Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Need help, csrsc, linvdqay [Solved]

Started by fartuditu , Nov 10 2013 02:48 PM

This topic is locked

#1
fartuditu

Posted 10 November 2013 - 02:48 PM

Member

Member
30 posts

Hello! I came across this site searching for a way to remove some malware in which i failed when following the instructions from other sites, while seeing people were very helpful here. This is my last stop before reinstalling Windows again, for the 3. time - hopefully i won't need to do so after i get help here.

I got csrsc.exe virus for the third time now, and decided to try and fight it this time. So i followed some steps as explained on few sites but didn't do much, as i still experience some problems - i can't access any AV site like Avira, nor can i go to microsoft web page. As a side effect i have runtime error report r6002 - floating point support not loaded.

I deleted csrsc.exe (I think it was in system32), and deleted also linvdqay.dll from system32, but it didn't help. My pc works fine, ith the exception of not being able to install anything from antiviruses and registry tools. Installation goes to the end, and just cancels, not allowing it to finish. ccleaner exe vanished from pc at some point, while speedyPC pro can't run. Malwarebytes is the only tool i have that can run, and with limited success.

I turned off some services that i didn't find useful, like automatic updates and other. I thought not having some prevention tools will be better, due to scarce resources, since my pc is 8 or so years old. Obviously i do need some form of protection, like antivirus and such. I have malwarebytes running actively now. Some lightweight versions of such tools would be a great recommendation! Or at least some programs that i'll be able to turn off on demand, temporarily.

I ran comboFix on my own, it gave me a log, but i saw later on i shouldn't post it before being asked to, and that i should post OTL log, so here it goes. Thanks in advance!

OTL logfile created on: 11/10/2013 8:37:19 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Sisavac\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1023.48 Mb Total Physical Memory | 660.87 Mb Available Physical Memory | 64.57% Memory free
2.40 Gb Paging File | 2.12 Gb Available in Paging File | 88.26% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 25.00 Gb Total Space | 18.69 Gb Free Space | 74.76% Space Free | Partition Type: NTFS
Drive D: | 51.32 Gb Total Space | 44.57 Gb Free Space | 86.84% Space Free | Partition Type: NTFS

