - ok
14:31:27.0250 1796 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
14:31:27.0250 1796 volmgr - ok
14:31:27.0297 1796 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:31:27.0297 1796 volmgrx - ok
14:31:27.0312 1796 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
14:31:27.0328 1796 volsnap - ok
14:31:27.0359 1796 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:31:27.0359 1796 vsmraid - ok
14:31:27.0406 1796 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
14:31:27.0437 1796 VSS - ok
14:31:27.0453 1796 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
14:31:27.0468 1796 vwifibus - ok
14:31:27.0500 1796 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
14:31:27.0515 1796 W32Time - ok
14:31:27.0531 1796 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:31:27.0531 1796 WacomPen - ok
14:31:27.0562 1796 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:31:27.0562 1796 WANARP - ok
14:31:27.0562 1796 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:31:27.0562 1796 Wanarpv6 - ok
14:31:27.0656 1796 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:31:27.0656 1796 WatAdminSvc - ok
14:31:27.0702 1796 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
14:31:27.0718 1796 wbengine - ok
14:31:27.0734 1796 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:31:27.0734 1796 WbioSrvc - ok
14:31:27.0765 1796 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:31:27.0765 1796 wcncsvc - ok
14:31:27.0796 1796 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:31:27.0796 1796 WcsPlugInService - ok
14:31:27.0827 1796 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:31:27.0827 1796 Wd - ok
14:31:27.0858 1796 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:31:27.0858 1796 Wdf01000 - ok
14:31:27.0874 1796 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:31:27.0874 1796 WdiServiceHost - ok
14:31:27.0905 1796 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:31:27.0905 1796 WdiSystemHost - ok
14:31:27.0936 1796 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll
14:31:27.0936 1796 WebClient - ok
14:31:27.0968 1796 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:31:27.0968 1796 Wecsvc - ok
14:31:27.0999 1796 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:31:27.0999 1796 wercplsupport - ok
14:31:28.0030 1796 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
14:31:28.0046 1796 WerSvc - ok
14:31:28.0046 1796 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:31:28.0046 1796 WfpLwf - ok
14:31:28.0061 1796 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:31:28.0061 1796 WIMMount - ok
14:31:28.0139 1796 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
14:31:28.0139 1796 WinDefend - ok
14:31:28.0155 1796 WinHttpAutoProxySvc - ok
14:31:28.0202 1796 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:31:28.0217 1796 Winmgmt - ok
14:31:28.0264 1796 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
14:31:28.0280 1796 WinRM - ok
14:31:28.0326 1796 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:31:28.0326 1796 WinUsb - ok
14:31:28.0373 1796 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:31:28.0373 1796 Wlansvc - ok
14:31:28.0420 1796 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
14:31:28.0420 1796 WmiAcpi - ok
14:31:28.0436 1796 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:31:28.0436 1796 wmiApSrv - ok
14:31:28.0498 1796 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
14:31:28.0514 1796 WMPNetworkSvc - ok
14:31:28.0529 1796 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:31:28.0529 1796 WPCSvc - ok
14:31:28.0545 1796 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:31:28.0560 1796 WPDBusEnum - ok
14:31:28.0576 1796 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:31:28.0576 1796 ws2ifsl - ok
14:31:28.0623 1796 [ A661A76333057B383A06E65F0073222F ] wscsvc C:\Windows\system32\wscsvc.dll
14:31:28.0623 1796 wscsvc - ok
14:31:28.0654 1796 WSearch - ok
14:31:28.0732 1796 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
14:31:28.0748 1796 wuauserv - ok
14:31:28.0763 1796 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:31:28.0763 1796 WudfPf - ok
14:31:28.0794 1796 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:31:28.0794 1796 WUDFRd - ok
14:31:28.0826 1796 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:31:28.0826 1796 wudfsvc - ok
14:31:28.0857 1796 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
14:31:28.0857 1796 WwanSvc - ok
14:31:28.0872 1796 ================ Scan global ===============================
14:31:28.0904 1796 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
14:31:28.0935 1796 [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
14:31:28.0950 1796 [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
14:31:28.0982 1796 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
14:31:28.0997 1796 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
14:31:28.0997 1796 [Global] - ok
14:31:28.0997 1796 ================ Scan MBR ==================================
14:31:29.0028 1796 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:31:29.0387 1796 \Device\Harddisk0\DR0 - ok
14:31:29.0387 1796 ================ Scan VBR ==================================
14:31:29.0418 1796 [ 457BF9A8910A4AA8EFD4EF9F4EE8896C ] \Device\Harddisk0\DR0\Partition1
14:31:29.0418 1796 \Device\Harddisk0\DR0\Partition1 - ok
14:31:29.0450 1796 [ 4714C9A3F50D35F643A4FE2A1C5D8706 ] \Device\Harddisk0\DR0\Partition2
14:31:29.0450 1796 \Device\Harddisk0\DR0\Partition2 - ok
14:31:29.0450 1796 ============================================================
14:31:29.0450 1796 Scan finished
14:31:29.0450 1796 ============================================================
14:31:29.0465 1804 Detected object count: 0
14:31:29.0465 1804 Actual detected object count: 0
14:31:33.0724 2008 Deinitialize success

#13
lasvegasrebel702

Posted 06 November 2012 - 03:44 PM

Member

Topic Starter
Member
11 posts

The only log i could not post for you was the one i was supposed to get after the fix was ran. I rebooted my computer via Ctrl+Alt+Del because all my icons and menu bar were gone. I checked inside the folder where I ran it from and it dated the log i posted for you last time you asked me to run OTL.

#14
blmadara

Posted 08 November 2012 - 12:10 AM

Trusted Helper

Malware Removal
767 posts

Hi lasvegasrebel702,

Step One: ESET Online Scanner

Please run a free online scan with the ESET Online Scanner
Note: You will need to use Internet Explorer running in admin mode for this scan. To do this right click on Internet Explorer and pick Run as administrator.

Tick the box next to YES, I accept the Terms of Use
Click Start
When asked, allow the ActiveX control to install
Click Start
Make sure that the option Remove found threats is not checked.
Make sure that the option Scan unwanted applications is checked
Click Scan (This scan can take several hours, so please be patient)
Once the scan is completed, you may close the window
Use Notepad to open the logfile located at C:\Program Files (x86)/ESET/ESET Online Scanner\log.txt
Copy and paste that log as a reply to this topic

Step Two: Security Check

Download Security Check by screen317 from here or here.

Save it to your Desktop.
Right click SecurityCheck.exe, select Run as administrator, and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Step Three: Computer Make and Model

What kind of computer are you using? I need to know the make and model number.

Step Four: How is your computer running?

Please let me know how your computer is running and what problems remain.

What I need in your next post:
1. The ESET log, C:\Program Files (x86)/ESET/ESET Online Scanner\log.txt.
2. The Security Check log, checkup.txt.
3. The make and model of your computer.
4. Tell me how your computer is running and what problems remain.

#15
Essexboy

Posted 13 November 2012 - 04:31 PM

GeekU Moderator

Retired Staff
69,964 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.