Computer Name: SISAVAC-8348EE1 | User Name: Sisavac | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/10 18:53:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
PRC - [2013/10/22 12:05:04 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013/04/04 14:50:32 | 000,775,240 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14:50:32 | 000,613,960 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2006/02/28 13:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2013/10/22 12:05:04 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013/04/04 14:50:32 | 000,775,240 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/01/31 12:22:47 | 001,341,216 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2006/02/28 13:00:00 | 000,166,092 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\linvdqay.dll -- (secfndcsf)
SRV - [2006/02/28 13:00:00 | 000,166,092 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\linvdqay.dll -- (flshneg)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mnknon.sys -- (asc3360pr)
DRV - [2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2004/08/04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2002/12/05 05:01:00 | 000,241,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvapu.sys -- (nvnforce)
DRV - [2002/12/05 05:01:00 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvax.sys -- (nvax)
DRV - [2002/09/23 03:37:00 | 000,080,896 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENET.sys -- (NVENET)
DRV - [2002/09/06 04:24:00 | 000,013,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nv_agp.SYS -- (nv_agp)
DRV - [2001/08/17 15:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.kongregat...ncls/cloudstone
IE - HKCU\..\SearchScopes,DefaultScope = {C569304D-9604-4FCC-A5A7-FD78CD4EA1D0}
IE - HKCU\..\SearchScopes\{C569304D-9604-4FCC-A5A7-FD78CD4EA1D0}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.update: false
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2013/10/22 00:34:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Extensions
[2013/10/24 10:54:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions
[2013/10/22 12:17:15 | 000,915,554 | ---- | M] () (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/10/29 16:15:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/10/29 16:16:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Disabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Disabled) = internal-remoting-viewer
CHR - plugin: Native Client (Disabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Disabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Disabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Java Deployment Toolkit 7.0.450.18 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java™ Platform SE 7 U45 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2013/11/10 01:31:46 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 95.180.0.18 95.180.1.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CB12A8FE-078E-4D2A-99AD-120274A5ADA9}: DhcpNameServer = 95.180.0.18 95.180.1.2
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/10/22 00:09:09 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/10 19:38:14 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2013/11/10 19:38:10 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2013/11/10 19:37:57 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe
[2013/11/10 19:37:32 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2013/11/10 19:37:27 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2013/11/10 19:37:26 | 000,019,455 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wvchntxx.sys
[2013/11/10 19:37:23 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2013/11/10 19:37:22 | 000,012,063 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wsiintxx.sys
[2013/11/10 19:37:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2013/11/10 19:37:08 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys
[2013/11/10 19:37:07 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2013/11/10 19:37:02 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2013/11/10 19:36:52 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2013/11/10 19:36:47 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll
[2013/11/10 19:36:42 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll
[2013/11/10 19:36:34 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys
[2013/11/10 19:36:33 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2013/11/10 19:36:33 | 000,023,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wch7xxnt.sys
[2013/11/10 19:36:29 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2013/11/10 19:36:25 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv10nt.sys
[2013/11/10 19:36:24 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv06nt.sys
[2013/11/10 19:36:23 | 000,033,599 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv04nt.sys
[2013/11/10 19:36:23 | 000,019,551 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv02nt.sys
[2013/11/10 19:36:22 | 000,029,311 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv01nt.sys
[2013/11/10 19:36:19 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv11nt.sys
[2013/11/10 19:36:19 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv09nt.sys
[2013/11/10 19:36:18 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv07nt.sys
[2013/11/10 19:36:18 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv08nt.sys
[2013/11/10 19:36:17 | 000,011,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv05nt.sys
[2013/11/10 19:36:16 | 000,012,127 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv02nt.sys
[2013/11/10 19:36:15 | 000,012,415 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv01nt.sys
[2013/11/10 19:36:14 | 000,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wacompen.sys
[2013/11/10 19:36:09 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2013/11/10 19:36:05 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2013/11/10 19:36:01 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2013/11/10 19:35:54 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2013/11/10 19:35:49 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2013/11/10 19:35:44 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2013/11/10 19:35:40 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2013/11/10 19:35:38 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2013/11/10 19:35:34 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys
[2013/11/10 19:35:33 | 000,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaagp.sys
[2013/11/10 19:35:33 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaide.sys
[2013/11/10 19:35:32 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2013/11/10 19:35:30 | 000,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\vchnt5.dll
[2013/11/10 19:35:25 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys
[2013/11/10 19:35:21 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2013/11/10 19:35:17 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys
[2013/11/10 19:35:13 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys
[2013/11/10 19:35:08 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys
[2013/11/10 19:35:04 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2013/11/10 19:35:00 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2013/11/10 19:34:56 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2013/11/10 19:34:55 | 000,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2013/11/10 19:34:54 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbuhci.sys
[2013/11/10 19:34:53 | 000,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2013/11/10 19:34:53 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2013/11/10 19:34:52 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2013/11/10 19:34:52 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2013/11/10 19:34:51 | 000,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/11/10 19:34:50 | 000,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2013/11/10 19:34:49 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2013/11/10 19:34:48 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2013/11/10 19:34:41 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll
[2013/11/10 19:34:37 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll
[2013/11/10 19:34:33 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll
[2013/11/10 19:34:29 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll
[2013/11/10 19:34:25 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2013/11/10 19:34:21 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys
[2013/11/10 19:34:17 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll
[2013/11/10 19:34:13 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll
[2013/11/10 19:34:09 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2013/11/10 19:34:05 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2013/11/10 19:34:01 | 000,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ultra.sys
[2013/11/10 19:33:59 | 000,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uagp35.sys
[2013/11/10 19:33:55 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys
[2013/11/10 19:33:48 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2013/11/10 19:33:44 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2013/11/10 19:33:40 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2013/11/10 19:33:36 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2013/11/10 19:33:33 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2013/11/10 19:33:29 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2013/11/10 19:33:24 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys
[2013/11/10 19:33:20 | 000,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll
[2013/11/10 19:33:19 | 000,082,432 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe
[2013/11/10 19:33:15 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll
[2013/11/10 19:33:10 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\toside.sys
[2013/11/10 19:33:06 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys
[2013/11/10 19:33:02 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys
[2013/11/10 19:32:58 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys
[2013/11/10 19:32:53 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2013/11/10 19:32:47 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2013/11/10 19:32:42 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2013/11/10 19:32:41 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2013/11/10 19:32:36 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2013/11/10 19:32:33 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2013/11/10 19:32:27 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys
[2013/11/10 19:32:22 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys
[2013/11/10 19:32:18 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2013/11/10 19:32:15 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2013/11/10 19:32:09 | 000,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\symc8xx.sys
[2013/11/10 19:32:06 | 000,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS\System32\dllcache\symc810.sys
[2013/11/10 19:32:02 | 000,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_u3.sys
[2013/11/10 19:31:59 | 000,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_hi.sys
[2013/11/10 19:31:55 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll
[2013/11/10 19:31:51 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys
[2013/11/10 19:31:48 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys
[2013/11/10 19:31:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[2013/11/10 19:31:40 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll
[2013/11/10 19:31:37 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll
[2013/11/10 19:31:33 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll
[2013/11/10 19:31:32 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2013/11/10 19:31:28 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2013/11/10 19:31:24 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2013/11/10 19:31:20 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2013/11/10 19:31:16 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2013/11/10 19:31:10 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2013/11/10 19:31:06 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll
[2013/11/10 19:31:00 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll
[2013/11/10 19:30:55 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys
[2013/11/10 19:30:51 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll
[2013/11/10 19:30:47 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2013/11/10 19:30:44 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys
[2013/11/10 19:30:40 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys
[2013/11/10 19:30:37 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll
[2013/11/10 19:30:33 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys
[2013/11/10 19:30:29 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys
[2013/11/10 19:30:29 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys
[2013/11/10 19:30:24 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys
[2013/11/10 19:30:14 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2013/11/10 19:30:10 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2013/11/10 19:30:06 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2013/11/10 19:30:02 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2013/11/10 19:29:59 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2013/11/10 19:29:55 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys
[2013/11/10 19:29:54 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys
[2013/11/10 19:29:54 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys
[2013/11/10 19:29:53 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbali.sys
[2013/11/10 19:29:49 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll
[2013/11/10 19:29:46 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll
[2013/11/10 19:29:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll
[2013/11/10 19:29:38 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll
[2013/11/10 19:29:34 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slwdmsup.sys
[2013/11/10 19:29:33 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slserv.exe
[2013/11/10 19:29:33 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slrundll.exe
[2013/11/10 19:29:32 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slntamr.sys
[2013/11/10 19:29:32 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnthal.sys
[2013/11/10 19:29:31 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnt7554.sys
[2013/11/10 19:29:31 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2013/11/10 19:29:30 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slgen.dll
[2013/11/10 19:29:29 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slextspk.dll
[2013/11/10 19:29:29 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slcoinst.dll
[2013/11/10 19:29:28 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2013/11/10 19:29:25 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2013/11/10 19:29:21 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2013/11/10 19:29:18 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll
[2013/11/10 19:29:14 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys
[2013/11/10 19:29:13 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2013/11/10 19:29:10 | 000,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll
[2013/11/10 19:29:06 | 000,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys
[2013/11/10 19:29:06 | 000,041,088 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisagp.sys
[2013/11/10 19:29:02 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll
[2013/11/10 19:28:59 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys
[2013/11/10 19:28:55 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll
[2013/11/10 19:28:51 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys
[2013/11/10 19:28:50 | 000,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\siint5.dll
[2013/11/10 19:28:42 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2013/11/10 19:28:38 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2013/11/10 19:28:35 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2013/11/10 19:28:32 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2013/11/10 19:28:28 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys
[2013/11/10 19:28:23 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2013/11/10 19:28:19 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys
[2013/11/10 19:28:14 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys
[2013/11/10 19:28:10 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys
[2013/11/10 19:28:06 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys
[2013/11/10 19:28:02 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2013/11/10 19:27:58 | 000,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys
[2013/11/10 19:27:54 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2013/11/10 19:27:50 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2013/11/10 19:27:49 | 000,043,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys
[2013/11/10 19:27:46 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll
[2013/11/10 19:27:41 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys
[2013/11/10 19:27:38 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll
[2013/11/10 19:27:34 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2013/11/10 19:27:31 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2013/11/10 19:27:27 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2013/11/10 19:27:24 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2013/11/10 19:27:20 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2013/11/10 19:27:17 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2013/11/10 19:27:14 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2013/11/10 19:27:10 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2013/11/10 19:27:07 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2013/11/10 19:27:03 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnbm.sys
[2013/11/10 19:27:03 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys
[2013/11/10 19:27:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnb.dll
[2013/11/10 19:26:58 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2013/11/10 19:26:55 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2013/11/10 19:26:50 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2013/11/10 19:26:47 | 000,024,576 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2013/11/10 19:26:45 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8139.sys
[2013/11/10 19:26:41 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys
[2013/11/10 19:26:38 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys
[2013/11/10 19:26:33 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2013/11/10 19:26:29 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys
[2013/11/10 19:26:26 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2013/11/10 19:26:25 | 000,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rndismpx.sys
[2013/11/10 19:26:21 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2013/11/10 19:26:20 | 000,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rfcomm.sys
[2013/11/10 19:26:15 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2013/11/10 19:26:10 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\recagent.sys
[2013/11/10 19:26:02 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys
[2013/11/10 19:25:56 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2013/11/10 19:25:53 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2013/11/10 19:25:49 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll
[2013/11/10 19:25:45 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys
[2013/11/10 19:25:38 | 000,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1280.sys
[2013/11/10 19:25:35 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql1240.sys
[2013/11/10 19:25:31 | 000,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql12160.sys
[2013/11/10 19:25:28 | 000,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql10wnt.sys
[2013/11/10 19:25:24 | 000,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1080.sys
[2013/11/10 19:25:23 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys
[2013/11/10 19:25:17 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2013/11/10 19:25:14 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2013/11/10 19:25:10 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2013/11/10 19:25:09 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll
[2013/11/10 19:25:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll
[2013/11/10 19:25:01 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll
[2013/11/10 19:24:57 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2013/11/10 19:24:52 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys
[2013/11/10 19:24:49 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys
[2013/11/10 19:24:45 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powerfil.sys
[2013/11/10 19:24:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys
[2013/11/10 19:24:31 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2013/11/10 19:24:27 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys
[2013/11/10 19:24:23 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys
[2013/11/10 19:24:20 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys
[2013/11/10 19:24:16 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys
[2013/11/10 19:24:13 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll
[2013/11/10 19:24:09 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax
[2013/11/10 19:24:08 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll
[2013/11/10 19:24:07 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys
[2013/11/10 19:24:06 | 000,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll
[2013/11/10 19:24:06 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys
[2013/11/10 19:24:01 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2hib.sys
[2013/11/10 19:23:58 | 000,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2.sys
[2013/11/10 19:23:57 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys
[2013/11/10 19:23:53 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2013/11/10 19:23:50 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys
[2013/11/10 19:23:47 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys
[2013/11/10 19:23:43 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys
[2013/11/10 19:23:40 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2013/11/10 19:23:38 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2013/11/10 19:23:35 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2013/11/10 19:23:27 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll
[2013/11/10 19:23:23 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll
[2013/11/10 19:23:20 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys
[2013/11/10 19:23:17 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe
[2013/11/10 19:23:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll
[2013/11/10 19:23:10 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys
[2013/11/10 19:23:06 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll
[2013/11/10 19:23:03 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys
[2013/11/10 19:23:00 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys
[2013/11/10 19:22:56 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys
[2013/11/10 19:22:53 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys
[2013/11/10 19:22:50 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2013/11/10 19:22:46 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2013/11/10 19:22:43 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2013/11/10 19:22:38 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2013/11/10 19:22:34 | 000,061,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ohci1394.sys
[2013/11/10 19:22:15 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys
[2013/11/10 19:22:12 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll
[2013/11/10 19:22:10 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\ntmtlfax.sys
[2013/11/10 19:22:06 | 002,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2013/11/10 19:22:01 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2013/11/10 19:21:56 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys
[2013/11/10 19:21:52 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys
[2013/11/10 19:21:51 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys
[2013/11/10 19:21:46 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2013/11/10 19:21:43 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2013/11/10 19:21:36 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys
[2013/11/10 19:21:34 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2013/11/10 19:21:25 | 000,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys
[2013/11/10 19:21:17 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2013/11/10 19:21:14 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2013/11/10 19:21:10 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys
[2013/11/10 19:21:09 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2013/11/10 19:21:06 | 000,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2013/11/10 19:21:03 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2013/11/10 19:21:00 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2013/11/10 19:20:57 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2013/11/10 19:20:53 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2013/11/10 19:20:50 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2013/11/10 19:20:47 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2013/11/10 19:20:44 | 000,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys
[2013/11/10 19:20:41 | 000,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys
[2013/11/10 19:20:38 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2013/11/10 19:20:34 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2013/11/10 19:20:31 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2013/11/10 19:20:28 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2013/11/10 19:20:24 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2013/11/10 19:20:23 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mutohpen.sys
[2013/11/10 19:20:19 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys
[2013/11/10 19:20:18 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhd.dll
[2013/11/10 19:20:18 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhm.sys
[2013/11/10 19:20:15 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlstrm.sys
[2013/11/10 19:20:15 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlmnt5.sys
[2013/11/10 19:20:10 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2013/11/10 19:20:09 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys
[2013/11/10 19:20:04 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys
[2013/11/10 19:19:58 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys
[2013/11/10 19:19:33 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys
[2013/11/10 19:19:30 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys
[2013/11/10 19:19:28 | 000,051,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2013/11/10 19:19:21 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2013/11/10 19:19:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2013/11/10 19:19:13 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys
[2013/11/10 19:19:09 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys
[2013/11/10 19:19:03 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys
[2013/11/10 19:18:58 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys
[2013/11/10 19:18:55 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll
[2013/11/10 19:18:53 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys
[2013/11/10 19:18:50 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll
[2013/11/10 19:18:47 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys
[2013/11/10 19:18:42 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2013/11/10 19:18:37 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys
[2013/11/10 19:18:34 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys
[2013/11/10 19:18:30 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll
[2013/11/10 19:18:27 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll
[2013/11/10 19:18:24 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys
[2013/11/10 19:18:23 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys
[2013/11/10 19:18:20 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2013/11/10 19:18:17 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2013/11/10 19:18:16 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys
[2013/11/10 19:18:15 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2013/11/10 19:18:12 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2013/11/10 19:18:12 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2013/11/10 19:18:09 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2013/11/10 19:18:05 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys
[2013/11/10 19:18:00 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2013/11/10 19:17:57 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2013/11/10 19:17:54 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2013/11/10 19:17:51 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2013/11/10 19:17:49 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2013/11/10 19:17:46 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2013/11/10 19:17:43 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2013/11/10 19:17:43 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2013/11/10 19:17:42 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2013/11/10 19:17:41 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2013/11/10 19:17:37 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll
[2013/11/10 19:17:32 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll
[2013/11/10 19:17:29 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll
[2013/11/10 19:17:19 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkor.dll
[2013/11/10 19:17:16 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdjpn.dll
[2013/11/10 19:17:12 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2013/11/10 19:17:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106.dll
[2013/11/10 19:17:01 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd103.dll
[2013/11/10 19:16:58 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101c.dll
[2013/11/10 19:16:55 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101b.dll
[2013/11/10 19:16:49 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys
[2013/11/10 19:16:47 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys
[2013/11/10 19:16:46 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2013/11/10 19:16:43 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2013/11/10 19:16:43 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2013/11/10 19:16:42 | 000,087,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys
[2013/11/10 19:16:41 | 000,040,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irbus.sys
[2013/11/10 19:16:39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2013/11/10 19:16:35 | 000,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys
[2013/11/10 19:16:32 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll
[2013/11/10 19:16:29 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys
[2013/11/10 19:16:28 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\intelide.sys
[2013/11/10 19:16:24 | 000,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys
[2013/11/10 19:16:22 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ini910u.sys
[2013/11/10 19:15:58 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2013/11/10 19:15:54 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys
[2013/11/10 19:15:52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll
[2013/11/10 19:15:49 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll
[2013/11/10 19:15:46 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys
[2013/11/10 19:15:44 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll
[2013/11/10 19:15:41 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll
[2013/11/10 19:15:38 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll
[2013/11/10 19:15:35 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys
[2013/11/10 19:15:33 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys
[2013/11/10 19:15:30 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys
[2013/11/10 19:15:27 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys
[2013/11/10 19:15:24 | 000,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll
[2013/11/10 19:15:21 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys
[2013/11/10 19:15:18 | 000,702,845 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xdnt5.dll
[2013/11/10 19:15:18 | 000,161,020 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xnt5.sys
[2013/11/10 19:15:15 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys
[2013/11/10 19:15:12 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll
[2013/11/10 19:15:11 | 000,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omp.sys
[2013/11/10 19:15:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys
[2013/11/10 19:14:53 | 001,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfdpsp2.sys
[2013/11/10 19:14:52 | 000,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcxts2.sys
[2013/11/10 19:14:50 | 000,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfbs2s2.sys
[2013/11/10 19:14:50 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcisp2.dll
[2013/11/10 19:14:47 | 000,488,383 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_v124.sys
[2013/11/10 19:14:44 | 000,050,751 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_tone.sys
[2013/11/10 19:14:41 | 000,073,279 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_spkp.sys
[2013/11/10 19:14:39 | 000,044,863 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_soar.sys
[2013/11/10 19:14:36 | 000,057,471 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_samp.sys
[2013/11/10 19:14:33 | 000,542,879 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_msft.sys
[2013/11/10 19:14:31 | 000,391,199 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_k56k.sys
[2013/11/10 19:14:28 | 000,009,759 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_inst.dll
[2013/11/10 19:14:25 | 000,115,807 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fsks.sys
[2013/11/10 19:14:22 | 000,199,711 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_faxx.sys
[2013/11/10 19:14:20 | 000,289,887 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fall.sys
[2013/11/10 19:14:17 | 000,067,167 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_bsc2.sys
[2013/11/10 19:14:14 | 000,150,239 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_amos.sys
[2013/11/10 19:14:11 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hr1w.dll
[2013/11/10 19:14:08 | 000,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpt4qic.sys
[2013/11/10 19:14:06 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpsjmcro.dll
[2013/11/10 19:14:03 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpojwia.dll
[2013/11/10 19:14:01 | 000,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpn.sys
[2013/11/10 19:13:58 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgtmcro.dll
[2013/11/10 19:13:55 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2013/11/10 19:13:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt42tk.dll
[2013/11/10 19:13:45 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2013/11/10 19:13:40 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt33tk.dll
[2013/11/10 19:13:35 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt21tk.dll
[2013/11/10 19:13:30 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpdigwia.dll
[2013/11/10 19:13:26 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2013/11/10 19:13:24 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2013/11/10 19:13:23 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2013/11/10 19:13:22 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidir.sys
[2013/11/10 19:13:20 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidgame.sys
[2013/11/10 19:13:19 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbth.sys
[2013/11/10 19:13:16 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbatt.sys
[2013/11/10 19:13:13 | 000,907,456 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hcf_msft.sys
[2013/11/10 19:13:10 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2013/11/10 19:13:08 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2013/11/10 19:13:05 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2013/11/10 19:13:03 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2013/11/10 19:13:02 | 000,046,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gagp30kx.sys
[2013/11/10 19:12:59 | 000,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400m.sys
[2013/11/10 19:12:57 | 001,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400d.dll
[2013/11/10 19:12:54 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200m.sys
[2013/11/10 19:12:52 | 000,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200d.dll
[2013/11/10 19:12:50 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2013/11/10 19:12:39 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fuusd.dll
[2013/11/10 19:12:36 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2013/11/10 19:12:34 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2013/11/10 19:12:29 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2013/11/10 19:12:27 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2013/11/10 19:12:25 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2013/11/10 19:12:23 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2013/11/10 19:12:21 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fnfilter.dll
[2013/11/10 19:12:17 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\dllcache\fetnd5.sys
[2013/11/10 19:12:11 | 000,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\fem556n5.sys
[2013/11/10 19:12:07 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2013/11/10 19:12:05 | 000,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS\System32\dllcache\fa312nd5.sys
[2013/11/10 19:12:02 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2013/11/10 19:12:00 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2013/11/10 19:11:57 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exabyte2.sys
[2013/11/10 19:11:55 | 000,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ex10.sys
[2013/11/10 19:11:50 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll
[2013/11/10 19:11:48 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll
[2013/11/10 19:11:46 | 000,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll
[2013/11/10 19:11:43 | 000,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\essm2e.sys
[2013/11/10 19:11:43 | 000,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll
[2013/11/10 19:11:41 | 000,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ess.sys
[2013/11/10 19:11:38 | 000,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56tpi.sys
[2013/11/10 19:11:36 | 000,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56hpi.sys
[2013/11/10 19:11:34 | 000,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56cvmp.sys
[2013/11/10 19:11:32 | 000,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es198x.sys
[2013/11/10 19:11:30 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2013/11/10 19:11:28 | 000,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1371mp.sys
[2013/11/10 19:11:26 | 000,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1370mp.sys
[2013/11/10 19:11:24 | 000,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnloop.exe
[2013/11/10 19:11:22 | 000,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnlogr.exe
[2013/11/10 19:11:20 | 000,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqndiag.exe
[2013/11/10 19:11:18 | 000,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqn.sys
[2013/11/10 19:11:16 | 000,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epstw2k.sys
[2013/11/10 19:11:13 | 000,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\epro4.sys
[2013/11/10 19:11:12 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epcfw2k.sys
[2013/11/10 19:11:10 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\enum1394.sys
[2013/11/10 19:11:09 | 000,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\emu10k1m.sys
[2013/11/10 19:11:04 | 000,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\em556n4.sys
[2013/11/10 19:11:03 | 000,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\elnk3.sys
[2013/11/10 19:11:01 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\elmsmc.sys
[2013/11/10 19:11:00 | 000,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el99xn51.sys
[2013/11/10 19:10:59 | 000,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el98xn5.sys
[2013/11/10 19:10:57 | 000,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS\System32\dllcache\el985n51.sys
[2013/11/10 19:10:56 | 000,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xnd5.sys
[2013/11/10 19:10:54 | 000,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xbc5.sys
[2013/11/10 19:10:53 | 000,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656se5.sys
[2013/11/10 19:10:52 | 000,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656nd5.sys
[2013/11/10 19:10:50 | 000,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656ct5.sys
[2013/11/10 19:10:49 | 000,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656cd5.sys
[2013/11/10 19:10:47 | 000,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el589nd5.sys
[2013/11/10 19:10:46 | 000,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el575nd5.sys
[2013/11/10 19:10:44 | 000,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el574nd4.sys
[2013/11/10 19:10:43 | 000,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el556nd5.sys
[2013/11/10 19:10:41 | 000,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el515.sys
[2013/11/10 19:10:39 | 000,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100isa4.sys
[2013/11/10 19:10:38 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100b325.sys
[2013/11/10 19:10:36 | 000,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e1000nt5.sys
[2013/11/10 19:10:31 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
[2013/11/10 19:10:29 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2013/11/10 19:10:27 | 000,020,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpti2o.sys
[2013/11/10 19:10:24 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2013/11/10 19:10:23 | 000,023,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4usb.sys
[2013/11/10 19:10:21 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4scan.sys
[2013/11/10 19:10:20 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4.sys
[2013/11/10 19:10:20 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4prt.sys
[2013/11/10 19:10:15 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2013/11/10 19:10:14 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlttape.sys
[2013/11/10 19:10:13 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2013/11/10 19:10:12 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2013/11/10 19:10:07 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2013/11/10 19:10:06 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2013/11/10 19:10:04 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2013/11/10 19:10:03 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2013/11/10 19:10:01 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2013/11/10 19:10:00 | 000,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiview.exe
[2013/11/10 19:09:58 | 000,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.sys
[2013/11/10 19:09:57 | 000,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.dll
[2013/11/10 19:09:56 | 000,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.sys
[2013/11/10 19:09:55 | 000,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.dll
[2013/11/10 19:09:54 | 000,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiinf.dll
[2013/11/10 19:09:52 | 000,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digihlc.dll
[2013/11/10 19:09:51 | 000,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifwrk.dll
[2013/11/10 19:09:50 | 000,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifep5.sys
[2013/11/10 19:09:49 | 000,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidxb.sys
[2013/11/10 19:09:48 | 000,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidbp.dll
[2013/11/10 19:09:46 | 000,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.sys
[2013/11/10 19:09:45 | 000,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.dll
[2013/11/10 19:09:42 | 000,419,357 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgconfig.dll
[2013/11/10 19:09:41 | 000,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\dgapci.sys
[2013/11/10 19:09:40 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2013/11/10 19:09:38 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2013/11/10 19:09:37 | 000,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devldr32.exe
[2013/11/10 19:09:36 | 000,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devcon32.dll
[2013/11/10 19:09:34 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2013/11/10 19:09:33 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddsmc.sys
[2013/11/10 19:09:31 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc260usd.dll
[2013/11/10 19:09:30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc240usd.dll
[2013/11/10 19:09:28 | 000,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\dllcache\dc21x4.sys
[2013/11/10 19:09:27 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210usd.dll
[2013/11/10 19:09:26 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210_32.dll
[2013/11/10 19:09:23 | 000,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dac960nt.sys
[2013/11/10 19:09:21 | 000,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS\System32\dllcache\dac2w2k.sys
[2013/11/10 19:09:19 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\d100ib5.sys
[2013/11/10 19:09:18 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzports.dll
[2013/11/10 19:09:16 | 000,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzport.sys
[2013/11/10 19:09:15 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzcoins.dll
[2013/11/10 19:09:14 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyports.dll
[2013/11/10 19:09:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyport.sys
[2013/11/10 19:09:12 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyycoins.dll
[2013/11/10 19:09:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclom-y.sys
[2013/11/10 19:09:09 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2013/11/10 19:09:09 | 000,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclad-z.sys
[2013/11/10 19:09:08 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2013/11/10 19:09:06 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2013/11/10 19:09:05 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2013/11/10 19:09:04 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2013/11/10 19:09:03 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2013/11/10 19:09:02 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2013/11/10 19:09:01 | 000,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctwdm32.dll
[2013/11/10 19:09:00 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2013/11/10 19:08:59 | 000,096,256 | ---- | C] (Copyright © Creative Technology Ltd. 1994-2001) -- C:\WINDOWS\System32\dllcache\ctlsb16.sys
[2013/11/10 19:08:58 | 000,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctljystk.sys
[2013/11/10 19:08:57 | 000,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctlfacem.sys
[2013/11/10 19:08:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csamsp.dll
[2013/11/10 19:08:53 | 000,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\crtaud.sys
[2013/11/10 19:08:52 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2013/11/10 19:08:51 | 000,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys
[2013/11/10 19:08:50 | 000,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\cpqndis5.sys
[2013/11/10 19:08:49 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cpqarray.sys
[2013/11/10 19:08:43 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compbatt.sys
[2013/11/10 19:08:41 | 000,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\cnxt1803.sys
[2013/11/10 19:08:40 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnusd.dll
[2013/11/10 19:08:38 | 000,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS\System32\dllcache\cmdide.sys
[2013/11/10 19:08:37 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2013/11/10 19:08:36 | 000,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmbatt.sys
[2013/11/10 19:08:34 | 000,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546xm.sys
[2013/11/10 19:08:33 | 000,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546x.dll
[2013/11/10 19:08:32 | 000,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl5465.dll
[2013/11/10 19:08:31 | 000,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.dll
[2013/11/10 19:08:31 | 000,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.sys
[2013/11/10 19:08:28 | 000,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS\System32\dllcache\cinemclc.sys
[2013/11/10 19:08:27 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2013/11/10 19:08:19 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2013/11/10 19:08:18 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\ch7xxnt5.dll
[2013/11/10 19:08:16 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2013/11/10 19:08:16 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2013/11/10 19:08:15 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2013/11/10 19:08:14 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2013/11/10 19:08:14 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2013/11/10 19:08:12 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2013/11/10 19:08:12 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cd20xrnt.sys
[2013/11/10 19:08:11 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2013/11/10 19:08:10 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2013/11/10 19:08:10 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2013/11/10 19:08:09 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2013/11/10 19:08:07 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2013/11/10 19:08:06 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2013/11/10 19:08:05 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.dll
[2013/11/10 19:08:04 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.ax
[2013/11/10 19:08:03 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.dll
[2013/11/10 19:08:02 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.ax
[2013/11/10 19:08:02 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.dll
[2013/11/10 19:08:01 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.ax
[2013/11/10 19:08:00 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv21.sys
[2013/11/10 19:08:00 | 000,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv30.sys
[2013/11/10 19:07:59 | 000,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdro21.sys
[2013/11/10 19:07:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bulltlp3.sys
[2013/11/10 19:07:34 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthprint.sys
[2013/11/10 19:07:34 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthusb.sys
[2013/11/10 19:07:33 | 000,274,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2013/11/10 19:07:32 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthpan.sys
[2013/11/10 19:07:32 | 000,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthmodem.sys
[2013/11/10 19:07:31 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthenum.sys
[2013/11/10 19:07:30 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2013/11/10 19:07:30 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2013/11/10 19:07:29 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2013/11/10 19:07:29 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2013/11/10 19:07:28 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2013/11/10 19:07:27 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2013/11/10 19:07:26 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2013/11/10 19:07:26 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2013/11/10 19:07:24 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2013/11/10 19:07:23 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2013/11/10 19:07:22 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brmfcwia.dll
[2013/11/10 19:07:22 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2013/11/10 19:07:21 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2013/11/10 19:07:21 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2013/11/10 19:07:20 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2013/11/10 19:07:19 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2013/11/10 19:07:19 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2013/11/10 19:07:18 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2013/11/10 19:07:18 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2013/11/10 19:07:15 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\binlsvc.dll
[2013/11/10 19:07:14 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2013/11/10 19:07:14 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2013/11/10 19:07:13 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2013/11/10 19:07:13 | 000,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm4e5.sys
[2013/11/10 19:07:12 | 000,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42u.sys
[2013/11/10 19:07:12 | 000,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42xx5.sys
[2013/11/10 19:07:11 | 000,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\battc.sys
[2013/11/10 19:07:10 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2013/11/10 19:07:09 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2013/11/10 19:07:09 | 000,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2013/11/10 19:07:09 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2013/11/10 19:07:08 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2013/11/10 19:07:07 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2013/11/10 19:07:06 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2013/11/10 19:07:06 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2013/11/10 19:07:05 | 000,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcstrm.sys
[2013/11/10 19:07:04 | 000,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcaudio.sys
[2013/11/10 19:07:03 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avc.sys
[2013/11/10 19:07:01 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv10nt5.dll
[2013/11/10 19:07:00 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv06nt5.dll
[2013/11/10 19:06:59 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv04nt5.dll
[2013/11/10 19:06:58 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv02nt5.dll
[2013/11/10 19:06:57 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv01nt5.dll
[2013/11/10 19:06:52 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ativvaxx.dll
[2013/11/10 19:06:50 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativtmxx.dll
[2013/11/10 19:06:49 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativmvxx.ax
[2013/11/10 19:06:48 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativdaxx.ax
[2013/11/10 19:06:46 | 000,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiraged.dll
[2013/11/10 19:06:46 | 000,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiragem.sys
[2013/11/10 19:06:44 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxsxx.sys
[2013/11/10 19:06:43 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxbxx.sys
[2013/11/10 19:06:42 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atintuxx.sys
[2013/11/10 19:06:41 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinttxx.sys
[2013/11/10 19:06:40 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinsnxx.sys
[2013/11/10 19:06:38 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinrvxx.sys
[2013/11/10 19:06:38 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinraxx.sys
[2013/11/10 19:06:37 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinpdxx.sys
[2013/11/10 19:06:37 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinmdxx.sys
[2013/11/10 19:06:36 | 000,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimtai.sys
[2013/11/10 19:06:36 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinbtxx.sys
[2013/11/10 19:06:35 | 000,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpae.sys
[2013/11/10 19:06:34 | 000,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpab.sys
[2013/11/10 19:06:33 | 000,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidvai.dll
[2013/11/10 19:06:33 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atievxx.exe
[2013/11/10 19:06:32 | 000,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrab.dll
[2013/11/10 19:06:32 | 000,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrae.dll
[2013/11/10 19:06:30 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ati3duag.dll
[2013/11/10 19:06:30 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ati3d1ag.dll
[2013/11/10 19:06:29 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtag.sys
[2013/11/10 19:06:28 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtaa.sys
[2013/11/10 19:06:27 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvaa.dll
[2013/11/10 19:06:27 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvag.dll
[2013/11/10 19:06:26 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2cqag.dll
[2013/11/10 19:06:26 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xsxx.sys
[2013/11/10 19:06:25 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xbxx.sys
[2013/11/10 19:06:23 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1tuxx.sys
[2013/11/10 19:06:22 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1rvxx.sys
[2013/11/10 19:06:22 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1snxx.sys
[2013/11/10 19:06:22 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1ttxx.sys
[2013/11/10 19:06:21 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1raxx.sys
[2013/11/10 19:06:20 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1pdxx.sys
[2013/11/10 19:06:20 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1mdxx.sys
[2013/11/10 19:06:19 | 000,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys
[2013/11/10 19:06:19 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1btxx.sys
[2013/11/10 19:06:18 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ati.dll
[2013/11/10 19:06:16 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2013/11/10 19:06:14 | 000,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asc3350p.sys
[2013/11/10 19:06:14 | 000,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc3550.sys
[2013/11/10 19:06:13 | 000,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc.sys
[2013/11/10 19:06:10 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\apmbatt.sys
[2013/11/10 19:06:09 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS\System32\dllcache\an983.sys
[2013/11/10 19:06:09 | 000,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\amsint.sys
[2013/11/10 19:06:07 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\dllcache\amdagp.sys
[2013/11/10 19:06:07 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2013/11/10 19:06:06 | 000,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\alim1541.sys
[2013/11/10 19:06:06 | 000,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\aliide.sys
[2013/11/10 19:06:05 | 000,056,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78xx.sys
[2013/11/10 19:06:05 | 000,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ali5261.sys
[2013/11/10 19:06:05 | 000,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\alifir.sys
[2013/11/10 19:06:04 | 000,055,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78u2.sys
[2013/11/10 19:06:04 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aha154x.sys
[2013/11/10 19:05:59 | 000,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agpcpq.sys
[2013/11/10 19:05:58 | 000,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agp440.sys
[2013/11/10 19:05:57 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax
[2013/11/10 19:05:56 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv11nt5.dll
[2013/11/10 19:05:55 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv09nt5.dll
[2013/11/10 19:05:54 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv08nt5.dll
[2013/11/10 19:05:53 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv07nt5.dll
[2013/11/10 19:05:52 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv02nt5.dll
[2013/11/10 19:05:52 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv05nt5.dll
[2013/11/10 19:05:51 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv01nt5.dll
[2013/11/10 19:05:49 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adpu160m.sys
[2013/11/10 19:05:48 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2013/11/10 19:05:47 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2013/11/10 19:05:46 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2013/11/10 19:05:46 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2013/11/10 19:05:45 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2013/11/10 19:05:45 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys
[2013/11/10 19:05:44 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys
[2013/11/10 19:05:43 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2013/11/10 19:05:42 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys
[2013/11/10 19:05:42 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys
[2013/11/10 19:05:41 | 000,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ac97intc.sys
[2013/11/10 19:05:40 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys
[2013/11/10 19:05:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys
[2013/11/10 19:05:39 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2013/11/10 19:05:39 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2013/11/10 19:05:39 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll
[2013/11/10 19:05:38 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys
[2013/11/10 19:05:37 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2013/11/10 19:05:37 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys
[2013/11/10 19:05:36 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2013/11/10 19:05:36 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2013/11/10 19:05:36 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys
[2013/11/10 19:05:35 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys
[2013/11/10 19:04:57 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll
[2013/11/10 19:04:51 | 002,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2013/11/10 18:53:03 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
[2013/11/10 01:38:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2013/11/10 01:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2013/11/10 01:25:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2013/11/10 01:24:31 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2013/11/10 01:24:31 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2013/11/10 01:24:31 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2013/11/10 01:24:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2013/11/10 01:24:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/11/10 01:24:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Videos
[2013/11/10 01:24:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Administrative Tools
[2013/11/10 01:24:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2013/11/10 01:18:30 | 005,223,457 | R--- | C] (Swearware) -- C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe
[2013/11/10 00:53:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/11/10 00:53:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/11/09 14:33:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Malwarebytes
[2013/11/09 14:33:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013/11/09 14:33:13 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/11/09 14:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/11/09 12:22:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\PaketINivoPristupa
[2013/11/08 17:36:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\Recent
[2013/11/08 15:10:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Interfejsi
[2013/11/08 11:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\PripremniZadaci
[2013/11/07 18:31:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Foxit Software
[2013/11/07 18:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Foxit Software
[2013/11/07 18:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2013/11/07 16:53:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NasledjivanjeKlasaObject
[2013/11/07 15:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Desktop\eclipse-java-juno-SR1-win32
[2013/11/07 10:04:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NasledjivanjeApstraktneKlase
[2013/11/06 13:46:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Nasledjivanje
[2013/11/05 22:19:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO
[2013/11/05 22:19:24 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh
[2013/11/04 23:35:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak8_2012
[2013/11/01 14:09:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak7_2012
[2013/10/31 22:35:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2013/10/30 22:35:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak6_2012
[2013/10/30 21:28:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak5_2012
[2013/10/30 19:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak4_2012
[2013/10/30 14:13:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak3_2012
[2013/10/29 16:15:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/10/29 15:36:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak2_2012
[2013/10/29 13:23:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak1_2012
[2013/10/29 12:29:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak8_2011
[2013/10/28 21:15:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak7_2011
[2013/10/26 19:17:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak6_2011
[2013/10/25 14:39:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak5_2011
[2013/10/25 13:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak4_2011
[2013/10/25 01:06:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak3_2011
[2013/10/24 23:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\SpeedyPC Software
[2013/10/24 23:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\DriverCure
[2013/10/24 23:52:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/10/24 23:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeedyPC Software
[2013/10/24 23:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\SpeedyPC Software
[2013/10/24 23:49:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedyPC Software
[2013/10/24 23:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SpeedyPC Software
[2013/10/24 17:32:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak2_2011
[2013/10/24 17:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Kolokvijum1_2012
[2013/10/24 17:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Kolokvijum1_2011
[2013/10/24 16:14:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak1_2011
[2013/10/24 12:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\OceneStudenata
[2013/10/24 11:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Avion
[2013/10/23 18:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\EditorTeksta
[2013/10/23 08:43:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\WinRAR
[2013/10/23 08:40:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
[2013/10/23 08:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\WinRAR
[2013/10/23 08:40:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2013/10/23 08:36:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\uTorrent
[2013/10/22 18:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\BrojacReci
[2013/10/22 17:25:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2013/10/22 17:25:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Avant Downloader
[2013/10/22 17:24:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Avant Profiles
[2013/10/22 17:24:53 | 000,000,000 | ---D | C] -- C:\Program Files\Avant Browser
[2013/10/22 17:16:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Sun
[2013/10/22 17:12:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\PrivacIE
[2013/10/22 17:10:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\IETldCache
[2013/10/22 17:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2013/10/22 17:09:35 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2013/10/22 17:08:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2013/10/22 17:08:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2013/10/22 12:55:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\AnalizatorReciIRecenica
[2013/10/22 12:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\bluej
[2013/10/22 12:06:35 | 000,000,000 | ---D | C] -- C:\Program Files\BlueJ
[2013/10/22 12:06:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2013/10/22 12:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/10/22 12:05:26 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013/10/22 12:05:26 | 000,145,408 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013/10/22 12:05:17 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013/10/22 12:05:17 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013/10/22 12:05:17 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/10/22 12:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java
[2013/10/22 12:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java Development Kit
[2013/10/22 12:03:47 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013/10/22 12:02:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Sun
[2013/10/22 11:22:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2013/10/22 11:13:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Google Chrome
[2013/10/22 11:13:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google
[2013/10/22 02:01:09 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys
[2013/10/22 02:01:08 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2013/10/22 02:01:06 | 000,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2013/10/22 02:01:04 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys
[2013/10/22 02:01:03 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys
[2013/10/22 02:00:58 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys
[2013/10/22 02:00:56 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2013/10/22 02:00:54 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys
[2013/10/22 02:00:53 | 000,171,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2013/10/22 02:00:51 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys
[2013/10/22 02:00:49 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys
[2013/10/22 02:00:44 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\audstub.sys
[2013/10/22 01:59:57 | 000,057,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\redbook.sys
[2013/10/22 01:59:27 | 000,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2013/10/22 01:59:27 | 000,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2013/10/22 01:59:27 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2013/10/22 01:59:27 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2013/10/22 01:59:27 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys
[2013/10/22 01:59:27 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2013/10/22 01:59:26 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2013/10/22 01:59:26 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2013/10/22 01:59:26 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2013/10/22 01:59:26 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2013/10/22 01:59:24 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys
[2013/10/22 01:59:24 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2013/10/22 01:59:06 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2013/10/22 01:59:06 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbui.dll
[2013/10/22 01:57:46 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2013/10/22 01:57:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2013/10/22 01:57:43 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2013/10/22 01:57:43 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2013/10/22 01:57:42 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2013/10/22 01:57:41 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll
[2013/10/22 01:57:41 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl
[2013/10/22 01:57:41 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2013/10/22 01:57:41 | 000,000,000 | R--D | C] -- C:\Program Files
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2013/10/22 01:57:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2013/10/22 01:57:38 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2013/10/22 01:57:38 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2013/10/22 01:57:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2013/10/22 01:57:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2013/10/22 01:57:38 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2013/10/22 01:57:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2013/10/22 01:57:37 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2013/10/22 01:57:36 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2013/10/22 01:57:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2013/10/22 01:57:35 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2013/10/22 01:57:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2013/10/22 01:57:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2013/10/22 01:57:33 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2013/10/22 01:57:33 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2013/10/22 01:57:32 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2013/10/22 01:57:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2013/10/22 01:57:32 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2013/10/22 01:57:32 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2013/10/22 01:57:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2013/10/22 01:57:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2013/10/22 01:57:32 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2013/10/22 01:57:32 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2013/10/22 01:57:32 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2013/10/22 01:57:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2013/10/22 01:57:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2013/10/22 01:57:32 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2013/10/22 01:57:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2013/10/22 01:57:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2013/10/22 01:57:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2013/10/22 01:57:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2013/10/22 01:57:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2013/10/22 01:57:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2013/10/22 01:57:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2013/10/22 01:57:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2013/10/22 01:57:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2013/10/22 01:57:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2013/10/22 01:57:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2013/10/22 01:57:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2013/10/22 01:57:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2013/10/22 01:57:28 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2013/10/22 01:57:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2013/10/22 01:57:28 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2013/10/22 01:57:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2013/10/22 01:57:28 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2013/10/22 01:57:28 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2013/10/22 01:57:28 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2013/10/22 01:57:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2013/10/22 01:57:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2013/10/22 01:57:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2013/10/22 01:57:25 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2013/10/22 01:57:25 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2013/10/22 01:57:25 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2013/10/22 01:57:25 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2013/10/22 01:57:25 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2013/10/22 01:57:25 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2013/10/22 01:57:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2013/10/22 01:57:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2013/10/22 01:57:24 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2013/10/22 01:57:24 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2013/10/22 01:57:24 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2013/10/22 01:57:24 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2013/10/22 01:57:24 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2013/10/22 01:57:24 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2013/10/22 01:57:24 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2013/10/22 01:57:24 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2013/10/22 01:57:24 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2013/10/22 01:57:23 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2013/10/22 01:57:23 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2013/10/22 01:57:23 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2013/10/22 01:57:23 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2013/10/22 01:57:23 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2013/10/22 01:57:23 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2013/10/22 01:57:23 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2013/10/22 01:57:23 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2013/10/22 01:57:23 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2013/10/22 01:57:23 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2013/10/22 01:57:22 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2013/10/22 01:57:22 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2013/10/22 01:57:22 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2013/10/22 01:57:22 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2013/10/22 01:57:22 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2013/10/22 01:57:22 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2013/10/22 01:57:21 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2013/10/22 01:57:21 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2013/10/22 01:57:21 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys
[2013/10/22 01:57:21 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll
[2013/10/22 01:57:21 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2013/10/22 01:57:20 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2013/10/22 01:57:20 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\storprop.dll
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2013/10/22 01:57:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2013/10/22 01:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2013/10/22 01:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2013/10/22 01:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2013/10/22 01:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2013/10/22 01:56:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2013/10/22 01:56:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2013/10/22 01:56:20 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013/10/22 01:56:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2013/10/22 01:46:16 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2013/10/22 01:46:16 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2013/10/22 01:46:16 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2013/10/22 01:46:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2013/10/22 01:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Macromedia
[2013/10/22 01:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Adobe
[2013/10/22 00:59:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\UserData
[2013/10/22 00:59:25 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/10/22 00:59:25 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/10/22 00:58:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Adobe
[2013/10/22 00:54:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Opera Software
[2013/10/22 00:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Opera Software
[2013/10/22 00:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2013/10/22 00:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2013/10/22 00:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA
[2013/10/22 00:38:22 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2013/10/22 00:38:22 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2013/10/22 00:38:22 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2013/10/22 00:38:22 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2013/10/22 00:38:22 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2013/10/22 00:38:22 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2013/10/22 00:38:22 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2013/10/22 00:38:22 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2013/10/22 00:38:22 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2013/10/22 00:38:22 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2013/10/22 00:38:22 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2013/10/22 00:38:22 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2013/10/22 00:38:22 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2013/10/22 00:38:22 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2013/10/22 00:38:22 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2013/10/22 00:38:22 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2013/10/22 00:38:22 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2013/10/22 00:38:22 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2013/10/22 00:38:22 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2013/10/22 00:38:22 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2013/10/22 00:38:22 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2013/10/22 00:38:22 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2013/10/22 00:38:22 | 000,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2013/10/22 00:38:22 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2013/10/22 00:38:21 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2013/10/22 00:38:21 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2013/10/22 00:38:21 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2013/10/22 00:38:21 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2013/10/22 00:38:21 | 000,144,160 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2013/10/22 00:38:20 | 015,517,472 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2013/10/22 00:38:20 | 000,108,832 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2013/10/22 00:38:18 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2013/10/22 00:37:39 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2013/10/22 00:37:19 | 005,967,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll
[2013/10/22 00:37:18 | 019,189,760 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2013/10/22 00:37:18 | 007,536,640 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2013/10/22 00:37:18 | 002,581,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2013/10/22 00:37:18 | 001,869,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2013/10/22 00:37:18 | 001,010,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2013/10/22 00:37:18 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco32.dll
[2013/10/22 00:37:16 | 017,551,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2013/10/22 00:37:16 | 012,648,960 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2013/10/22 00:37:16 | 004,494,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2013/10/22 00:37:16 | 004,494,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2013/10/22 00:37:16 | 002,389,504 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2013/10/22 00:35:32 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/10/22 00:34:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Downloads
[2013/10/22 00:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Mozilla
[2013/10/22 00:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Mozilla
[2013/10/22 00:18:07 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVNFINST.DLL
[2013/10/22 00:17:48 | 000,241,664 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvapu.sys
[2013/10/22 00:17:48 | 000,044,032 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\OpenAL32.dll
[2013/10/22 00:17:48 | 000,044,032 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopenal.dll
[2013/10/22 00:17:48 | 000,030,720 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvasio.dll
[2013/10/22 00:17:48 | 000,005,120 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\ALut.dll
[2013/10/22 00:17:48 | 000,004,096 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvack.dll
[2013/10/22 00:17:47 | 000,820,864 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvmcp.sys
[2013/10/22 00:17:47 | 000,062,336 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvarm.sys
[2013/10/22 00:17:47 | 000,013,056 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvax.sys
[2013/10/22 00:17:31 | 000,080,896 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENET.sys
[2013/10/22 00:17:17 | 000,013,568 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv_agp.SYS
[2013/10/22 00:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2013/10/22 00:17:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2013/10/22 00:14:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Identities
[2013/10/22 00:14:41 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2013/10/22 00:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Pictures
[2013/10/22 00:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Music
[2013/10/22 00:14:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sisavac\Application Data\Microsoft
[2013/10/22 00:14:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\SendTo
[2013/10/22 00:14:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\Application Data
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Startup
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Favorites
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Accessories
[2013/10/22 00:14:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\Cookies
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\Templates
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\PrintHood
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\NetHood
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\Local Settings
[2013/10/22 00:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Microsoft
[2013/10/22 00:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Desktop
[2013/10/22 00:13:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2013/10/22 00:13:40 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2013/10/22 00:13:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/10/22 00:13:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2013/10/22 00:13:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2013/10/22 00:13:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2013/10/22 00:13:21 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2013/10/22 00:12:04 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2013/10/22 00:12:04 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2013/10/22 00:12:04 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2013/10/22 00:12:03 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2013/10/22 00:12:03 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2013/10/22 00:12:02 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2013/10/22 00:12:02 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2013/10/22 00:12:02 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2013/10/22 00:12:00 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2013/10/22 00:12:00 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2013/10/22 00:12:00 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2013/10/22 00:12:00 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2013/10/22 00:12:00 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2013/10/22 00:11:59 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2013/10/22 00:11:59 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2013/10/22 00:11:59 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2013/10/22 00:11:59 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2013/10/22 00:11:58 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2013/10/22 00:11:57 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2013/10/22 00:11:56 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2013/10/22 00:11:56 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2013/10/22 00:11:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2013/10/22 00:11:55 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2013/10/22 00:11:54 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2013/10/22 00:11:54 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2013/10/22 00:11:54 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2013/10/22 00:11:54 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2013/10/22 00:11:53 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2013/10/22 00:11:53 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2013/10/22 00:11:52 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2013/10/22 00:11:52 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2013/10/22 00:11:51 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2013/10/22 00:11:50 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2013/10/22 00:11:50 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2013/10/22 00:11:50 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2013/10/22 00:11:50 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2013/10/22 00:11:48 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2013/10/22 00:11:47 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2013/10/22 00:11:47 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2013/10/22 00:11:47 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2013/10/22 00:11:47 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2013/10/22 00:11:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2013/10/22 00:11:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2013/10/22 00:11:46 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2013/10/22 00:11:46 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2013/10/22 00:11:46 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2013/10/22 00:11:46 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2013/10/22 00:11:45 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2013/10/22 00:11:45 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2013/10/22 00:11:45 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2013/10/22 00:11:45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2013/10/22 00:11:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2013/10/22 00:11:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2013/10/22 00:11:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2013/10/22 00:11:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2013/10/22 00:11:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2013/10/22 00:11:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2013/10/22 00:11:44 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2013/10/22 00:11:44 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2013/10/22 00:11:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2013/10/22 00:11:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2013/10/22 00:11:43 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2013/10/22 00:11:43 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2013/10/22 00:11:43 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2013/10/22 00:11:43 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2013/10/22 00:11:43 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2013/10/22 00:11:43 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2013/10/22 00:11:40 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2013/10/22 00:11:40 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2013/10/22 00:11:39 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2013/10/22 00:11:38 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013/10/22 00:11:38 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013/10/22 00:11:38 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/10/22 00:11:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2013/10/22 00:11:38 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2013/10/22 00:11:37 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2013/10/22 00:11:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2013/10/22 00:11:36 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2013/10/22 00:11:36 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2013/10/22 00:11:35 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2013/10/22 00:11:34 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2013/10/22 00:11:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2013/10/22 00:11:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2013/10/22 00:11:33 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2013/10/22 00:11:32 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2013/10/22 00:11:32 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2013/10/22 00:11:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2013/10/22 00:11:31 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2013/10/22 00:11:31 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2013/10/22 00:11:31 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2013/10/22 00:11:31 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2013/10/22 00:11:30 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2013/10/22 00:11:30 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2013/10/22 00:11:29 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2013/10/22 00:11:29 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2013/10/22 00:11:29 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2013/10/22 00:11:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2013/10/22 00:11:29 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2013/10/22 00:11:27 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2013/10/22 00:11:26 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2013/10/22 00:11:25 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2013/10/22 00:11:24 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2013/10/22 00:11:23 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2013/10/22 00:11:21 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2013/10/22 00:11:20 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2013/10/22 00:11:20 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2013/10/22 00:11:15 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2013/10/22 00:11:15 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2013/10/22 00:11:15 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2013/10/22 00:11:14 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2013/10/22 00:11:14 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2013/10/22 00:11:14 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2013/10/22 00:11:13 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2013/10/22 00:11:12 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2013/10/22 00:11:12 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2013/10/22 00:11:12 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2013/10/22 00:11:12 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2013/10/22 00:11:11 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2013/10/22 00:11:10 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2013/10/22 00:11:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2013/10/22 00:11:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2013/10/22 00:11:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2013/10/22 00:11:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2013/10/22 00:11:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2013/10/22 00:11:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2013/10/22 00:11:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2013/10/22 00:11:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2013/10/22 00:11:08 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2013/10/22 00:11:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2013/10/22 00:11:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2013/10/22 00:11:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2013/10/22 00:11:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2013/10/22 00:11:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2013/10/22 00:11:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2013/10/22 00:11:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2013/10/22 00:11:06 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2013/10/22 00:11:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2013/10/22 00:11:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2013/10/22 00:11:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2013/10/22 00:11:06 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2013/10/22 00:11:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2013/10/22 00:11:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2013/10/22 00:11:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2013/10/22 00:11:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2013/10/22 00:11:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2013/10/22 00:11:05 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2013/10/22 00:11:05 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2013/10/22 00:11:04 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2013/10/22 00:11:04 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2013/10/22 00:11:04 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2013/10/22 00:11:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2013/10/22 00:11:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2013/10/22 00:11:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2013/10/22 00:11:03 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2013/10/22 00:11:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2013/10/22 00:11:02 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2013/10/22 00:11:02 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2013/10/22 00:11:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2013/10/22 00:11:02 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2013/10/22 00:11:01 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2013/10/22 00:11:01 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2013/10/22 00:11:01 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2013/10/22 00:11:01 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2013/10/22 00:11:00 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2013/10/22 00:11:00 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2013/10/22 00:11:00 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2013/10/22 00:11:00 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2013/10/22 00:10:59 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2013/10/22 00:10:59 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2013/10/22 00:10:59 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2013/10/22 00:10:59 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2013/10/22 00:10:59 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2013/10/22 00:10:59 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2013/10/22 00:10:58 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2013/10/22 00:10:58 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2013/10/22 00:10:58 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2013/10/22 00:10:58 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2013/10/22 00:10:58 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2013/10/22 00:10:57 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2013/10/22 00:10:57 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2013/10/22 00:10:57 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2013/10/22 00:10:57 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2013/10/22 00:10:56 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2013/10/22 00:10:56 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2013/10/22 00:10:56 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2013/10/22 00:10:56 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2013/10/22 00:10:56 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2013/10/22 00:10:56 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2013/10/22 00:10:56 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2013/10/22 00:10:51 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2013/10/22 00:10:38 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2013/10/22 00:10:38 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2013/10/22 00:10:38 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2013/10/22 00:10:38 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2013/10/22 00:10:37 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2013/10/22 00:10:37 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2013/10/22 00:10:36 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2013/10/22 00:10:35 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2013/10/22 00:10:35 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2013/10/22 00:10:35 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2013/10/22 00:10:35 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2013/10/22 00:10:35 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2013/10/22 00:10:34 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2013/10/22 00:10:34 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2013/10/22 00:10:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2013/10/22 00:10:34 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2013/10/22 00:10:34 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2013/10/22 00:10:34 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2013/10/22 00:10:34 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2013/10/22 00:10:33 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2013/10/22 00:10:33 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2013/10/22 00:10:33 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2013/10/22 00:10:33 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2013/10/22 00:10:33 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2013/10/22 00:10:33 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2013/10/22 00:10:32 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2013/10/22 00:10:32 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2013/10/22 00:10:32 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2013/10/22 00:10:32 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2013/10/22 00:10:32 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2013/10/22 00:10:32 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2013/10/22 00:10:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2013/10/22 00:10:31 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2013/10/22 00:10:31 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2013/10/22 00:10:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2013/10/22 00:10:30 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll
[2013/10/22 00:10:30 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2013/10/22 00:10:29 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2013/10/22 00:10:29 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2013/10/22 00:10:29 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2013/10/22 00:10:28 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2013/10/22 00:10:28 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2013/10/22 00:10:28 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2013/10/22 00:10:28 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2013/10/22 00:10:28 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2013/10/22 00:10:28 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2013/10/22 00:10:27 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2013/10/22 00:10:27 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2013/10/22 00:10:23 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2013/10/22 00:10:23 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2013/10/22 00:10:22 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2013/10/22 00:10:22 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2013/10/22 00:10:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2013/10/22 00:10:21 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2013/10/22 00:10:21 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2013/10/22 00:10:20 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2013/10/22 00:10:19 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2013/10/22 00:10:19 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2013/10/22 00:10:19 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2013/10/22 00:10:19 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2013/10/22 00:10:18 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2013/10/22 00:10:18 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2013/10/22 00:10:17 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2013/10/22 00:10:17 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2013/10/22 00:10:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2013/10/22 00:10:16 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2013/10/22 00:10:16 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2013/10/22 00:10:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2013/10/22 00:10:15 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2013/10/22 00:10:15 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013/10/22 00:10:15 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2013/10/22 00:10:15 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2013/10/22 00:10:06 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2013/10/22 00:10:05 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2013/10/22 00:10:04 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2013/10/22 00:10:04 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2013/10/22 00:10:04 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2013/10/22 00:10:03 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2013/10/22 00:10:03 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2013/10/22 00:10:03 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2013/10/22 00:10:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2013/10/22 00:10:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2013/10/22 00:10:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2013/10/22 00:10:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2013/10/22 00:10:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2013/10/22 00:10:01 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2013/10/22 00:10:01 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2013/10/22 00:10:00 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2013/10/22 00:10:00 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2013/10/22 00:10:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2013/10/22 00:09:57 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2013/10/22 00:09:57 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2013/10/22 00:09:57 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2013/10/22 00:09:56 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll
[2013/10/22 00:09:56 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2013/10/22 00:09:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2013/10/22 00:09:55 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2013/10/22 00:09:55 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2013/10/22 00:09:52 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2013/10/22 00:09:52 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2013/10/22 00:09:52 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2013/10/22 00:09:51 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2013/10/22 00:09:51 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2013/10/22 00:09:51 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2013/10/22 00:09:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2013/10/22 00:09:50 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2013/10/22 00:09:50 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2013/10/22 00:09:50 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2013/10/22 00:09:50 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2013/10/22 00:09:50 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2013/10/22 00:09:50 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2013/10/22 00:09:50 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2013/10/22 00:09:49 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2013/10/22 00:09:49 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2013/10/22 00:09:48 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2013/10/22 00:09:48 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2013/10/22 00:09:48 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2013/10/22 00:09:48 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2013/10/22 00:09:48 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2013/10/22 00:09:48 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2013/10/22 00:09:47 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2013/10/22 00:09:47 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2013/10/22 00:09:47 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2013/10/22 00:09:47 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2013/10/22 00:09:47 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2013/10/22 00:09:47 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2013/10/22 00:09:46 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2013/10/22 00:09:46 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2013/10/22 00:09:46 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2013/10/22 00:09:46 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2013/10/22 00:09:45 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2013/10/22 00:09:45 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2013/10/22 00:09:45 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2013/10/22 00:09:45 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2013/10/22 00:09:44 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2013/10/22 00:09:44 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2013/10/22 00:09:44 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2013/10/22 00:09:44 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2013/10/22 00:09:41 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2013/10/22 00:09:25 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2013/10/22 00:09:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2013/10/22 00:08:47 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2013/10/22 00:08:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2013/10/22 00:07:48 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2013/10/22 00:07:48 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2013/10/22 00:07:37 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2013/10/22 00:07:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2013/10/22 00:06:47 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2013/10/22 00:06:45 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2013/10/22 00:06:45 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2013/10/22 00:06:45 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2013/10/22 00:06:45 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2013/10/22 00:06:45 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2013/10/22 00:06:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2013/10/22 00:06:32 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2013/10/22 00:06:32 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2013/10/22 00:06:32 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2013/10/22 00:06:31 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2013/10/22 00:06:31 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2013/10/22 00:06:31 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2013/10/22 00:06:30 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2013/10/22 00:06:30 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2013/10/22 00:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2013/10/22 00:06:26 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2013/10/22 00:06:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2013/10/22 00:06:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2013/10/22 00:06:26 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2013/10/22 00:06:25 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2013/10/22 00:06:25 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2013/10/22 00:06:25 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2013/10/22 00:06:25 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2013/10/22 00:06:25 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2013/10/22 00:06:25 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2013/10/22 00:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2013/10/22 00:06:24 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2013/10/22 00:06:21 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll
[2013/10/22 00:06:21 | 000,725,566 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll
[2013/10/22 00:06:21 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll
[2013/10/22 00:06:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2013/10/22 00:06:20 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2013/10/22 00:06:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2013/10/22 00:06:19 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2013/10/22 00:06:19 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2013/10/22 00:06:18 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2013/10/22 00:06:18 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2013/10/22 00:06:17 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2013/10/22 00:06:16 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2013/10/22 00:06:16 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2013/10/22 00:06:16 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2013/10/22 00:06:16 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2013/10/22 00:06:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2013/10/22 00:06:15 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2013/10/22 00:06:15 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll
[2013/10/22 00:06:15 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2013/10/22 00:06:15 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2013/10/22 00:06:15 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2013/10/22 00:06:15 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll
[2013/10/22 00:06:14 | 001,134,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2013/10/22 00:06:14 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2013/10/22 00:06:14 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2013/10/22 00:06:14 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2013/10/22 00:06:14 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe
[2013/10/22 00:06:14 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2013/10/22 00:06:14 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2013/10/22 00:06:14 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2013/10/22 00:06:14 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2013/10/22 00:06:13 | 000,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll
[2013/10/22 00:06:13 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2013/10/22 00:06:13 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll
[2013/10/22 00:06:13 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll
[2013/10/22 00:06:13 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2013/10/22 00:06:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll
[2013/10/22 00:06:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2013/10/22 00:06:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll
[2013/10/22 00:06:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll
[2013/10/22 00:06:10 | 004,256,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll
[2013/10/22 00:06:10 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll
[2013/10/22 00:06:10 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll
[2013/10/22 00:06:10 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll
[2013/10/22 00:06:10 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll
[2013/10/22 00:06:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll
[2013/10/22 00:06:09 | 003,555,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2013/10/22 00:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2013/10/22 00:06:07 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll
[2013/10/22 00:06:07 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll
[2013/10/22 00:06:07 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe
[2013/10/22 00:06:07 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll
[2013/10/22 00:06:07 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll
[2013/10/22 00:06:07 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll
[2013/10/22 00:06:05 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe
[2013/10/22 00:06:04 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2013/10/22 00:06:04 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll
[2013/10/22 00:06:04 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2013/10/22 00:06:04 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll
[2013/10/22 00:06:04 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2013/10/22 00:06:04 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll
[2013/10/22 00:06:04 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2013/10/22 00:06:04 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll
[2013/10/22 00:06:03 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll
[2013/10/22 00:06:03 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll
[2013/10/22 00:06:02 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe
[2013/10/22 00:06:01 | 000,768,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe
[2013/10/22 00:06:01 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2013/10/22 00:06:01 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe
[2013/10/22 00:06:00 | 000,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe
[2013/10/22 00:06:00 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2013/10/22 00:06:00 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll
[2013/10/22 00:06:00 | 000,124,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys
[2013/10/22 00:06:00 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2013/10/22 00:06:00 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2013/10/22 00:06:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll
[2013/10/22 00:06:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2013/10/22 00:05:59 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll
[2013/10/22 00:05:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2013/10/22 00:05:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll
[2013/10/22 00:05:59 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys
[2013/10/22 00:05:59 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll
[2013/10/22 00:05:58 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2013/10/22 00:05:58 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll
[2013/10/22 00:05:58 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll
[2013/10/22 00:05:58 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2013/10/22 00:05:58 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll
[2013/10/22 00:05:58 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2013/10/22 00:05:58 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2013/10/22 00:05:58 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll
[2013/10/22 00:05:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2013/10/22 00:05:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll
[2013/10/22 00:05:57 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll
[2013/10/22 00:05:57 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll
[2013/10/22 00:05:57 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll
[2013/10/22 00:05:57 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll
[2013/10/22 00:05:57 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll
[2013/10/22 00:05:57 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll
[2013/10/22 00:05:56 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll
[2013/10/22 00:05:56 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll
[2013/10/22 00:05:56 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll
[2013/10/22 00:05:56 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll
[2013/10/22 00:05:56 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll
[2013/10/22 00:05:56 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll
[2013/10/22 00:05:56 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll
[2013/10/22 00:05:55 | 001,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe
[2013/10/22 00:05:55 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2013/10/22 00:05:55 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll
[2013/10/22 00:05:55 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll
[2013/10/22 00:05:55 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2013/10/22 00:05:55 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll
[2013/10/22 00:05:55 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2013/10/22 00:05:55 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2013/10/22 00:05:54 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll
[2013/10/22 00:05:54 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll
[2013/10/22 00:05:54 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll
[2013/10/22 00:05:54 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll
[2013/10/22 00:05:54 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2013/10/22 00:05:54 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll
[2013/10/22 00:05:54 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll
[2013/10/22 00:05:54 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe
[2013/10/22 00:05:53 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2013/10/22 00:05:53 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll
[2013/10/22 00:05:53 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe
[2013/10/22 00:05:52 | 002,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll
[2013/10/22 00:05:52 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll
[2013/10/22 00:05:52 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe
[2013/10/22 00:05:52 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe
[2013/10/22 00:05:52 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll
[2013/10/22 00:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2013/10/22 00:05:51 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll
[2013/10/22 00:05:51 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2013/10/22 00:05:51 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll
[2013/10/22 00:05:51 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2013/10/22 00:05:51 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll
[2013/10/22 00:05:51 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2013/10/22 00:05:51 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe
[2013/10/22 00:05:50 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2013/10/22 00:05:50 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll
[2013/10/22 00:05:50 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2013/10/22 00:05:50 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll
[2013/10/22 00:05:49 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe
[2013/10/22 00:05:49 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll
[2013/10/22 00:05:49 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe
[2013/10/22 00:05:49 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll
[2013/10/22 00:05:49 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll
[2013/10/22 00:05:49 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll
[2013/10/22 00:05:49 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe
[2013/10/22 00:05:49 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe
[2013/10/22 00:05:48 | 000,561,179 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll
[2013/10/22 00:05:48 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll
[2013/10/22 00:05:48 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll
[2013/10/22 00:05:48 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll
[2013/10/22 00:05:47 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll
[2013/10/22 00:05:47 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll
[2013/10/22 00:05:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll
[2013/10/22 00:05:46 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll
[2013/10/22 00:05:46 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll
[2013/10/22 00:05:46 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll
[2013/10/22 00:05:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll
[2013/10/22 00:05:45 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll
[2013/10/22 00:05:45 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll
[2013/10/22 00:05:45 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll
[2013/10/22 00:05:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll
[2013/10/22 00:05:45 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll
[2013/10/22 00:05:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll
[2013/10/22 00:05:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll
[2013/10/22 00:05:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll
[2013/10/22 00:05:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll
[2013/10/22 00:05:44 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2013/10/22 00:05:44 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll
[2013/10/22 00:05:44 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll
[2013/10/22 00:05:44 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb
[2013/10/22 00:05:44 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb
[2013/10/22 00:05:44 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb
[2013/10/22 00:05:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb
[2013/10/22 00:05:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb
[2013/10/22 00:05:44 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll
[2013/10/22 00:05:43 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll
[2013/10/22 00:05:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll
[2013/10/22 00:05:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll
[2013/10/22 00:05:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll
[2013/10/22 00:05:43 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll
[2013/10/22 00:05:43 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll
[2013/10/22 00:05:42 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2013/10/22 00:05:42 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll
[2013/10/22 00:05:42 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll
[2013/10/22 00:05:42 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll
[2013/10/22 00:05:42 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll
[2013/10/22 00:05:42 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll
[2013/10/22 00:05:42 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll
[2013/10/22 00:05:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll
[2013/10/22 00:05:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll
[2013/10/22 00:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2013/10/22 00:05:40 | 000,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2013/10/22 00:05:40 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2013/10/22 00:05:40 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2013/10/22 00:05:39 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2013/10/22 00:05:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2013/10/22 00:05:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2013/10/22 00:04:59 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2013/10/22 00:04:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2013/10/22 00:04:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2013/10/22 00:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2013/10/22 00:04:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2013/10/22 00:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2013/10/22 00:04:35 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2013/10/22 00:04:34 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2013/10/22 00:04:33 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2013/10/22 00:04:33 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2013/10/22 00:04:33 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2013/10/22 00:04:33 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2013/10/22 00:04:33 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2013/10/22 00:04:33 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2013/10/22 00:04:33 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2013/10/22 00:04:33 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2013/10/22 00:04:32 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2013/10/22 00:04:32 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2013/10/22 00:04:32 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2013/10/22 00:04:32 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2013/10/22 00:04:32 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2013/10/22 00:04:32 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2013/10/22 00:04:32 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2013/10/22 00:04:32 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2013/10/22 00:04:31 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2013/10/22 00:04:31 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2013/10/22 00:04:31 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2013/10/22 00:04:31 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2013/10/22 00:04:31 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2013/10/22 00:04:30 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2013/10/22 00:04:30 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2013/10/22 00:04:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2013/10/22 00:04:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2013/10/22 00:04:30 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2013/10/22 00:04:18 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2013/10/22 00:04:18 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2013/10/22 00:04:17 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2013/10/22 00:04:17 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2013/10/22 00:04:17 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2013/10/22 00:04:17 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2013/10/22 00:04:17 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2013/10/22 00:04:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2013/10/22 00:04:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2013/10/22 00:04:17 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2013/10/22 00:04:16 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2013/10/22 00:04:16 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2013/10/22 00:04:06 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2013/10/22 00:04:06 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2013/10/22 00:04:06 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2013/10/22 00:04:06 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2013/10/22 00:04:06 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2013/10/22 00:04:06 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2013/10/22 00:04:05 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2013/10/22 00:04:05 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2013/10/22 00:04:05 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2013/10/22 00:04:05 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2013/10/22 00:04:05 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2013/10/22 00:04:05 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2013/10/22 00:04:04 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2013/10/22 00:04:04 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2013/10/22 00:04:04 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2013/10/22 00:04:04 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2013/10/22 00:04:04 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2013/10/22 00:04:04 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2013/10/22 00:04:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2013/10/22 00:04:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2013/10/22 00:04:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2013/10/22 00:04:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2013/10/22 00:04:03 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2013/10/22 00:04:03 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2013/10/22 00:04:03 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2013/10/22 00:04:03 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2013/10/22 00:04:03 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2013/10/22 00:04:03 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2013/10/22 00:04:03 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2013/10/22 00:04:03 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2013/10/22 00:04:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2013/10/22 00:04:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2013/10/22 00:04:03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2013/10/22 00:04:03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2013/10/22 00:04:03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2013/10/22 00:04:03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2013/10/22 00:04:03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2013/10/22 00:04:03 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2013/10/22 00:04:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2013/10/22 00:04:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2013/10/22 00:04:02 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2013/10/22 00:04:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2013/10/22 00:04:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2013/10/22 00:04:01 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll
[2013/10/22 00:04:01 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2013/10/22 00:04:01 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2013/10/22 00:04:01 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll
[2013/10/22 00:04:01 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2013/10/22 00:04:01 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll
[2013/10/22 00:04:01 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2013/10/22 00:04:01 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2013/10/22 00:04:01 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2013/10/22 00:04:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2013/10/22 00:04:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll
[2013/10/22 00:04:00 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll
[2013/10/22 00:04:00 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2013/10/22 00:04:00 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll
[2013/10/22 00:04:00 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2013/10/22 00:04:00 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2013/10/22 00:04:00 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll
[2013/10/22 00:04:00 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2013/10/22 00:03:55 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2013/10/22 00:03:55 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2013/10/22 00:03:55 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2013/10/22 00:03:55 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2013/10/22 00:03:55 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2013/10/22 00:03:55 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2013/10/22 00:03:54 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2013/10/22 00:03:54 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2013/10/22 00:03:54 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2013/10/22 00:03:54 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2013/10/22 00:03:54 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2013/10/22 00:03:54 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2013/10/22 00:03:54 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2013/10/22 00:03:53 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2013/10/22 00:03:53 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2013/10/22 00:03:53 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2013/10/22 00:03:41 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2013/10/22 00:03:41 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2013/10/22 00:03:41 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2013/10/22 00:03:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2013/10/22 00:03:40 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe
[2013/10/22 00:03:40 | 000,345,088 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2013/10/22 00:03:40 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2013/10/22 00:03:40 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2013/10/22 00:03:40 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2013/10/22 00:03:40 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2013/10/22 00:03:40 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl
[2013/10/22 00:03:40 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2013/10/22 00:03:39 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2013/10/22 00:03:39 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2013/10/22 00:03:39 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2013/10/22 00:03:39 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2013/10/22 00:03:39 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe
[2013/10/22 00:03:39 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2013/10/22 00:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2013/10/22 00:03:38 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll
[2013/10/22 00:03:38 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe
[2013/10/22 00:03:38 | 000,139,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2013/10/22 00:03:38 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2013/10/22 00:03:38 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll
[2013/10/22 00:03:38 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys
[2013/10/22 00:03:38 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys
[2013/10/22 00:03:37 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll
[2013/10/22 00:03:37 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2013/10/22 00:03:37 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll
[2013/10/22 00:03:37 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2013/10/22 00:03:37 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2013/10/22 00:03:37 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll
[2013/10/22 00:03:37 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2013/10/22 00:03:37 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2013/10/22 00:03:37 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2013/10/22 00:03:37 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2013/10/22 00:03:37 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll
[2013/10/22 00:03:37 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe
[2013/10/22 00:03:37 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe
[2013/10/22 00:03:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2013/10/22 00:03:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll
[2013/10/22 00:03:37 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2013/10/22 00:03:37 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe
[2013/10/22 00:03:36 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2013/10/22 00:03:36 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2013/10/22 00:03:36 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll
[2013/10/22 00:03:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll
[2013/10/22 00:03:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2013/10/22 00:03:36 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2013/10/22 00:03:36 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2013/10/22 00:03:36 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll
[2013/10/22 00:03:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2013/10/22 00:03:35 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2013/10/22 00:03:35 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll
[2013/10/22 00:03:35 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2013/10/22 00:03:35 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll
[2013/10/22 00:03:35 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2013/10/22 00:03:35 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll
[2013/10/22 00:03:35 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2013/10/22 00:03:35 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll
[2013/10/22 00:03:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2013/10/22 00:03:34 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll
[2013/10/22 00:03:34 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll
[2013/10/22 00:03:34 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2013/10/22 00:03:34 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll
[2013/10/22 00:03:34 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2013/10/22 00:03:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll
[2013/10/22 00:03:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe
[2013/10/22 00:03:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2013/10/22 00:03:33 | 001,251,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll
[2013/10/22 00:03:33 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll
[2013/10/22 00:03:33 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll
[2013/10/22 00:03:33 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2013/10/22 00:03:33 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll
[2013/10/22 00:03:33 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll
[2013/10/22 00:03:31 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll
[2013/10/22 00:03:31 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll
[2013/10/22 00:03:31 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll
[2013/10/22 00:03:30 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe
[2013/10/22 00:03:30 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll
[2013/10/22 00:03:30 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2013/10/22 00:03:30 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll
[2013/10/22 00:03:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll
[2013/10/22 00:03:30 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll
[2013/10/22 00:03:30 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll
[2013/10/22 00:03:30 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2013/10/22 00:03:30 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll
[2013/10/22 00:03:30 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll
[2013/10/22 00:03:30 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll
[2013/10/22 00:03:30 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll
[2013/10/22 00:03:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll
[2013/10/22 00:03:29 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll
[2013/10/22 00:03:29 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll
[2013/10/22 00:03:29 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll
[2013/10/22 00:03:29 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll
[2013/10/22 00:03:29 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll
[2013/10/22 00:03:29 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll
[2013/10/22 00:03:29 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2013/10/22 00:03:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll
[2013/10/22 00:03:29 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll
[2013/10/22 00:03:29 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll
[2013/10/22 00:03:27 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll
[2013/10/22 00:03:27 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll
[2013/10/22 00:03:27 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll
[2013/10/22 00:03:27 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2013/10/22 00:03:26 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll
[2013/10/22 00:03:26 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll
[2013/10/22 00:03:26 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll
[2013/10/22 00:03:26 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll
[2013/10/22 00:03:26 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll
[2013/10/22 00:03:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2013/10/22 00:03:25 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll
[2013/10/22 00:03:24 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll
[2013/10/22 00:03:23 | 001,352,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll
[2013/10/22 00:03:23 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2013/10/22 00:03:23 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll
[2013/10/22 00:03:22 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll
[2013/10/22 00:03:22 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2013/10/22 00:03:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2013/10/22 00:03:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll
[2013/10/22 00:03:22 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2013/10/22 00:03:22 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll
[2013/10/22 00:03:20 | 000,196,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpdr.sys
[2013/10/22 00:03:20 | 000,040,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termdd.sys
[2013/10/22 00:03:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2013/10/22 00:02:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories

========== Files - Modified Within 30 Days ==========

[2013/11/10 20:35:37 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/11/10 20:35:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/11/10 18:53:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
[2013/11/10 18:22:47 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2013/11/10 18:00:01 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\SpeedyPC Registration3.job
[2013/11/10 02:29:17 | 001,390,861 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\HiJackThis.msi.part
[2013/11/10 01:31:46 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013/11/10 01:18:34 | 005,223,457 | R--- | M] (Swearware) -- C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe
[2013/11/09 14:33:15 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/05 22:25:39 | 000,000,716 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\Shortcut to bsplayer.exe.lnk
[2013/11/01 17:23:41 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/11/01 17:23:40 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/10/28 10:18:11 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/10/28 10:18:11 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/10/24 23:49:28 | 000,000,854 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\SpeedyPC Pro.lnk
[2013/10/24 17:10:04 | 000,000,554 | ---- | M] () -- C:\0
[2013/10/23 17:20:36 | 000,000,884 | RHS- | M] () -- C:\Documents and Settings\Sisavac\ntuser.pol
[2013/10/23 08:37:38 | 000,000,836 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\µTorrent.lnk
[2013/10/22 17:24:56 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avant Browser.lnk
[2013/10/22 17:10:58 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/22 12:06:38 | 000,001,666 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\BlueJ.lnk
[2013/10/22 12:05:05 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/10/22 12:05:03 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013/10/22 12:05:03 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013/10/22 12:05:03 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013/10/22 12:05:03 | 000,145,408 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013/10/22 11:13:25 | 000,002,300 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\Google Chrome.lnk
[2013/10/22 11:13:25 | 000,002,278 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/22 00:54:41 | 000,000,669 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2013/10/22 00:37:39 | 001,072,544 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013/10/22 00:37:39 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013/10/22 00:37:33 | 001,072,544 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013/10/22 00:37:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013/10/22 00:32:15 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/10/22 00:16:26 | 000,003,265 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2013/10/22 00:14:49 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2013/10/22 00:13:12 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/22 00:12:20 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/22 00:09:09 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/10/22 00:09:09 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2013/10/22 00:09:09 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2013/10/22 00:09:00 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/22 00:09:00 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/22 00:09:00 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/22 00:08:48 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/22 00:05:14 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/22 00:02:23 | 000,000,211 | ---- | M] () -- C:\Boot.bak

========== Files Created - No Company Name ==========

[2013/11/10 19:38:06 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2013/11/10 19:38:01 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2013/11/10 19:25:05 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2013/11/10 19:25:00 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2013/11/10 19:19:29 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2013/11/10 19:16:03 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2013/11/10 19:13:53 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2013/11/10 19:13:48 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2013/11/10 19:13:43 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2013/11/10 19:13:38 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2013/11/10 19:13:32 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2013/11/10 19:10:11 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2013/11/10 19:10:09 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2013/11/10 19:10:08 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2013/11/10 19:06:55 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2013/11/10 19:06:54 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2013/11/10 19:06:52 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2013/11/10 19:06:49 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2013/11/10 19:06:48 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2013/11/10 19:06:48 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2013/11/10 19:06:47 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2013/11/10 19:06:47 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2013/11/10 19:06:45 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2013/11/10 19:06:31 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2013/11/10 02:24:01 | 001,390,861 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\HiJackThis.msi.part
[2013/11/10 01:25:42 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2013/11/10 01:25:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2013/11/10 01:24:31 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2013/11/10 01:24:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2013/11/10 01:24:31 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2013/11/10 01:24:31 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2013/11/10 01:24:31 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2013/11/09 14:33:15 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/05 22:25:39 | 000,000,716 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\Shortcut to bsplayer.exe.lnk
[2013/10/24 23:55:02 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\SpeedyPC Registration3.job
[2013/10/24 23:50:28 | 000,000,554 | ---- | C] () -- C:\0
[2013/10/24 23:49:28 | 000,000,854 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\SpeedyPC Pro.lnk
[2013/10/23 08:37:38 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\µTorrent.lnk
[2013/10/22 17:25:05 | 000,000,884 | RHS- | C] () -- C:\Documents and Settings\Sisavac\ntuser.pol
[2013/10/22 17:24:56 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avant Browser.lnk
[2013/10/22 12:06:38 | 000,001,666 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\BlueJ.lnk
[2013/10/22 11:13:25 | 000,002,300 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\Google Chrome.lnk
[2013/10/22 11:13:25 | 000,002,278 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/22 01:57:45 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/22 01:57:42 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2013/10/22 01:57:42 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2013/10/22 01:57:42 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2013/10/22 01:57:41 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2013/10/22 01:57:22 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2013/10/22 01:57:08 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013/10/22 01:57:08 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013/10/22 01:57:08 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2013/10/22 01:57:08 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2013/10/22 01:57:08 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2013/10/22 01:57:08 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2013/10/22 01:57:08 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2013/10/22 01:57:08 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2013/10/22 01:57:08 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2013/10/22 01:57:08 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013/10/22 01:57:08 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2013/10/22 01:57:08 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013/10/22 01:57:08 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013/10/22 01:57:08 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013/10/22 01:57:08 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2013/10/22 01:57:08 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013/10/22 01:57:07 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2013/10/22 01:57:07 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2013/10/22 01:57:07 | 000,504,678 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013/10/22 01:56:19 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/22 01:54:13 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2013/10/22 01:54:08 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/22 00:54:41 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2013/10/22 00:37:33 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013/10/22 00:37:33 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013/10/22 00:37:33 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013/10/22 00:37:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013/10/22 00:37:18 | 002,816,504 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2013/10/22 00:37:18 | 000,015,449 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2013/10/22 00:32:15 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/10/22 00:17:31 | 000,001,024 | R--- | C] () -- C:\WINDOWS\System32\drivers\jedih2rx.bin
[2013/10/22 00:17:31 | 000,000,122 | R--- | C] () -- C:\WINDOWS\System32\drivers\ramsed.bin
[2013/10/22 00:17:31 | 000,000,042 | R--- | C] () -- C:\WINDOWS\System32\drivers\jedireg.pat
[2013/10/22 00:16:25 | 000,003,265 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2013/10/22 00:16:18 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2013/10/22 00:14:49 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2013/10/22 00:14:43 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Outlook Express.lnk
[2013/10/22 00:14:41 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/22 00:14:41 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Internet Explorer.lnk
[2013/10/22 00:14:35 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Remote Assistance.lnk
[2013/10/22 00:14:35 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Windows Media Player.lnk
[2013/10/22 00:12:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/10/22 00:11:31 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2013/10/22 00:11:10 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/10/22 00:11:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013/10/22 00:11:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2013/10/22 00:10:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013/10/22 00:10:46 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2013/10/22 00:10:36 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013/10/22 00:10:31 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2013/10/22 00:10:19 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013/10/22 00:09:09 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/10/22 00:09:09 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2013/10/22 00:09:09 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2013/10/22 00:09:00 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/22 00:09:00 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/22 00:08:58 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/22 00:07:36 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2013/10/22 00:07:21 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2013/10/22 00:06:42 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2013/10/22 00:06:42 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2013/10/22 00:06:32 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2013/10/22 00:06:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2013/10/22 00:06:02 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2013/10/22 00:05:16 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2013/10/22 00:05:14 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/22 00:04:42 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk
[2013/10/22 00:04:09 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2013/10/22 00:04:09 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2013/10/22 00:04:09 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2013/10/22 00:04:09 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2013/10/22 00:04:09 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2013/10/22 00:04:08 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2013/10/22 00:04:08 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2013/10/22 00:04:08 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2013/10/22 00:04:08 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2013/10/22 00:04:08 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2013/10/22 00:04:08 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2013/10/22 00:04:04 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2013/10/22 00:04:04 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2013/10/22 00:04:02 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2013/10/22 00:03:53 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/01/07 17:20:52 | 001,497,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2006/02/28 13:00:00 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2006/02/28 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >

Edited by fartuditu, 10 November 2013 - 02:50 PM.

#2
Buddierdl

Posted 11 November 2013 - 08:41 AM

Trusted Helper

Malware Removal
2,524 posts

Hello and welcome to Geeks to Go. I am sorry that you are having troubles with your computer and will try my best to help you. I know that being infected is very frustrating, but I will be here to help you through the whole process of cleaning. Removing malware can be difficult and complicated and will most likely take many steps, so please stick with me until I have declared your computer clean. I always recommend printing my instructions before following them in case you cannot keep this webpage open. Please be sure to alway follow all steps exactly as they are written and let me know what happens each time. Stop and ask if something unexpected happens or if you are unsure of how to proceed.

Please respect my volunteered time and stay with me until I declare your computer clean. If you are going to be delayed for a while, please let me know.

Please do post the ComboFix log, but note that you really shouldn't run it without being asked to by someone who has experience with the tool, as it can have unintended results.

I will take a look at your OTL log in the meantime.

#3
fartuditu

Posted 12 November 2013 - 04:37 AM

Member

Topic Starter
Member
30 posts

Thanks for your willingness to help me with your expert knowledge! I will do as you say. Thank you for your time and effort!

I wasn't clear on whether i should post ComboFix log that i made previously or if i should run ComboFix again. I opted for latter since i thought new things might have happened on my pc. So i ran Malwarebytes first, which detected PUP.Optional.DefaultTab.A and i allowed Malwarebytes to remove it. Then i tried to run ComboFix, but i couldn't, as this msg appeared:

NSIS error

Installer integrity check has failed. Common causes include incomplete download and damaged media.
Contact the installer's author to obtain a new copy.

So i will post this first log file from ComboFix, since i can't make newer one. Hopefully that will do.

ComboFix 13-11-07.01 - Sisavac 11/10/2013 1:27.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.710 [GMT 1:00]
Running from: c:\documents and settings\Sisavac\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ASC3360PR
-------\Legacy_VMWARESERVICE
-------\Service_asc3360pr
.
.
((((((((((((((((((((((((( Files Created from 2013-10-10 to 2013-11-10 )))))))))))))))))))))))))))))))
.
.
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-01-31 15517472]
"NvMediaCenter"="NvMCTray.dll" [2013-01-31 108832]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-01-31 2051944]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 332160]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\Documents and Settings\\Sisavac\\Application Data\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\NVIDIA Corporation\\nview\\nwiz.exe"=
"c:\\Program Files\\Malwarebytes' Anti-Malware\\mbamservice.exe"=
"c:\\WINDOWS\\system32\\taskmgr.exe"=
"c:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Mozilla Firefox\\crashreporter.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5406:TCP"= 5406:TCP:gcpfvbh
.
R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [11/9/2013 2:33 PM 418376]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [11/9/2013 2:33 PM 775240]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [11/9/2013 2:33 PM 22856]
S2 flshneg;Installer Shell;c:\windows\system32\svchost.exe -k netsvcs [2/28/2006 1:00 PM 14336]
S2 secfndcsf;Update Task;c:\windows\system32\svchost.exe -k netsvcs [2/28/2006 1:00 PM 14336]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ASC3360PR
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
secfndcsf
flshneg
.
Contents of the 'Scheduled Tasks' folder
.
2013-11-09 c:\windows\Tasks\SpeedyPC Registration3.job
- c:\program files\Common Files\SpeedyPC Software\UUS3\UUS3.dll [2012-11-26 18:02]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.kongregate.com/games/nexoncls/cloudstone
TCP: DhcpNameServer = 95.180.0.18 95.180.1.2
FF - ProfilePath - c:\documents and settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-10-22 13:17; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\documents and settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-11-10 01:32
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\flshneg]
"ServiceDll"="c:\windows\system32\linvdqay.dll"
--
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\secfndcsf]
"ServiceDll"="c:\windows\system32\linvdqay.dll"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(1172)
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\RunDLL32.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\system32\imapi.exe
.
**************************************************************************
.
Completion time: 2013-11-10 01:34:50 - machine was rebooted
ComboFix-quarantined-files.txt 2013-11-10 00:34
.
Pre-Run: 20,440,498,176 bytes free
Post-Run: 20,439,613,440 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 08BB7CA021105E3B8D7A45D0E83C6747
8F558EB6672622401DA993E1E865C861

#4
Buddierdl

Posted 12 November 2013 - 08:24 AM

Trusted Helper

Malware Removal
2,524 posts

Okay, it looks like you may have the infamous Sality file infector. This virus infects executables on your computer, making it very hard to remove, if even possible. Usually, a reformat is the best solution, but if you would like to give it a try, follow the steps below:

Download and unpack the file SalityKiller.exe in the root of disk C:\.
Press Win+R key sequence.
In the new window copy and paste the following:
```
C:\SalityKiller.exe -l C:\sklog1.txt
```
Click OK button.
A reboot might be required after disinfection.
Download the file Sality_RegKeys.zip.
Unpack the file Sality_RegKeys.zip.
Run the file Disable_autorun.reg from the archive Sality_RegKeys.zip.
Click Yes to confirm adding the information to the registry.
Post contents of C:\sklog.txt file in your next message.

#5
fartuditu

Posted 12 November 2013 - 08:25 AM

Member

Topic Starter
Member
30 posts

Don't know if this helps in any way, but on this site, i can't see 2 images on top. It's a site i found (i think) by reading this forum, and it should test if one has conflicker virus.

http://www.confickertest.com/

= Possibly Infected by Conficker A/B variant

ps. alright, just after posting, i noticed you made some instructions for me. Thanks. i'll go through them and report back.

Edited by fartuditu, 12 November 2013 - 08:25 AM.

#6
Buddierdl

Posted 12 November 2013 - 08:37 AM

Trusted Helper

Malware Removal
2,524 posts

Yes, you may have conflicker too. We'll check after this. I would recommend leaving this PC disconnected from the internet except for when downloading tools. It is very vulnerable with only SP2 installed. We'll have to install SP3 once it is clean.

#7
fartuditu

Posted 12 November 2013 - 08:55 AM

Member

Topic Starter
Member
30 posts

I did as you said, though i had to dl from alternative sites, since i can't access kaspersky site. After running salitykiller and restarting, malwarebytes once again startet to block some adresses. I forgot to mention this, but it was the case some time before, and then it stopped altogether after i deleted csrsc.exe i think. I ran disable_autorun.reg. Here's the log:

btw, i still can't access av sites. I read about how i shouldn't be online during whole process afterwards. Please let me know if i should repeat some steps, like running salityKiller again and disable_autorun aswell. Thanks!

15:33:04:765 12092 scanning threads ...
15:33:06:875 12092 Infected thread was killed in process explorer.exe with PID 1432
15:33:06:890 12092 Infected thread was killed in process explorer.exe with PID 1432
15:33:07:062 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:078 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:203 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:234 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:281 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:312 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:359 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:390 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:437 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:484 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:515 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:562 12092 Infected thread was killed in process rundll32.exe with PID 1560
15:33:07:703 12092 Infected thread was killed in process jusched.exe with PID 1576
15:33:07:703 12092 Infected thread was killed in process jusched.exe with PID 1576
15:33:07:718 12092 Infected thread was killed in process jusched.exe with PID 1576
15:33:07:734 12092 Infected thread was killed in process jusched.exe with PID 1576
15:33:07:750 12092 Infected thread was killed in process ctfmon.exe with PID 1588
15:33:07:765 12092 Infected thread was killed in process ctfmon.exe with PID 1588
15:33:07:906 12092 Infected thread was killed in process taskmgr.exe with PID 900
15:33:07:906 12092 Infected thread was killed in process taskmgr.exe with PID 900
15:33:08:062 12092 Infected thread was killed in process chrome.exe with PID 9248
15:33:08:078 12092 Infected thread was killed in process chrome.exe with PID 9248
15:33:08:109 12092 Infected thread was killed in process chrome.exe with PID 9248
15:33:10:703 12092 Infected thread was killed in process chrome.exe with PID 9248
15:33:10:718 12092 Infected thread was killed in process chrome.exe with PID 9248
15:33:11:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:203 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:703 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:718 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:734 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:750 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:765 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:781 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:796 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:812 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:828 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:843 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:859 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:875 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:890 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:906 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:921 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:937 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:953 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:968 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:11:984 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:000 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:015 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:031 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:046 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:062 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:078 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:093 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:109 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:125 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:140 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:156 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:171 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:187 12092 Infected thread was killed in process chrome.exe with PID 18992
15:33:12:203 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:203 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:703 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:718 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:734 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:750 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:765 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:781 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:796 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:812 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:828 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:843 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:859 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:875 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:890 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:906 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:921 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:937 12092 Infected thread was killed in process chrome.exe with PID 2744
15:33:12:937 12092 Infected thread was killed in process chrome.exe with PID 16608
15:33:12:953 12092 Infected thread was killed in process chrome.exe with PID 16608
15:33:13:203 12092 Infected thread was killed in process chrome.exe with PID 16608
15:33:13:203 12092 Infected thread was killed in process chrome.exe with PID 16608
15:33:13:218 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:218 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:703 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:718 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:734 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:750 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:765 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 29208
15:33:13:781 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:13:796 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:265 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:281 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 32336
15:33:14:296 12092 Infected thread was killed in process chrome.exe with PID 11736
15:33:14:312 12092 Infected thread was killed in process chrome.exe with PID 11736
15:33:14:562 12092 Infected thread was killed in process chrome.exe with PID 11736
15:33:14:562 12092 Infected thread was killed in process chrome.exe with PID 11736
15:33:15:031 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:046 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:468 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:15:484 12092 Infected thread was killed in process chrome.exe with PID 6632
15:33:22:296 12092
15:33:22:296 12092 scanning processes ...
15:33:22:546 12092 C:\Program Files\Common Files\Java\Java Update\jusched.exe infected Virus.Win32.Sality.aa ...15:33:22:843 12092 terminated
15:33:23:015 12092 C:\Program Files\Common Files\Java\Java Update\jusched.exe infected Virus.Win32.Sality.aa ...15:33:23:015 12092 cured
15:33:23:171 12092 C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\chrome.exe infected Virus.Win32.Sality.aa ...15:33:23:468 12092 terminated
15:33:24:359 12092 C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\chrome.exe infected Virus.Win32.Sality.aa ...15:33:24:359 12092 will be cured on reboot
15:33:24:671 12092
15:33:24:671 12092 fixing registry ...
15:33:24:671 25212
Monitoring thread started
15:33:24:671 12092 SalityRegCure: Restoring general registry keys
15:33:25:484 12092 SalityRegCure: Fixing system.ini
15:33:25:484 12092
15:33:25:484 12092 scanning drives ...
15:33:25:515 12092 scanning C:\ ...
15:33:40:453 12092 C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO\AC3 Filter\ac3config.exe infected Virus.Win32.Sality.aa ...15:33:40:453 12092 cured
15:33:41:375 12092 C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO\AC3 Filter\spdif_test.exe infected Virus.Win32.Sality.aa ...15:33:41:375 12092 cured
15:33:42:968 12092 C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO\Haali media splitter\dsmux.exe infected Virus.Win32.Sality.aa ...15:33:42:968 12092 cured
15:33:43:234 12092 C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO\Haali media splitter\gdsmux.exe infected Virus.Win32.Sality.aa ...15:33:43:234 12092 cured
15:33:43:453 12092 C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO\Haali media splitter\mkv2vfr.exe infected Virus.Win32.Sality.aa ...15:33:43:453 12092 cured
15:33:43:843 12092 C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO\Haali media splitter\uninstall.exe infected Virus.Win32.Sality.aa ...15:33:43:843 12092 cured
15:33:50:671 12092 C:\Documents and Settings\Sisavac\Application Data\uTorrent\updates\3.3.2_30180.exe infected Virus.Win32.Sality.aa ...15:33:50:671 12092 cured
15:33:50:859 12092 C:\Documents and Settings\Sisavac\Application Data\uTorrent\uTorrent.exe infected Virus.Win32.Sality.aa ...15:33:50:859 12092 cured
15:33:51:609 12092 C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe infected Virus.Win32.Sality.aa ...15:33:51:609 12092 cured
15:33:51:875 12092 C:\Documents and Settings\Sisavac\Desktop\eclipse-java-juno-SR1-win32\eclipse\eclipse.exe infected Virus.Win32.Sality.aa ...15:33:51:875 12092 cured
15:33:52:062 12092 C:\Documents and Settings\Sisavac\Desktop\eclipse-java-juno-SR1-win32\eclipse\eclipsec.exe infected Virus.Win32.Sality.aa ...15:33:52:062 12092 cured
15:34:11:359 12092 C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\chrome_frame_helper.exe infected Virus.Win32.Sality.aa ...15:34:11:359 12092 cured
15:34:11:562 12092 C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\chrome_launcher.exe infected Virus.Win32.Sality.aa ...15:34:11:562 12092 cured
15:34:11:921 12092 C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\Installer\setup.exe infected Virus.Win32.Sality.aa ...15:34:11:921 12092 cured
15:34:13:375 12092 C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\chrome.exe infected Virus.Win32.Sality.aa ...15:34:13:375 12092 cured
15:34:49:500 12092 C:\Documents and Settings\Sisavac\Local Settings\temp\0002164D_Rar\ComboFix.exe infected Virus.Win32.Sality.aa ...15:34:49:500 12092 cured
15:34:49:781 12092 C:\Documents and Settings\Sisavac\Local Settings\temp\00D6F2FA_Rar\ComboFix.exe infected Virus.Win32.Sality.aa ...15:34:49:781 12092 cured
15:34:50:046 12092 C:\Documents and Settings\Sisavac\Local Settings\temp\00DB070B_Rar\ComboFix.exe infected Virus.Win32.Sality.aa ...15:34:50:046 12092 cured
15:35:35:343 12092 C:\Documents and Settings\Sisavac\Local Settings\Temporary Internet Files\Content.IE5\6QVSPSKW\aupgrade[1].exe infected Virus.Win32.Sality.aa ...15:35:35:343 12092 cured
15:36:00:453 12092 C:\Documents and Settings\Sisavac\My Documents\Downloads\Microsoft Office 2007\Microsoft Office 2007\Enterprise.WW\ose.exe infected Virus.Win32.Sality.aa ...15:36:00:453 12092 cured
15:36:01:078 12092 C:\Documents and Settings\Sisavac\My Documents\Downloads\Microsoft Office 2007\Microsoft Office 2007\Office.en-us\DW20.EXE infected Virus.Win32.Sality.aa ...15:36:01:078 12092 cured
15:36:01:328 12092 C:\Documents and Settings\Sisavac\My Documents\Downloads\Microsoft Office 2007\Microsoft Office 2007\Office.en-us\dwtrig20.exe infected Virus.Win32.Sality.aa ...15:36:01:328 12092 cured
15:36:02:640 12092 C:\Documents and Settings\Sisavac\My Documents\Downloads\Microsoft Office 2007\Microsoft Office 2007\setup.exe infected Virus.Win32.Sality.aa ...15:36:02:640 12092 cured
15:36:11:656 12092 C:\Program Files\Avant Browser\uninst.exe infected Virus.Win32.Sality.aa ...15:36:11:656 12092 cured
15:36:17:859 12092 C:\Program Files\CCleaner\uninst.exe infected Virus.Win32.Sality.aa ...15:36:17:859 12092 cured
15:36:18:093 12092 C:\Program Files\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe infected Virus.Win32.Sality.aa ...15:36:18:093 12092 cured
15:36:18:375 12092 C:\Program Files\Common Files\Java\Java Update\jaucheck.exe infected Virus.Win32.Sality.aa ...15:36:18:375 12092 cured
15:36:18:593 12092 C:\Program Files\Common Files\Java\Java Update\jaureg.exe infected Virus.Win32.Sality.aa ...15:36:18:593 12092 cured
15:36:18:812 12092 C:\Program Files\Common Files\Java\Java Update\jucheck.exe infected Virus.Win32.Sality.aa ...15:36:18:812 12092 cured
15:36:19:968 12092 C:\Program Files\Common Files\SpeedyPC Software\UUS3\SpeedyPC_Update3.exe infected Virus.Win32.Sality.aa ...15:36:19:968 12092 cured
15:36:21:546 12092 C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe infected Virus.Win32.Sality.aa ...15:36:21:546 12092 cured
15:36:21:750 12092 C:\Program Files\Foxit Software\Foxit Reader\Foxit Updater.exe infected Virus.Win32.Sality.aa ...15:36:21:750 12092 cured
15:36:22:140 12092 C:\Program Files\Foxit Software\Foxit Reader\plugins\Creator\FXC_ProxyProcess.exe infected Virus.Win32.Sality.aa ...15:36:22:140 12092 cured
15:36:22:593 12092 C:\Program Files\Foxit Software\Foxit Reader\SendCrashReport.exe infected Virus.Win32.Sality.aa ...15:36:22:593 12092 cured
15:36:22:859 12092 C:\Program Files\Foxit Software\Foxit Reader\Shell Extensions\FoxitPrevhost.exe infected Virus.Win32.Sality.aa ...15:36:22:859 12092 cured
15:36:26:218 12092 C:\Program Files\Internet Explorer\ExtExport.exe infected Virus.Win32.Sality.aa ...15:36:26:218 12092 cured
15:36:26:750 12092 C:\Program Files\Java\jdk1.7.0_45\bin\jabswitch.exe infected Virus.Win32.Sality.aa ...15:36:26:750 12092 cured
15:36:27:015 12092 C:\Program Files\Java\jdk1.7.0_45\bin\java.exe infected Virus.Win32.Sality.aa ...15:36:27:015 12092 cured
15:36:27:234 12092 C:\Program Files\Java\jdk1.7.0_45\bin\javafxpackager.exe infected Virus.Win32.Sality.aa ...15:36:27:234 12092 cured
15:36:27:515 12092 C:\Program Files\Java\jdk1.7.0_45\bin\javaw.exe infected Virus.Win32.Sality.aa ...15:36:27:515 12092 cured
15:36:27:703 12092 C:\Program Files\Java\jdk1.7.0_45\bin\javaws.exe infected Virus.Win32.Sality.aa ...15:36:27:703 12092 cured
15:36:28:015 12092 C:\Program Files\Java\jdk1.7.0_45\bin\jmc.exe infected Virus.Win32.Sality.aa ...15:36:28:015 12092 cured
15:36:28:453 12092 C:\Program Files\Java\jdk1.7.0_45\bin\packager.exe infected Virus.Win32.Sality.aa ...15:36:28:453 12092 cured
15:36:28:750 12092 C:\Program Files\Java\jdk1.7.0_45\bin\unpack200.exe infected Virus.Win32.Sality.aa ...15:36:28:750 12092 cured
15:36:30:265 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\jabswitch.exe infected Virus.Win32.Sality.aa ...15:36:30:265 12092 cured
15:36:30:468 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\java.exe infected Virus.Win32.Sality.aa ...15:36:30:468 12092 cured
15:36:30:703 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\javacpl.exe infected Virus.Win32.Sality.aa ...15:36:30:703 12092 cured
15:36:30:937 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\javaw.exe infected Virus.Win32.Sality.aa ...15:36:30:937 12092 cured
15:36:31:140 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\javaws.exe infected Virus.Win32.Sality.aa ...15:36:31:140 12092 cured
15:36:31:515 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\jp2launcher.exe infected Virus.Win32.Sality.aa ...15:36:31:515 12092 cured
15:36:31:859 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\jqs.exe infected Virus.Win32.Sality.aa ...15:36:31:859 12092 cured
15:36:32:468 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\ssvagent.exe infected Virus.Win32.Sality.aa ...15:36:32:468 12092 cured
15:36:32:781 12092 C:\Program Files\Java\jdk1.7.0_45\jre\bin\unpack200.exe infected Virus.Win32.Sality.aa ...15:36:32:781 12092 cured
15:36:33:921 12092 C:\Program Files\Java\jdk1.7.0_45\jre\lib\launcher.exe infected Virus.Win32.Sality.aa ...15:36:33:921 12092 cured
15:36:40:312 12092 C:\Program Files\Java\jre7\bin\jabswitch.exe infected Virus.Win32.Sality.aa ...15:36:40:312 12092 cured
15:36:40:515 12092 C:\Program Files\Java\jre7\bin\java.exe infected Virus.Win32.Sality.aa ...15:36:40:515 12092 cured
15:36:40:750 12092 C:\Program Files\Java\jre7\bin\javacpl.exe infected Virus.Win32.Sality.aa ...15:36:40:750 12092 cured
15:36:40:968 12092 C:\Program Files\Java\jre7\bin\javaw.exe infected Virus.Win32.Sality.aa ...15:36:40:968 12092 cured
15:36:41:203 12092 C:\Program Files\Java\jre7\bin\javaws.exe infected Virus.Win32.Sality.aa ...15:36:41:203 12092 cured
15:36:41:453 12092 C:\Program Files\Java\jre7\bin\jp2launcher.exe infected Virus.Win32.Sality.aa ...15:36:41:453 12092 cured
15:36:41:968 12092 C:\Program Files\Java\jre7\bin\ssvagent.exe infected Virus.Win32.Sality.aa ...15:36:41:968 12092 cured
15:36:42:187 12092 C:\Program Files\Java\jre7\bin\unpack200.exe infected Virus.Win32.Sality.aa ...15:36:42:187 12092 cured
15:36:44:953 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\firefox.exe infected Virus.Win32.Sality.aa ...15:36:44:953 12092 cured
15:36:45:171 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\firefox.scr infected Virus.Win32.Sality.aa ...15:36:45:171 12092 cured
15:36:45:656 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\iexplore.exe infected Virus.Win32.Sality.aa ...15:36:45:656 12092 cured
15:36:45:921 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\mbam-chameleon.exe infected Virus.Win32.Sality.aa ...15:36:45:921 12092 cured
15:36:46:265 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\mbam-chameleon.scr infected Virus.Win32.Sality.aa ...15:36:46:265 12092 cured
15:36:46:531 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\mbam-killer.exe infected Virus.Win32.Sality.aa ...15:36:46:531 12092 cured
15:36:46:750 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\rundll32.exe infected Virus.Win32.Sality.aa ...15:36:46:750 12092 cured
15:36:46:953 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe infected Virus.Win32.Sality.aa ...15:36:46:953 12092 cured
15:36:47:140 12092 C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe infected Virus.Win32.Sality.aa ...15:36:47:140 12092 cured
15:36:47:437 12092 C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe infected Virus.Win32.Sality.aa ...15:36:47:437 12092 cured
15:36:47:656 12092 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe infected Virus.Win32.Sality.aa ...15:36:47:656 12092 cured
15:36:47:890 12092 C:\Program Files\Malwarebytes' Anti-Malware\mbampt.exe infected Virus.Win32.Sality.aa ...15:36:47:890 12092 cured
15:36:48:078 12092 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe infected Virus.Win32.Sality.aa ...15:36:48:078 12092 cured
15:36:48:265 12092 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe infected Virus.Win32.Sality.aa ...15:36:48:265 12092 cured
15:36:49:015 12092 C:\Program Files\Mozilla Firefox\crashreporter.exe infected Virus.Win32.Sality.aa ...15:36:49:015 12092 cured
15:36:49:265 12092 C:\Program Files\Mozilla Firefox\firefox.exe infected Virus.Win32.Sality.aa ...15:36:49:265 12092 cured
15:36:49:546 12092 C:\Program Files\Mozilla Firefox\maintenanceservice.exe infected Virus.Win32.Sality.aa ...15:36:49:546 12092 cured
15:36:49:781 12092 C:\Program Files\Mozilla Firefox\maintenanceservice_installer.exe infected Virus.Win32.Sality.aa ...15:36:49:781 12092 cured
15:36:50:000 12092 C:\Program Files\Mozilla Firefox\plugin-hang-ui.exe infected Virus.Win32.Sality.aa ...15:36:50:000 12092 cured
15:36:50:296 12092 C:\Program Files\Mozilla Firefox\uninstall\helper.exe infected Virus.Win32.Sality.aa ...15:36:50:296 12092 cured
15:36:50:515 12092 C:\Program Files\Mozilla Firefox\updater.exe infected Virus.Win32.Sality.aa ...15:36:50:515 12092 cured
15:36:50:750 12092 C:\Program Files\Mozilla Firefox\webapp-uninstaller.exe infected Virus.Win32.Sality.aa ...15:36:50:750 12092 cured
15:36:50:984 12092 C:\Program Files\Mozilla Firefox\webapprt-stub.exe infected Virus.Win32.Sality.aa ...15:36:50:984 12092 cured
15:36:51:203 12092 C:\Program Files\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe infected Virus.Win32.Sality.aa ...15:36:51:203 12092 cured
15:36:51:453 12092 C:\Program Files\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe infected Virus.Win32.Sality.aa ...15:36:51:453 12092 cured
15:36:51:687 12092 C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe infected Virus.Win32.Sality.aa ...15:36:51:687 12092 cured
15:36:52:515 12092 C:\Program Files\NVIDIA Corporation\3D Vision\NVStereoUtilityOGL.exe infected Virus.Win32.Sality.aa ...15:36:52:515 12092 cured
15:36:52:703 12092 C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe infected Virus.Win32.Sality.aa ...15:36:52:703 12092 cured
15:36:53:234 12092 C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe infected Virus.Win32.Sality.aa ...15:36:53:234 12092 cured
15:36:54:031 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\keystone.exe infected Virus.Win32.Sality.aa ...15:36:54:031 12092 cured
15:36:54:609 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nvAppBar.exe infected Virus.Win32.Sality.aa ...15:36:54:609 12092 cured
15:36:54:828 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nvcolor.exe infected Virus.Win32.Sality.aa ...15:36:54:828 12092 cured
15:36:55:484 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nvcplui.exe infected Virus.Win32.Sality.aa ...15:36:55:484 12092 cured
15:36:56:234 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nvDspSch.exe infected Virus.Win32.Sality.aa ...15:36:56:234 12092 cured
15:36:57:656 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nvSmartMaxapp.exe infected Virus.Win32.Sality.aa ...15:36:57:656 12092 cured
15:36:57:953 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nvsvc32.exe infected Virus.Win32.Sality.aa ...15:36:57:953 12092 cured
15:36:59:250 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\nwiz.exe infected Virus.Win32.Sality.aa ...15:36:59:250 12092 cured
15:36:59:593 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{3A4AE576-3841-454F-9914-FF45E1EC1A7C}\Setup.exe infected Virus.Win32.Sality.aa ...15:36:59:593 12092 cured
15:36:59:875 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{9F7D529B-14D6-4BBC-95A7-7093B1BF18F4}\dbInstaller.exe infected Virus.Win32.Sality.aa ...15:36:59:875 12092 cured
15:37:00:531 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{9F7D529B-14D6-4BBC-95A7-7093B1BF18F4}\NvStereoUtilityOGL.exe infected Virus.Win32.Sality.aa ...15:37:00:531 12092 cured
15:37:00:906 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.NView.{7B98BF29-FA70-473E-B6DB-40694178CCD1}\Keystone.exe infected Virus.Win32.Sality.aa ...15:37:00:906 12092 cured
15:37:01:109 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.NView.{7B98BF29-FA70-473E-B6DB-40694178CCD1}\nvAppBar.exe infected Virus.Win32.Sality.aa ...15:37:01:109 12092 cured
15:37:01:343 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.NView.{7B98BF29-FA70-473E-B6DB-40694178CCD1}\nvDspSch.exe infected Virus.Win32.Sality.aa ...15:37:01:343 12092 cured
15:37:01:703 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.NView.{7B98BF29-FA70-473E-B6DB-40694178CCD1}\nvTaskbar.exe infected Virus.Win32.Sality.aa ...15:37:01:703 12092 cured
15:37:02:734 12092 C:\Program Files\NVIDIA Corporation\Installer2\Display.NView.{7B98BF29-FA70-473E-B6DB-40694178CCD1}\nwiz.exe infected Virus.Win32.Sality.aa ...15:37:02:734 12092 cured
15:37:03:093 12092 C:\Program Files\NVIDIA Corporation\Installer2\installer.{36A35758-5C64-4D14-A95E-98DB65C14199}\Setup.exe infected Virus.Win32.Sality.aa ...15:37:03:093 12092 cured
15:37:04:140 12092 C:\Program Files\NVIDIA Corporation\Installer2\installer.{DA8D461E-982B-4D05-AB1A-DA71469D7903}\setup.exe infected Virus.Win32.Sality.aa ...15:37:04:140 12092 cured
15:37:04:453 12092 C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.{D87EAA75-D9B9-4F84-9719-43FB7771716B}\ComUpdatus.exe infected Virus.Win32.Sality.aa ...15:37:04:453 12092 cured
15:37:04:671 12092 C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.{D87EAA75-D9B9-4F84-9719-43FB7771716B}\daemonu.exe infected Virus.Win32.Sality.aa ...15:37:04:671 12092 cured
15:37:05:093 12092 C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe infected Virus.Win32.Sality.aa ...15:37:05:093 12092 cured
15:37:05:296 12092 C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe infected Virus.Win32.Sality.aa ...15:37:05:296 12092 cured
15:37:05:546 12092 C:\Program Files\NVIDIA Corporation\nview\keystone.exe infected Virus.Win32.Sality.aa ...15:37:05:546 12092 cured
15:37:05:765 12092 C:\Program Files\NVIDIA Corporation\nview\nvAppBar.exe infected Virus.Win32.Sality.aa ...15:37:05:765 12092 cured
15:37:05:968 12092 C:\Program Files\NVIDIA Corporation\nview\nvDspSch.exe infected Virus.Win32.Sality.aa ...15:37:05:968 12092 cured
15:37:06:625 12092 C:\Program Files\NVIDIA Corporation\nview\nwiz.exe infected Virus.Win32.Sality.aa ...15:37:06:625 12092 cured
15:37:09:796 12092 C:\Program Files\Opera\launcher.exe infected Virus.Win32.Sality.aa ...15:37:09:796 12092 cured
15:37:10:937 12092 C:\Program Files\SpeedyPC Software\SpeedyPC\SpeedyPC.exe infected Virus.Win32.Sality.aa ...15:37:10:937 12092 cured
15:37:11:156 12092 C:\Program Files\Webteh\BSplayerPro\bplay.exe infected Virus.Win32.Sality.aa ...15:37:11:156 12092 cured
15:37:11:375 12092 C:\Program Files\Webteh\BSplayerPro\bspadmin.exe infected Virus.Win32.Sality.aa ...15:37:11:375 12092 cured
15:37:11:546 12092 C:\Program Files\Webteh\BSplayerPro\bsplay.exe infected Virus.Win32.Sality.aa ...15:37:11:546 12092 cured
15:37:14:234 12092 C:\Program Files\Webteh\BSplayerPro\uninstall.EXE infected Virus.Win32.Sality.aa ...15:37:14:234 12092 cured
15:37:15:328 12092 C:\Program Files\WinRAR\Rar.exe infected Virus.Win32.Sality.aa ...15:37:15:328 12092 cured
15:37:15:609 12092 C:\Program Files\WinRAR\Uninstall.exe infected Virus.Win32.Sality.aa ...15:37:15:609 12092 cured
15:37:15:812 12092 C:\Program Files\WinRAR\UnRAR.exe infected Virus.Win32.Sality.aa ...15:37:15:812 12092 cured
15:37:16:062 12092 C:\Program Files\WinRAR\WinRAR.exe infected Virus.Win32.Sality.aa ...15:37:16:062 12092 cured
15:39:41:171 12092 scanning D:\ ...
15:39:41:843 12092 D:\Download\TuneUp Utilities 2014_v14.0.1000.88 + Keygen @ Only Upload Mughal\TuneUpUtilities2014_en-US.exe infected Virus.Win32.Sality.aa ...15:39:41:843 12092 cured
15:39:41:984 12092
15:39:42:000 25212
Monitoring thread stopped
15:39:42:000 12092
completed
15:39:42:000 12092 Infected files: 130
15:39:42:000 12092 Infected processes: 2
15:39:42:000 12092 Infected threads: 2169
15:39:42:000 12092 Cured files: 129
15:39:42:000 12092 Will be cured on reboot: 1
15:39:42:000 12092 Executed registry scripts: 1

#8
Buddierdl

Posted 12 November 2013 - 10:13 AM

Trusted Helper

Malware Removal
2,524 posts

Conflicker is probably blocking the AV sites. We'll take care of that after we make sure sality is gone. Please run SalityKiller one more time and post the log, then run an OTL quick scan.

#9
fartuditu

Posted 12 November 2013 - 12:25 PM

Member

Topic Starter
Member
30 posts

I didn't restart pc before or after scan. I ran salityKiller with this command in run.exe.

C:\SalityKiller.exe -l C:\sklog2.txt

I hope i got rid of sality, though i didn't check registly, nor did i run disable_autorun.reg.

I also ran OTL quick scan after salityKiller, and here are the two logs, for SalityKiller and OTL:

19:03:04:203 11976 scanning threads ...
19:03:12:984 11976
19:03:12:984 11976 scanning processes ...
19:03:13:765 11976
19:03:13:765 11976 fixing registry ...
19:03:13:796 2524
Monitoring thread started
19:03:13:859 11976 SalityRegCure: Restoring general registry keys
19:03:13:953 11976 SalityRegCure: Fixing system.ini
19:03:13:953 11976
19:03:13:953 11976 scanning drives ...
19:03:14:046 11976 scanning C:\ ...
19:09:29:718 11976 scanning D:\ ...
19:09:30:515 11976
19:09:30:515 2524
Monitoring thread stopped
19:09:30:515 11976
completed
19:09:30:515 11976 Infected files: 0
19:09:30:515 11976 Infected processes: 0
19:09:30:515 11976 Infected threads: 0
19:09:30:515 11976 Cured files: 0
19:09:30:515 11976 Will be cured on reboot: 0
19:09:30:515 11976 Executed registry scripts: 1

OTL logfile created on: 11/12/2013 7:10:56 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Sisavac\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1023.48 Mb Total Physical Memory | 715.06 Mb Available Physical Memory | 69.87% Memory free
2.40 Gb Paging File | 2.06 Gb Available in Paging File | 85.74% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 25.00 Gb Total Space | 18.82 Gb Free Space | 75.25% Space Free | Partition Type: NTFS
Drive D: | 51.32 Gb Total Space | 44.65 Gb Free Space | 87.01% Space Free | Partition Type: NTFS

Computer Name: SISAVAC-8348EE1 | User Name: Sisavac | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/12 15:36:48 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/11/12 15:36:48 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/11/12 15:36:47 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/11/10 18:53:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
PRC - [2013/10/22 12:05:04 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2006/02/28 13:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2013/11/12 15:37:05 | 001,259,296 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/11/12 15:36:48 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/11/12 15:36:48 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/10/22 12:05:04 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2006/02/28 13:00:00 | 000,166,092 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\linvdqay.dll -- (secfndcsf)
SRV - [2006/02/28 13:00:00 | 000,166,092 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\linvdqay.dll -- (flshneg)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2004/08/04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2002/12/05 05:01:00 | 000,241,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvapu.sys -- (nvnforce)
DRV - [2002/12/05 05:01:00 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvax.sys -- (nvax)
DRV - [2002/09/23 03:37:00 | 000,080,896 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENET.sys -- (NVENET)
DRV - [2002/09/06 04:24:00 | 000,013,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nv_agp.SYS -- (nv_agp)
DRV - [2001/08/17 15:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.kongregat...ncls/cloudstone
IE - HKCU\..\SearchScopes,DefaultScope = {C569304D-9604-4FCC-A5A7-FD78CD4EA1D0}
IE - HKCU\..\SearchScopes\{C569304D-9604-4FCC-A5A7-FD78CD4EA1D0}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.update: false
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2013/10/22 00:34:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Extensions
[2013/10/24 10:54:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions
[2013/10/22 12:17:15 | 000,915,554 | ---- | M] () (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/10/29 16:15:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/10/29 16:16:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Disabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Disabled) = internal-remoting-viewer
CHR - plugin: Native Client (Disabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Disabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Disabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Java Deployment Toolkit 7.0.450.18 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java™ Platform SE 7 U45 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2013/11/10 01:31:46 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\NoDriveTypeAutoRun: NoDriveTypeAutoRun = 177
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CB12A8FE-078E-4D2A-99AD-120274A5ADA9}: NameServer = 8.8.4.4,8.8.8.8
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2013/10/22 00:09:09 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/12 17:17:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NizoviObjekata
[2013/11/12 15:48:18 | 000,000,000 | ---D | C] -- C:\Sality_RegKeys
[2013/11/12 15:31:52 | 000,171,344 | ---- | C] (Kaspersky Lab ZAO) -- C:\SalityKiller.exe
[2013/11/10 19:38:14 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2013/11/10 19:38:10 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2013/11/10 19:37:32 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2013/11/10 19:37:27 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2013/11/10 19:37:07 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2013/11/10 19:37:02 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2013/11/10 19:36:52 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2013/11/10 19:36:29 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2013/11/10 19:36:09 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2013/11/10 19:36:05 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2013/11/10 19:36:01 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2013/11/10 19:35:54 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2013/11/10 19:35:49 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2013/11/10 19:35:44 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2013/11/10 19:35:40 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2013/11/10 19:35:21 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2013/11/10 19:35:04 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2013/11/10 19:35:00 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2013/11/10 19:34:56 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2013/11/10 19:34:48 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2013/11/10 19:34:25 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2013/11/10 19:34:09 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2013/11/10 19:34:05 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2013/11/10 19:33:48 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2013/11/10 19:33:44 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2013/11/10 19:33:40 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2013/11/10 19:33:36 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2013/11/10 19:33:33 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2013/11/10 19:33:29 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2013/11/10 19:32:53 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2013/11/10 19:32:47 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2013/11/10 19:32:42 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2013/11/10 19:32:41 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2013/11/10 19:32:36 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2013/11/10 19:32:33 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2013/11/10 19:32:18 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2013/11/10 19:32:15 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2013/11/10 19:31:28 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2013/11/10 19:31:24 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2013/11/10 19:31:20 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2013/11/10 19:31:16 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2013/11/10 19:31:10 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2013/11/10 19:30:47 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2013/11/10 19:30:14 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2013/11/10 19:30:10 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2013/11/10 19:30:06 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2013/11/10 19:30:02 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2013/11/10 19:29:59 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2013/11/10 19:29:28 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2013/11/10 19:29:25 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2013/11/10 19:29:21 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2013/11/10 19:29:13 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2013/11/10 19:28:42 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2013/11/10 19:28:38 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2013/11/10 19:28:35 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2013/11/10 19:28:32 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2013/11/10 19:28:02 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2013/11/10 19:27:54 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2013/11/10 19:27:50 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2013/11/10 19:27:34 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2013/11/10 19:27:31 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2013/11/10 19:27:27 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2013/11/10 19:27:24 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2013/11/10 19:27:20 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2013/11/10 19:27:17 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2013/11/10 19:27:14 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2013/11/10 19:27:10 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2013/11/10 19:27:07 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2013/11/10 19:26:58 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2013/11/10 19:26:55 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2013/11/10 19:26:50 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2013/11/10 19:26:47 | 000,024,576 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2013/11/10 19:26:33 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2013/11/10 19:26:26 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2013/11/10 19:26:21 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2013/11/10 19:26:15 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2013/11/10 19:25:56 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2013/11/10 19:25:53 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2013/11/10 19:25:17 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2013/11/10 19:25:14 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2013/11/10 19:25:10 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2013/11/10 19:24:57 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2013/11/10 19:23:53 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2013/11/10 19:23:40 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2013/11/10 19:23:38 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2013/11/10 19:23:35 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2013/11/10 19:22:50 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2013/11/10 19:22:46 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2013/11/10 19:22:43 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2013/11/10 19:22:38 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2013/11/10 19:22:01 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2013/11/10 19:21:46 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2013/11/10 19:21:43 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2013/11/10 19:21:34 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2013/11/10 19:21:17 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2013/11/10 19:21:14 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2013/11/10 19:21:03 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2013/11/10 19:21:00 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2013/11/10 19:20:57 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2013/11/10 19:20:53 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2013/11/10 19:20:50 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2013/11/10 19:20:47 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2013/11/10 19:20:38 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2013/11/10 19:20:34 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2013/11/10 19:20:31 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2013/11/10 19:20:28 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2013/11/10 19:20:24 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2013/11/10 19:19:21 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2013/11/10 19:18:42 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2013/11/10 19:18:20 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2013/11/10 19:18:17 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2013/11/10 19:18:15 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2013/11/10 19:18:12 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2013/11/10 19:18:12 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2013/11/10 19:18:09 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2013/11/10 19:18:00 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2013/11/10 19:17:57 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2013/11/10 19:17:54 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2013/11/10 19:17:51 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2013/11/10 19:17:46 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2013/11/10 19:17:43 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2013/11/10 19:16:43 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2013/11/10 19:15:58 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2013/11/10 19:13:55 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2013/11/10 19:13:45 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2013/11/10 19:13:10 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2013/11/10 19:13:08 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2013/11/10 19:13:05 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2013/11/10 19:12:50 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2013/11/10 19:12:36 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2013/11/10 19:12:34 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2013/11/10 19:12:29 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2013/11/10 19:12:27 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2013/11/10 19:12:25 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2013/11/10 19:12:23 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2013/11/10 19:12:07 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2013/11/10 19:12:02 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2013/11/10 19:12:00 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2013/11/10 19:10:29 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2013/11/10 19:10:24 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2013/11/10 19:10:15 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2013/11/10 19:10:13 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2013/11/10 19:10:12 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2013/11/10 19:10:07 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2013/11/10 19:10:06 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2013/11/10 19:10:04 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2013/11/10 19:10:03 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2013/11/10 19:10:01 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2013/11/10 19:09:40 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2013/11/10 19:09:38 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2013/11/10 19:09:34 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2013/11/10 19:09:09 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2013/11/10 19:09:08 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2013/11/10 19:09:06 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2013/11/10 19:09:05 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2013/11/10 19:09:04 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2013/11/10 19:09:03 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2013/11/10 19:09:02 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2013/11/10 19:09:00 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2013/11/10 19:08:52 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2013/11/10 19:08:37 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2013/11/10 19:08:27 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2013/11/10 19:08:16 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2013/11/10 19:08:16 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2013/11/10 19:08:15 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2013/11/10 19:08:14 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2013/11/10 19:08:14 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2013/11/10 19:08:11 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2013/11/10 19:08:10 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2013/11/10 19:08:10 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2013/11/10 19:08:09 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2013/11/10 19:08:07 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2013/11/10 19:08:06 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2013/11/10 19:07:30 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2013/11/10 19:07:30 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2013/11/10 19:07:29 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2013/11/10 19:07:29 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2013/11/10 19:07:28 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2013/11/10 19:07:27 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2013/11/10 19:07:26 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2013/11/10 19:07:26 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2013/11/10 19:07:24 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2013/11/10 19:07:23 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2013/11/10 19:07:22 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2013/11/10 19:07:21 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2013/11/10 19:07:21 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2013/11/10 19:07:20 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2013/11/10 19:07:19 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2013/11/10 19:07:19 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2013/11/10 19:07:18 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2013/11/10 19:07:18 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2013/11/10 19:07:13 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2013/11/10 19:07:10 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2013/11/10 19:07:09 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2013/11/10 19:07:09 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2013/11/10 19:07:08 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2013/11/10 19:07:07 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2013/11/10 19:07:06 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2013/11/10 19:07:06 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2013/11/10 19:06:16 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2013/11/10 19:06:07 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2013/11/10 19:05:48 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2013/11/10 19:05:47 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2013/11/10 19:05:46 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2013/11/10 19:05:46 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2013/11/10 19:05:45 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2013/11/10 19:05:43 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2013/11/10 19:05:39 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2013/11/10 19:05:39 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2013/11/10 19:05:37 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2013/11/10 19:05:36 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2013/11/10 19:05:36 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2013/11/10 18:53:03 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
[2013/11/10 01:38:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2013/11/10 01:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2013/11/10 01:25:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2013/11/10 01:24:31 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2013/11/10 01:24:31 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2013/11/10 01:24:31 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2013/11/10 01:24:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2013/11/10 01:24:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/11/10 01:24:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Videos
[2013/11/10 01:24:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Administrative Tools
[2013/11/10 01:24:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2013/11/10 01:18:30 | 005,145,633 | R--- | C] (Swearware) -- C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe
[2013/11/10 00:53:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/11/10 00:53:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/11/09 14:33:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Malwarebytes
[2013/11/09 14:33:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013/11/09 14:33:13 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/11/09 14:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/11/09 12:22:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\PaketINivoPristupa
[2013/11/08 17:36:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\Recent
[2013/11/08 15:10:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Interfejsi
[2013/11/08 11:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\PripremniZadaci
[2013/11/07 18:31:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Foxit Software
[2013/11/07 18:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Foxit Software
[2013/11/07 18:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2013/11/07 16:53:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NasledjivanjeKlasaObject
[2013/11/07 15:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Desktop\eclipse-java-juno-SR1-win32
[2013/11/07 10:04:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NasledjivanjeApstraktneKlase
[2013/11/06 13:46:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Nasledjivanje
[2013/11/05 22:19:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO
[2013/11/05 22:19:24 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh
[2013/11/04 23:35:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak8_2012
[2013/11/01 14:09:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak7_2012
[2013/10/31 22:35:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2013/10/30 22:35:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak6_2012
[2013/10/30 21:28:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak5_2012
[2013/10/30 19:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak4_2012
[2013/10/30 14:13:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak3_2012
[2013/10/29 16:15:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/10/29 15:36:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak2_2012
[2013/10/29 13:23:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak1_2012
[2013/10/29 12:29:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak8_2011
[2013/10/28 21:15:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak7_2011
[2013/10/26 19:17:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak6_2011
[2013/10/25 14:39:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak5_2011
[2013/10/25 13:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak4_2011
[2013/10/25 01:06:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak3_2011
[2013/10/24 23:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\SpeedyPC Software
[2013/10/24 23:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\DriverCure
[2013/10/24 23:52:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/10/24 23:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeedyPC Software
[2013/10/24 23:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\SpeedyPC Software
[2013/10/24 23:49:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedyPC Software
[2013/10/24 23:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SpeedyPC Software
[2013/10/24 17:32:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak2_2011
[2013/10/24 17:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Kolokvijum1_2012
[2013/10/24 17:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Kolokvijum1_2011
[2013/10/24 16:14:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak1_2011
[2013/10/24 12:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\OceneStudenata
[2013/10/24 11:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Avion
[2013/10/23 18:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\EditorTeksta
[2013/10/23 08:43:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\WinRAR
[2013/10/23 08:40:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
[2013/10/23 08:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\WinRAR
[2013/10/23 08:40:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2013/10/23 08:36:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\uTorrent
[2013/10/22 18:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\BrojacReci
[2013/10/22 17:25:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2013/10/22 17:25:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Avant Downloader
[2013/10/22 17:24:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Avant Profiles
[2013/10/22 17:24:53 | 000,000,000 | ---D | C] -- C:\Program Files\Avant Browser
[2013/10/22 17:16:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Sun
[2013/10/22 17:12:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\PrivacIE
[2013/10/22 17:10:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\IETldCache
[2013/10/22 17:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2013/10/22 17:08:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2013/10/22 17:08:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2013/10/22 12:55:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\AnalizatorReciIRecenica
[2013/10/22 12:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\bluej
[2013/10/22 12:06:35 | 000,000,000 | ---D | C] -- C:\Program Files\BlueJ
[2013/10/22 12:06:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2013/10/22 12:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/10/22 12:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java
[2013/10/22 12:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java Development Kit
[2013/10/22 12:03:47 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013/10/22 12:02:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Sun
[2013/10/22 11:22:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2013/10/22 11:13:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Google Chrome
[2013/10/22 11:13:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google
[2013/10/22 01:57:46 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2013/10/22 01:57:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2013/10/22 01:57:41 | 000,000,000 | R--D | C] -- C:\Program Files
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2013/10/22 01:57:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2013/10/22 01:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2013/10/22 01:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2013/10/22 01:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2013/10/22 01:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2013/10/22 01:56:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2013/10/22 01:56:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2013/10/22 01:56:20 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013/10/22 01:56:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2013/10/22 01:46:16 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2013/10/22 01:46:16 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2013/10/22 01:46:16 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2013/10/22 01:46:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2013/10/22 01:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Macromedia
[2013/10/22 01:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Adobe
[2013/10/22 00:59:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\UserData
[2013/10/22 00:58:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Adobe
[2013/10/22 00:54:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Opera Software
[2013/10/22 00:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Opera Software
[2013/10/22 00:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2013/10/22 00:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2013/10/22 00:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA
[2013/10/22 00:37:39 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2013/10/22 00:35:32 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/10/22 00:34:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Downloads
[2013/10/22 00:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Mozilla
[2013/10/22 00:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Mozilla
[2013/10/22 00:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2013/10/22 00:17:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2013/10/22 00:14:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Identities
[2013/10/22 00:14:41 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2013/10/22 00:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Pictures
[2013/10/22 00:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Music
[2013/10/22 00:14:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sisavac\Application Data\Microsoft
[2013/10/22 00:14:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\SendTo
[2013/10/22 00:14:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\Application Data
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Startup
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Favorites
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Accessories
[2013/10/22 00:14:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\Cookies
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\Templates
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\PrintHood
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\NetHood
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\Local Settings
[2013/10/22 00:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Microsoft
[2013/10/22 00:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Desktop
[2013/10/22 00:13:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2013/10/22 00:13:40 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2013/10/22 00:13:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/10/22 00:13:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2013/10/22 00:13:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2013/10/22 00:13:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2013/10/22 00:13:21 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2013/10/22 00:11:38 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013/10/22 00:11:38 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013/10/22 00:11:38 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/10/22 00:10:15 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2013/10/22 00:09:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2013/10/22 00:08:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2013/10/22 00:07:48 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2013/10/22 00:07:48 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2013/10/22 00:07:37 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2013/10/22 00:07:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2013/10/22 00:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2013/10/22 00:06:26 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2013/10/22 00:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2013/10/22 00:06:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2013/10/22 00:06:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2013/10/22 00:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2013/10/22 00:06:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2013/10/22 00:05:55 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2013/10/22 00:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2013/10/22 00:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2013/10/22 00:05:39 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2013/10/22 00:05:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2013/10/22 00:05:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2013/10/22 00:04:59 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2013/10/22 00:04:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2013/10/22 00:04:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2013/10/22 00:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2013/10/22 00:04:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2013/10/22 00:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2013/10/22 00:04:35 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2013/10/22 00:04:30 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2013/10/22 00:03:41 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2013/10/22 00:03:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2013/10/22 00:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2013/10/22 00:03:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2013/10/22 00:03:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2013/10/22 00:03:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2013/10/22 00:02:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories

========== Files - Modified Within 30 Days ==========

[2013/11/12 18:00:00 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\SpeedyPC Registration3.job
[2013/11/12 15:47:16 | 000,006,396 | ---- | M] () -- C:\sality_regkeys.zip
[2013/11/12 15:47:16 | 000,006,396 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\sality_regkeys.zip
[2013/11/12 15:42:45 | 000,164,134 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\salitykiller.zip
[2013/11/12 15:41:09 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/11/12 15:41:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/11/12 15:33:51 | 005,145,633 | R--- | M] (Swearware) -- C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe
[2013/11/12 15:31:09 | 000,164,134 | ---- | M] () -- C:\salitykiller.zip
[2013/11/10 18:53:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
[2013/11/10 18:22:47 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2013/11/10 02:29:17 | 001,390,861 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\HiJackThis.msi.part
[2013/11/10 01:31:46 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013/11/09 14:33:15 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/05 22:25:39 | 000,000,716 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\Shortcut to bsplayer.exe.lnk
[2013/10/28 10:18:11 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/10/28 10:18:11 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/10/24 23:49:28 | 000,000,854 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\SpeedyPC Pro.lnk
[2013/10/24 17:10:04 | 000,000,554 | ---- | M] () -- C:\0
[2013/10/23 17:20:36 | 000,000,884 | RHS- | M] () -- C:\Documents and Settings\Sisavac\ntuser.pol
[2013/10/23 08:37:38 | 000,000,836 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\µTorrent.lnk
[2013/10/22 17:24:56 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avant Browser.lnk
[2013/10/22 17:10:58 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/22 12:06:38 | 000,001,666 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\BlueJ.lnk
[2013/10/22 11:13:25 | 000,002,300 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\Google Chrome.lnk
[2013/10/22 11:13:25 | 000,002,278 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/22 00:54:41 | 000,000,669 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2013/10/22 00:37:39 | 001,072,544 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013/10/22 00:37:39 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013/10/22 00:37:33 | 001,072,544 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013/10/22 00:37:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013/10/22 00:32:15 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/10/22 00:16:26 | 000,003,265 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2013/10/22 00:14:49 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2013/10/22 00:13:12 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/22 00:12:20 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/22 00:09:09 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/10/22 00:09:09 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2013/10/22 00:09:09 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2013/10/22 00:09:00 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/22 00:09:00 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/22 00:09:00 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/22 00:08:48 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/22 00:05:14 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/22 00:02:23 | 000,000,211 | ---- | M] () -- C:\Boot.bak

========== Files Created - No Company Name ==========

[2013/11/12 15:47:57 | 000,006,396 | ---- | C] () -- C:\sality_regkeys.zip
[2013/11/12 15:47:14 | 000,006,396 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\sality_regkeys.zip
[2013/11/12 15:42:45 | 000,164,134 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\salitykiller.zip
[2013/11/12 15:31:03 | 000,164,134 | ---- | C] () -- C:\salitykiller.zip
[2013/11/10 19:38:06 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2013/11/10 19:38:01 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2013/11/10 19:25:05 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2013/11/10 19:25:00 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2013/11/10 19:19:29 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2013/11/10 19:16:03 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2013/11/10 19:13:53 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2013/11/10 19:13:48 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2013/11/10 19:13:43 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2013/11/10 19:13:38 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2013/11/10 19:13:32 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2013/11/10 19:10:11 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2013/11/10 19:10:09 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2013/11/10 19:10:08 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2013/11/10 19:06:55 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2013/11/10 19:06:54 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2013/11/10 19:06:52 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2013/11/10 19:06:49 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2013/11/10 19:06:48 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2013/11/10 19:06:48 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2013/11/10 19:06:47 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2013/11/10 19:06:47 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2013/11/10 19:06:45 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2013/11/10 19:06:31 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2013/11/10 02:24:01 | 001,390,861 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\HiJackThis.msi.part
[2013/11/10 01:25:42 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2013/11/10 01:25:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2013/11/10 01:24:31 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2013/11/10 01:24:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2013/11/10 01:24:31 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2013/11/10 01:24:31 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2013/11/10 01:24:31 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2013/11/09 14:33:15 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/05 22:25:39 | 000,000,716 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\Shortcut to bsplayer.exe.lnk
[2013/10/24 23:55:02 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\SpeedyPC Registration3.job
[2013/10/24 23:50:28 | 000,000,554 | ---- | C] () -- C:\0
[2013/10/24 23:49:28 | 000,000,854 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\SpeedyPC Pro.lnk
[2013/10/23 08:37:38 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\µTorrent.lnk
[2013/10/22 17:25:05 | 000,000,884 | RHS- | C] () -- C:\Documents and Settings\Sisavac\ntuser.pol
[2013/10/22 17:24:56 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avant Browser.lnk
[2013/10/22 12:06:38 | 000,001,666 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\BlueJ.lnk
[2013/10/22 11:13:25 | 000,002,300 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\Google Chrome.lnk
[2013/10/22 11:13:25 | 000,002,278 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/22 01:57:45 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/22 01:57:42 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2013/10/22 01:57:42 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2013/10/22 01:57:42 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2013/10/22 01:57:41 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2013/10/22 01:57:22 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2013/10/22 01:57:08 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013/10/22 01:57:08 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013/10/22 01:57:08 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2013/10/22 01:57:08 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2013/10/22 01:57:08 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2013/10/22 01:57:08 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2013/10/22 01:57:08 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2013/10/22 01:57:08 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2013/10/22 01:57:08 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2013/10/22 01:57:08 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013/10/22 01:57:08 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2013/10/22 01:57:08 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013/10/22 01:57:08 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013/10/22 01:57:08 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013/10/22 01:57:08 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2013/10/22 01:57:08 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013/10/22 01:57:07 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2013/10/22 01:57:07 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2013/10/22 01:57:07 | 000,504,678 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013/10/22 01:56:19 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/22 01:54:13 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2013/10/22 01:54:08 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/22 00:54:41 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2013/10/22 00:37:33 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013/10/22 00:37:33 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013/10/22 00:37:33 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013/10/22 00:37:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013/10/22 00:37:18 | 002,816,504 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2013/10/22 00:37:18 | 000,015,449 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2013/10/22 00:32:15 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/10/22 00:17:31 | 000,001,024 | R--- | C] () -- C:\WINDOWS\System32\drivers\jedih2rx.bin
[2013/10/22 00:17:31 | 000,000,122 | R--- | C] () -- C:\WINDOWS\System32\drivers\ramsed.bin
[2013/10/22 00:17:31 | 000,000,042 | R--- | C] () -- C:\WINDOWS\System32\drivers\jedireg.pat
[2013/10/22 00:16:25 | 000,003,265 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2013/10/22 00:16:18 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2013/10/22 00:14:49 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2013/10/22 00:14:43 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Outlook Express.lnk
[2013/10/22 00:14:41 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/22 00:14:41 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Internet Explorer.lnk
[2013/10/22 00:14:35 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Remote Assistance.lnk
[2013/10/22 00:14:35 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Windows Media Player.lnk
[2013/10/22 00:12:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/10/22 00:11:31 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2013/10/22 00:11:10 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/10/22 00:11:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013/10/22 00:11:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2013/10/22 00:10:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013/10/22 00:10:46 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2013/10/22 00:10:36 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013/10/22 00:10:31 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2013/10/22 00:10:19 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013/10/22 00:09:09 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/10/22 00:09:09 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2013/10/22 00:09:09 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2013/10/22 00:09:00 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/22 00:09:00 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/22 00:08:58 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/22 00:07:36 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2013/10/22 00:07:21 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2013/10/22 00:06:42 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2013/10/22 00:06:42 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2013/10/22 00:06:32 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2013/10/22 00:06:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2013/10/22 00:06:02 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2013/10/22 00:05:16 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2013/10/22 00:05:14 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/22 00:04:42 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk
[2013/10/22 00:04:09 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2013/10/22 00:04:09 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2013/10/22 00:04:09 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2013/10/22 00:04:09 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2013/10/22 00:04:09 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2013/10/22 00:04:08 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2013/10/22 00:04:08 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2013/10/22 00:04:08 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2013/10/22 00:04:08 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2013/10/22 00:04:08 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2013/10/22 00:04:08 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2013/10/22 00:04:04 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2013/10/22 00:04:04 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2013/10/22 00:04:02 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2013/10/22 00:03:53 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/01/07 17:20:52 | 001,497,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2006/02/28 13:00:00 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2006/02/28 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/11/10 00:53:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/10/24 23:49:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpeedyPC Software
[2013/11/10 00:53:01 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/10/22 17:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\Avant Downloader
[2013/11/06 00:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO
[2013/10/24 23:54:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\DriverCure
[2013/11/07 18:31:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\Foxit Software
[2013/10/22 00:54:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\Opera Software
[2013/10/24 23:54:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\SpeedyPC Software
[2013/11/10 00:58:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\uTorrent

========== Purity Check ==========

< End of report >

#10
Buddierdl

Posted 12 November 2013 - 12:55 PM

Trusted Helper

Malware Removal
2,524 posts

Ok, let's get rid of conflicker. I have given you a link to my dropbox, so the file should not be blocked.

Download the file kk.exe and save it to the root of disk C:\ (C:\kk.exe).
Connect all the flash drives, whose you have connected to this computer before, to your computer (if that's possible).
Press the Win+R key sequence.
In the new window paste the following:
```
C:\kidokiller.exe -l kk.txt -v
```
Wait until the scan is over. When the scan is over, press any key on the keyboard to close the utility.
Reboot your computer.
Post contents of C:\kk.txt file in your next message.

Next, please run a fresh OTL quick scan, then the scan below. Also, please run the SafeBootXP reg file from the sality download (before the two scans).

Please download Farbar Service Scanner and run it on the computer with the issue.

Make sure the all of the options are checked:
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

#11
fartuditu

Posted 12 November 2013 - 04:13 PM

Member

Topic Starter
Member
30 posts

Thank you for your time and great help so far! You helped me get rid of sality, and i can see pages on the internet that i couldn't before!

I followed the steps as instructed, attached flash, downloaded 2 files you gave me link for with no problems and ran programs. I ran kk.exe, then restarted. I ran SafeBootXP.reg, then 2 scans, OTL followed by FSS. I tried to post here twice already, but perhaps due to logs being too big, i failed, so i uploaded one log.

I still have r6002 floating point error, and it appears even though i turned off error report. I should perhaps mention also that i turned off some services, though i did mention this before. Here are the logs.

https://www.dropbox....fq8lskm1/kk.txt

OTL logfile created on: 11/12/2013 10:20:20 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Sisavac\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1023.48 Mb Total Physical Memory | 665.99 Mb Available Physical Memory | 65.07% Memory free
2.40 Gb Paging File | 2.14 Gb Available in Paging File | 89.02% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 25.00 Gb Total Space | 18.80 Gb Free Space | 75.17% Space Free | Partition Type: NTFS
Drive D: | 51.32 Gb Total Space | 44.65 Gb Free Space | 87.01% Space Free | Partition Type: NTFS

Computer Name: SISAVAC-8348EE1 | User Name: Sisavac | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/12 15:36:48 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/11/12 15:36:48 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/11/12 15:36:47 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/11/10 18:53:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
PRC - [2013/10/22 12:05:04 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2006/02/28 13:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2013/11/12 15:37:05 | 001,259,296 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/11/12 15:36:48 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/11/12 15:36:48 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/10/22 12:05:04 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2004/08/04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2002/12/05 05:01:00 | 000,241,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvapu.sys -- (nvnforce)
DRV - [2002/12/05 05:01:00 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvax.sys -- (nvax)
DRV - [2002/09/23 03:37:00 | 000,080,896 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENET.sys -- (NVENET)
DRV - [2002/09/06 04:24:00 | 000,013,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nv_agp.SYS -- (nv_agp)
DRV - [2001/08/17 15:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.kongregat...ncls/cloudstone
IE - HKCU\..\SearchScopes,DefaultScope = {C569304D-9604-4FCC-A5A7-FD78CD4EA1D0}
IE - HKCU\..\SearchScopes\{C569304D-9604-4FCC-A5A7-FD78CD4EA1D0}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.update: false
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2013/10/22 00:34:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Extensions
[2013/10/24 10:54:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions
[2013/10/22 12:17:15 | 000,915,554 | ---- | M] () (No name found) -- C:\Documents and Settings\Sisavac\Application Data\Mozilla\Firefox\Profiles\nc6hoehs.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/10/29 16:15:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/10/29 16:16:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Disabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Disabled) = internal-remoting-viewer
CHR - plugin: Native Client (Disabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google\Chrome\Application\14.0.835.187\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Disabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Disabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Java Deployment Toolkit 7.0.450.18 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java™ Platform SE 7 U45 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2013/11/10 01:31:46 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\NoDriveTypeAutoRun: NoDriveTypeAutoRun = 177
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CB12A8FE-078E-4D2A-99AD-120274A5ADA9}: NameServer = 8.8.4.4,8.8.8.8
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2013/10/22 00:09:09 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/12 22:09:41 | 000,360,775 | ---- | C] (Farbar) -- C:\Documents and Settings\Sisavac\Desktop\FSS.exe
[2013/11/12 22:06:53 | 000,171,344 | ---- | C] (Kaspersky Lab) -- C:\kidokiller.exe
[2013/11/12 17:17:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NizoviObjekata
[2013/11/12 15:48:18 | 000,000,000 | ---D | C] -- C:\Sality_RegKeys
[2013/11/12 15:31:52 | 000,171,344 | ---- | C] (Kaspersky Lab ZAO) -- C:\SalityKiller.exe
[2013/11/10 19:38:14 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2013/11/10 19:38:10 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2013/11/10 19:37:32 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2013/11/10 19:37:27 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2013/11/10 19:37:07 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2013/11/10 19:37:02 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2013/11/10 19:36:52 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2013/11/10 19:36:29 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2013/11/10 19:36:09 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2013/11/10 19:36:05 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2013/11/10 19:36:01 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2013/11/10 19:35:54 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2013/11/10 19:35:49 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2013/11/10 19:35:44 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2013/11/10 19:35:40 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2013/11/10 19:35:21 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2013/11/10 19:35:04 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2013/11/10 19:35:00 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2013/11/10 19:34:56 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2013/11/10 19:34:48 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2013/11/10 19:34:25 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2013/11/10 19:34:09 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2013/11/10 19:34:05 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2013/11/10 19:33:48 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2013/11/10 19:33:44 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2013/11/10 19:33:40 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2013/11/10 19:33:36 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2013/11/10 19:33:33 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2013/11/10 19:33:29 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2013/11/10 19:32:53 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2013/11/10 19:32:47 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2013/11/10 19:32:42 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2013/11/10 19:32:41 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2013/11/10 19:32:36 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2013/11/10 19:32:33 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2013/11/10 19:32:18 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2013/11/10 19:32:15 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2013/11/10 19:31:28 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2013/11/10 19:31:24 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2013/11/10 19:31:20 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2013/11/10 19:31:16 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2013/11/10 19:31:10 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2013/11/10 19:30:47 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2013/11/10 19:30:14 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2013/11/10 19:30:10 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2013/11/10 19:30:06 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2013/11/10 19:30:02 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2013/11/10 19:29:59 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2013/11/10 19:29:28 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2013/11/10 19:29:25 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2013/11/10 19:29:21 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2013/11/10 19:29:13 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2013/11/10 19:28:42 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2013/11/10 19:28:38 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2013/11/10 19:28:35 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2013/11/10 19:28:32 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2013/11/10 19:28:02 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2013/11/10 19:27:54 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2013/11/10 19:27:50 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2013/11/10 19:27:34 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2013/11/10 19:27:31 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2013/11/10 19:27:27 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2013/11/10 19:27:24 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2013/11/10 19:27:20 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2013/11/10 19:27:17 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2013/11/10 19:27:14 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2013/11/10 19:27:10 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2013/11/10 19:27:07 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2013/11/10 19:26:58 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2013/11/10 19:26:55 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2013/11/10 19:26:50 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2013/11/10 19:26:47 | 000,024,576 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2013/11/10 19:26:33 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2013/11/10 19:26:26 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2013/11/10 19:26:21 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2013/11/10 19:26:15 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2013/11/10 19:25:56 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2013/11/10 19:25:53 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2013/11/10 19:25:17 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2013/11/10 19:25:14 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2013/11/10 19:25:10 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2013/11/10 19:24:57 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2013/11/10 19:23:53 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2013/11/10 19:23:40 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2013/11/10 19:23:38 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2013/11/10 19:23:35 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2013/11/10 19:22:50 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2013/11/10 19:22:46 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2013/11/10 19:22:43 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2013/11/10 19:22:38 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2013/11/10 19:22:01 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2013/11/10 19:21:46 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2013/11/10 19:21:43 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2013/11/10 19:21:34 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2013/11/10 19:21:17 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2013/11/10 19:21:14 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2013/11/10 19:21:03 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2013/11/10 19:21:00 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2013/11/10 19:20:57 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2013/11/10 19:20:53 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2013/11/10 19:20:50 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2013/11/10 19:20:47 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2013/11/10 19:20:38 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2013/11/10 19:20:34 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2013/11/10 19:20:31 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2013/11/10 19:20:28 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2013/11/10 19:20:24 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2013/11/10 19:19:21 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2013/11/10 19:18:42 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2013/11/10 19:18:20 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2013/11/10 19:18:17 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2013/11/10 19:18:15 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2013/11/10 19:18:12 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2013/11/10 19:18:12 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2013/11/10 19:18:09 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2013/11/10 19:18:00 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2013/11/10 19:17:57 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2013/11/10 19:17:54 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2013/11/10 19:17:51 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2013/11/10 19:17:46 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2013/11/10 19:17:43 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2013/11/10 19:16:43 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2013/11/10 19:15:58 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2013/11/10 19:13:55 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2013/11/10 19:13:45 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2013/11/10 19:13:10 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2013/11/10 19:13:08 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2013/11/10 19:13:05 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2013/11/10 19:12:50 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2013/11/10 19:12:36 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2013/11/10 19:12:34 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2013/11/10 19:12:29 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2013/11/10 19:12:27 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2013/11/10 19:12:25 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2013/11/10 19:12:23 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2013/11/10 19:12:07 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2013/11/10 19:12:02 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2013/11/10 19:12:00 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2013/11/10 19:10:29 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2013/11/10 19:10:24 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2013/11/10 19:10:15 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2013/11/10 19:10:13 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2013/11/10 19:10:12 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2013/11/10 19:10:07 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2013/11/10 19:10:06 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2013/11/10 19:10:04 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2013/11/10 19:10:03 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2013/11/10 19:10:01 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2013/11/10 19:09:40 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2013/11/10 19:09:38 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2013/11/10 19:09:34 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2013/11/10 19:09:09 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2013/11/10 19:09:08 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2013/11/10 19:09:06 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2013/11/10 19:09:05 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2013/11/10 19:09:04 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2013/11/10 19:09:03 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2013/11/10 19:09:02 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2013/11/10 19:09:00 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2013/11/10 19:08:52 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2013/11/10 19:08:37 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2013/11/10 19:08:27 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2013/11/10 19:08:16 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2013/11/10 19:08:16 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2013/11/10 19:08:15 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2013/11/10 19:08:14 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2013/11/10 19:08:14 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2013/11/10 19:08:11 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2013/11/10 19:08:10 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2013/11/10 19:08:10 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2013/11/10 19:08:09 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2013/11/10 19:08:07 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2013/11/10 19:08:06 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2013/11/10 19:07:30 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2013/11/10 19:07:30 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2013/11/10 19:07:29 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2013/11/10 19:07:29 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2013/11/10 19:07:28 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2013/11/10 19:07:27 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2013/11/10 19:07:26 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2013/11/10 19:07:26 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2013/11/10 19:07:24 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2013/11/10 19:07:23 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2013/11/10 19:07:22 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2013/11/10 19:07:21 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2013/11/10 19:07:21 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2013/11/10 19:07:20 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2013/11/10 19:07:19 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2013/11/10 19:07:19 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2013/11/10 19:07:18 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2013/11/10 19:07:18 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2013/11/10 19:07:13 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2013/11/10 19:07:10 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2013/11/10 19:07:09 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2013/11/10 19:07:09 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2013/11/10 19:07:08 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2013/11/10 19:07:07 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2013/11/10 19:07:06 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2013/11/10 19:07:06 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2013/11/10 19:06:16 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2013/11/10 19:06:07 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2013/11/10 19:05:48 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2013/11/10 19:05:47 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2013/11/10 19:05:46 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2013/11/10 19:05:46 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2013/11/10 19:05:45 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2013/11/10 19:05:43 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2013/11/10 19:05:39 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2013/11/10 19:05:39 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2013/11/10 19:05:37 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2013/11/10 19:05:36 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2013/11/10 19:05:36 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2013/11/10 18:53:03 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
[2013/11/10 01:38:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2013/11/10 01:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2013/11/10 01:25:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2013/11/10 01:24:31 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2013/11/10 01:24:31 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2013/11/10 01:24:31 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2013/11/10 01:24:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2013/11/10 01:24:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/11/10 01:24:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Videos
[2013/11/10 01:24:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Administrative Tools
[2013/11/10 01:24:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2013/11/10 01:18:30 | 005,145,633 | R--- | C] (Swearware) -- C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe
[2013/11/10 00:53:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/11/10 00:53:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/11/09 14:33:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Malwarebytes
[2013/11/09 14:33:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013/11/09 14:33:13 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/11/09 14:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/11/09 12:22:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\PaketINivoPristupa
[2013/11/08 17:36:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\Recent
[2013/11/08 15:10:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Interfejsi
[2013/11/08 11:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\PripremniZadaci
[2013/11/07 18:31:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Foxit Software
[2013/11/07 18:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Foxit Software
[2013/11/07 18:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2013/11/07 16:53:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NasledjivanjeKlasaObject
[2013/11/07 15:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Desktop\eclipse-java-juno-SR1-win32
[2013/11/07 10:04:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\NasledjivanjeApstraktneKlase
[2013/11/06 13:46:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Nasledjivanje
[2013/11/05 22:19:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO
[2013/11/05 22:19:24 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh
[2013/11/04 23:35:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak8_2012
[2013/11/01 14:09:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak7_2012
[2013/10/31 22:35:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2013/10/30 22:35:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak6_2012
[2013/10/30 21:28:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak5_2012
[2013/10/30 19:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak4_2012
[2013/10/30 14:13:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak3_2012
[2013/10/29 16:15:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/10/29 15:36:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak2_2012
[2013/10/29 13:23:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak1_2012
[2013/10/29 12:29:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak8_2011
[2013/10/28 21:15:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak7_2011
[2013/10/26 19:17:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak6_2011
[2013/10/25 14:39:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak5_2011
[2013/10/25 13:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak4_2011
[2013/10/25 01:06:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak3_2011
[2013/10/24 23:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\SpeedyPC Software
[2013/10/24 23:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\DriverCure
[2013/10/24 23:52:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/10/24 23:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeedyPC Software
[2013/10/24 23:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\SpeedyPC Software
[2013/10/24 23:49:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedyPC Software
[2013/10/24 23:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SpeedyPC Software
[2013/10/24 17:32:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak2_2011
[2013/10/24 17:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Kolokvijum1_2012
[2013/10/24 17:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Kolokvijum1_2011
[2013/10/24 16:14:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Zadatak1_2011
[2013/10/24 12:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\OceneStudenata
[2013/10/24 11:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Avion
[2013/10/23 18:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\EditorTeksta
[2013/10/23 08:43:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\WinRAR
[2013/10/23 08:40:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
[2013/10/23 08:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\WinRAR
[2013/10/23 08:40:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2013/10/23 08:36:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\uTorrent
[2013/10/22 18:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\BrojacReci
[2013/10/22 17:25:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2013/10/22 17:25:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Avant Downloader
[2013/10/22 17:24:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Avant Profiles
[2013/10/22 17:24:53 | 000,000,000 | ---D | C] -- C:\Program Files\Avant Browser
[2013/10/22 17:16:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Sun
[2013/10/22 17:12:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\PrivacIE
[2013/10/22 17:10:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\IETldCache
[2013/10/22 17:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2013/10/22 17:08:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2013/10/22 17:08:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2013/10/22 12:55:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\AnalizatorReciIRecenica
[2013/10/22 12:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\bluej
[2013/10/22 12:06:35 | 000,000,000 | ---D | C] -- C:\Program Files\BlueJ
[2013/10/22 12:06:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2013/10/22 12:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/10/22 12:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java
[2013/10/22 12:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Java Development Kit
[2013/10/22 12:03:47 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013/10/22 12:02:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Sun
[2013/10/22 11:22:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2013/10/22 11:13:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Google Chrome
[2013/10/22 11:13:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Google
[2013/10/22 01:57:46 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2013/10/22 01:57:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2013/10/22 01:57:41 | 000,000,000 | R--D | C] -- C:\Program Files
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2013/10/22 01:57:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2013/10/22 01:57:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2013/10/22 01:57:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2013/10/22 01:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2013/10/22 01:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2013/10/22 01:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2013/10/22 01:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2013/10/22 01:56:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2013/10/22 01:56:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2013/10/22 01:56:20 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013/10/22 01:56:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2013/10/22 01:46:16 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2013/10/22 01:46:16 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2013/10/22 01:46:16 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2013/10/22 01:46:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2013/10/22 01:46:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2013/10/22 01:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Macromedia
[2013/10/22 01:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Adobe
[2013/10/22 00:59:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\UserData
[2013/10/22 00:58:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Adobe
[2013/10/22 00:54:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Opera Software
[2013/10/22 00:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Opera Software
[2013/10/22 00:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2013/10/22 00:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2013/10/22 00:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA
[2013/10/22 00:37:39 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2013/10/22 00:35:32 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/10/22 00:34:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\My Documents\Downloads
[2013/10/22 00:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Mozilla
[2013/10/22 00:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Mozilla
[2013/10/22 00:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2013/10/22 00:17:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2013/10/22 00:14:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Application Data\Identities
[2013/10/22 00:14:41 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2013/10/22 00:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Pictures
[2013/10/22 00:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents\My Music
[2013/10/22 00:14:35 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sisavac\Application Data\Microsoft
[2013/10/22 00:14:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\SendTo
[2013/10/22 00:14:35 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sisavac\Application Data
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Startup
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\My Documents
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Favorites
[2013/10/22 00:14:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Accessories
[2013/10/22 00:14:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sisavac\Cookies
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\Templates
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\PrintHood
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\NetHood
[2013/10/22 00:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sisavac\Local Settings
[2013/10/22 00:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Local Settings\Application Data\Microsoft
[2013/10/22 00:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sisavac\Desktop
[2013/10/22 00:13:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2013/10/22 00:13:40 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2013/10/22 00:13:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/10/22 00:13:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2013/10/22 00:13:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2013/10/22 00:13:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2013/10/22 00:13:21 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2013/10/22 00:11:38 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013/10/22 00:11:38 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013/10/22 00:11:38 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/10/22 00:10:15 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2013/10/22 00:09:40 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2013/10/22 00:09:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2013/10/22 00:08:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2013/10/22 00:07:48 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2013/10/22 00:07:48 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2013/10/22 00:07:37 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2013/10/22 00:07:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2013/10/22 00:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2013/10/22 00:06:26 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2013/10/22 00:06:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2013/10/22 00:06:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2013/10/22 00:06:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2013/10/22 00:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2013/10/22 00:06:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2013/10/22 00:05:55 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2013/10/22 00:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2013/10/22 00:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2013/10/22 00:05:39 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2013/10/22 00:05:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2013/10/22 00:05:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games
[2013/10/22 00:04:59 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2013/10/22 00:04:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2013/10/22 00:04:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2013/10/22 00:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2013/10/22 00:04:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2013/10/22 00:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2013/10/22 00:04:35 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2013/10/22 00:04:30 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2013/10/22 00:03:41 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2013/10/22 00:03:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2013/10/22 00:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2013/10/22 00:03:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2013/10/22 00:03:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2013/10/22 00:03:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2013/10/22 00:02:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories

========== Files - Modified Within 30 Days ==========

[2013/11/12 22:16:05 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/11/12 22:16:03 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/11/12 22:09:43 | 000,360,775 | ---- | M] (Farbar) -- C:\Documents and Settings\Sisavac\Desktop\FSS.exe
[2013/11/12 22:06:53 | 000,171,344 | ---- | M] (Kaspersky Lab) -- C:\kidokiller.exe
[2013/11/12 19:22:08 | 000,164,134 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\salitykiller (1).zip
[2013/11/12 15:47:16 | 000,006,396 | ---- | M] () -- C:\sality_regkeys.zip
[2013/11/12 15:47:16 | 000,006,396 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\sality_regkeys.zip
[2013/11/12 15:42:45 | 000,164,134 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\salitykiller.zip
[2013/11/12 15:33:51 | 005,145,633 | R--- | M] (Swearware) -- C:\Documents and Settings\Sisavac\Desktop\ComboFix.exe
[2013/11/12 15:31:09 | 000,164,134 | ---- | M] () -- C:\salitykiller.zip
[2013/11/10 18:53:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sisavac\Desktop\OTL.exe
[2013/11/10 18:22:47 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2013/11/10 02:29:17 | 001,390,861 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\HiJackThis.msi.part
[2013/11/10 01:31:46 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013/11/09 14:33:15 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/05 22:25:39 | 000,000,716 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\Shortcut to bsplayer.exe.lnk
[2013/10/28 10:18:11 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/10/28 10:18:11 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/10/24 23:49:28 | 000,000,854 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\SpeedyPC Pro.lnk
[2013/10/24 17:10:04 | 000,000,554 | ---- | M] () -- C:\0
[2013/10/23 17:20:36 | 000,000,884 | RHS- | M] () -- C:\Documents and Settings\Sisavac\ntuser.pol
[2013/10/23 08:37:38 | 000,000,836 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\µTorrent.lnk
[2013/10/22 17:24:56 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avant Browser.lnk
[2013/10/22 17:10:58 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/22 12:06:38 | 000,001,666 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\BlueJ.lnk
[2013/10/22 11:13:25 | 000,002,300 | ---- | M] () -- C:\Documents and Settings\Sisavac\Desktop\Google Chrome.lnk
[2013/10/22 11:13:25 | 000,002,278 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/22 00:54:41 | 000,000,669 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2013/10/22 00:37:39 | 001,072,544 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013/10/22 00:37:39 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013/10/22 00:37:33 | 001,072,544 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013/10/22 00:37:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013/10/22 00:32:15 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/10/22 00:16:26 | 000,003,265 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2013/10/22 00:14:49 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2013/10/22 00:13:12 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/22 00:12:20 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/22 00:09:09 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/10/22 00:09:09 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2013/10/22 00:09:09 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2013/10/22 00:09:00 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/22 00:09:00 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/22 00:09:00 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/22 00:08:48 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/22 00:05:14 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/22 00:02:23 | 000,000,211 | ---- | M] () -- C:\Boot.bak

========== Files Created - No Company Name ==========

[2013/11/12 19:22:07 | 000,164,134 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\salitykiller (1).zip
[2013/11/12 15:47:57 | 000,006,396 | ---- | C] () -- C:\sality_regkeys.zip
[2013/11/12 15:47:14 | 000,006,396 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\sality_regkeys.zip
[2013/11/12 15:42:45 | 000,164,134 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\salitykiller.zip
[2013/11/12 15:31:03 | 000,164,134 | ---- | C] () -- C:\salitykiller.zip
[2013/11/10 19:38:06 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2013/11/10 19:38:01 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2013/11/10 19:25:05 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2013/11/10 19:25:00 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2013/11/10 19:19:29 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2013/11/10 19:16:03 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2013/11/10 19:13:53 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2013/11/10 19:13:48 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2013/11/10 19:13:43 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2013/11/10 19:13:38 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2013/11/10 19:13:32 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2013/11/10 19:10:11 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2013/11/10 19:10:09 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2013/11/10 19:10:08 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2013/11/10 19:06:55 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2013/11/10 19:06:54 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2013/11/10 19:06:52 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2013/11/10 19:06:49 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2013/11/10 19:06:48 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2013/11/10 19:06:48 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2013/11/10 19:06:47 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2013/11/10 19:06:47 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2013/11/10 19:06:45 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2013/11/10 19:06:31 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2013/11/10 02:24:01 | 001,390,861 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\HiJackThis.msi.part
[2013/11/10 01:25:42 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2013/11/10 01:25:39 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2013/11/10 01:24:31 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2013/11/10 01:24:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2013/11/10 01:24:31 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2013/11/10 01:24:31 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2013/11/10 01:24:31 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2013/11/09 14:33:15 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/11/05 22:25:39 | 000,000,716 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\Shortcut to bsplayer.exe.lnk
[2013/10/24 23:50:28 | 000,000,554 | ---- | C] () -- C:\0
[2013/10/24 23:49:28 | 000,000,854 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\SpeedyPC Pro.lnk
[2013/10/23 08:37:38 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\µTorrent.lnk
[2013/10/22 17:25:05 | 000,000,884 | RHS- | C] () -- C:\Documents and Settings\Sisavac\ntuser.pol
[2013/10/22 17:24:56 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avant Browser.lnk
[2013/10/22 12:06:38 | 000,001,666 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\BlueJ.lnk
[2013/10/22 11:13:25 | 000,002,300 | ---- | C] () -- C:\Documents and Settings\Sisavac\Desktop\Google Chrome.lnk
[2013/10/22 11:13:25 | 000,002,278 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/10/22 01:57:45 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/22 01:57:42 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2013/10/22 01:57:42 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2013/10/22 01:57:42 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2013/10/22 01:57:41 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2013/10/22 01:57:22 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2013/10/22 01:57:08 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013/10/22 01:57:08 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013/10/22 01:57:08 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2013/10/22 01:57:08 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2013/10/22 01:57:08 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2013/10/22 01:57:08 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2013/10/22 01:57:08 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2013/10/22 01:57:08 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2013/10/22 01:57:08 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2013/10/22 01:57:08 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013/10/22 01:57:08 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2013/10/22 01:57:08 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013/10/22 01:57:08 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013/10/22 01:57:08 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013/10/22 01:57:08 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2013/10/22 01:57:08 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013/10/22 01:57:07 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2013/10/22 01:57:07 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2013/10/22 01:57:07 | 000,504,678 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013/10/22 01:56:19 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/22 01:54:13 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2013/10/22 01:54:08 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/22 00:54:41 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Opera.lnk
[2013/10/22 00:37:33 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013/10/22 00:37:33 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013/10/22 00:37:33 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013/10/22 00:37:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2013/10/22 00:37:18 | 002,816,504 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2013/10/22 00:37:18 | 000,015,449 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2013/10/22 00:32:15 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/10/22 00:17:31 | 000,001,024 | R--- | C] () -- C:\WINDOWS\System32\drivers\jedih2rx.bin
[2013/10/22 00:17:31 | 000,000,122 | R--- | C] () -- C:\WINDOWS\System32\drivers\ramsed.bin
[2013/10/22 00:17:31 | 000,000,042 | R--- | C] () -- C:\WINDOWS\System32\drivers\jedireg.pat
[2013/10/22 00:16:25 | 000,003,265 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2013/10/22 00:16:18 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2013/10/22 00:14:49 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2013/10/22 00:14:43 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Outlook Express.lnk
[2013/10/22 00:14:41 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Sisavac\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/10/22 00:14:41 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Internet Explorer.lnk
[2013/10/22 00:14:35 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Remote Assistance.lnk
[2013/10/22 00:14:35 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Sisavac\Start Menu\Programs\Windows Media Player.lnk
[2013/10/22 00:12:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/10/22 00:11:31 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2013/10/22 00:11:10 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/10/22 00:11:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013/10/22 00:11:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2013/10/22 00:10:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013/10/22 00:10:46 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2013/10/22 00:10:36 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013/10/22 00:10:31 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2013/10/22 00:10:19 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013/10/22 00:09:09 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/10/22 00:09:09 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2013/10/22 00:09:09 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2013/10/22 00:09:09 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2013/10/22 00:09:00 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/22 00:09:00 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/22 00:08:58 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/22 00:07:36 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2013/10/22 00:07:21 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2013/10/22 00:06:42 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2013/10/22 00:06:42 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2013/10/22 00:06:32 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2013/10/22 00:06:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2013/10/22 00:06:02 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2013/10/22 00:05:16 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2013/10/22 00:05:14 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/22 00:04:42 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk
[2013/10/22 00:04:09 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2013/10/22 00:04:09 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2013/10/22 00:04:09 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2013/10/22 00:04:09 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2013/10/22 00:04:09 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2013/10/22 00:04:08 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2013/10/22 00:04:08 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2013/10/22 00:04:08 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2013/10/22 00:04:08 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2013/10/22 00:04:08 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2013/10/22 00:04:08 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2013/10/22 00:04:04 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2013/10/22 00:04:04 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2013/10/22 00:04:02 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2013/10/22 00:03:53 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/01/07 17:20:52 | 001,497,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2006/02/28 13:00:00 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2006/02/28 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/11/10 00:53:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/10/24 23:49:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpeedyPC Software
[2013/11/10 00:53:01 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/10/22 17:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\Avant Downloader
[2013/11/06 00:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\BSplayer PRO
[2013/10/24 23:54:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\DriverCure
[2013/11/07 18:31:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\Foxit Software
[2013/10/22 00:54:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\Opera Software
[2013/10/24 23:54:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\SpeedyPC Software
[2013/11/10 00:58:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sisavac\Application Data\uTorrent

========== Purity Check ==========

< End of report >

Farbar Service Scanner Version: 10-11-2013
Ran by Sisavac (administrator) on 12-11-2013 at 22:32:56
Running from "C:\Documents and Settings\Sisavac\Desktop"
Microsoft Windows XP Professional Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============
Srservice Service is not running. Checking service configuration:
The start type of Srservice service is set to Disabled. The default start type is Auto.
The ImagePath of Srservice service is OK.
The ServiceDll of Srservice service is OK.

sr Service is not running. Checking service configuration:
The start type of sr service is set to Disabled. The default start type is Boot.
The ImagePath of sr: "\SystemRoot\system32\DRIVERS\sr.sys".

System Restore Disabled Policy:
========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:1

Security Center:
============

wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Disabled. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

Windows Autoupdate Disabled Policy:
============================

Other Services:
==============

File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys
[2006-02-28 13:00] - [2006-02-28 13:00] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys
[2006-02-28 13:00] - [2006-02-28 13:00] - 0359040 ____A (Microsoft Corporation) 9F4B36614A0FC234525BA224957DE55C

C:\WINDOWS\system32\Drivers\ipsec.sys
[2006-02-28 13:00] - [2006-02-28 13:00] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

C:\WINDOWS\system32\dnsrslvr.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0045568 ____A (Microsoft Corporation) 7379DE06FD196E396A00AA97B990C00D

C:\WINDOWS\system32\ipnathlp.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0331264 ____A (Microsoft Corporation) 36CC8C01B5E50163037BEF56CB96DEFF

C:\WINDOWS\system32\netman.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0198144 ____A (Microsoft Corporation) DAB9E6C7105D2EF49876FE92C524F565

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2013-10-22 00:03] - [2006-02-28 13:00] - 0144896 ____A (Microsoft Corporation) F399242A80C4066FD155EFA4CF96658E

C:\WINDOWS\system32\srsvc.dll
[2013-10-22 00:05] - [2006-02-28 13:00] - 0170496 ____A (Microsoft Corporation) 92BDF74F12D6CBEC43C94D4B7F804838

C:\WINDOWS\system32\Drivers\sr.sys
[2013-10-22 00:05] - [2006-02-28 13:00] - 0073472 ____A (Microsoft Corporation) E41B6D037D6CD08461470AF04500DC24

C:\WINDOWS\system32\wscsvc.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0081408 ____A (Microsoft Corporation) 4D59DAA66C60858CDF4F67A900F42D4A

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2013-10-22 00:03] - [2006-02-28 13:00] - 0144896 ____A (Microsoft Corporation) F399242A80C4066FD155EFA4CF96658E

C:\WINDOWS\system32\wuauserv.dll
[2013-10-22 00:06] - [2006-02-28 13:00] - 0006656 ____A (Microsoft Corporation) 13D72740963CBA12D9FF76A7F218BCD8

C:\WINDOWS\system32\qmgr.dll
[2013-10-22 00:06] - [2006-02-28 13:00] - 0382464 ____A (Microsoft Corporation) 2C69EC7E5A311334D10DD95F338FCCEA

C:\WINDOWS\system32\es.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0243200 ____A (Microsoft Corporation) ACD36A2DD7D1E9D8A060AA651DC07E63

C:\WINDOWS\system32\cryptsvc.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0060416 ____A (Microsoft Corporation) 10654F9DDCEA9C46CFB77554231BE73B

C:\WINDOWS\system32\svchost.exe
[2006-02-28 13:00] - [2006-02-28 13:00] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

C:\WINDOWS\system32\rpcss.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0395776 ____A (Microsoft Corporation) 5C83A4408604F737717AB96371201680

C:\WINDOWS\system32\services.exe
[2006-02-28 13:00] - [2006-02-28 13:00] - 0108032 ____A (Microsoft Corporation) C6CE6EEC82F187615D1002BB3BB50ED4

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0700000005000000010000000200000003000000040000000600000007000000
IpSec Tag value is correct.

**** End of log ****

#12
fartuditu

Posted 12 November 2013 - 05:08 PM

Member

Topic Starter
Member
30 posts

I'm sorry, seems i didn't really plug in flash previous time! I just realized since that somewhere during the process i noticed there was no tray icon, and after i removed flash there was no difference. Since i was concentrated on scans and logs, i just didn't pay enough attention, figuring it might be due to virus somehow. Anyway, i plugged in flash, after tray icon appeared i just fully formatted that drive. Let me know if i should run scans another time, and sorry for prolonging the process.

#13
Buddierdl

Posted 13 November 2013 - 08:29 AM

Trusted Helper

Malware Removal
2,524 posts

It seems like an E:\ flash drive was plugged in during the scan (unless you removed it during the process). If you formatted the drives, they should be clean.

You really shouldn't disable the Windows security and update services. Your computer is very vulnerable while it is not updated. Let's fix the services and then see if you can run Windows Update. You need to get SP3, plus all the updates after that. It will probably take a little while.

Download the ESET services repair tool, extract the file to your desktop.

Double-click ServicesRepair.exe.
If security notifications appear, click Continue or Run and then click Yes when asked if you want to proceed.
Once the tool has finished, you will be prompted to restart your computer. Click Yes to restart.
A log will be saved in the CCSupport folder the tool created on your desktop, please post the content in your next reply.

Then run Farbar's Service Scanner again for me.

Also, can you describe the floating point error in more detail for me (maybe take a screenshot)?

#14
fartuditu

Posted 13 November 2013 - 12:27 PM

Member

Topic Starter
Member
30 posts

I didn't want to use more resources than i needed, but after these infections, i'll change my ways to better.

I downloaded service repair tool and ran it, after which computer rebooted. Before that, i re enabled system reports, so after restart i got this r6002 again. During the startup, i noticed 2 rundll32.exe, after which one disappeared, and also how some processes didn't have usual user name. This happened before, but i forgot to mention.

http://i.imgur.com/lFayW4Z.png - processes
http://i.imgur.com/IB2b1WD.png - r6002

After service repair and reboot i ran Farbar. Now i have names in "user name" column in task manager, after running Farbar i think.

I don't know how r6002 affects my system, but it shows up few minutes after startup, and if i close the window it reopens.

Should i now install sp3 and turn on firewall as well as windows updates? Here are the logs.

Log Opened: 2013-11-13 @ 19:12:33
19:12:33 - -----------------
19:12:33 - | Begin Logging |
19:12:33 - -----------------
19:12:33 - Fix started on a WIN_XP X86 computer
19:12:33 - Prep in progress. Please Wait.
19:12:38 - Prep complete
19:12:38 - Repairing Services Now. Please wait...

The operation completed successfully
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\XP\BITS.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Enum>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS>

SetACL finished successfully.

The operation completed successfully
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\XP\SharedAccess.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Enum>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Setup>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess>

SetACL finished successfully.

The operation completed successfully
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\XP\wscsvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Enum>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc>

SetACL finished successfully.

The operation completed successfully
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\XP\wuauserv.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Enum>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv>

SetACL finished successfully.
19:12:40 - Services Repair Complete.
19:12:43 - Reboot Initiated

Farbar Service Scanner Version: 10-11-2013
Ran by Sisavac (administrator) on 13-11-2013 at 19:15:48
Running from "C:\Documents and Settings\Sisavac\Desktop"
Microsoft Windows XP Professional Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============
Srservice Service is not running. Checking service configuration:
The start type of Srservice service is set to Disabled. The default start type is Auto.
The ImagePath of Srservice service is OK.
The ServiceDll of Srservice service is OK.

sr Service is not running. Checking service configuration:
The start type of sr service is set to Disabled. The default start type is Boot.
The ImagePath of sr: "\SystemRoot\system32\DRIVERS\sr.sys".

System Restore Disabled Policy:
========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:1

Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Other Services:
==============

File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys
[2006-02-28 13:00] - [2006-02-28 13:00] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys
[2006-02-28 13:00] - [2006-02-28 13:00] - 0359040 ____A (Microsoft Corporation) 9F4B36614A0FC234525BA224957DE55C

C:\WINDOWS\system32\Drivers\ipsec.sys
[2006-02-28 13:00] - [2006-02-28 13:00] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

C:\WINDOWS\system32\dnsrslvr.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0045568 ____A (Microsoft Corporation) 7379DE06FD196E396A00AA97B990C00D

C:\WINDOWS\system32\ipnathlp.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0331264 ____A (Microsoft Corporation) 36CC8C01B5E50163037BEF56CB96DEFF

C:\WINDOWS\system32\netman.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0198144 ____A (Microsoft Corporation) DAB9E6C7105D2EF49876FE92C524F565

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2013-10-22 00:03] - [2006-02-28 13:00] - 0144896 ____A (Microsoft Corporation) F399242A80C4066FD155EFA4CF96658E

C:\WINDOWS\system32\srsvc.dll
[2013-10-22 00:05] - [2006-02-28 13:00] - 0170496 ____A (Microsoft Corporation) 92BDF74F12D6CBEC43C94D4B7F804838

C:\WINDOWS\system32\Drivers\sr.sys
[2013-10-22 00:05] - [2006-02-28 13:00] - 0073472 ____A (Microsoft Corporation) E41B6D037D6CD08461470AF04500DC24

C:\WINDOWS\system32\wscsvc.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0081408 ____A (Microsoft Corporation) 4D59DAA66C60858CDF4F67A900F42D4A

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2013-10-22 00:03] - [2006-02-28 13:00] - 0144896 ____A (Microsoft Corporation) F399242A80C4066FD155EFA4CF96658E

C:\WINDOWS\system32\wuauserv.dll
[2013-10-22 00:06] - [2006-02-28 13:00] - 0006656 ____A (Microsoft Corporation) 13D72740963CBA12D9FF76A7F218BCD8

C:\WINDOWS\system32\qmgr.dll
[2013-10-22 00:06] - [2006-02-28 13:00] - 0382464 ____A (Microsoft Corporation) 2C69EC7E5A311334D10DD95F338FCCEA

C:\WINDOWS\system32\es.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0243200 ____A (Microsoft Corporation) ACD36A2DD7D1E9D8A060AA651DC07E63

C:\WINDOWS\system32\cryptsvc.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0060416 ____A (Microsoft Corporation) 10654F9DDCEA9C46CFB77554231BE73B

C:\WINDOWS\system32\svchost.exe
[2006-02-28 13:00] - [2006-02-28 13:00] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

C:\WINDOWS\system32\rpcss.dll
[2006-02-28 13:00] - [2006-02-28 13:00] - 0395776 ____A (Microsoft Corporation) 5C83A4408604F737717AB96371201680

C:\WINDOWS\system32\services.exe
[2006-02-28 13:00] - [2006-02-28 13:00] - 0108032 ____A (Microsoft Corporation) C6CE6EEC82F187615D1002BB3BB50ED4

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0700000005000000010000000200000003000000040000000600000007000000
IpSec Tag value is correct.

**** End of log ****

#15
Buddierdl

Posted 13 November 2013 - 01:06 PM

Trusted Helper

Malware Removal
2,524 posts

The processes without user names are run by the system. The fix below should remove the floating point error. It is related to Java and the file was probably corrupted by sality. We will deal with Java later.

We need to run windows updates and start the firewall, but let's fix the system restore service and create a restore point first in case something goes wrong.

Start OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\sr]
"Type"=dword:00000002
"Start"=dword:00000000
"ErrorControl"=dword:00000001
"Tag"=dword:00000004
"ImagePath"=hex(2):73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,44,00,\
  52,00,49,00,56,00,45,00,52,00,53,00,5c,00,73,00,72,00,2e,00,73,00,79,00,73,\
  00,00,00
"DisplayName"="System Restore Filter Driver"
"Group"="FSFilter System Recovery"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\sr\Parameters]
"FirstRun"=dword:00000000
"DontBackup"=dword:00000000
"MachineGuid"="{98B5A6EB-B01A-4160-8D8F-647977BF173C}"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\sr\Security]
"Security"=hex:01,00,14,80,90,00,00,00,9c,00,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,60,00,04,00,00,00,00,00,14,00,fd,01,02,00,01,01,00,00,00,00,00,\
  05,12,00,00,00,00,00,18,00,ff,01,0f,00,01,02,00,00,00,00,00,05,20,00,00,00,\
  20,02,00,00,00,00,14,00,8d,01,02,00,01,01,00,00,00,00,00,05,0b,00,00,00,00,\
  00,18,00,fd,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,23,02,00,00,01,01,\
  00,00,00,00,00,05,12,00,00,00,01,01,00,00,00,00,00,05,12,00,00,00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\sr\Enum]
"0"="Root\\LEGACY_SR\\0000"
"Count"=dword:00000001
"NextInstance"=dword:00000001

:Files
sc config srservice start= auto /c
sc start sr /c
sc start srservice /c

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:0

:Commands
[reboot]

Then click the Run Fix button at the top
Let the program run unhindered.
Post the log it produces in your next reply. The log should be saved in C:\_OTL\MovedFiles and should be named with numbers describing the date and time it was run.

Now try to set a restore point:

To set up a restore point, follow these steps:

Close any programs that are open.
Click Start, point to All Programs, point to Accessories, point to System Tools, and then click System Restore. The System Restore Wizard opens.
Click Create a restore point, and then click Next.
In Restore point description box, type a description for the restore point. Use a description that is easy to understand.
Note The date and time are automatically added to your restore point. Therefore, you do not have to use them in your description.
To finish creating this restore point, click the Create button. The System Restore Wizard notifies you when the restore point is created.